$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa File: 5BC42F286E9F11EC90A66E2BC4F9AE02.roa (raw, json) Hash identifier: Ra6aDzkRJ9CvQ2Xe9bv2r/5IA66OVXcErWzz8l4k4Jo= Subject key identifier: A0:93:80:33:43:BE:A6:85:2C:7E:3C:A4:5C:C6:8F:82:BF:54:61:53 Certificate issuer: /CN=A91C7AC5/serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Certificate serial: 092B Authority key identifier: BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:04:22 +0000 ROA not before: Thu 30 Oct 2025 20:40:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55822 IP address blocks: 103.214.196.0/22 maxlen: 24 144.48.144.0/22 maxlen: 24 218.100.44.0/24 maxlen: 24 218.100.75.0/24 maxlen: 24 2001:de8:10::/48 maxlen: 48 2001:de8:13::/48 maxlen: 48 2001:de8:13:1::/64 maxlen: 64 2001:de8:13:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2347 (0x92b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AC5, serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Validity Not Before: Oct 30 20:40:01 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a44765-146c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:46:1e:46:b6:af:52:9a:dd:73:6a:08:97:c9: 76:b2:94:bf:f6:70:1c:a7:a1:a3:e9:9d:f7:1c:d9: e9:2e:4e:e0:df:d5:73:27:a2:ee:c2:cc:c1:03:42: 1b:1e:95:29:a0:bc:c6:62:43:93:aa:c4:a0:58:8c: e2:9b:c2:13:e4:5a:89:2a:62:a0:42:0a:5b:22:8a: 9f:60:26:94:ef:ce:f7:39:1d:25:0d:53:a4:92:71: 7e:d4:d2:ec:8b:e3:6d:cb:13:07:d3:f3:9f:a1:98: f7:ae:80:7e:65:f5:d8:ce:da:4b:2c:6e:a3:32:93: c6:64:1b:0c:2e:36:fa:96:10:f7:ee:2b:8f:52:17: 4c:67:92:78:a6:32:e9:f1:1a:a2:79:bc:3a:39:ae: f8:70:a5:8f:6e:8e:d1:ff:3a:3b:fa:fb:b5:63:f2: c8:d2:f7:a6:b3:dd:2b:1b:31:8b:15:35:38:42:04: 8d:af:dc:81:65:6d:e3:61:61:06:71:41:1e:38:18: 87:53:61:78:c1:ae:0a:bd:99:bd:37:4e:d5:9b:ca: 8c:45:c6:5a:9f:79:07:34:43:6a:44:60:a8:e3:75: 1c:17:31:3f:b9:cf:fa:1a:9e:c5:38:52:2e:79:60: 38:ee:fe:cb:9a:0b:12:40:06:dd:08:4e:3d:88:da: bb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:93:80:33:43:BE:A6:85:2C:7E:3C:A4:5C:C6:8F:82:BF:54:61:53 X509v3 Authority Key Identifier: keyid:BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.214.196.0/22 144.48.144.0/22 218.100.44.0/24 218.100.75.0/24 IPv6: 2001:de8:10::/48 2001:de8:13::/48 Signature Algorithm: sha256WithRSAEncryption 84:a5:aa:bb:49:bd:44:89:fb:f7:b6:41:90:41:be:b4:b1:77: 3d:f8:bd:61:90:c8:12:e3:92:93:43:f4:b6:62:04:7f:8f:5c: