$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/CF0AE642EBA711EA8980FC11C4F9AE02.roa File: CF0AE642EBA711EA8980FC11C4F9AE02.roa (raw, json) Hash identifier: QfT2Eaqv5QPDrORQi1WneHGHYWsLdTVYS3iMbBaZBv4= Subject key identifier: 5A:6E:9E:B8:74:21:F5:2C:33:F5:A9:72:FE:92:7C:43:AF:65:6E:FC Certificate issuer: /CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Certificate serial: 0C0F Authority key identifier: 96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/CF0AE642EBA711EA8980FC11C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:37:15 +0000 ROA not before: Fri 14 Nov 2025 18:38:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17412 IP address blocks: 103.102.36.0/23 maxlen: 24 2001:def:8000::/48 maxlen: 48 2001:def:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CA6, serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Validity Not Before: Nov 14 18:38:17 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45d2a-f4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:2b:6f:d9:f0:68:7b:24:e4:3a:76:96:88: dc:fa:07:74:5c:f7:a5:e3:1f:73:3c:20:82:56:1e: e4:03:e5:21:b3:48:e6:96:f7:b1:a1:04:c6:97:da: bf:f1:2b:5e:c6:09:50:5f:85:7e:79:75:2f:d2:92: dd:67:6e:77:ba:45:14:0c:08:62:93:6d:09:04:7f: 69:36:aa:81:7d:fd:57:2b:04:4e:7a:ef:7e:87:9c: 45:55:d7:34:a6:42:1a:95:64:8b:36:18:64:b8:0d: f9:2c:a5:f8:0e:a0:35:4a:31:cf:90:96:b8:12:63: fd:fb:c3:1d:58:18:06:68:f5:a5:38:e6:63:97:ea: 6c:3f:4e:88:cb:3a:42:33:f7:dc:c0:af:26:c2:2f: 11:c6:05:bf:0b:a9:0c:53:41:de:9d:9c:8f:ab:8f: 4e:ea:50:db:a4:90:c7:b7:9a:cb:b7:25:43:9c:cc: bf:9d:46:77:7d:04:fe:c2:cc:4b:0e:f3:a0:8a:6d: 2a:a4:1d:e6:de:b3:57:e8:8f:3e:9d:a4:c2:e9:b2: b5:c5:c9:79:04:b6:c4:bf:20:b3:0a:d3:7e:2a:22: e3:10:ba:7e:4c:f9:f3:89:e6:65:67:93:76:bc:49: 74:96:4b:23:e3:11:3a:45:4c:43:82:9b:88:74:4e: 88:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6E:9E:B8:74:21:F5:2C:33:F5:A9:72:FE:92:7C:43:AF:65:6E:FC X509v3 Authority Key Identifier: keyid:96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/CF0AE642EBA711EA8980FC11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.102.36.0/23 IPv6: 2001:def:8000::/47 Signature Algorithm: sha256WithRSAEncryption 60:f4:29:53:99:38:d0:18:a3:1c:9a:23:2e:22:57:0b:f7:80: 8e:b0:9b:9e:c0:a8:aa:d0:ce:38:9e:5e:21:24:85:39:9f:27: 0e:d2:66:60:3f:6b:96:c7:1e:c5:89:3d:48:81:de:55:49:8f: 98:30:53:b4:1e:de:28:a1:74:9e:dc:b4:b5:7e:f6:1d:8b:a7: 91:5a:5b:ae:e4:4b:dd:48:e2:53:b8:50:c2:a1:3e:ef:4d:eb: 79:50:f1:6f:9f:f0:5d:8f:ac:dd:b6:72:0e:8f:79:ce:78:93: 2b:4f:15:d3:3a:19:eb:43:fd:2c:14:6d:e1:70:68:15:2d:ae: 4c:ec:da:58:8d:b5:24:79:1b:ff:8c:23:60:73:5d:d5:3c:82: 71:0c:6e:55:20:5c:37:fc:79:22:e9:e6:67:8a:ce:f5:a2:6e: 9b:43:b5:5c:2e:11:47:da:55:0d:31:a5:3b:56:62:60:fd:a5: 38:42:6a:ad:cd:0c:cc:8a:b5:45:1b:23:68:e6:b3:db:eb:f9: c4:8d:7c:15:ef:df:58:dd:b9:e0:60:06:3c:15:3d:ca:02:07: 90:cc:d8:80:62:3c:63:4b:c6:de:4f:89:e6:d7:4c:fa:b6:14: 05:bb:63:39:ae:08:d8:ec:e6:8c:0d:fb:62:14:ea:5a:7e:80: 50:32:c0:97 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDQTYxMTAvBgNVBAUTKDk2RjgxN0JENDA3MEI1Q0MxOUEwQjUzOTNENTVCRTc3 Mzk4MEE4MTAwHhcNMjUxMTE0MTgzODE3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWQyYS1mNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1U0rb9nwaHsk5Dp2lojc+gd0XPel4x9zPCCCVh7kA+Uhs0jmlvexoQTGl9q/ 8StexglQX4V+eXUv0pLdZ253ukUUDAhik20JBH9pNqqBff1XKwROeu9+h5xFVdc0 pkIalWSLNhhkuA35LKX4DqA1SjHPkJa4EmP9+8MdWBgGaPWlOOZjl+psP06IyzpC M/fcwK8mwi8RxgW/C6kMU0HenZyPq49O6lDbpJDHt5rLtyVDnMy/nUZ3fQT+wsxL DvOgim0qpB3m3rNX6I8+naTC6bK1xcl5BLbEvyCzCtN+KiLjELp+TPnzieZlZ5N2 vEl0lksj4xE6RUxDgpuIdE6IUQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFpunrh0 IfUsM/Wpcv6SfEOvZW78MB8GA1UdIwQYMBaAFJb4F71AcLXMGaC1OT1Vvnc5gKgQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOENBNi85QkQ2NDA1NjMy MDYxMUVBQTJGNkIzMzJDNEY5QUUwMi9sdmdYdlVCd3Rjd1pvTFU1UFZXLWR6bUFx QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2Z1h2VUJ3dGN3Wm9MVTVQVlctZHptQXFCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhDQTYvOUJENjQwNTYzMjA2MTFFQUEyRjZCMzMyQzRGOUFFMDIvQ0YwQUU2NDJF QkE3MTFFQTg5ODBGQzExQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ2YkMA8EAgACMAkDBwEgAQ3vgAAwDQYJKoZIhvcNAQELBQADggEB AGD0KVOZONAYoxyaIy4iVwv3gI6wm57AqKrQzjieXiEkhTmfJw7SZmA/a5bHHsWJ PUiB3lVJj5gwU7Qe3iihdJ7ctLV+9h2Lp5FaW67kS91I4lO4UMKhPu9N63lQ8W+f 8F2PrN22cg6Pec54kytPFdM6GetD/SwUbeFwaBUtrkzs2liNtSR5G/+MI2BzXdU8 gnEMblUgXDf8eSLp5meKzvWibptDtVwuEUfaVQ0xpTtWYmD9pThCaq3NDMyKtUUb I2jms9vr+cSNfBXv31jdueBgBjwVPcoCB5DM2IBiPGNLxt5PiebXTPq2FAW7Yzmu CNjs5owN+2IU6lp+gFAywJc= -----END CERTIFICATE-----Generated at Mon Mar 2 20:37:42 2026 by rpki-client