$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/BDC0899A1FF511ECAE74F266C4F9AE02.roa File: BDC0899A1FF511ECAE74F266C4F9AE02.roa (raw, json) Hash identifier: /3arRZXVLdrfm4u9cutgJAx+ZHiHzLIvVvAU7Zs/f38= Subject key identifier: C5:F2:7F:E4:0C:67:FB:30:1B:E6:49:3D:83:1E:5F:DC:CA:78:9F:02 Certificate issuer: /CN=A91B2A6F/serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Certificate serial: 0AC9 Authority key identifier: 8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/BDC0899A1FF511ECAE74F266C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:00:29 +0000 ROA not before: Mon 04 Aug 2025 20:00:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9268 IP address blocks: 43.247.64.0/22 maxlen: 22 103.26.172.0/22 maxlen: 24 2401:f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2A6F, serialNumber=8C5A8997FCA5BF0270EAF86EE8C0CB6551AB97D1 Validity Not Before: Aug 4 20:00:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4467d-7ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a0:95:ea:58:3d:de:08:9f:60:33:ef:d6:ef: d9:c3:52:77:43:df:39:d9:4e:23:61:e1:12:40:9a: a7:42:67:d7:17:80:ad:cf:c7:f9:f5:50:26:04:56: 8d:91:ae:7b:35:4e:57:9f:bd:26:ee:44:d3:86:aa: ed:9e:55:fc:5d:fd:06:9c:a2:53:13:4d:30:d0:c4: fe:39:e9:98:61:33:11:2e:e2:ad:d6:16:4c:da:87: 86:b8:48:43:75:d2:9d:da:9a:25:02:02:e5:32:d1: 4e:a6:30:5f:0d:fd:8b:15:8b:fc:df:6c:bb:d3:ec: 4f:1f:b4:1d:10:ff:e1:6a:7d:84:7b:55:46:a4:c2: 7f:59:5b:b9:79:8b:bf:9c:36:8a:63:c5:8b:6a:6e: 96:35:2a:07:3b:70:32:6b:9c:2c:2e:90:52:84:fe: ee:25:3f:07:11:05:74:26:61:fe:2e:07:12:8c:df: 9f:c4:6c:1f:99:a7:7c:ae:97:16:42:bc:fd:b3:a3: f2:92:2d:d7:37:7e:0d:02:6c:9d:be:5e:58:10:e3: 1f:ba:54:fb:8f:61:8e:5d:9a:39:75:cb:51:fb:c8: 48:25:c8:e5:3c:d5:70:43:45:04:51:13:02:9b:d3: 82:92:bd:0f:2d:c9:16:15:1a:88:f1:70:0b:07:29: b4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F2:7F:E4:0C:67:FB:30:1B:E6:49:3D:83:1E:5F:DC:CA:78:9F:02 X509v3 Authority Key Identifier: keyid:8C:5A:89:97:FC:A5:BF:02:70:EA:F8:6E:E8:C0:CB:65:51:AB:97:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/jFqJl_ylvwJw6vhu6MDLZVGrl9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFqJl_ylvwJw6vhu6MDLZVGrl9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2A6F/CADFF2FE6E3611EAA10EFF76C4F9AE02/BDC0899A1FF511ECAE74F266C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.247.64.0/22 103.26.172.0/22 IPv6: 2401:f80::/32 Signature Algorithm: sha256WithRSAEncryption