$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa File: 52EFDBAE687D11ECBF82F558C4F9AE02.roa (raw, json) Hash identifier: h56Hk5AcO/iUSDgUfUfAn+sGy3/yAppMmUEYagXZkao= Subject key identifier: E9:E9:CD:96:51:83:23:C3:A3:66:FA:B1:B7:C0:8A:49:3B:C4:2B:A6 Certificate issuer: /CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Certificate serial: 07BE Authority key identifier: 4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa Signing time: Thu 12 Feb 2026 21:18:27 +0000 ROA not before: Thu 12 Feb 2026 21:18:27 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137000 IP address blocks: 103.159.192.0/24 maxlen: 24 103.159.193.0/24 maxlen: 24 2001:df5:8680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC726, serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Validity Not Before: Feb 12 21:18:27 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=698e43a3-b930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0e:5b:89:f5:4d:ad:f7:e6:2a:b3:d2:35:50: d6:44:8e:79:91:6e:c1:dd:8f:f1:f8:56:32:b7:5c: e2:13:c8:e4:3e:1d:6d:96:61:59:90:d6:73:71:3e: ac:34:95:56:6e:a5:c1:1f:0f:13:5c:80:5b:29:7b: c2:1d:dc:6c:3f:04:84:d3:9f:02:f8:14:35:1d:4b: e3:ac:ed:d6:c3:1a:d6:72:33:78:d4:f6:c8:3b:5b: 2c:f2:6d:d9:8f:24:98:29:09:68:64:7a:fa:81:f2: 8e:03:6a:7f:a6:6e:e8:a3:8e:c0:94:f4:af:11:67: 71:76:4d:5d:e8:50:e7:1c:c9:42:b7:8f:d7:83:ea: 5e:d2:64:b6:20:ed:8e:30:da:f9:01:14:d8:55:9e: 31:fa:32:35:cb:5a:b2:8d:d0:5f:4e:cf:f1:66:3d: 70:08:c1:29:2b:c1:55:f0:5a:ac:6f:35:66:36:4b: a8:52:8e:a2:3a:20:39:fb:53:89:dc:88:bd:89:d6: 4f:3b:56:06:25:42:5a:57:eb:37:e6:34:0a:36:3b: 89:7f:01:29:25:e2:66:3a:95:f0:52:a7:05:83:e2: 2f:ba:e9:d0:bd:f7:29:03:9c:6f:72:ac:06:b5:71: 86:e3:f9:e9:57:4e:0d:84:63:a5:f2:38:95:c1:72: 4a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E9:CD:96:51:83:23:C3:A3:66:FA:B1:B7:C0:8A:49:3B:C4:2B:A6 X509v3 Authority Key Identifier: keyid:4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.192.0/23 IPv6: 2001:df5:8680::/48 Signature Algorithm: sha256WithRSAEncryption 31:ce:53:3d:8f:c9:7d:f1:81:a5:f5:10:c5:cd:63:59:61:be: d9:b7:f7:96:a0:79:9f:8c:e3:69:e0:9f:90:17:af:82:64:a4: 98:36:3b:91:a4:d6:ca:6f:a9:77:12:98:56:58:f9:3f:aa:f7: 38:1e:c1:d9:5b:2b:d0:77:ce:39:00:8f:e4:85:28:0a:31:33: 06:7c:c6:56:10:f5:7c:cb:b7:78:8b:43:8d:fc:77:b9:ed:89: 22:21:8c:ec:fd:8d:20:8b:3a:0d:99:07:40:df:b7:8b:e2:d3: f7:2d:ce:74:57:e2:e1:da:88:1d:b0:0a:fb:f1:95:96:03:6b: b7:9e:82:0b:04:13:84:12:14:a4:6b:a7:d1:85:bd:d3:15:7d: 2d:52:b3:63:13:57:56:fe:ad:8f:07:31:bc:ea:27:e1:75:43: 03:a4:da:52:4d:2a:af:22:76:d5:33:14:01:06:ea:5c:a8:9a: e7:29:84:ee:ed:ff:77:ee:b1:a4:4b:03:07:f7:3a:16:c7:81: 14:bc:1e:50:df:57:c8:83:53:f5:e8:e0:ee:5e:23:98:57:42: 8b:41:8d:1b:20:b4:58:a5:69:00:02:d5:bc:fd:59:2f:90:db: 88:5e:fa:aa:36:75:ac:d3:33:af:c6:08:c9:a5:5f:58:a8:8f: a3:12:9e:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUM3MjYxMTAvBgNVBAUTKDREODQ3NTIzRTVCREQ5RTNCODk2OTgyOEEwNEJGRURB MkIwQzAzMUIwHhcNMjYwMjEyMjExODI3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OThlNDNhMy1iOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ5bifVNrffmKrPSNVDWRI55kW7B3Y/x+FYyt1ziE8jkPh1tlmFZkNZzcT6s NJVWbqXBHw8TXIBbKXvCHdxsPwSE058C+BQ1HUvjrO3WwxrWcjN41PbIO1ss8m3Z jySYKQloZHr6gfKOA2p/pm7oo47AlPSvEWdxdk1d6FDnHMlCt4/Xg+pe0mS2IO2O MNr5ARTYVZ4x+jI1y1qyjdBfTs/xZj1wCMEpK8FV8FqsbzVmNkuoUo6iOiA5+1OJ 3Ii9idZPO1YGJUJaV+s35jQKNjuJfwEpJeJmOpXwUqcFg+IvuunQvfcpA5xvcqwG tXGG4/npV04NhGOl8jiVwXJKBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOnpzZZR gyPDo2b6sbfAikk7xCumMB8GA1UdIwQYMBaAFE2EdSPlvdnjuJaYKKBL/torDAMb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzcyNi85QzRGNTMwQTM4 QUYxMUVCODkxM0RFNDFDNEY5QUUwMi9UWVIxSS1XOTJlTzRscGdvb0V2LTJpc01B eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RZUjFJLVc5MmVPNGxwZ29vRXYtMmlzTUF4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM3MjYvOUM0RjUzMEEzOEFGMTFFQjg5MTNERTQxQzRGOUFFMDIvNTJFRkRCQUU2 ODdEMTFFQ0JGODJGNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn8AwDwQCAAIwCQMHACABDfWGgDANBgkqhkiG9w0BAQsF AAOCAQEAMc5TPY/JffGBpfUQxc1jWWG+2bf3lqB5n4zjaeCfkBevgmSkmDY7kaTW ym+pdxKYVlj5P6r3OB7B2Vsr0HfOOQCP5IUoCjEzBnzGVhD1fMu3eItDjfx3ue2J IiGM7P2NIIs6DZkHQN+3i+LT9y3OdFfi4dqIHbAK+/GVlgNrt56CCwQThBIUpGun 0YW90xV9LVKzYxNXVv6tjwcxvOon4XVDA6TaUk0qryJ21TMUAQbqXKia5ymE7u3/ d+6xpEsDB/c6FseBFLweUN9XyINT9ejg7l4jmFdCi0GNGyC0WKVpAALVvP1ZL5Db iF76qjZ1rNMzr8YIyaVfWKiPoxKepw== -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:02 2026 by rpki-client