$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4BD764E8AA6511EC9A354C33C4F9AE02.roa File: 4BD764E8AA6511EC9A354C33C4F9AE02.roa (raw, json) Hash identifier: xV0Ej2ei7P3BzqT9DGunMw06az/Ps86Fi6yisNe6riM= Subject key identifier: 27:08:65:26:6A:B8:36:36:79:71:ED:F2:B3:41:8E:88:BD:DF:50:96 Certificate issuer: /CN=A91BAE1C/serialNumber=E2E043A932ECE0439E2A8EF1DC4064D3214C27E6 Certificate serial: 0406 Authority key identifier: E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4BD764E8AA6511EC9A354C33C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:56:32 +0000 ROA not before: Sun 25 May 2025 01:07:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149649 IP address blocks: 103.184.94.0/23 maxlen: 23 103.184.94.0/24 maxlen: 24 103.184.95.0/24 maxlen: 24 2001:df0:8f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.crl rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE1C, serialNumber=E2E043A932ECE0439E2A8EF1DC4064D3214C27E6 Validity Not Before: May 25 01:07:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ff40-e113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:70:16:1e:49:bf:30:d1:f9:05:71:8b:d2:ac: b6:75:1f:65:77:d8:51:46:d4:70:c0:d5:73:24:a0: 10:74:2a:ca:29:4c:b3:cb:dc:ca:e8:26:31:b8:48: 03:96:e4:af:fa:60:49:b3:9e:b3:35:eb:02:e7:11: e3:4a:01:a2:33:9d:35:3c:07:34:53:4d:2b:12:6c: ea:75:dc:7b:dc:22:89:8b:6a:c7:62:db:c3:fc:33: 68:d4:b5:ce:10:2a:67:a7:17:2d:8f:30:31:a6:3e: ad:7d:fd:77:43:de:67:07:3e:71:e9:8f:09:c0:03: 78:9a:1b:2a:88:78:ae:9c:80:53:ab:c6:76:b5:79: 9f:e6:51:87:08:3d:60:a4:06:a3:3b:0d:57:04:47: b8:cc:1c:9d:a8:7b:7e:36:28:19:a1:56:37:cf:64: 58:58:58:ba:1d:41:53:6b:21:c7:d5:4e:c9:99:37: a4:67:87:27:f9:cc:18:cb:9f:f2:a7:37:4f:89:18: 02:14:f4:cf:ac:91:5b:07:f1:3a:bf:0a:58:5e:a3: ab:65:3c:62:c0:48:45:4a:13:4e:48:41:60:24:3c: 47:7e:13:e2:98:a4:3c:47:d9:3c:42:59:89:49:83: f4:a9:80:8e:e2:33:81:35:6c:64:60:d4:a2:c9:cc: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:08:65:26:6A:B8:36:36:79:71:ED:F2:B3:41:8E:88:BD:DF:50:96 X509v3 Authority Key Identifier: keyid:E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4BD764E8AA6511EC9A354C33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.184.94.0/23 IPv6: 2001:df0:8f40::/48 Signature Algorithm: sha256WithRSAEncryption 3b:71:84:5b:17:0a:6b:ae:93:ac:64:73:af:21:8f:ef:65:b2: 61:e4:82:16:7e:46:62:42:6f:ad:37:0a:1c:aa:7f:36:bd:e4: 66:28:ab:94:d6:be:33:fa:27:7c:b8:19:f3:95:8f:fe:76:59: 8b:36:11:7c:b7:11:d7:78:b2:02:8e:7b:fe:87:0b:2e:74:a0: 7e:5d:80:70:39:a4:4c:c2:f2:1d:ec:b9:54:ac:21:d9:c0:1e: 25:83:cd:7f:df:92:72:3f:7c:d8:64:2e:57:4d:fb:51:00:cc: f3:11:ab:3e:ae:e6:ac:20:3e:da:7e:87:7b:74:95:1b:c1:7e: 06:1a:03:66:27:f6:3e:ba:f5:e0:92:91:59:f9:1e:37:f4:20: 98:ff:01:48:b0:f8:25:24:b9:95:69:43:fa:5c:ee:33:f3:2d: 41:d7:34:e6:eb:88:fd:be:bd:75:d9:be:b7:d7:ca:d6:f7:12: 3b:e1:37:bc:48:48:ce:67:67:01:fa:7b:98:7b:b2:3a:d9:dc: 78:a9:91:4a:bb:65:4c:d6:33:74:6b:6c:ef:e9:b2:d0:ea:82: 80:e9:1a:cd:1c:92:1e:55:67:ce:de:40:ae:c3:07:f5:c3:b0: a4:fa:87:4c:6d:f2:d4:5f:f7:f2:20:d1:47:db:f0:07:3e:fe: 38:21:9e:f4 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMUMxMTAvBgNVBAUTKEUyRTA0M0E5MzJFQ0UwNDM5RTJBOEVGMURDNDA2NEQz MjE0QzI3RTYwHhcNMjUwNTI1MDEwNzE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmY0MC1lMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnAWHkm/MNH5BXGL0qy2dR9ld9hRRtRwwNVzJKAQdCrKKUyzy9zK6CYxuEgD luSv+mBJs56zNesC5xHjSgGiM501PAc0U00rEmzqddx73CKJi2rHYtvD/DNo1LXO ECpnpxctjzAxpj6tff13Q95nBz5x6Y8JwAN4mhsqiHiunIBTq8Z2tXmf5lGHCD1g pAajOw1XBEe4zBydqHt+NigZoVY3z2RYWFi6HUFTayHH1U7JmTekZ4cn+cwYy5/y pzdPiRgCFPTPrJFbB/E6vwpYXqOrZTxiwEhFShNOSEFgJDxHfhPimKQ8R9k8QlmJ SYP0qYCO4jOBNWxkYNSiyczj4QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCcIZSZq uDY2eXHt8rNBjoi931CWMB8GA1UdIwQYMBaAFOLgQ6ky7OBDniqO8dxAZNMhTCfm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxQy9GMDc0NzNBRUFB NjIxMUVDQjhFMTE4MzJDNEY5QUUwMi80dUJEcVRMczRFT2VLbzd4M0VCazB5Rk1K LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1QkRxVExzNEVPZUtvN3gzRUJrMHlGTUotWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFFMUMvRjA3NDczQUVBQTYyMTFFQ0I4RTExODMyQzRGOUFFMDIvNEJENzY0RThB QTY1MTFFQzlBMzU0QzMzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7heMA8EAgACMAkDBwAgAQ3wj0AwDQYJKoZIhvcNAQELBQADggEB ADtxhFsXCmuuk6xkc68hj+9lsmHkghZ+RmJCb603Chyqfza95GYoq5TWvjP6J3y4 GfOVj/52WYs2EXy3Edd4sgKOe/6HCy50oH5dgHA5pEzC8h3suVSsIdnAHiWDzX/f knI/fNhkLldN+1EAzPMRqz6u5qwgPtp+h3t0lRvBfgYaA2Yn9j669eCSkVn5Hjf0 IJj/AUiw+CUkuZVpQ/pc7jPzLUHXNObriP2+vXXZvrfXytb3EjvhN7xISM5nZwH6 e5h7sjrZ3HipkUq7ZUzWM3RrbO/pstDqgoDpGs0ckh5VZ87eQK7DB/XDsKT6h0xt 8tRf9/Ig0Ufb8Ac+/jghnvQ= -----END CERTIFICATE-----Generated at Mon Mar 2 08:38:48 2026 by rpki-client