$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa File: 851A7AD6FF7F11EDA505D70EC4F9AE02.roa (raw, json) Hash identifier: Cd3ka8bb5R3DYUTF/v0b6ivGnboKPrlUrUoM7/Vgbdw= Subject key identifier: 34:5F:B7:27:E5:F4:D7:F3:B7:3D:B6:E1:8E:D8:30:20:B0:8B:64:B5 Certificate issuer: /CN=A91CCDF3/serialNumber=C915FD3BD45B8218B95F573749D3AA498016AAA9 Certificate serial: 020A Authority key identifier: C9:15:FD:3B:D4:5B:82:18:B9:5F:57:37:49:D3:AA:49:80:16:AA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:14:33 +0000 ROA not before: Thu 05 Feb 2026 12:22:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58604 IP address blocks: 103.247.38.0/23 maxlen: 23 103.247.38.0/24 maxlen: 24 103.247.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.crl rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCDF3, serialNumber=C915FD3BD45B8218B95F573749D3AA498016AAA9 Validity Not Before: Feb 5 12:22:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a41189-a5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:64:9e:52:db:2c:34:c2:1e:a9:c0:70:f5:50: 50:bb:18:89:d2:21:6c:95:b0:af:c0:0c:f9:90:21: 70:32:0e:55:12:f3:91:f3:f2:ef:0b:9c:8e:fb:ab: 23:d0:ee:b8:ee:b4:db:d5:33:2f:f0:90:04:d4:bd: 90:46:47:22:ed:07:06:d4:e2:8a:2a:dc:65:12:2e: 56:f9:64:31:3c:5c:51:c2:3b:55:5e:b8:55:4e:6a: 7b:90:83:2d:73:3e:b3:cf:7d:ed:5f:13:5e:25:bf: 2b:7d:78:43:63:b2:be:66:ef:d8:5f:29:8a:5d:3d: 42:61:1e:59:05:c1:36:76:68:cd:4b:85:5c:7b:de: a4:b1:2b:c3:de:58:ac:c2:a7:34:6d:2a:1e:e8:16: f0:e5:cd:37:d7:5d:88:08:07:7f:4f:a0:07:a2:35: b1:54:8a:2b:54:9d:df:b6:f4:86:ac:05:cc:90:51: 4e:a5:92:53:8c:1f:79:4c:9e:07:6b:62:ca:83:d3: c3:55:21:cb:a0:1e:b6:82:a3:4e:80:ef:06:3f:2a: 10:f8:c7:79:af:ca:4d:ca:f3:0e:9f:46:d4:c0:60: 1b:de:36:84:f5:62:b0:68:87:8f:1c:14:2f:ad:17: 8e:f1:7f:35:63:3e:40:f6:ac:45:67:fa:5d:8f:1e: 7d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5F:B7:27:E5:F4:D7:F3:B7:3D:B6:E1:8E:D8:30:20:B0:8B:64:B5 X509v3 Authority Key Identifier: keyid:C9:15:FD:3B:D4:5B:82:18:B9:5F:57:37:49:D3:AA:49:80:16:AA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/yRX9O9Rbghi5X1c3SdOqSYAWqqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRX9O9Rbghi5X1c3SdOqSYAWqqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCDF3/42DE4836FF7611EDB8981558C4F9AE02/851A7AD6FF7F11EDA505D70EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.38.0/23 Signature Algorithm: sha256WithRSAEncryption 