d4:0e:d8:5e:89:ef:40:60:c0:b0:f1:11:4c:a0:81:c2:2f:4d: 49:05:c2:e9:e5:b3:c1:c6:e9:1b:14:13:2b:85:99:6d:56:05: 11:eb:35:39:88:59:f7:a5:c0:bb:7e:fc:c7:fa:f4:e4:ee:fe: a5:37:2c:9a:29:43:b0:f0:f2:5f:8e:32:06:87:53:73:31:eb: 47:0b:f3:76:7a:53:59:2e:17:91:ba:d8:ea:46:1b:11:2e:37: 99:e5:64:47:c4:8c:99:23:51:59:67:76:8c:37:85:d2:bc:4f: 4f:ed:bb:b2:47:e5:ac:93:39:1b:d5:e1:d8:67:b7:51:fb:a6: bf:98:4c:da:1c:71:73:77:cc:a6:1b:1f:79:ca:a4:cc:1b:d9: 44:03:80:96:df:d0:a3:e6:9a:cf:6b:13:4b:9c:a0:a0:a8:d5: 09:8b:6b:4e:0f:0d:77:93:3f:b6:91:8a:9f:41:a8:24:17:d9: be:84:34:64:6d:56:1b:06:79:7d:a6:5f:8e:e9:fb:a9:05:dc: 9f:07:f7:0b:16:46:8a:79:97:f5:e9:07:2a:47:92:da:2d:ea: 1b:37:22:1c -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICCSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQzUxMTAvBgNVBAUTKEJGM0ZCQzBEQTk2RTJFNTEzQUFBNTg4MTJDNjk0QkNE MDdCOERENzcwHhcNMjUxMDMwMjA0MDAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDc2NS0xNDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukYeRravUprdc2oIl8l2spS/9nAcp6Gj6Z33HNnpLk7g39VzJ6LuwszBA0Ib HpUpoLzGYkOTqsSgWIzim8IT5FqJKmKgQgpbIoqfYCaU7873OR0lDVOkknF+1NLs i+NtyxMH0/OfoZj3roB+ZfXYztpLLG6jMpPGZBsMLjb6lhD37iuPUhdMZ5J4pjLp 8Rqiebw6Oa74cKWPbo7R/zo7+vu1Y/LI0vems90rGzGLFTU4QgSNr9yBZW3jYWEG cUEeOBiHU2F4wa4KvZm9N07Vm8qMRcZan3kHNENqRGCo43UcFzE/uc/6Gp7FOFIu eWA47v7LmgsSQAbdCE49iNq7gQIDAQABo4ICjDCCAogwHQYDVR0OBBYEFKCTgDND vqaFLH48pFzGj4K/VGFTMB8GA1UdIwQYMBaAFL8/vA2pbi5ROqpYgSxpS80HuN13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FDNS9BM0VCNUMwMEMw RDUxMUVBOTA4QzAxNzhDNEY5QUUwMi92ei04RGFsdUxsRTZxbGlCTEdsTHpRZTQz WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z6LThEYWx1TGxFNnFsaUJMR2xMelFlNDNYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQzUvQTNFQjVDMDBDMEQ1MTFFQTkwOEMwMTc4QzRGOUFFMDIvNUJDNDJGMjg2 RTlGMTFFQzkwQTY2RTJCQzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAe BAIAATAYAwQCZ9bEAwQCkDCQAwQA2mQsAwQA2mRLMBgEAgACMBIDBwAgAQ3oABAD BwAgAQ3oABMwDQYJKoZIhvcNAQELBQADggEBAISlqrtJvUSJ+/e2QZBBvrSxdz34 vWGQyBLjkpND9LZiBH+PXNQO2F6J70BgwLDxEUyggcIvTUkFwunls8HG6RsUEyuF mW1WBRHrNTmIWfelwLt+/Mf69OTu/qU3LJopQ7Dw8l+OMgaHU3Mx60cL83Z6U1ku F5G62OpGGxEuN5nlZEfEjJkjUVlndow3hdK8T0/tu7JH5ayTORvV4dhnt1H7pr+Y TNoccXN3zKYbH3nKpMwb2UQDgJbf0KPmms9rE0ucoKCo1QmLa04PDXeTP7aRip9B qCQX2b6ENGRtVhsGeX2mX47p+6kF3J8H9wsWRop5l/XpBypHktot6hs3Ihw= -----END CERTIFICATE-----Generated at Mon Mar 2 20:57:00 2026 by rpki-client