$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa File: 9ED423000B1211F08F4E1E7EC4F9AE02.roa (raw, json) Hash identifier: ORf56ozU5OuuYhJ3jJBGO/DKLOqT1LcBoA7dCCaBtMw= Subject key identifier: E1:AE:FF:A2:36:3F:0D:12:F0:61:63:CA:6B:D9:C2:3E:7D:5B:6B:24 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 0482 Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:03 +0000 ROA not before: Thu 08 Jan 2026 05:54:45 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 55933 IP address blocks: 103.151.4.0/23 maxlen: 23 103.151.5.0/24 maxlen: 24 103.178.56.0/23 maxlen: 23 103.178.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1154 (0x482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1, serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Jan 8 05:54:45 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a486d7-2f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4f:3b:06:1a:c8:5c:a5:da:6c:25:64:90:60: a2:d2:76:07:89:3a:7b:84:7b:d9:a2:04:4f:01:56: 58:50:a7:35:31:73:01:99:e9:a5:de:ea:57:e7:9d: 74:49:e3:50:af:c2:7a:50:07:ae:fe:6c:70:5a:73: 08:0d:19:b6:eb:66:8b:66:00:20:f9:ee:08:29:80: b9:4e:dd:a3:7c:cd:58:53:b2:36:64:5a:a6:84:b4: 8f:a3:47:73:42:e5:8d:31:74:a9:f6:09:88:8a:56: 49:24:d3:4a:f6:97:9b:1e:cd:b2:93:51:3a:a7:d9: 44:0d:b8:f3:c8:7e:55:84:c5:33:8b:c3:2c:db:04: 4f:e4:d8:fa:25:a5:ed:13:b2:e4:2f:37:8e:a2:a3: 5e:a4:54:ec:c9:60:6b:94:c1:0f:2c:96:c1:bb:46: 04:6c:ad:c2:b4:ea:a8:ab:7b:64:83:a3:d7:8a:4c: 80:3e:69:13:73:1d:f1:3d:62:c0:f0:95:4b:2c:bb: aa:e0:ae:21:82:cc:72:e3:f9:93:ca:c3:2b:6a:1e: 7b:46:2a:a7:f5:aa:e8:04:41:3e:35:ea:1b:60:dd: bc:13:ff:1e:15:89:1a:b1:d4:19:a8:b0:ff:69:ee: 58:a4:de:81:95:d8:bb:f8:25:72:c1:b1:94:39:32: 06:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AE:FF:A2:36:3F:0D:12:F0:61:63:CA:6B:D9:C2:3E:7D:5B:6B:24 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/9ED423000B1211F08F4E1E7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.4.0/23 103.178.56.0/23 Signature Algorithm: sha256WithRSAEncryption 19:de:b8:c9:56:f9:88:86:a8:8d:a3:a4:7c:2a:27:37:3b:00: 97:4f:32:a7:07:e0:af:c4:c6:69:2d:9c:e9:e8:d6:ba:b4:48: f6:1b:29:9e:e9:11:6b:6e:fd:6b:fa:df:3c:ba:62:59:cc:2f: d7:1e:31:ea:d2:38:17:2e:f8:25:b5:20:15:03:68:ea:c0:ff: a6:19:ba:6b:dd:0a:d0:dd:c3:8d:f0:90:a9:d1:51:5b:22:1e: e5:dc:2e:e1:3b:2a:bb:96:c6:88:db:76:e4:33:fe:87:81:26: 1d:97:08:1e:94:77:cf:0a:80:33:6f:85:47:45:7d:ff:f3:a4: ac:8d:a4:b4:b8:11:5c:f0:42:55:3e:3c:58:2b:d1:6a:e9:c2: b6:a4:e1:c4:12:a9:ff:6f:04:74:3c:72:0b:28:bc:a7:f6:1c: 82:d4:aa:7f:58:d5:d2:b7:91:07:d5:f4:46:a2:cf:d4:68:de: e8:44:71:fa:b0:23:3a:56:f1:a7:5f:fc:a1:8d:e5:a0:6b:42: 98:2c:9d:2c:ec:13:a0:51:7a:ed:0f:f6:c7:6d:46:54:83:44: 54:8e:a9:a2:90:c8:4d:76:bc:7f:61:23:55:96:9b:c7:4a:b3: 9e:ff:50:38:00:3d:5c:1f:33:27:61:24:a5:4b:a8:7f:04:6e: 60:3a:86:42 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjYwMTA4MDU1NDQ1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZkNy0yZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlk87BhrIXKXabCVkkGCi0nYHiTp7hHvZogRPAVZYUKc1MXMBmeml3upX5510 SeNQr8J6UAeu/mxwWnMIDRm262aLZgAg+e4IKYC5Tt2jfM1YU7I2ZFqmhLSPo0dz QuWNMXSp9gmIilZJJNNK9pebHs2yk1E6p9lEDbjzyH5VhMUzi8Ms2wRP5Nj6JaXt E7LkLzeOoqNepFTsyWBrlMEPLJbBu0YEbK3CtOqoq3tkg6PXikyAPmkTcx3xPWLA 8JVLLLuq4K4hgsxy4/mTysMrah57Riqn9aroBEE+NeobYN28E/8eFYkasdQZqLD/ ae5YpN6Bldi7+CVywbGUOTIGMwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOGu/6I2 Pw0S8GFjymvZwj59W2skMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvOUVENDIzMDAw QjEyMTFGMDhGNEUxRTdFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ5cEAwQBZ7I4MA0GCSqGSIb3DQEBCwUAA4IBAQAZ3rjJVvmIhqiN o6R8Kic3OwCXTzKnB+CvxMZpLZzp6Na6tEj2Gyme6RFrbv1r+t88umJZzC/XHjHq 0jgXLvgltSAVA2jqwP+mGbpr3QrQ3cON8JCp0VFbIh7l3C7hOyq7lsaI23bkM/6H gSYdlwgelHfPCoAzb4VHRX3/86SsjaS0uBFc8EJVPjxYK9Fq6cK2pOHEEqn/bwR0 PHILKLyn9hyC1Kp/WNXSt5EH1fRGos/UaN7oRHH6sCM6VvGnX/yhjeWga0KYLJ0s 7BOgUXrtD/bHbUZUg0RUjqmikMhNdrx/YSNVlpvHSrOe/1A4AD1cHzMnYSSlS6h/ BG5gOoZC -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:41 2026 by rpki-client