$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa File: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (raw, json) Hash identifier: aDPXdcJkf4Q3bEJLDiYToXTVljTbQsc9tq+SGxeE8gY= Subject key identifier: D1:1E:5B:5B:13:A3:55:AE:9A:D5:E2:AA:A3:42:4B:1E:95:3C:A9:1D Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 06D0 Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:45:49 +0000 ROA not before: Mon 28 Apr 2025 23:33:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142008 IP address blocks: 103.164.158.0/24 maxlen: 24 103.173.38.0/24 maxlen: 24 2001:df6:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA, serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Apr 28 23:33:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fcbc-157e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:87:84:13:80:14:91:ee:72:90:34:d7:6b: 50:5b:af:d4:51:a4:b5:30:fe:ae:f5:1c:52:5b:ba: 5f:72:7e:b8:57:91:7d:ef:bc:4f:22:8e:ad:1a:42: ef:14:f9:22:27:b1:b4:18:46:7d:f4:6c:b3:a1:7f: fa:7a:24:66:8e:57:01:b0:a9:e4:c4:e4:23:c2:62: e6:29:96:af:27:75:c8:6f:ce:03:b0:0f:8b:15:56: 03:07:64:5f:ce:49:f0:79:0e:cc:04:de:eb:0b:0f: 1f:52:93:78:3c:af:81:af:d9:31:00:cc:a4:46:cc: ca:ee:47:47:06:6a:75:7e:1d:4b:ae:b3:32:46:3c: 9d:74:cd:c4:a9:d5:b8:8d:e7:3c:96:94:ab:4e:e8: d1:ce:a2:24:21:63:0c:3d:24:50:fb:82:fb:1d:57: 1e:39:0d:07:2c:b3:5e:27:48:f4:d8:76:3f:75:78: b3:9a:3c:b0:05:04:47:71:00:93:11:82:c0:14:9f: 38:48:3a:82:85:99:d3:74:de:61:35:a6:09:72:1f: ee:15:11:c5:32:06:80:2d:15:5e:ba:5b:91:6d:11: e4:b9:a9:0e:4b:51:27:7f:47:75:c2:9e:72:c4:af: 6a:85:46:6c:3e:6c:19:51:70:2b:da:47:1a:00:cf: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1E:5B:5B:13:A3:55:AE:9A:D5:E2:AA:A3:42:4B:1E:95:3C:A9:1D X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.158.0/24 103.173.38.0/24 IPv6: 2001:df6:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 11:fb:84:14:21:b5:9f:c1:66:a5:a8:9e:c4:f8:95:37:8f:03: d4:05:19:a4:79:f0:94:75:55:04:3a:ee:b6:03:c6:7c:e5:e0: 7d:ca:f1:f6:cc:e0:86:d0:3e:c6:fe:d9:84:b7:cf:8f:7a:38: bc:85:e6:7b:7a:84:de:29:68:dd:92:3c:27:7a:a2:71:9d:2c: 59:78:05:66:26:f8:97:65:42:3c:80:27:4f:fa:47:41:4e:98: f7:f0:57:76:83:77:f5:7e:9e:90:e3:78:2c:0c:77:30:7f:98: f9:ff:0e:1e:a1:7a:a5:19:d0:f2:9b:50:a8:a7:c7:56:39:56: 00:89:d9:9c:b4:05:9a:b0:45:82:e3:05:06:73:b9:c2:63:ee: 5b:e7:95:10:f2:67:a5:c9:a6:87:14:9d:2c:13:5b:22:66:0a: 82:1d:f2:1b:5f:be:cb:59:18:59:63:2d:1f:53:5a:ac:f3:da: 31:1d:15:33:83:e7:d7:34:98:0e:92:d4:3b:9d:8e:e9:96:1d: 80:c3:95:2a:8a:a2:46:b6:4e:db:42:ce:37:d2:fa:54:a2:d8: b2:0b:24:92:64:89:e6:7e:58:cb:8f:94:cb:eb:09:a8:ae:ca: f9:c9:71:1c:8c:a2:ba:d5:31:63:93:33:e2:11:d5:f9:3b:ce: c9:76:45:84 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjUwNDI4MjMzMzU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmNiYy0xNTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo6HhBOAFJHucpA012tQW6/UUaS1MP6u9RxSW7pfcn64V5F977xPIo6tGkLv FPkiJ7G0GEZ99GyzoX/6eiRmjlcBsKnkxOQjwmLmKZavJ3XIb84DsA+LFVYDB2Rf zknweQ7MBN7rCw8fUpN4PK+Br9kxAMykRszK7kdHBmp1fh1LrrMyRjyddM3EqdW4 jec8lpSrTujRzqIkIWMMPSRQ+4L7HVceOQ0HLLNeJ0j02HY/dXizmjywBQRHcQCT EYLAFJ84SDqChZnTdN5hNaYJch/uFRHFMgaALRVeuluRbRHkuakOS1Enf0d1wp5y xK9qhUZsPmwZUXAr2kcaAM+z9wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFNEeW1sT o1WumtXiqqNCSx6VPKkdMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFQkEvODM5NEUyNTA5MUVBMTFFQkFBREJGOTJGQzRGOUFFMDIvQTE0QkRDRTQ5 MUVCMTFFQkFEN0ExNTMwQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ6SeAwQAZ60mMA8EAgACMAkDBwAgAQ32TIAwDQYJKoZIhvcNAQEL BQADggEBABH7hBQhtZ/BZqWonsT4lTePA9QFGaR58JR1VQQ67rYDxnzl4H3K8fbM 4IbQPsb+2YS3z496OLyF5nt6hN4paN2SPCd6onGdLFl4BWYm+JdlQjyAJ0/6R0FO mPfwV3aDd/V+npDjeCwMdzB/mPn/Dh6heqUZ0PKbUKinx1Y5VgCJ2Zy0BZqwRYLj BQZzucJj7lvnlRDyZ6XJpocUnSwTWyJmCoId8htfvstZGFljLR9TWqzz2jEdFTOD 59c0mA6S1DudjumWHYDDlSqKoka2TttCzjfS+lSi2LILJJJkieZ+WMuPlMvrCaiu yvnJcRyMorrVMWOTM+IR1fk7zsl2RYQ= -----END CERTIFICATE-----Generated at Mon Mar 2 04:33:00 2026 by rpki-client