$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa File: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (raw, json) Hash identifier: V3KGZPnIaGHG9fDhQyXWDDAGsT4VUgLiBOpTb4Gj+iY= Subject key identifier: 13:BA:1F:C5:4A:E2:9A:3C:AC:34:03:06:25:8D:E0:EE:88:2D:86:10 Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 01CA Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:03:54 +0000 ROA not before: Thu 09 Oct 2025 04:32:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.172.192.0/24 maxlen: 24 2001:df2:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Oct 9 04:32:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4393a-d686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:9c:c6:71:e7:a0:85:3b:de:42:25:8d:5f: dd:0c:c6:83:bb:78:73:58:5f:45:60:28:d1:3c:e8: ac:97:49:30:3c:8b:84:25:96:9a:c5:3b:29:06:f6: da:16:0b:f8:67:03:dc:08:17:72:fc:b4:ac:d8:55: 33:6b:50:73:a6:7a:95:17:b3:c6:23:eb:8b:b1:2b: 3c:b4:95:e6:2d:d0:6d:1f:ab:3a:11:95:39:c1:69: 76:03:e4:b6:6d:0a:37:c0:f0:97:4f:71:49:cb:06: 35:19:a1:bd:1b:80:37:fb:cc:9b:18:d2:f4:e7:d9: 29:b7:4e:cc:4b:ac:b7:db:41:69:6a:f2:e4:45:cc: 1f:6f:4b:c3:1c:ac:73:bb:b0:ea:56:c6:43:b0:14: 0d:eb:38:6e:89:e2:20:b9:39:be:46:a3:13:b6:a3: 83:29:0e:70:b5:10:59:64:7c:55:07:70:ad:20:a9: 4f:82:f6:e0:5b:34:c3:d5:e4:fe:be:e0:cc:5c:53: 66:df:80:db:57:cb:57:68:a0:09:34:8e:d8:66:92: 9e:75:01:4b:79:10:01:ff:64:ed:c6:a9:50:be:ac: 66:8e:93:a4:42:e2:72:c6:79:e6:fc:af:47:38:7f: 05:d2:11:23:d2:57:78:d8:34:29:c5:63:90:89:54: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BA:1F:C5:4A:E2:9A:3C:AC:34:03:06:25:8D:E0:EE:88:2D:86:10 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.192.0/24 IPv6: 2001:df2:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 39:21:a4:dd:71:a7:55:da:5b:23:c1:9a:e7:39:e3:38:01:b3: 2a:76:07:fb:08:bf:c6:67:a1:d3:db:43:fe:3e:11:aa:ff:d4: 75:a8:5c:a6:4a:37:f5:3d:e1:2f:67:43:eb:6b:e5:fe:f0:ee: 95:c6:7e:82:ad:4c:b8:5b:62:3f:89:05:54:0e:2d:2d:ce:67: f2:18:d9:31:41:2f:28:d9:93:db:48:62:8c:0c:80:af:b9:60: a3:e4:48:1c:95:b8:fa:91:d8:ac:7f:32:03:3e:13:cc:28:47: 13:ac:6e:b2:db:19:ce:a3:3a:82:73:74:3b:2d:c7:64:19:96: ea:33:e0:22:7a:7a:ca:cc:ed:1b:67:19:8e:3d:b9:4a:08:67: d4:05:2c:7d:67:74:b4:04:e6:b9:5c:dd:99:0b:72:c2:2b:b0: 89:1b:13:5a:ff:da:e4:37:6c:cc:45:31:24:9e:36:11:d4:8a: 5c:fb:f7:20:b6:92:ae:03:dc:dd:60:02:3a:15:48:f2:bc:97: 85:06:7a:8c:78:9d:73:56:28:b7:5f:4d:13:f4:36:b3:c0:d9: 01:fb:ab:66:cb:22:fe:c4:e9:f0:4f:d4:5f:a2:2e:07:24:64: d1:a3:d1:44:cb:71:ec:43:16:48:8c:1f:4e:27:da:6e:45:74: 6c:04:f4:0f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUxMDA5MDQzMjUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzkzYS1kNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTacxnHnoIU73kIljV/dDMaDu3hzWF9FYCjRPOisl0kwPIuEJZaaxTspBvba Fgv4ZwPcCBdy/LSs2FUza1BzpnqVF7PGI+uLsSs8tJXmLdBtH6s6EZU5wWl2A+S2 bQo3wPCXT3FJywY1GaG9G4A3+8ybGNL059kpt07MS6y320FpavLkRcwfb0vDHKxz u7DqVsZDsBQN6zhuieIguTm+RqMTtqODKQ5wtRBZZHxVB3CtIKlPgvbgWzTD1eT+ vuDMXFNm34DbV8tXaKAJNI7YZpKedQFLeRAB/2TtxqlQvqxmjpOkQuJyxnnm/K9H OH8F0hEj0ld42DQpxWOQiVQA1wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBO6H8VK 4po8rDQDBiWN4O6ILYYQMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFCRkQvODk1QTQ5NTA2RDg5MTFFRTgyQTFGNjgwQzRGOUFFMDIvRTBFOUIxOTY2 RDhBMTFFRUIzM0ExRTgzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ6zAMA8EAgACMAkDBwAgAQ3y+MAwDQYJKoZIhvcNAQELBQADggEB ADkhpN1xp1XaWyPBmuc54zgBsyp2B/sIv8ZnodPbQ/4+Ear/1HWoXKZKN/U94S9n Q+tr5f7w7pXGfoKtTLhbYj+JBVQOLS3OZ/IY2TFBLyjZk9tIYowMgK+5YKPkSByV uPqR2Kx/MgM+E8woRxOsbrLbGc6jOoJzdDstx2QZluoz4CJ6esrM7RtnGY49uUoI Z9QFLH1ndLQE5rlc3ZkLcsIrsIkbE1r/2uQ3bMxFMSSeNhHUilz79yC2kq4D3N1g AjoVSPK8l4UGeox4nXNWKLdfTRP0NrPA2QH7q2bLIv7E6fBP1F+iLgckZNGj0UTL cexDFkiMH04n2m5FdGwE9A8= -----END CERTIFICATE-----Generated at Mon Mar 2 02:34:52 2026 by rpki-client