$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa File: 8CD5FC2253A011EDAC40531BC4F9AE02.roa (raw, json) Hash identifier: 0TEewgELmV5zVXvWVafqWeimsKRDC+bmdch2A5FjSG8= Subject key identifier: A4:22:72:FF:68:60:54:F4:2F:18:A2:90:34:80:12:42:CC:E4:50:F1 Certificate issuer: /CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Certificate serial: 0280 Authority key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:18:55 +0000 ROA not before: Mon 27 Oct 2025 03:46:14 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150379 IP address blocks: 103.23.254.0/23 maxlen: 24 2001:df1:6d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBB1, serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Validity Not Before: Oct 27 03:46:14 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43cbf-ba01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c9:0a:9c:db:1c:41:f3:0e:b1:fa:ba:a5:1e: 20:09:b4:68:ce:c1:7e:33:68:1f:b0:40:2e:60:f3: 10:83:06:df:af:a5:dd:9e:e5:0d:1c:55:70:0e:48: 8b:67:87:5d:22:e5:60:b6:86:79:5b:10:c9:d6:fd: 0d:ed:c7:77:b7:29:1e:1a:6d:6a:78:b2:4a:dd:de: ce:c3:58:42:c7:d3:a4:28:67:9c:b2:70:da:15:0e: f9:63:11:29:1c:58:d4:b4:6e:9d:e3:05:dd:af:8a: 53:3d:86:e2:2c:76:df:a3:a4:af:c6:f9:ec:f8:94: 69:ec:55:96:74:be:51:ad:3b:42:fa:3d:72:4c:f0: 95:b2:08:99:19:f2:c8:58:8e:ba:13:f8:30:e2:b5: 6d:5e:0a:60:51:ca:24:26:24:eb:00:b4:d2:6f:0c: ce:77:6a:ee:d7:76:16:84:88:f3:5a:ff:4a:1a:7c: 58:0f:03:f9:2e:7d:e4:f6:bd:b9:e3:99:ce:c6:56: 54:43:d6:1a:10:48:84:63:e4:ba:c4:c1:f6:d0:64: be:13:c5:a1:a8:dc:2c:50:92:fc:b5:cc:27:84:ca: 58:f2:0a:54:a7:de:56:2d:d6:67:da:1b:73:37:73: c8:20:64:ea:09:f9:2c:17:83:dc:e6:79:e4:15:4a: a7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:22:72:FF:68:60:54:F4:2F:18:A2:90:34:80:12:42:CC:E4:50:F1 X509v3 Authority Key Identifier: keyid:EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.23.254.0/23 IPv6: 2001:df1:6d40::/48 Signature Algorithm: sha256WithRSAEncryption 80:73:30:50:f0:c3:7a:d1:1f:fb:6e:36:50:f4:cc:87:f8:30: e0:72:83:f6:33:f1:7a:52:b5:d9:51:fc:2a:ac:c6:d8:ed:cb: d2:d3:41:13:cf:b9:9f:ac:95:ec:6a:2b:be:6a:b8:bf:e9:be: 2b:b3:4b:fc:91:67:1f:05:5b:7f:b1:28:c6:0f:55:57:55:91: 5f:0d:ce:8c:2d:a0:26:66:f8:37:7d:a8:69:38:12:bc:b5:f6: 4d:11:48:d5:de:4a:68:d4:06:ee:65:6f:55:c3:5d:35:b0:c6: 5d:17:b6:67:b3:1c:53:93:fe:e3:e2:ea:da:b8:6a:8b:25:48: 99:25:94:53:7e:ea:ca:a0:5e:f8:99:a4:b7:a9:e3:50:84:64: be:13:24:6f:ee:0b:9d:1e:a5:27:74:73:86:fe:53:c5:a6:a6: 0d:c1:3a:08:56:a5:90:3c:ef:fd:b4:69:7d:1d:fc:aa:c5:91: 88:6a:ca:93:ef:6c:a7:b7:5c:a4:ad:11:2b:d0:b8:ae:89:de: f8:0a:03:aa:78:67:c2:4a:e3:0d:4a:94:cf:8d:e1:ae:56:bd: b2:28:a1:bc:10:60:a1:64:ae:9e:ac:52:27:d4:7f:9e:20:b4: ab:0d:06:d0:22:35:86:8e:49:d9:7f:89:70:18:ab:f5:43:75: e1:5c:db:20 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCQjExMTAvBgNVBAUTKEVBNDE5QTc5NjI5OTYyNUEwNzRBNjVCN0NBQ0VGRjE4 QjgwNjZDOEIwHhcNMjUxMDI3MDM0NjE0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2NiZi1iYTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMkKnNscQfMOsfq6pR4gCbRozsF+M2gfsEAuYPMQgwbfr6XdnuUNHFVwDkiL Z4ddIuVgtoZ5WxDJ1v0N7cd3tykeGm1qeLJK3d7Ow1hCx9OkKGecsnDaFQ75YxEp HFjUtG6d4wXdr4pTPYbiLHbfo6Svxvns+JRp7FWWdL5RrTtC+j1yTPCVsgiZGfLI WI66E/gw4rVtXgpgUcokJiTrALTSbwzOd2ru13YWhIjzWv9KGnxYDwP5Ln3k9r25 45nOxlZUQ9YaEEiEY+S6xMH20GS+E8WhqNwsUJL8tcwnhMpY8gpUp95WLdZn2htz N3PIIGTqCfksF4Pc5nnkFUqn6QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKQicv9o YFT0LxiikDSAEkLM5FDxMB8GA1UdIwQYMBaAFOpBmnlimWJaB0plt8rO/xi4BmyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJCMS82N0JFQTQwNjUz OUMxMUVEQUUwMDRFMTdDNEY5QUUwMi82a0dhZVdLWllsb0hTbVczeXM3X0dMZ0di SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZrR2FlV0taWWxvSFNtVzN5czdfR0xnR2JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCQjEvNjdCRUE0MDY1MzlDMTFFREFFMDA0RTE3QzRGOUFFMDIvOENENUZDMjI1 M0EwMTFFREFDNDA1MzFCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZxf+MA8EAgACMAkDBwAgAQ3xbUAwDQYJKoZIhvcNAQELBQADggEB AIBzMFDww3rRH/tuNlD0zIf4MOByg/Yz8XpStdlR/Cqsxtjty9LTQRPPuZ+slexq K75quL/pviuzS/yRZx8FW3+xKMYPVVdVkV8NzowtoCZm+Dd9qGk4Ery19k0RSNXe SmjUBu5lb1XDXTWwxl0XtmezHFOT/uPi6tq4aoslSJkllFN+6sqgXviZpLep41CE ZL4TJG/uC50epSd0c4b+U8Wmpg3BOghWpZA87/20aX0d/KrFkYhqypPvbKe3XKSt ESvQuK6J3vgKA6p4Z8JK4w1KlM+N4a5WvbIoobwQYKFkrp6sUifUf54gtKsNBtAi NYaOSdl/iXAYq/VDdeFc2yA= -----END CERTIFICATE-----Generated at Mon Mar 2 11:58:06 2026 by rpki-client