$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa File: 4450DA2C9D0311EF877CD229C4F9AE02.roa (raw, json) Hash identifier: trVTzJLMk0YYPZd2GJXZbw8hjd3VyHaYjDSjZyfSaIc= Subject key identifier: F2:0A:38:E8:FF:48:9E:FF:94:32:2F:F3:14:16:CB:A5:0A:A7:35:42 Certificate issuer: /CN=A91BFFBE/serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Certificate serial: 0106 Authority key identifier: 7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:28:36 +0000 ROA not before: Tue 25 Nov 2025 09:02:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.109.144.0/22 maxlen: 24 2405:4900::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFFBE, serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Validity Not Before: Nov 25 09:02:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59083-cb90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:f7:24:a8:1d:c1:f6:e7:7b:90:71:fb:03:39: cf:07:45:1e:58:53:05:56:09:9f:13:22:20:93:76: 52:27:ec:d6:64:92:9d:a8:c8:47:6a:f9:cc:43:2d: 64:f9:f8:29:0b:ee:b6:1a:11:ee:42:97:0c:56:f0: a9:95:0b:87:b5:19:fb:b6:81:4d:f5:a3:68:6f:59: 54:c5:52:73:3d:36:0f:b2:fb:63:e3:38:db:b2:69: f4:7b:ff:c5:0a:fc:77:1e:5d:59:ed:13:5f:00:9e: b3:5b:73:47:71:eb:66:a2:35:56:0d:1f:ca:25:6f: b6:ec:c8:a4:df:1a:f3:cb:8a:da:7c:c2:9a:db:60: 5e:77:a0:79:6b:ba:e5:1c:01:f8:dd:d1:9a:ed:6c: fe:cd:d5:19:8f:2b:5d:66:97:16:b2:2f:84:26:bc: e7:bc:ba:6f:07:e4:35:38:7d:67:ad:5a:1e:cd:aa: dc:15:ba:88:5c:b6:58:2d:bb:1e:3e:8f:8b:3a:ee: b8:3c:c4:b1:d3:a1:7b:3d:c1:c6:aa:d6:40:16:2c: 72:19:89:bb:6a:6c:ad:98:51:2e:b1:59:72:b5:48: ae:07:c0:72:ff:f1:6f:9a:9c:ce:a4:8a:47:c6:b3: 3d:23:40:84:54:a7:99:b0:4d:07:1b:07:85:55:cc: 54:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0A:38:E8:FF:48:9E:FF:94:32:2F:F3:14:16:CB:A5:0A:A7:35:42 X509v3 Authority Key Identifier: keyid:7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/4450DA2C9D0311EF877CD229C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.144.0/22 IPv6: 2405:4900::/32 Signature Algorithm: sha256WithRSAEncryption 2f:1a:40:3e:43:bc:13:60:e5:63:3b:82:c9:57:88:8d:41:ea: ea:8f:38:44:20:28:52:46:88:23:fb:8a:04:6b:83:42:be:48: 22:b9:64:3a:c1:8f:5f:5e:b3:be:df:58:17:d4:de:f5:50:06: d0:4d:ea:15:3d:4c:3a:53:74:52:7f:09:42:e7:9b:07:a0:4f: fb:2c:18:ba:85:3a:52:77:69:d3:22:04:b2:83:f6:69:f0:09: bb:1f:aa:32:e7:22:ac:eb:09:c8:f3:e2:83:a0:97:ac:60:e9: 6b:40:9c:0f:fe:37:c8:2a:ba:43:bf:05:dd:2f:b2:0e:de:00: 4d:c7:54:03:45:bd:72:b4:78:ea:46:bd:06:ba:ff:fe:df:d3: 89:a8:ac:d7:dd:6e:2e:9c:02:38:1e:28:a8:47:ca:24:9d:29: 11:66:5e:1f:f0:05:c4:14:c9:89:2a:99:a9:1c:9d:0c:42:0f: 3c:cb:48:cc:a3:46:56:4a:16:9b:5d:c7:8b:e9:c7:a1:f7:ea: 66:d1:c9:42:b2:85:ca:d7:e0:b9:dd:41:8c:65:6e:84:ad:f6: f5:33:d4:5d:b3:b1:d9:ac:7c:4c:9f:31:ba:07:8f:0c:03:08: 30:25:14:9d:86:b6:f0:3f:c7:72:5d:6e:69:ea:77:a0:fe:a6: b4:69:7b:d3 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZGQkUxMTAvBgNVBAUTKDdGOTZBRTBBMjJDQTkzOEJENUY5RDlBNzMyOEFGNTgz NjJFQjIyQzEwHhcNMjUxMTI1MDkwMjE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTA4My1jYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjfckqB3B9ud7kHH7AznPB0UeWFMFVgmfEyIgk3ZSJ+zWZJKdqMhHavnMQy1k +fgpC+62GhHuQpcMVvCplQuHtRn7toFN9aNob1lUxVJzPTYPsvtj4zjbsmn0e//F Cvx3Hl1Z7RNfAJ6zW3NHcetmojVWDR/KJW+27Mik3xrzy4rafMKa22Bed6B5a7rl HAH43dGa7Wz+zdUZjytdZpcWsi+EJrznvLpvB+Q1OH1nrVoezarcFbqIXLZYLbse Po+LOu64PMSx06F7PcHGqtZAFixyGYm7amytmFEusVlytUiuB8By//FvmpzOpIpH xrM9I0CEVKeZsE0HGweFVcxUHwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPIKOOj/ SJ7/lDIv8xQWy6UKpzVCMB8GA1UdIwQYMBaAFH+WrgoiypOL1fnZpzKK9YNi6yLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkZCRS80MjE1OUY1QTlE MDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0dlYtZG1uTW9yMWcyTHJJ c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y1YXVDaUxLazR2Vi1kbW5Nb3IxZzJMcklzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZGQkUvNDIxNTlGNUE5RDAyMTFFRjk5Q0M4NjA5QzRGOUFFMDIvNDQ1MERBMkM5 RDAzMTFFRjg3N0NEMjI5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ22QMA0EAgACMAcDBQAkBUkAMA0GCSqGSIb3DQEBCwUAA4IBAQAv GkA+Q7wTYOVjO4LJV4iNQerqjzhEIChSRogj+4oEa4NCvkgiuWQ6wY9fXrO+31gX 1N71UAbQTeoVPUw6U3RSfwlC55sHoE/7LBi6hTpSd2nTIgSyg/Zp8Am7H6oy5yKs 6wnI8+KDoJesYOlrQJwP/jfIKrpDvwXdL7IO3gBNx1QDRb1ytHjqRr0Guv/+39OJ qKzX3W4unAI4HiioR8oknSkRZl4f8AXEFMmJKpmpHJ0MQg88y0jMo0ZWShabXceL 6ceh9+pm0clCsoXK1+C53UGMZW6Erfb1M9Rds7HZrHxMnzG6B48MAwgwJRSdhrbw P8dyXW5p6neg/qa0aXvT -----END CERTIFICATE-----Generated at Mon Mar 2 17:28:24 2026 by rpki-client