$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa File: 8C2FEEE0708811ED95A9DC75C4F9AE02.roa (raw, json) Hash identifier: 1zVW9OK/rYgrfqL/Kah7ClFS1DlkC9pX1ORA7B+nV6E= Subject key identifier: FB:B4:89:A9:98:95:CA:6E:DF:00:CA:76:45:C3:08:3D:2D:76:96:0D Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 10C7 Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:21:04 +0000 ROA not before: Mon 12 Jan 2026 17:14:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 24378 IP address blocks: 103.26.20.0/24 maxlen: 24 103.26.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4295 (0x10c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC, serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: Jan 12 17:14:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47580-42d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:75:04:14:c9:4f:60:bd:38:97:21:49:52: ee:2c:ff:f9:94:32:25:89:b9:a9:06:56:a9:6b:1b: f9:e7:94:a2:cf:66:b3:1f:c9:aa:73:4b:3b:34:50: e9:f7:5d:3d:c7:58:4a:0f:84:34:6d:57:8f:d5:22: 76:05:4f:41:92:09:c0:61:99:51:34:ed:5b:3d:24: dd:bb:16:0f:84:50:c7:59:e2:8c:2e:c0:6c:12:9c: 9f:d5:33:a2:b7:f5:9d:ef:33:3d:27:0b:ad:69:b7: cf:d0:2e:42:64:c2:c7:e0:ef:38:6d:6e:b4:95:9f: d2:7e:cd:ea:7f:36:97:84:17:c4:dc:b5:f3:25:5e: b2:66:48:52:ac:cc:6e:61:7d:01:88:30:ea:cd:c9: d3:79:4e:78:e1:db:28:14:dd:e0:7a:cc:55:12:7d: bb:c7:c7:0c:94:ca:28:04:0f:f4:65:a8:78:a1:b0: 79:de:d1:9c:a5:be:da:78:fc:b3:e3:a7:be:96:30: 0c:10:90:e4:03:78:3b:79:c4:ae:47:bf:3f:d1:97: 1a:3e:96:10:55:e0:e5:91:eb:32:d8:53:01:d5:8f: 02:ea:b9:9a:8c:6c:67:90:a4:76:7f:58:e5:8f:54: 06:88:90:f0:ac:0c:23:c1:9f:2c:fe:de:fb:71:c6: e7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B4:89:A9:98:95:CA:6E:DF:00:CA:76:45:C3:08:3D:2D:76:96:0D X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.26.20.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:1b:d0:00:67:c2:ac:9a:b4:75:80:45:7c:d3:9d:a8:60:02: af:27:f3:7a:f0:68:d8:fd:83:7f:01:8a:1f:7f:e3:6c:9b:e6: 6f:9c:52:99:6d:3f:40:d9:90:f0:0b:8e:8b:6f:54:99:67:33: 35:95:db:b6:e5:dc:98:d4:fe:2e:65:45:87:a5:ff:e5:d1:fd: 7b:1a:a0:20:ca:2a:75:b7:8e:35:5e:75:77:60:9e:c4:e5:9e: e9:2c:be:af:59:cf:b4:4f:9f:2a:71:21:5e:fb:42:2d:43:96: 5d:c5:40:0d:50:cf:cd:8a:90:07:37:48:02:36:fc:77:db:fc: 0f:ef:ba:bf:3b:3b:9a:0e:82:a2:52:5b:94:d2:43:ad:bb:66: cc:94:e1:03:3d:f8:41:c0:46:dc:31:7f:e8:f7:78:e0:d3:72: ce:96:be:c5:1e:dc:b3:85:61:66:c2:2b:c5:58:82:87:c0:30: c0:16:ea:cd:ba:07:6f:2d:05:1d:c6:a7:61:23:6d:a5:83:bc: 52:0b:7d:07:ed:9c:ce:e6:75:d4:6d:61:df:66:a7:51:c0:d7: 39:66:fe:d1:8d:96:1a:c9:12:5f:3a:6b:8d:f1:2e:11:35:1a: 7b:de:c3:46:c2:61:e2:d6:7f:94:1f:fd:70:59:7d:05:9f:15: 15:9f:a6:91 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjYwMTEyMTcxNDU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzU4MC00MmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX91BBTJT2C9OJchSVLuLP/5lDIlibmpBlapaxv555Siz2azH8mqc0s7NFDp 9109x1hKD4Q0bVeP1SJ2BU9BkgnAYZlRNO1bPSTduxYPhFDHWeKMLsBsEpyf1TOi t/Wd7zM9JwutabfP0C5CZMLH4O84bW60lZ/Sfs3qfzaXhBfE3LXzJV6yZkhSrMxu YX0BiDDqzcnTeU544dsoFN3gesxVEn27x8cMlMooBA/0Zah4obB53tGcpb7aePyz 46e+ljAMEJDkA3g7ecSuR78/0ZcaPpYQVeDlkesy2FMB1Y8C6rmajGxnkKR2f1jl j1QGiJDwrAwjwZ8s/t77ccbn5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPu0iamY lcpu3wDKdkXDCD0tdpYNMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxQkMvODk2QzZDNDg0NkNFMTFFOTkyODUwQTNDQzRGOUFFMDIvOEMyRkVFRTA3 MDg4MTFFRDk1QTlEQzc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxoUMA0GCSqGSIb3DQEBCwUAA4IBAQAvG9AAZ8KsmrR1gEV8052o YAKvJ/N68GjY/YN/AYoff+Nsm+ZvnFKZbT9A2ZDwC46Lb1SZZzM1ldu25dyY1P4u ZUWHpf/l0f17GqAgyip1t441XnV3YJ7E5Z7pLL6vWc+0T58qcSFe+0ItQ5ZdxUAN UM/NipAHN0gCNvx32/wP77q/OzuaDoKiUluU0kOtu2bMlOEDPfhBwEbcMX/o93jg 03LOlr7FHtyzhWFmwivFWIKHwDDAFurNugdvLQUdxqdhI22lg7xSC30H7ZzO5nXU bWHfZqdRwNc5Zv7RjZYayRJfOmuN8S4RNRp73sNGwmHi1n+UH/1wWX0FnxUVn6aR -----END CERTIFICATE-----Generated at Mon Mar 2 12:36:20 2026 by rpki-client