$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/DCAD7228C9DD11F0AAF51581C4F9AE02.roa File: DCAD7228C9DD11F0AAF51581C4F9AE02.roa (raw, json) Hash identifier: I1++mHrzNJqcHerLAm9oVxqpl6Ew26O0T9gv6+CjfZw= Subject key identifier: C0:80:20:B5:9C:11:76:A2:34:A9:06:5A:77:48:78:0D:5B:D0:0E:BB Certificate issuer: /CN=A91BFFBE/serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Certificate serial: 0108 Authority key identifier: 7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/DCAD7228C9DD11F0AAF51581C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:28:37 +0000 ROA not before: Tue 25 Nov 2025 09:05:18 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138610 IP address blocks: 103.109.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFFBE, serialNumber=7F96AE0A22CA938BD5F9D9A7328AF58362EB22C1 Validity Not Before: Nov 25 09:05:18 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59085-a27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:ba:6b:7b:0d:85:cd:ae:62:36:97:ab:fb: b4:01:fa:15:56:56:c8:9b:4d:da:d8:dc:e6:1f:30: 79:06:ed:9f:cd:26:ac:16:0f:08:3d:32:4d:ab:13: dd:f8:98:2c:47:22:94:7f:62:88:ce:8d:ab:40:00: 54:a3:ce:a2:55:21:22:2f:08:d0:f0:54:66:59:f9: 92:4f:3d:24:95:cb:bc:e4:92:c4:01:18:6d:ce:49: d6:4e:86:b8:2a:82:16:d4:0e:65:6c:ce:97:84:29: 98:f4:72:42:55:96:d9:e5:54:13:11:dd:ed:a6:bc: 81:df:c1:b7:17:65:f7:19:3d:a1:f7:d0:21:d7:2a: 86:ba:07:92:cd:e6:db:9c:d8:5c:f9:df:50:f7:a9: 81:07:1f:24:79:dd:17:98:84:8c:0d:70:48:4a:65: 8d:30:fe:f9:f0:ad:e1:6b:85:71:c7:d5:1a:86:70: 37:68:1f:d7:fa:3a:ce:7b:df:10:8a:df:e8:95:4f: c6:c0:4c:7a:95:8f:93:69:c3:c1:48:33:9b:63:72: 0c:fd:66:77:0c:06:8b:72:27:ae:43:af:a9:37:bf: 62:70:ac:97:22:15:69:52:69:d1:4c:f6:63:5d:3b: 8b:5f:45:20:83:14:14:81:17:f0:d1:53:a3:81:4a: 7a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:80:20:B5:9C:11:76:A2:34:A9:06:5A:77:48:78:0D:5B:D0:0E:BB X509v3 Authority Key Identifier: keyid:7F:96:AE:0A:22:CA:93:8B:D5:F9:D9:A7:32:8A:F5:83:62:EB:22:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/f5auCiLKk4vV-dmnMor1g2LrIsE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f5auCiLKk4vV-dmnMor1g2LrIsE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFFBE/42159F5A9D0211EF99CC8609C4F9AE02/DCAD7228C9DD11F0AAF51581C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.146.0/23 Signature Algorithm: sha256WithRSAEncryption 99:e6:72:ce:88:e7:b2:fe:d5:0e:fe:b4:bb:f6:ef:d7:61:47: 0a:ce:2a:4f:80:af:ec:f0:21:46:af:29:ee:1d:74:3f:68:aa: 5e:d1:db:8a:d2:b9:5c:64:4d:e8:29:12:8c:ad:49:3c:9a:f9: fe:74:34:e2:77:4e:19:a9:66:0f:e3:7a:c2:4b:2e:9b:cb:e6: c5:2b:f8:29:9a:a8:b7:f8:e6:32:53:53:81:92:da:ab:b1:88: be:23:1c:6f:30:b5:3c:76:af:01:be:6c:05:02:a5:e7:fb:de: 27:30:ea:0b:52:4b:47:d9:08:13:e3:db:fc:b3:85:91:4a:01: 84:ea:3a:f2:5d:e9:dc:1c:33:bf:9b:79:4f:ea:35:6d:79:f0: 09:f3:3c:c3:a0:53:93:6d:b9:85:1b:a2:46:05:1d:85:5f:e8: 71:a0:71:3c:20:b4:e2:ed:94:fc:74:53:12:11:32:5c:1f:5e: 44:57:f2:0c:80:fb:6b:b2:22:bf:a7:40:ad:b9:c5:13:2f:a4: d2:48:f6:c0:0f:13:a0:ff:4b:46:36:49:f5:40:7a:6a:ec:4f: 4a:20:f0:92:99:d3:64:b3:50:4e:05:ea:56:05:1a:59:c0:06: f8:de:79:50:89:6f:d6:6c:89:4a:1c:4f:45:a1:00:da:a2:8b: 71:e8:9f:a6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZGQkUxMTAvBgNVBAUTKDdGOTZBRTBBMjJDQTkzOEJENUY5RDlBNzMyOEFGNTgz NjJFQjIyQzEwHhcNMjUxMTI1MDkwNTE4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTA4NS1hMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiy6a3sNhc2uYjaXq/u0AfoVVlbIm03a2NzmHzB5Bu2fzSasFg8IPTJNqxPd +JgsRyKUf2KIzo2rQABUo86iVSEiLwjQ8FRmWfmSTz0klcu85JLEARhtzknWToa4 KoIW1A5lbM6XhCmY9HJCVZbZ5VQTEd3tpryB38G3F2X3GT2h99Ah1yqGugeSzebb nNhc+d9Q96mBBx8ked0XmISMDXBISmWNMP758K3ha4Vxx9UahnA3aB/X+jrOe98Q it/olU/GwEx6lY+TacPBSDObY3IM/WZ3DAaLcieuQ6+pN79icKyXIhVpUmnRTPZj XTuLX0UggxQUgRfw0VOjgUp66wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMCAILWc EXaiNKkGWndIeA1b0A67MB8GA1UdIwQYMBaAFH+WrgoiypOL1fnZpzKK9YNi6yLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkZCRS80MjE1OUY1QTlE MDIxMUVGOTlDQzg2MDlDNEY5QUUwMi9mNWF1Q2lMS2s0dlYtZG1uTW9yMWcyTHJJ c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y1YXVDaUxLazR2Vi1kbW5Nb3IxZzJMcklzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZGQkUvNDIxNTlGNUE5RDAyMTFFRjk5Q0M4NjA5QzRGOUFFMDIvRENBRDcyMjhD OUREMTFGMEFBRjUxNTgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ22SMA0GCSqGSIb3DQEBCwUAA4IBAQCZ5nLOiOey/tUO/rS79u/X YUcKzipPgK/s8CFGrynuHXQ/aKpe0duK0rlcZE3oKRKMrUk8mvn+dDTid04ZqWYP 43rCSy6by+bFK/gpmqi3+OYyU1OBktqrsYi+IxxvMLU8dq8BvmwFAqXn+94nMOoL UktH2QgT49v8s4WRSgGE6jryXencHDO/m3lP6jVtefAJ8zzDoFOTbbmFG6JGBR2F X+hxoHE8ILTi7ZT8dFMSETJcH15EV/IMgPtrsiK/p0CtucUTL6TSSPbADxOg/0tG Nkn1QHpq7E9KIPCSmdNks1BOBepWBRpZwAb43nlQiW/WbIlKHE9FoQDaootx6J+m -----END CERTIFICATE-----Generated at Mon Mar 2 22:34:29 2026 by rpki-client