ca:cd:d0:a3:91:21:4d:ed:9a:22:ab:82:6e:ee:e0:95:95:a7: 50:66:d8:92:bd:15:c1:c5:1f:77:bc:a6:fa:55:4f:18:c3:11: 2e:86:1d:d6:53:45:75:48:17:a2:5e:45:57:0d:dd:50:07:6e: 07:0f:41:89:4c:85:7f:91:e8:2c:bf:ad:53:56:d0:4e:05:d6: 5c:07:51:15:1f:23:b2:9d:60:06:13:3c:74:87:9e:74:64:66: 2a:ac:4f:80:17:2f:66:05:94:b8:50:90:b0:cd:ed:15:d0:ff: 68:dd:9b:28:39:be:cf:8e:04:a8:86:65:7b:5a:16:92:aa:3b: 67:88:b3:52:53:0b:96:d0:de:2a:1d:73:15:08:32:1c:c4:87: fa:ab:a3:1a:7c:ad:4c:f9:e9:a2:7d:11:c0:74:b7:95:39:3c: 78:ed:25:0c:54:4c:fe:ce:ed:93:e4:7b:10:f2:c3:77:b2:bd: 71:57:e1:6f:16:8f:2d:32:4e:2b:1f:f6:ef:21:34:1b:17:ef: d2:1e:ad:1a:23:45:51:54:23:22:b5:81:87:f8:1b:01:37:2c: bb:fd:de:33:07:06:67:6b:16:fd:45:a8:f1:9b:05:ca:05:59: 0a:09:dc:3a:3a:87:64:9e:81:69:5e:d7:ce:e7:3d:d9:00:b2: 66:db:c0:5d -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJBNkYxMTAvBgNVBAUTKDhDNUE4OTk3RkNBNUJGMDI3MEVBRjg2RUU4QzBDQjY1 NTFBQjk3RDEwHhcNMjUwODA0MjAwMDEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDY3ZC03ZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9qCV6lg93gifYDPv1u/Zw1J3Q9852U4jYeESQJqnQmfXF4Ctz8f59VAmBFaN ka57NU5Xn70m7kTThqrtnlX8Xf0GnKJTE00w0MT+OemYYTMRLuKt1hZM2oeGuEhD ddKd2polAgLlMtFOpjBfDf2LFYv832y70+xPH7QdEP/han2Ee1VGpMJ/WVu5eYu/ nDaKY8WLam6WNSoHO3Aya5wsLpBShP7uJT8HEQV0JmH+LgcSjN+fxGwfmad8rpcW Qrz9s6Pyki3XN34NAmydvl5YEOMfulT7j2GOXZo5dctR+8hIJcjlPNVwQ0UEURMC m9OCkr0PLckWFRqI8XALBym0kQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMXyf+QM Z/swG+ZJPYMeX9zKeJ8CMB8GA1UdIwQYMBaAFIxaiZf8pb8CcOr4bujAy2VRq5fR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkE2Ri9DQURGRjJGRTZF MzYxMUVBQTEwRUZGNzZDNEY5QUUwMi9qRnFKbF95bHZ3Snc2dmh1Nk1ETFpWR3Js OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pGcUpsX3lsdndKdzZ2aHU2TURMWlZHcmw5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJBNkYvQ0FERkYyRkU2RTM2MTFFQUExMEVGRjc2QzRGOUFFMDIvQkRDMDg5OUEx RkY1MTFFQ0FFNzRGMjY2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCK/dAAwQCZxqsMA0EAgACMAcDBQAkAQ+AMA0GCSqGSIb3DQEBCwUA A4IBAQDKzdCjkSFN7Zoiq4Ju7uCVladQZtiSvRXBxR93vKb6VU8YwxEuhh3WU0V1 SBeiXkVXDd1QB24HD0GJTIV/kegsv61TVtBOBdZcB1EVHyOynWAGEzx0h550ZGYq rE+AFy9mBZS4UJCwze0V0P9o3ZsoOb7PjgSohmV7WhaSqjtniLNSUwuW0N4qHXMV CDIcxIf6q6MafK1M+emifRHAdLeVOTx47SUMVEz+zu2T5HsQ8sN3sr1xV+FvFo8t Mk4rH/bvITQbF+/SHq0aI0VRVCMitYGH+BsBNyy7/d4zBwZnaxb9RajxmwXKBVkK Cdw6OodknoFpXtfO5z3ZALJm28Bd -----END CERTIFICATE-----Generated at Mon Mar 2 06:46:59 2026 by rpki-client