$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/A82C70A4C9FA11EBB7F2E749C4F9AE02.roa File: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (raw, json) Hash identifier: BCRlLiUr46FvVfviJkMIrseAlUW6YEGgn9i2WGsrrec= Subject key identifier: A3:D4:05:C8:C0:4E:51:66:15:F7:44:8C:41:72:77:E6:E8:47:67:19 Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0DF4 Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/A82C70A4C9FA11EBB7F2E749C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:17:49 +0000 ROA not before: Thu 20 Feb 2025 18:56:37 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139931 IP address blocks: 103.16.152.0/22 maxlen: 22 103.16.153.0/24 maxlen: 24 2406:4b00:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3572 (0xdf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07, serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Feb 20 18:56:37 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42e6d-387b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ab:bd:db:e7:d6:36:03:27:11:c1:c0:0b:55: b5:33:96:7b:5a:ef:d0:71:d2:93:a3:3c:d0:6b:3d: ba:14:9a:25:91:07:67:91:a3:5c:27:40:50:3e:3a: ab:67:d0:da:bb:17:93:3e:a0:98:ea:13:07:1b:66: f2:04:a7:b6:09:46:89:54:21:91:0e:87:e9:81:ad: ec:44:5f:db:16:81:89:b5:35:06:f9:e5:ee:9f:4f: b0:18:67:84:70:35:1d:c1:e8:bd:41:ef:3f:72:d8: 49:24:25:00:9b:5e:24:d3:92:f4:16:d5:5f:d5:e3: 92:77:fb:57:c6:09:32:e0:88:da:de:d4:9f:6e:66: 4f:f7:29:ba:8f:88:96:c4:61:2e:16:53:75:fc:95: 8c:fe:a3:4e:c6:57:1e:c7:ea:68:10:01:a3:59:ea: d8:8e:e6:f4:54:7c:e1:ee:d8:3b:1f:73:d3:9d:1c: 31:bf:7f:c2:3f:bc:10:45:2d:bd:f9:b9:64:bf:68: 7a:2a:67:59:0b:96:c4:bf:fb:e0:c1:15:57:54:7e: f8:69:27:56:3d:ab:80:51:9d:c4:a6:19:10:7c:a4: 4d:a0:c2:d7:aa:92:3a:72:f9:a7:e7:74:d2:9f:b7: cc:ed:7b:78:ce:63:19:63:90:7a:05:9b:d3:a0:97: bd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D4:05:C8:C0:4E:51:66:15:F7:44:8C:41:72:77:E6:E8:47:67:19 X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/A82C70A4C9FA11EBB7F2E749C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.16.152.0/22 IPv6: 2406:4b00:a::/48 Signature Algorithm: sha256WithRSAEncryption 7a:9b:b8:af:cf:31:39:97:85:84:98:e2:ea:81:3c:3f:75:64: d2:3e:fc:11:25:9e:90:ba:27:a3:2b:af:0d:e7:91:1f:b0:aa: bc:39:fd:c2:a9:f5:9d:76:c4:80:0b:3d:4d:32:62:b8:48:a4: 15:a2:c0:e6:30:c0:e1:a1:e8:ab:86:1c:93:ae:27:3e:1a:fc: 62:45:d9:c0:87:c9:f7:d7:1a:5b:dd:37:99:5f:75:2e:82:25: d8:2a:69:24:4d:d0:b0:10:6c:da:a1:be:8d:23:65:f5:3c:98: 8f:67:7d:11:8a:62:39:57:e6:23:7b:61:92:76:5f:f2:55:b3: 18:29:50:68:ba:9d:4f:12:62:f8:1a:a0:92:9f:16:fb:0c:d5: 8c:33:24:74:2a:ad:ff:65:e5:63:4e:05:29:dc:dc:9b:31:37: e6:ee:5d:f0:19:a3:44:40:f3:09:ba:29:8b:91:28:93:4e:e8: 35:24:b8:53:e8:7e:51:19:b6:9e:54:42:2e:f9:9a:cc:54:bb: 2d:e9:bd:a9:0f:d7:3e:f2:56:85:f3:ea:e2:df:68:99:df:68: fc:5b:ca:d6:80:67:ab:7e:51:2e:65:61:c7:e8:06:17:f9:b6: 85:c2:cf:be:9c:39:31:96:38:fd:5d:53:2e:99:15:9e:ac:b7: d6:10:87:f2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjUwMjIwMTg1NjM3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmU2ZC0zODdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKu92+fWNgMnEcHAC1W1M5Z7Wu/QcdKTozzQaz26FJolkQdnkaNcJ0BQPjqr Z9DauxeTPqCY6hMHG2byBKe2CUaJVCGRDofpga3sRF/bFoGJtTUG+eXun0+wGGeE cDUdwei9Qe8/cthJJCUAm14k05L0FtVf1eOSd/tXxgky4Ija3tSfbmZP9ym6j4iW xGEuFlN1/JWM/qNOxlcex+poEAGjWerYjub0VHzh7tg7H3PTnRwxv3/CP7wQRS29 +blkv2h6KmdZC5bEv/vgwRVXVH74aSdWPauAUZ3EphkQfKRNoMLXqpI6cvmn53TS n7fM7Xt4zmMZY5B6BZvToJe9MwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKPUBcjA TlFmFfdEjEFyd+boR2cZMB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZFMDcvOTYyQzRCN0VEMkJGMTFFOUE4NEQ2NjIyQzRGOUFFMDIvQTgyQzcwQTRD OUZBMTFFQkI3RjJFNzQ5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZxCYMA8EAgACMAkDBwAkBksAAAowDQYJKoZIhvcNAQELBQADggEB AHqbuK/PMTmXhYSY4uqBPD91ZNI+/BElnpC6J6Mrrw3nkR+wqrw5/cKp9Z12xIAL PU0yYrhIpBWiwOYwwOGh6KuGHJOuJz4a/GJF2cCHyffXGlvdN5lfdS6CJdgqaSRN 0LAQbNqhvo0jZfU8mI9nfRGKYjlX5iN7YZJ2X/JVsxgpUGi6nU8SYvgaoJKfFvsM 1YwzJHQqrf9l5WNOBSnc3JsxN+buXfAZo0RA8wm6KYuRKJNO6DUkuFPoflEZtp5U Qi75msxUuy3pvakP1z7yVoXz6uLfaJnfaPxbytaAZ6t+US5lYcfoBhf5toXCz76c OTGWOP1dUy6ZFZ6st9YQh/I= -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:17 2026 by rpki-client