$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/8CAFF0E884AF11F0A1FF182BC4F9AE02.roa File: 8CAFF0E884AF11F0A1FF182BC4F9AE02.roa (raw, json) Hash identifier: 1iSIVgVboXBGeGo/TqQ/0DwhhkF49H9wd1wvK0JsTR0= Subject key identifier: 0B:DA:BD:3F:BF:12:1C:85:D5:A1:30:B7:70:16:75:F2:E8:6C:43:38 Certificate issuer: /CN=A91CB92A/serialNumber=AD152AF6EF0299620BF9F77FD60CD8B3140417AF Certificate serial: 63 Authority key identifier: AD:15:2A:F6:EF:02:99:62:0B:F9:F7:7F:D6:0C:D8:B3:14:04:17:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRUq9u8CmWIL-fd_1gzYsxQEF68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/8CAFF0E884AF11F0A1FF182BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:29:13 +0000 ROA not before: Sun 01 Mar 2026 09:29:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153995 IP address blocks: 103.147.16.0/23 maxlen: 23 103.147.16.0/24 maxlen: 24 103.147.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/rRUq9u8CmWIL-fd_1gzYsxQEF68.crl rsync://rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/rRUq9u8CmWIL-fd_1gzYsxQEF68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRUq9u8CmWIL-fd_1gzYsxQEF68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB92A, serialNumber=AD152AF6EF0299620BF9F77FD60CD8B3140417AF Validity Not Before: Mar 1 09:29:13 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a406e8-3301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:88:db:ac:e4:eb:47:9e:bd:65:07:41:48: 9e:58:78:bf:02:25:89:36:ad:5c:74:ea:ef:0a:5c: 1a:ed:02:d4:82:ee:4e:3d:c8:9b:07:76:17:e8:22: 1c:6e:ef:99:d4:60:3a:3e:37:7e:13:7f:46:fe:60: ec:7f:e9:e5:f0:d8:86:6a:6f:1a:a4:c5:47:28:f5: c4:2c:48:9d:3d:d8:f5:c2:66:da:fc:60:7b:74:bd: 2a:ab:de:57:a0:3d:3e:62:8b:36:ce:c6:24:df:18: fa:d5:82:6f:25:38:9a:bc:fd:f6:b0:5f:0b:02:9f: fe:ff:ab:23:d0:bc:ae:34:f0:7b:65:4e:70:8c:6b: 06:82:a4:ff:f8:75:b4:89:22:cd:b9:c3:70:2b:68: 14:77:e6:07:8f:bb:4d:c6:c3:2c:75:fc:89:11:c1: 8c:15:c4:d1:f8:6b:aa:8d:ce:89:7d:eb:37:cb:88: f4:dc:fc:f6:dd:a4:7e:30:5b:31:5c:f3:4c:a2:e7: c5:fb:09:da:69:7e:a3:23:66:74:a5:70:c8:fc:94: 68:bc:05:fe:ab:3f:62:2b:69:1f:7c:53:bb:2e:7b: 56:8a:99:65:d4:a4:ac:dc:a6:7b:33:26:c7:3d:bb: 89:cf:1d:14:65:49:58:7d:94:b7:1d:f0:05:be:ea: 47:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:DA:BD:3F:BF:12:1C:85:D5:A1:30:B7:70:16:75:F2:E8:6C:43:38 X509v3 Authority Key Identifier: keyid:AD:15:2A:F6:EF:02:99:62:0B:F9:F7:7F:D6:0C:D8:B3:14:04:17:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/rRUq9u8CmWIL-fd_1gzYsxQEF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRUq9u8CmWIL-fd_1gzYsxQEF68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB92A/FC12E31084AE11F096C09D29C4F9AE02/8CAFF0E884AF11F0A1FF182BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.16.0/23 