$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa File: DB63CF9A011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: KIcJRDk3S7+rRmk7CaiKtvN5123l+l7hzY10/IQxIQ8= Subject key identifier: BE:98:C9:9C:97:8A:85:E7:81:09:81:AE:F1:FF:EA:93:77:11:AB:7B Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0D1A Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:01:50 +0000 ROA not before: Wed 04 Jun 2025 18:41:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10143 IP address blocks: 43.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE, serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 4 18:41:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a470fe-4398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5d:7c:e0:9b:ad:85:9d:2f:ea:48:f9:af:58: 89:74:36:00:2d:6c:cf:e3:b6:6f:ca:01:e8:14:27: 56:ee:1d:39:5e:f2:b7:7a:ae:5d:11:9d:52:d3:81: f4:f2:b3:69:04:bd:92:b3:27:7f:95:e3:f9:86:fb: 00:bb:f0:ed:9a:f3:28:a9:87:f8:55:12:be:42:38: a2:00:58:a0:c0:43:6a:ab:af:26:cc:3d:13:2c:dd: d8:b4:da:66:4b:67:9d:ce:0e:94:0e:05:f4:cc:4e: 20:77:88:03:35:b6:bb:73:61:2e:ca:81:06:59:d3: b7:72:07:6b:8c:d3:60:28:75:17:41:0e:26:51:a4: 1e:53:6e:8c:53:4c:27:e4:86:b3:d2:80:5e:4a:b4: f2:06:2a:f3:cb:02:04:21:cc:4b:8d:d0:f5:db:34: 47:a2:6b:96:f3:39:6a:ff:68:e5:9d:34:11:2b:f6: f2:ee:0a:cb:28:b3:14:e0:e7:96:d5:46:e2:d9:95: 5e:3d:d1:f6:af:d7:27:3c:41:de:3e:8f:c2:a9:5f: f4:c4:a1:47:b1:ec:1f:9f:f8:09:87:06:47:b1:78: c6:f4:b9:5b:63:8d:b5:99:a4:2c:3d:bc:0f:8d:f4: 1b:7f:40:bb:79:15:e9:47:db:23:83:91:42:76:12: 01:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:98:C9:9C:97:8A:85:E7:81:09:81:AE:F1:FF:EA:93:77:11:AB:7B X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:de:1a:d2:b7:fd:be:a4:d3:f1:00:f7:f6:84:4e:1b:be:df: 75:b5:07:9e:63:c2:9e:1f:c8:29:d9:df:c7:e5:8f:a8:f8:69: b4:c4:d9:ae:93:60:43:15:41:b2:f2:0b:ff:72:05:f5:53:38: 2f:b4:92:81:89:22:31:57:71:3d:c3:28:16:01:2b:3c:be:39: 78:1e:d8:5f:be:9f:49:1a:62:3d:c6:9a:d0:66:ff:63:f4:8c: 75:a7:3a:b3:e3:7b:7e:ab:df:9d:29:33:e8:00:09:5d:48:ec: e2:4c:a4:df:50:f8:b9:76:33:03:ae:ea:a5:11:24:97:bf:e5: 93:9f:5c:90:69:2f:3d:5a:28:34:30:f9:83:5d:87:4c:7f:21: d4:8b:71:cb:83:7e:6e:d9:03:09:db:99:f0:a8:4b:39:55:73: 55:1b:15:55:5c:cb:6b:9f:b0:55:99:b2:d8:b5:ac:4b:8e:ec: 94:32:3f:53:7c:22:c1:3e:68:f8:2a:4f:d8:dd:7d:f6:d7:c5: a0:90:e8:fe:c9:2d:59:23:68:d6:70:34:76:e3:ed:f7:66:78: cb:9a:5f:10:40:f7:83:a5:d9:f3:7e:df:1f:5b:39:16:8c:de: f5:a5:37:61:e6:e3:b3:0e:87:44:f9:01:a7:d1:a7:27:7a:1f: 74:0d:5e:82 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjUwNjA0MTg0MTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBmZS00Mzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11184JuthZ0v6kj5r1iJdDYALWzP47ZvygHoFCdW7h05XvK3eq5dEZ1S04H0 8rNpBL2Ssyd/leP5hvsAu/DtmvMoqYf4VRK+QjiiAFigwENqq68mzD0TLN3YtNpm S2edzg6UDgX0zE4gd4gDNba7c2EuyoEGWdO3cgdrjNNgKHUXQQ4mUaQeU26MU0wn 5Iaz0oBeSrTyBirzywIEIcxLjdD12zRHomuW8zlq/2jlnTQRK/by7grLKLMU4OeW 1Ubi2ZVePdH2r9cnPEHePo/CqV/0xKFHsewfn/gJhwZHsXjG9LlbY421maQsPbwP jfQbf0C7eRXpR9sjg5FCdhIBAQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL6YyZyX ioXngQmBrvH/6pN3Eat7MB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREI2M0NGOUEw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+9mMA0GCSqGSIb3DQEBCwUAA4IBAQCf3hrSt/2+pNPxAPf2hE4b vt91tQeeY8KeH8gp2d/H5Y+o+Gm0xNmuk2BDFUGy8gv/cgX1UzgvtJKBiSIxV3E9 wygWASs8vjl4Hthfvp9JGmI9xprQZv9j9Ix1pzqz43t+q9+dKTPoAAldSOziTKTf UPi5djMDruqlESSXv+WTn1yQaS89Wig0MPmDXYdMfyHUi3HLg35u2QMJ25nwqEs5 VXNVGxVVXMtrn7BVmbLYtaxLjuyUMj9TfCLBPmj4Kk/Y3X3218WgkOj+yS1ZI2jW cDR24+33ZnjLml8QQPeDpdnzft8fWzkWjN71pTdh5uOzDodE+QGn0acneh90DV6C -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:00 2026 by rpki-client