$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa File: A84FB264FD7011EAA1DF3534C4F9AE02.roa (raw, json) Hash identifier: amf5yXNl2Dgr3AOxZkSrfGo/rK5Q2TPmeviiMZD4ZqE= Subject key identifier: FF:4A:F7:57:C6:25:6A:E6:71:FC:B7:AA:86:8E:61:2B:E0:72:01:35 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 0856 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:23:12 +0000 ROA not before: Mon 06 Oct 2025 21:22:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141184 IP address blocks: 103.155.218.0/23 maxlen: 24 2407:f640::/32 maxlen: 32 2407:f640:600::/48 maxlen: 48 2407:f640:601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Oct 6 21:22:43 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42fb0-0167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:88:3d:53:99:a1:df:11:12:5c:d7:a8:39:c5: a2:12:3e:ad:cf:10:4c:7c:7e:c9:ee:95:88:49:c1: 09:4d:a4:b3:bb:52:df:3f:6c:35:cd:12:fe:d3:16: cf:5c:91:49:82:c8:70:79:d4:04:8f:32:ba:f6:e9: 56:fc:a6:2c:3b:7d:cb:4d:3e:bb:00:d4:ce:fb:92: 58:1e:7f:6f:28:9b:6d:6c:f6:b5:b1:7d:f5:38:35: ec:49:f8:43:b0:54:43:90:45:4e:59:51:11:39:5a: ad:1e:e8:4c:da:cb:40:5a:94:6c:34:f4:bc:11:b6: 82:2e:c9:7a:c4:d5:1d:a7:3f:73:08:30:04:31:65: c8:d5:fd:48:56:92:b8:48:ad:97:11:01:93:39:82: 51:94:a3:3b:76:0a:f1:66:fd:aa:dc:97:5a:e8:23: 7c:c0:76:42:0c:f4:7e:69:fe:26:b4:94:bd:67:78: 16:da:73:e1:95:09:bb:56:8d:5a:36:02:ab:8c:a8: 91:10:2c:35:49:ee:09:57:b7:eb:db:6e:03:90:c4: f3:b4:7c:d5:03:ad:de:6e:77:07:51:0f:ae:c8:6b: 05:20:e8:7c:da:8e:56:a4:ab:2d:2e:24:f7:9b:10: cf:75:f7:4e:de:6a:86:dd:66:36:ec:58:46:5a:33: b5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4A:F7:57:C6:25:6A:E6:71:FC:B7:AA:86:8E:61:2B:E0:72:01:35 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.155.218.0/23 IPv6: 2407:f640::/32 Signature Algorithm: sha256WithRSAEncryption a6:88:f9:dd:6a:f8:dc:8f:b9:d1:c0:0d:dc:ac:93:c5:6a:c5: d5:5a:73:0d:39:8f:57:8e:7f:37:1f:2b:37:7a:6a:a8:10:32: 15:15:5f:8f:dc:a8:59:eb:a5:c5:de:9e:1e:d5:93:30:f2:ca: ff:d1:9c:d6:6e:30:ea:9d:49:49:d6:f9:b2:a9:59:e0:ae:f6: 7e:05:e0:4d:97:d8:7a:62:f0:c8:42:39:b9:f7:4d:27:02:b7: 3f:08:dc:02:1e:01:bb:4d:ee:bf:4c:76:d5:ca:72:25:78:ba: 1e:18:e8:22:5b:a0:c5:79:a1:7d:6c:be:3b:50:de:53:3e:f0: 9e:ca:1e:7e:ee:78:ee:e1:94:1c:00:3c:80:d5:21:a7:37:8c: 69:43:ac:58:33:e5:77:14:eb:ac:75:e0:9e:ab:a2:34:8b:94: 24:70:12:aa:90:19:cd:0c:e0:26:6f:43:51:92:0b:eb:c2:85: af:66:ba:83:de:13:28:8b:12:9b:b1:12:e1:23:d1:5a:51:20: c6:54:e3:ce:84:0b:e4:c3:c8:f6:f6:92:fd:bc:7f:a9:0f:60: 09:2a:45:04:4f:7c:34:55:78:7f:f6:5e:54:cb:f4:31:09:11: ba:ac:dc:c9:f8:bc:b1:b6:fe:9b:d5:33:31:58:fe:db:55:c5: 2f:73:9d:d9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjUxMDA2MjEyMjQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmZiMC0wMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkIg9U5mh3xESXNeoOcWiEj6tzxBMfH7J7pWIScEJTaSzu1LfP2w1zRL+0xbP XJFJgshwedQEjzK69ulW/KYsO33LTT67ANTO+5JYHn9vKJttbPa1sX31ODXsSfhD sFRDkEVOWVEROVqtHuhM2stAWpRsNPS8EbaCLsl6xNUdpz9zCDAEMWXI1f1IVpK4 SK2XEQGTOYJRlKM7dgrxZv2q3Jda6CN8wHZCDPR+af4mtJS9Z3gW2nPhlQm7Vo1a NgKrjKiRECw1Se4JV7fr224DkMTztHzVA63ebncHUQ+uyGsFIOh82o5WpKstLiT3 mxDPdfdO3mqG3WY27FhGWjO1bQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP9K91fG JWrmcfy3qoaOYSvgcgE1MB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYwOUEvQTM3QUU5MjZGRDZGMTFFQThFODE1RTMzQzRGOUFFMDIvQTg0RkIyNjRG RDcwMTFFQUExREYzNTM0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5vaMA0EAgACMAcDBQAkB/ZAMA0GCSqGSIb3DQEBCwUAA4IBAQCm iPndavjcj7nRwA3crJPFasXVWnMNOY9Xjn83Hys3emqoEDIVFV+P3KhZ66XF3p4e 1ZMw8sr/0ZzWbjDqnUlJ1vmyqVngrvZ+BeBNl9h6YvDIQjm5900nArc/CNwCHgG7 Te6/THbVynIleLoeGOgiW6DFeaF9bL47UN5TPvCeyh5+7nju4ZQcADyA1SGnN4xp Q6xYM+V3FOusdeCeq6I0i5QkcBKqkBnNDOAmb0NRkgvrwoWvZrqD3hMoixKbsRLh I9FaUSDGVOPOhAvkw8j29pL9vH+pD2AJKkUET3w0VXh/9l5Uy/QxCRG6rNzJ+Lyx tv6b1TMxWP7bVcUvc53Z -----END CERTIFICATE-----Generated at Mon Mar 2 12:47:38 2026 by rpki-client