$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa File: EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa (raw, json) Hash identifier: RlmOITLHxFIRk16C+SkcNaBU54+NB+Z3brsV3QiUy8s= Subject key identifier: 29:42:9C:1F:4F:41:FC:93:C1:85:C9:0B:DE:43:27:0B:A5:11:2E:8C Certificate issuer: /CN=A91CBA26/serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E Certificate serial: 19C0 Authority key identifier: 1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa Signing time: Sat 28 Feb 2026 17:14:10 +0000 ROA not before: Sat 28 Feb 2026 17:14:10 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 136230 IP address blocks: 103.84.96.0/24 maxlen: 24 103.101.172.0/24 maxlen: 24 103.101.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.crl rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6592 (0x19c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBA26, serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E Validity Not Before: Feb 28 17:14:10 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a32261-2370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9d:ac:16:5d:bb:7d:22:60:64:37:a6:2f:19: 23:96:29:73:9d:9c:70:95:0a:4d:69:45:85:ee:62: a9:d1:22:82:26:0f:bd:53:d1:78:98:96:74:aa:6b: 43:42:50:94:d6:3d:e9:da:21:94:c5:f0:37:82:1a: 86:03:ab:b0:f5:7e:58:3c:fb:13:80:6f:46:b7:a7: 54:22:2b:75:76:d0:e0:df:47:6d:98:da:18:65:bc: 4c:bd:4b:cb:84:ce:7e:c8:d5:11:f1:6d:4b:0e:a8: dd:75:9f:80:5a:03:61:f8:e2:ed:47:f6:19:c5:57: 6d:f5:a0:7d:91:f2:f5:f5:4c:91:d1:ef:6d:ad:e4: 6d:96:82:e8:59:00:62:a8:52:59:61:3a:06:7b:7d: 58:3a:ea:41:36:44:d9:fe:66:ef:76:82:66:0f:cb: 6a:d4:73:32:05:32:8b:8c:ef:e0:e4:d9:74:4c:57: 57:a4:c8:eb:d7:67:61:ea:ec:88:f1:77:19:3f:e5: 98:a7:23:62:73:78:ec:24:2a:f5:9c:98:af:87:6b: 13:d3:ac:9a:ca:3e:22:01:c3:3e:b6:ff:31:dc:a6: e9:0c:5a:15:c8:aa:5e:30:6f:a3:7a:7e:58:fa:2c: b8:d0:6b:4e:d9:95:43:5c:a4:2b:06:f3:3f:ee:59: 07:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:42:9C:1F:4F:41:FC:93:C1:85:C9:0B:DE:43:27:0B:A5:11:2E:8C X509v3 Authority Key Identifier: keyid:1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.96.0/24 103.101.172.0/24 103.101.174.0/24 Signature Algorithm: sha256WithRSAEncryption 60:8f:d2:46:85:fe:22:40:7b:93:b0:d8:4e:53:34:be:88:d1: 3d:6b:a1:6c:6e:51:6c:58:44:67:76:fd:fa:15:49:d7:20:45: f9:b6:c2:5b:b7:33:51:5e:27:20:69:eb:97:0e:3c:b2:85:a5: 34:c2:23:4d:47:5d:ac:b6:b2:78:84:af:4f:45:20:45:b3:f9: fe:32:0d:4a:1e:2a:38:b5:7d:8d:11:a5:3d:2b:29:59:ac:f4: c9:42:db:f4:36:96:31:ac:d8:9c:7a:8d:80:4f:88:24:50:09: 94:74:c6:41:05:92:3c:f7:2c:72:8a:2e:56:b7:dd:80:53:e6: 1d:75:56:1b:15:21:3e:88:0f:a9:9e:51:f5:10:fa:74:ff:11: ac:3c:fd:cf:1b:0d:29:16:f3:20:ea:65:f0:16:fc:97:65:75: f9:b6:8d:77:66:fc:80:04:84:c8:14:1e:e3:01:82:ed:1a:2b: 23:21:87:83:b7:d6:45:7f:e0:02:6e:46:50:82:c2:ae:c6:fd: 6e:f5:3c:39:54:b1:0c:51:63:f3:d9:07:46:92:f8:9b:57:c8: a1:9c:12:bf:2e:22:fc:95:6d:d8:c2:fe:f9:c5:ba:f0:3b:36: f9:23:79:ba:ea:df:63:cf:ee:09:81:4f:90:4b:41:df:1c:1c: 5b:ea:29:46 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JBMjYxMTAvBgNVBAUTKDFBRkQ0MjY1RTYzRDBDQkY3NTIzNkVEOTY4NkFFNEYw MDE1NUZGN0UwHhcNMjYwMjI4MTcxNDEwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OWEzMjI2MS0yMzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnp2sFl27fSJgZDemLxkjlilznZxwlQpNaUWF7mKp0SKCJg+9U9F4mJZ0qmtD QlCU1j3p2iGUxfA3ghqGA6uw9X5YPPsTgG9Gt6dUIit1dtDg30dtmNoYZbxMvUvL hM5+yNUR8W1LDqjddZ+AWgNh+OLtR/YZxVdt9aB9kfL19UyR0e9treRtloLoWQBi qFJZYToGe31YOupBNkTZ/mbvdoJmD8tq1HMyBTKLjO/g5Nl0TFdXpMjr12dh6uyI 8XcZP+WYpyNic3jsJCr1nJivh2sT06yayj4iAcM+tv8x3KbpDFoVyKpeMG+jen5Y +iy40GtO2ZVDXKQrBvM/7lkHGwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFClCnB9P QfyTwYXJC95DJwulES6MMB8GA1UdIwQYMBaAFBr9QmXmPQy/dSNu2Whq5PABVf9+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkEyNi9DQTY0Q0JGQTgy NUQxMUU3OTEzMjA5MURDNEY5QUUwMi9HdjFDWmVZOURMOTFJMjdaYUdyazhBRlZf MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d2MUNaZVk5REw5MUkyN1phR3JrOEFGVl8zNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JBMjYvQ0E2NENCRkE4MjVEMTFFNzkxMzIwOTFEQzRGOUFFMDIvRUZEOTkzOEUy RkFGMTFFREJFMEE4QzEwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ1RgAwQAZ2WsAwQAZ2WuMA0GCSqGSIb3DQEBCwUAA4IBAQBgj9JG hf4iQHuTsNhOUzS+iNE9a6FsblFsWERndv36FUnXIEX5tsJbtzNRXicgaeuXDjyy haU0wiNNR12strJ4hK9PRSBFs/n+Mg1KHio4tX2NEaU9KylZrPTJQtv0NpYxrNic eo2AT4gkUAmUdMZBBZI89yxyii5Wt92AU+YddVYbFSE+iA+pnlH1EPp0/xGsPP3P Gw0pFvMg6mXwFvyXZXX5to13ZvyABITIFB7jAYLtGisjIYeDt9ZFf+ACbkZQgsKu xv1u9Tw5VLEMUWPz2QdGkvibV8ihnBK/LiL8lW3Ywv75xbrwOzb5I3m66t9jz+4J gU+QS0HfHBxb6ilG -----END CERTIFICATE-----Generated at Mon Mar 2 02:05:16 2026 by rpki-client