$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4F4A22E23CDE11EAB553996BC4F9AE02.roa File: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (raw, json) Hash identifier: HZYyafIDcbCm3jYO+u2UG1J/QSznk0TLPVrt1UYauvc= Subject key identifier: 2E:A7:95:4A:E2:D8:CF:57:EC:F0:EC:5A:66:2F:57:10:15:FB:8C:B5 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0CB3 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4F4A22E23CDE11EAB553996BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:44:11 +0000 ROA not before: Wed 24 Dec 2025 18:16:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63969 IP address blocks: 103.124.250.0/23 maxlen: 23 103.124.250.0/24 maxlen: 24 103.124.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3251 (0xcb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Dec 24 18:16:15 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46cdb-3335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4c:85:9b:8e:f9:0c:ab:f1:4f:fc:c9:5f:dc: 30:5b:77:bb:7c:e1:33:19:7c:b9:7e:36:44:a8:4d: a2:44:b3:d6:a6:51:13:1b:25:d9:c9:fa:ef:a0:6c: ab:56:22:6d:7f:db:0a:54:88:4a:29:25:44:9f:f9: d8:e0:06:a4:04:d2:0a:77:56:ab:17:36:49:fc:0c: c9:35:d3:2c:64:e1:c7:75:76:4d:3c:50:8b:4a:55: ce:ce:34:e1:8b:ca:9d:83:40:7e:4a:c4:be:1e:00: c2:9c:aa:c9:c4:04:ec:44:92:8a:3e:9e:c9:ed:6b: 22:13:73:77:43:bc:92:ce:95:e9:29:ea:e9:ed:9f: fd:f9:9e:7c:60:7a:53:a2:7a:94:29:8c:3a:e8:ce: 43:a6:65:a0:cd:b8:25:a9:e0:3d:36:36:af:01:6c: 2a:00:d8:af:ad:a8:c7:07:20:fb:7c:3e:e6:4d:a1: e9:8b:8d:6f:dd:ae:03:63:65:68:73:a5:0d:93:99: da:11:b7:d2:97:ff:7c:db:5a:db:40:e2:d9:82:c1: c8:b1:cb:44:b6:35:44:f5:93:9f:ae:ed:03:fe:ad: 06:1b:31:39:0a:d8:49:57:6c:d3:53:5a:29:08:95: 37:a1:20:4a:58:0a:92:8f:52:1a:a0:c0:4e:98:6c: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A7:95:4A:E2:D8:CF:57:EC:F0:EC:5A:66:2F:57:10:15:FB:8C:B5 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/4F4A22E23CDE11EAB553996BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.250.0/23 Signature Algorithm: sha256WithRSAEncryption 97:5a:07:e2:32:92:54:5c:0f:63:d9:15:f0:e7:b1:f7:b6:03: 37:aa:36:05:e5:78:73:27:b6:1a:19:e9:d2:ad:55:99:10:cc: 8f:aa:3b:34:d5:7d:f6:84:c2:8b:a7:86:49:f1:e9:28:14:a3: 87:33:af:8e:1d:25:00:9e:55:40:8e:43:e3:53:60:ff:49:a0: b9:76:0b:b8:51:60:c3:d2:e0:40:62:81:e4:44:bf:95:6b:78: 5e:16:32:0f:4a:92:84:8f:f5:cf:b2:a5:14:18:0c:f6:04:d6: 1c:fe:05:85:e1:0c:71:63:97:8e:39:06:af:91:42:85:fd:49: 2e:73:47:1b:a7:53:06:c9:cc:3f:00:79:01:40:3b:0e:31:8d: 2c:6f:15:c1:59:59:44:c0:d9:bc:a2:cf:8c:b0:d4:a6:12:cc: 09:0e:f2:b9:3b:7d:c1:d7:d3:21:27:77:02:b5:e3:4d:57:f0: dd:fb:6b:8d:bf:72:dc:95:94:5b:16:08:61:0c:2c:e0:c5:ce: a9:cb:15:37:5d:8c:56:fd:78:f2:38:de:7e:a8:17:e0:47:3e: 58:41:d6:ab:e0:f6:5b:ac:39:86:25:8d:28:e8:6f:a2:a8:f3: b0:25:18:c0:70:3c:dd:7b:28:5d:ac:ed:e3:c0:69:ad:49:87: 9f:d7:64:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUxMjI0MTgxNjE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNkYi0zMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkyFm475DKvxT/zJX9wwW3e7fOEzGXy5fjZEqE2iRLPWplETGyXZyfrvoGyr ViJtf9sKVIhKKSVEn/nY4AakBNIKd1arFzZJ/AzJNdMsZOHHdXZNPFCLSlXOzjTh i8qdg0B+SsS+HgDCnKrJxATsRJKKPp7J7WsiE3N3Q7ySzpXpKerp7Z/9+Z58YHpT onqUKYw66M5DpmWgzbglqeA9NjavAWwqANivrajHByD7fD7mTaHpi41v3a4DY2Vo c6UNk5naEbfSl/9821rbQOLZgsHIsctEtjVE9ZOfru0D/q0GGzE5CthJV2zTU1op CJU3oSBKWAqSj1IaoMBOmGwKoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC6nlUri 2M9X7PDsWmYvVxAV+4y1MB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJFODcvQTlGM0M2RUUxMjlGMTFFQUFCMjcyMDJGQzRGOUFFMDIvNEY0QTIyRTIz Q0RFMTFFQUI1NTM5OTZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3z6MA0GCSqGSIb3DQEBCwUAA4IBAQCXWgfiMpJUXA9j2RXw57H3 tgM3qjYF5XhzJ7YaGenSrVWZEMyPqjs01X32hMKLp4ZJ8ekoFKOHM6+OHSUAnlVA jkPjU2D/SaC5dgu4UWDD0uBAYoHkRL+Va3heFjIPSpKEj/XPsqUUGAz2BNYc/gWF 4QxxY5eOOQavkUKF/Ukuc0cbp1MGycw/AHkBQDsOMY0sbxXBWVlEwNm8os+MsNSm EswJDvK5O33B19MhJ3cCteNNV/Dd+2uNv3LclZRbFghhDCzgxc6pyxU3XYxW/Xjy ON5+qBfgRz5YQdar4PZbrDmGJY0o6G+iqPOwJRjAcDzdeyhdrO3jwGmtSYef12Ty -----END CERTIFICATE-----Generated at Mon Mar 2 07:15:49 2026 by rpki-client