$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa File: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (raw, json) Hash identifier: ZdWgxsTDmp2SCgpKV/pUzjdMnUTtasFIwHsMjvPLzoQ= Subject key identifier: E9:58:DB:B2:D8:1C:7F:EC:BA:37:D1:6E:96:E3:05:7E:81:B9:9F:DA Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0BF2 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:28:09 +0000 ROA not before: Fri 12 Sep 2025 19:29:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136978 IP address blocks: 103.101.48.0/24 maxlen: 24 103.101.49.0/24 maxlen: 24 2401:ca40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Sep 12 19:29:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47729-bb92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:bc:ed:4d:d9:49:e5:19:88:08:f5:47:bf: 80:b7:1d:8b:7b:99:a4:35:d3:69:93:e3:2f:18:3a: 20:b0:15:a7:ba:7f:ba:a0:4e:68:c4:d0:25:f9:de: 0a:68:bd:55:fd:89:22:8e:93:af:1e:58:d5:6e:be: 7d:21:18:d3:f8:a6:0c:81:d3:78:36:eb:9d:67:78: 97:29:74:9b:49:5d:ea:17:6a:6d:90:26:bc:41:74: 3f:49:81:e1:d1:b0:2c:41:b3:13:ca:ca:6f:f1:85: 22:09:08:26:08:9c:cd:3f:5e:45:c7:55:f4:0b:5e: a5:8e:f1:e3:18:24:f1:54:41:a8:2f:28:f3:c6:d0: 17:e4:1c:52:15:82:b5:8b:cb:62:7c:f5:4e:18:b7: f0:b7:d2:e0:f3:bd:9e:a3:52:32:71:01:5b:2c:ac: 20:ce:a5:7e:cc:75:70:74:bf:b8:4d:48:1a:a3:3c: 32:4b:7d:05:ba:98:5a:50:0d:59:1e:10:cc:e4:4c: 86:62:4f:51:e9:82:be:ff:14:30:41:00:18:e9:62: b5:8f:ad:71:53:71:93:3e:57:d0:69:76:3c:6e:a8: c1:de:46:5c:37:64:5a:3d:7f:92:9b:cc:52:63:82: 0e:42:c6:20:92:c1:36:40:69:a8:f2:2c:80:b2:9c: fc:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:58:DB:B2:D8:1C:7F:EC:BA:37:D1:6E:96:E3:05:7E:81:B9:9F:DA X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.48.0/23 IPv6: 2401:ca40::/32 Signature Algorithm: sha256WithRSAEncryption cb:20:da:91:19:9e:57:b5:19:e4:80:dd:1b:4a:4a:4d:6b:0b: 70:60:c7:27:e1:57:5c:72:15:89:fc:6f:f0:d6:0c:a1:b0:c6: e3:65:6a:15:64:77:36:60:cc:db:22:1b:78:f4:c5:2b:4e:15: cd:64:76:98:cd:aa:d8:b9:c5:d6:c6:0e:96:f4:2a:5f:3d:f4: 5c:76:06:16:08:d4:f2:fa:49:80:54:6c:3c:35:ca:a5:c1:a0: 55:17:44:ac:e7:7a:14:7d:3e:18:c5:3f:7e:73:99:7f:0e:8e: 85:7d:ff:83:e7:a0:71:b9:27:46:07:d9:69:06:69:f7:b6:26: cb:a0:b1:bd:5b:ed:1a:12:b2:89:c0:47:ed:d0:16:65:1b:7e: d8:75:0d:8a:94:d3:7f:a2:08:1d:11:0e:c1:da:d7:e6:e4:8d: dd:f4:59:ad:79:7e:7c:53:87:50:3d:16:ce:fe:b7:a7:19:f7: d7:13:f6:b9:b2:4b:2a:4a:9b:60:f2:75:17:ba:93:09:cf:74: 59:9b:6e:3d:fc:a5:f2:7e:66:5e:33:ed:9b:9f:e5:5b:ab:93: 0e:e3:7a:fe:42:82:ee:8b:3b:30:8e:3e:dc:03:36:da:60:69: f4:fe:b0:ea:07:3e:1f:bc:ec:eb:3b:42:22:85:84:75:81:e2: 12:b8:98:ec -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUwOTEyMTkyOTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzcyOS1iYjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgS87U3ZSeUZiAj1R7+Atx2Le5mkNdNpk+MvGDogsBWnun+6oE5oxNAl+d4K aL1V/YkijpOvHljVbr59IRjT+KYMgdN4NuudZ3iXKXSbSV3qF2ptkCa8QXQ/SYHh 0bAsQbMTyspv8YUiCQgmCJzNP15Fx1X0C16ljvHjGCTxVEGoLyjzxtAX5BxSFYK1 i8tifPVOGLfwt9Lg872eo1IycQFbLKwgzqV+zHVwdL+4TUgaozwyS30FuphaUA1Z HhDM5EyGYk9R6YK+/xQwQQAY6WK1j61xU3GTPlfQaXY8bqjB3kZcN2RaPX+Sm8xS Y4IOQsYgksE2QGmo8iyAspz8oQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOlY27LY HH/sujfRbpbjBX6BuZ/aMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2RjAvN0Q2N0U0RDQzODRDMTFFQUJFQTJEQjcxQzRGOUFFMDIvODRBQzE3OTg5 QjA4MTFFREI1RkRBRjc1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2UwMA0EAgACMAcDBQAkAcpAMA0GCSqGSIb3DQEBCwUAA4IBAQDL INqRGZ5XtRnkgN0bSkpNawtwYMcn4VdcchWJ/G/w1gyhsMbjZWoVZHc2YMzbIht4 9MUrThXNZHaYzarYucXWxg6W9CpfPfRcdgYWCNTy+kmAVGw8NcqlwaBVF0Ss53oU fT4YxT9+c5l/Do6Fff+D56BxuSdGB9lpBmn3tibLoLG9W+0aErKJwEft0BZlG37Y dQ2KlNN/oggdEQ7B2tfm5I3d9FmteX58U4dQPRbO/renGffXE/a5sksqSptg8nUX upMJz3RZm249/KXyfmZeM+2bn+Vbq5MO43r+QoLuizswjj7cAzbaYGn0/rDqBz4f vOzrO0IihYR1geISuJjs -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:21 2026 by rpki-client