Signature Algorithm: sha256WithRSAEncryption b3:90:91:97:bc:0e:61:79:e4:cb:73:4d:97:78:ca:dd:5c:e8: 29:7f:dd:d2:2f:2c:cf:10:b7:e1:5c:ad:0a:76:33:51:67:6d: bf:08:74:ed:10:f8:75:1d:56:91:f3:a8:38:71:77:84:90:db: 46:55:91:60:bb:8c:e4:d0:e7:15:89:72:23:94:c2:01:c9:fa: f4:75:b1:df:92:c7:90:07:01:24:9d:fd:36:51:6c:48:e8:8f: 0d:b7:47:92:cb:43:ff:e3:b7:66:40:98:1f:8d:a7:4b:72:d2: 2a:1f:0c:a1:14:61:49:69:73:67:58:28:7f:16:5e:f2:c8:0f: f6:5f:dc:e4:0f:e6:03:cd:66:ab:7b:9f:29:d2:b6:43:d8:6c: f3:8e:04:ec:ea:e5:94:b5:9b:3f:5a:1e:20:e5:77:3b:18:fd: 3d:56:2b:6a:69:80:c6:d9:14:0e:4f:b3:d2:0e:99:7b:e3:79: 63:c6:21:0b:5c:d1:82:72:3f:35:aa:b5:a7:58:7b:3e:f7:e3: 8b:36:33:d9:4f:77:fc:38:81:e0:1c:75:bf:53:79:40:ee:8f: fe:5c:bf:d7:ae:80:c1:f2:f1:59:d8:7c:46:bb:42:1d:db:2e: c6:51:2c:00:16:83:52:de:79:de:62:77:3e:41:9f:fe:ac:18: e6:bf:28:10 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjkyQTExMC8GA1UEBRMoQUQxNTJBRjZFRjAyOTk2MjBCRjlGNzdGRDYwQ0Q4QjMx NDA0MTdBRjAeFw0yNjAzMDEwOTI5MTNaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQwNmU4LTMzMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/5YjbrOTrR569ZQdBSJ5YeL8CJYk2rVx06u8KXBrtAtSC7k49yJsHdhfoIhxu 75nUYDo+N34Tf0b+YOx/6eXw2IZqbxqkxUco9cQsSJ092PXCZtr8YHt0vSqr3leg PT5iizbOxiTfGPrVgm8lOJq8/fawXwsCn/7/qyPQvK408HtlTnCMawaCpP/4dbSJ Is25w3AraBR35gePu03Gwyx1/IkRwYwVxNH4a6qNzol96zfLiPTc/PbdpH4wWzFc 80yi58X7CdppfqMjZnSlcMj8lGi8Bf6rP2IraR98U7sue1aKmWXUpKzcpnszJsc9 u4nPHRRlSVh9lLcd8AW+6kdlAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUC9q9P78S HIXVoTC3cBZ18uhsQzgwHwYDVR0jBBgwFoAUrRUq9u8CmWIL+fd/1gzYsxQEF68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCOTJBL0ZDMTJFMzEwODRB RTExRjA5NkMwOUQyOUM0RjlBRTAyL3JSVXE5dThDbVdJTC1mZF8xZ3pZc3hRRUY2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclJVcTl1OENtV0lMLWZkXzFnellzeFFFRjY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjkyQS9GQzEyRTMxMDg0QUUxMUYwOTZDMDlEMjlDNEY5QUUwMi84Q0FGRjBFODg0 QUYxMUYwQTFGRjE4MkJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnkxAwDQYJKoZIhvcNAQELBQADggEBALOQkZe8DmF55MtzTZd4yt1c 6Cl/3dIvLM8Qt+FcrQp2M1Fnbb8IdO0Q+HUdVpHzqDhxd4SQ20ZVkWC7jOTQ5xWJ ciOUwgHJ+vR1sd+Sx5AHASSd/TZRbEjojw23R5LLQ//jt2ZAmB+Np0ty0iofDKEU YUlpc2dYKH8WXvLID/Zf3OQP5gPNZqt7nynStkPYbPOOBOzq5ZS1mz9aHiDldzsY /T1WK2ppgMbZFA5Ps9IOmXvjeWPGIQtc0YJyPzWqtadYez7344s2M9lPd/w4geAc db9TeUDuj/5cv9eugMHy8VnYfEa7Qh3bLsZRLAAWg1Leed5idz5Bn/6sGOa/KBA= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:55 2026 by rpki-client