$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4EB9FBD63CDE11EAB553996BC4F9AE02.roa File: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (raw, json) Hash identifier: Okct4v/9F3FMQPT9GrE+GqX5m6ZwHVEGNg/r2lmDu6k= Subject key identifier: EA:76:F9:0B:CD:03:E7:B4:83:8A:2A:23:D6:EE:C0:2A:4A:AF:AA:01 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0CB2 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4EB9FBD63CDE11EAB553996BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:44:10 +0000 ROA not before: Wed 24 Dec 2025 18:16:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 58715 IP address blocks: 103.124.250.0/23 maxlen: 23 103.124.250.0/24 maxlen: 24 103.124.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Dec 24 18:16:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46cda-8f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fb:4f:da:74:6c:4a:6d:31:35:fa:53:70:77: c1:99:50:e2:dc:1a:04:27:48:74:e1:53:78:cc:82: 55:de:49:bf:65:4b:ad:05:71:cf:84:ca:3f:b6:67: 30:63:a0:a6:e8:22:87:4d:d4:d6:50:f4:f7:42:3e: df:e8:99:56:eb:2b:ad:c9:97:7d:c9:8e:92:ef:68: 32:81:99:13:47:e2:62:34:cc:19:fb:8f:9c:76:94: 85:ef:dc:97:68:2b:83:5b:37:cb:90:4f:e1:7c:53: 23:2f:1d:69:ab:53:88:f0:db:15:5b:46:07:12:ca: 96:e0:93:43:96:4f:50:e7:fb:14:ed:7b:4d:5f:4a: 3d:74:c2:d3:cd:f4:3a:be:bc:09:54:f0:90:ec:1d: fd:24:3d:38:a5:5d:71:db:00:25:98:34:1e:ce:a1: ad:32:c3:83:99:0d:d1:0e:9b:29:b8:e1:c9:a7:ba: 98:eb:6b:d0:1a:14:f2:e2:b1:c1:48:25:4a:b6:ad: 0b:95:60:5e:39:1f:2b:36:81:a3:f0:5a:a5:f7:33: 8b:f4:80:a7:82:c8:00:70:58:d1:05:7e:5d:ff:32: 45:b5:95:9d:92:b7:16:f8:54:43:56:8a:fc:ba:c6: 63:06:6e:5a:15:4f:2f:de:be:7b:f4:8d:3f:3d:1c: 72:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:76:F9:0B:CD:03:E7:B4:83:8A:2A:23:D6:EE:C0:2A:4A:AF:AA:01 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4EB9FBD63CDE11EAB553996BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.250.0/23 Signature Algorithm: sha256WithRSAEncryption 23:65:18:f8:ca:54:38:22:d0:b0:ab:7b:56:dd:84:40:b5:ed: cd:5d:b2:75:3c:b8:e0:66:10:88:c5:cd:29:8a:be:db:33:a1: f7:8e:f6:c7:f7:1d:03:38:04:7e:58:41:e2:ee:d5:1b:af:88: 6e:6d:92:df:e1:cb:ac:95:fa:a7:17:61:c3:ed:28:97:44:4d: df:4c:2e:7d:c7:3a:fe:14:3b:ca:6e:1a:bb:93:4b:f3:ac:3f: d1:b2:40:ab:dd:33:72:69:d3:eb:39:61:d9:0a:83:65:a4:5b: 9f:88:ab:23:42:be:46:7c:13:85:b9:78:16:9a:41:cb:7a:3c: 89:08:07:c1:dd:52:3e:09:59:d9:96:c2:0b:68:bc:70:33:35: 3f:2f:b7:75:49:92:4e:d1:c1:aa:6b:0c:ca:05:db:f8:d9:98: ef:73:30:3e:1d:52:f4:59:d5:58:6b:7e:bf:58:0b:d5:10:b9: 37:81:71:6f:82:75:be:f3:13:24:86:c7:a1:8d:be:b1:df:b1: 36:f3:2d:39:89:10:1c:ee:fa:9e:b8:99:15:60:c5:b4:58:39: e6:6d:21:b0:b3:98:6e:c8:f3:53:27:a6:be:9b:31:61:19:b9: 04:85:bb:ab:45:50:83:32:a4:18:0a:23:42:0c:55:29:53:37: 88:fa:56:80 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUxMjI0MTgxNjE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNkYS04ZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnftP2nRsSm0xNfpTcHfBmVDi3BoEJ0h04VN4zIJV3km/ZUutBXHPhMo/tmcw Y6Cm6CKHTdTWUPT3Qj7f6JlW6yutyZd9yY6S72gygZkTR+JiNMwZ+4+cdpSF79yX aCuDWzfLkE/hfFMjLx1pq1OI8NsVW0YHEsqW4JNDlk9Q5/sU7XtNX0o9dMLTzfQ6 vrwJVPCQ7B39JD04pV1x2wAlmDQezqGtMsODmQ3RDpspuOHJp7qY62vQGhTy4rHB SCVKtq0LlWBeOR8rNoGj8Fql9zOL9ICngsgAcFjRBX5d/zJFtZWdkrcW+FRDVor8 usZjBm5aFU8v3r579I0/PRxyiQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOp2+QvN A+e0g4oqI9buwCpKr6oBMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJFODcvQTlGM0M2RUUxMjlGMTFFQUFCMjcyMDJGQzRGOUFFMDIvNEVCOUZCRDYz Q0RFMTFFQUI1NTM5OTZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3z6MA0GCSqGSIb3DQEBCwUAA4IBAQAjZRj4ylQ4ItCwq3tW3YRA te3NXbJ1PLjgZhCIxc0pir7bM6H3jvbH9x0DOAR+WEHi7tUbr4hubZLf4cuslfqn F2HD7SiXRE3fTC59xzr+FDvKbhq7k0vzrD/RskCr3TNyadPrOWHZCoNlpFufiKsj Qr5GfBOFuXgWmkHLejyJCAfB3VI+CVnZlsILaLxwMzU/L7d1SZJO0cGqawzKBdv4 2ZjvczA+HVL0WdVYa36/WAvVELk3gXFvgnW+8xMkhsehjb6x37E28y05iRAc7vqe uJkVYMW0WDnmbSGws5huyPNTJ6a+mzFhGbkEhburRVCDMqQYCiNCDFUpUzeI+laA -----END CERTIFICATE-----Generated at Mon Mar 2 13:20:02 2026 by rpki-client