$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa File: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (raw, json) Hash identifier: 2CcUX8OCn1/fmWn37MNKtyhofnamXBuWgD+4aT2Pu3A= Subject key identifier: B6:61:04:CC:DB:00:E9:0C:50:6C:E2:0E:24:8D:94:6E:50:A1:A0:D8 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07CD Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:54:20 +0000 ROA not before: Sun 18 Jan 2026 21:17:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137274 IP address blocks: 103.106.164.0/23 maxlen: 23 103.106.164.0/24 maxlen: 24 103.106.165.0/24 maxlen: 24 2406:e340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Jan 18 21:17:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4531c-bc57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:88:29:b0:9f:b6:a1:0f:9d:b4:1c:ac:ed:ad: 3e:0e:b7:20:82:b3:ad:e7:9f:96:6a:56:e0:d4:a4: 5d:6d:e5:e2:6d:98:64:df:67:a4:53:cf:8a:9f:74: eb:ac:e1:42:aa:bb:72:b1:b0:c0:53:fb:c0:32:4e: 13:fb:0a:ba:fc:63:a3:67:23:e6:95:26:35:c9:a6: 63:b2:11:89:4f:0f:7b:b8:28:e3:75:49:ec:24:a5: 26:be:63:6a:64:25:d2:d1:be:51:7b:d0:71:67:d3: 2e:29:a4:1e:ee:2a:a0:17:2c:0f:5b:a5:e8:73:73: ec:de:a4:eb:59:5b:78:53:88:73:0e:9d:a4:ad:fc: 0b:90:c0:b8:86:82:d3:7a:a9:55:b7:c5:3b:e0:9d: a8:24:56:37:0d:e1:52:4f:53:4e:10:c9:dc:67:68: e5:c8:9e:55:f1:ea:99:f4:e0:9d:8b:c7:4d:2d:fb: a4:28:c9:a3:d0:97:6e:99:e4:33:6c:a5:bc:82:57: 57:18:f4:f0:b7:42:74:98:e9:e6:af:c5:63:b1:6a: f4:73:78:a2:19:df:b2:b0:84:20:81:f0:14:40:70: 35:24:5f:c6:47:cc:fe:1c:ec:87:b7:ac:f6:b0:22: ca:a8:84:07:ea:9c:ec:56:d1:07:08:1d:17:33:ec: 42:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:61:04:CC:DB:00:E9:0C:50:6C:E2:0E:24:8D:94:6E:50:A1:A0:D8 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/C42CEC7ECC3611EF9C79665CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.164.0/23 IPv6: 2406:e340::/32 Signature Algorithm: sha256WithRSAEncryption 4a:a2:e8:4d:bf:4f:c5:49:57:11:95:1c:2f:13:8f:97:1d:45: a0:00:63:8d:77:ae:31:07:fe:c2:a2:ac:14:38:c3:39:5e:88: 93:2d:b3:51:92:d0:7e:34:f6:05:78:00:d6:7d:22:6b:c2:28: cf:48:f7:14:cf:a2:92:dd:d7:73:45:02:49:7e:25:7b:44:dd: af:46:2f:df:b8:79:17:de:a3:62:59:01:19:37:80:93:44:87: 02:6e:67:55:3a:d2:be:cb:6c:ff:5b:ba:68:29:1c:2c:ae:5e: 0f:95:f3:3f:0c:aa:4b:df:36:5b:ca:4c:c1:39:02:84:83:ea: 33:54:46:3d:92:24:bc:c0:d1:80:bd:85:36:36:f1:a8:5b:51: 6f:65:6f:fd:fe:2d:cc:67:d6:d4:7e:6e:fe:a3:5d:ab:03:18: c2:17:7e:c0:88:1a:ab:cd:29:48:3c:92:25:f4:82:cb:a4:d7: 3d:6e:cd:27:5c:19:46:db:8b:49:6e:3e:81:cb:8b:73:6c:c6: 4f:01:bc:6d:4f:2f:f2:a3:dc:16:b8:85:df:10:8f:17:dc:ff: 34:65:d8:ed:0c:d9:d5:c9:da:12:89:f8:63:3e:26:b9:10:d9: 6d:0b:90:8a:e0:c8:ad:0b:da:a6:2d:6d:ac:a7:be:2e:82:fa: 46:ed:82:bf -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjYwMTE4MjExNzQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTMxYy1iYzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IgpsJ+2oQ+dtBys7a0+DrcggrOt55+Walbg1KRdbeXibZhk32ekU8+Kn3Tr rOFCqrtysbDAU/vAMk4T+wq6/GOjZyPmlSY1yaZjshGJTw97uCjjdUnsJKUmvmNq ZCXS0b5Re9BxZ9MuKaQe7iqgFywPW6Xoc3Ps3qTrWVt4U4hzDp2krfwLkMC4hoLT eqlVt8U74J2oJFY3DeFST1NOEMncZ2jlyJ5V8eqZ9OCdi8dNLfukKMmj0JdumeQz bKW8gldXGPTwt0J0mOnmr8VjsWr0c3iiGd+ysIQggfAUQHA1JF/GR8z+HOyHt6z2 sCLKqIQH6pzsVtEHCB0XM+xChQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLZhBMzb AOkMUGziDiSNlG5QoaDYMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUwMjEvOUFGRDQ4NkMzQkJDMTFFQkE3NzZGMTYxQzRGOUFFMDIvQzQyQ0VDN0VD QzM2MTFFRjlDNzk2NjVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2qkMA0EAgACMAcDBQAkBuNAMA0GCSqGSIb3DQEBCwUAA4IBAQBK ouhNv0/FSVcRlRwvE4+XHUWgAGONd64xB/7CoqwUOMM5XoiTLbNRktB+NPYFeADW fSJrwijPSPcUz6KS3ddzRQJJfiV7RN2vRi/fuHkX3qNiWQEZN4CTRIcCbmdVOtK+ y2z/W7poKRwsrl4PlfM/DKpL3zZbykzBOQKEg+ozVEY9kiS8wNGAvYU2NvGoW1Fv ZW/9/i3MZ9bUfm7+o12rAxjCF37AiBqrzSlIPJIl9ILLpNc9bs0nXBlG24tJbj6B y4tzbMZPAbxtTy/yo9wWuIXfEI8X3P80ZdjtDNnVydoSifhjPia5ENltC5CK4Mit C9qmLW2sp74ugvpG7YK/ -----END CERTIFICATE-----Generated at Mon Mar 2 07:20:29 2026 by rpki-client