75:bf:aa:84:79:87:70:31:da:a2:bc:15:f7:a2:43:4e:4d:43: 70:c2:a4:50:ba:29:7f:3f:31:74:3e:1e:a3:0d:fe:4e:57:5e: ee:76:28:3d:67:0b:8a:c0:a8:a1:07:b2:4e:be:98:75:ac:e1: b9:bc:b8:db:c6:7a:11:42:8e:04:fc:24:9a:95:8c:f4:e1:b5: 66:25:65:9e:b2:3d:65:1c:e9:d0:15:41:23:88:cc:27:42:c7: 3b:a2:63:b7:52:e0:eb:15:eb:d9:2b:63:0c:93:fc:a7:fa:ee: 8b:50:d1:20:ab:83:a4:52:91:11:35:db:72:f3:0b:26:32:12: 6f:24:a6:ca:a8:a8:94:8d:5c:77:94:35:f6:95:f6:df:21:73: d0:8f:d3:70:bd:be:94:8b:24:6a:3d:0f:f8:57:bf:28:09:a2: e8:2c:bb:73:08:11:55:2e:d9:31:cf:79:69:fc:67:63:8a:65: b0:43:90:d8:39:13:7c:35:83:83:b3:f5:b3:97:20:0d:b6:71: fe:63:d0:f7:34:6b:41:51:2e:0a:f2:3f:bc:5d:6a:80:5d:f0: db:5a:b0:2c:fe:af:09:ea:e9:bd:7f:cf:91:52:0d:15:fd:cf: 66:b0:ef:bd:83:1d:8f:b5:1d:f0:e8:c5:97:97:c6:c1:ff:ed: 0d:13:2d:db -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NERjMxMTAvBgNVBAUTKEM5MTVGRDNCRDQ1QjgyMThCOTVGNTczNzQ5RDNBQTQ5 ODAxNkFBQTkwHhcNMjYwMjA1MTIyMjI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTE4OS1hNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmSeUtssNMIeqcBw9VBQuxiJ0iFslbCvwAz5kCFwMg5VEvOR8/LvC5yO+6sj 0O647rTb1TMv8JAE1L2QRkci7QcG1OKKKtxlEi5W+WQxPFxRwjtVXrhVTmp7kIMt cz6zz33tXxNeJb8rfXhDY7K+Zu/YXymKXT1CYR5ZBcE2dmjNS4Vce96ksSvD3lis wqc0bSoe6Bbw5c03112ICAd/T6AHojWxVIorVJ3ftvSGrAXMkFFOpZJTjB95TJ4H a2LKg9PDVSHLoB62gqNOgO8GPyoQ+Md5r8pNyvMOn0bUwGAb3jaE9WKwaIePHBQv rReO8X81Yz5A9qxFZ/pdjx59mQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDRftyfl 9Nfztz224Y7YMCCwi2S1MB8GA1UdIwQYMBaAFMkV/TvUW4IYuV9XN0nTqkmAFqqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0RGMy80MkRFNDgzNkZG NzYxMUVEQjg5ODE1NThDNEY5QUUwMi95Ulg5TzlSYmdoaTVYMWMzU2RPcVNZQVdx cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lSWDlPOVJiZ2hpNVgxYzNTZE9xU1lBV3Fxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NERjMvNDJERTQ4MzZGRjc2MTFFREI4OTgxNTU4QzRGOUFFMDIvODUxQTdBRDZG RjdGMTFFREE1MDVENzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/cmMA0GCSqGSIb3DQEBCwUAA4IBAQB1v6qEeYdwMdqivBX3okNO TUNwwqRQuil/PzF0Ph6jDf5OV17udig9ZwuKwKihB7JOvph1rOG5vLjbxnoRQo4E /CSalYz04bVmJWWesj1lHOnQFUEjiMwnQsc7omO3UuDrFevZK2MMk/yn+u6LUNEg q4OkUpERNdty8wsmMhJvJKbKqKiUjVx3lDX2lfbfIXPQj9Nwvb6UiyRqPQ/4V78o CaLoLLtzCBFVLtkxz3lp/GdjimWwQ5DYORN8NYODs/WzlyANtnH+Y9D3NGtBUS4K 8j+8XWqAXfDbWrAs/q8J6um9f8+RUg0V/c9msO+9gx2PtR3w6MWXl8bB/+0NEy3b -----END CERTIFICATE-----Generated at Mon Mar 2 08:17:53 2026 by rpki-client