$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa File: C965E8C4679911EEB466ED36C4F9AE02.roa (raw, json) Hash identifier: bDrcCfIunOv3Ox8MoCryqHWYdLJQz+jVsJlwtnaxXwA= Subject key identifier: 4C:71:BF:31:3E:04:25:AC:C4:66:D5:12:0B:44:4D:ED:29:DA:5D:66 Certificate issuer: /CN=A91D1F95/serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Certificate serial: 02F8 Authority key identifier: D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:28:07 +0000 ROA not before: Wed 29 Oct 2025 01:45:29 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55501 IP address blocks: 103.174.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 760 (0x2f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1F95, serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Validity Not Before: Oct 29 01:45:29 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44cf7-132f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:ef:cd:bd:e5:25:54:b5:c2:04:52:5f:1a: 01:11:6c:01:40:86:cf:78:e6:e1:60:18:e2:3a:8e: d5:b6:e8:93:76:fd:79:74:1a:48:a9:41:61:ec:f8: 4c:16:62:85:7e:d7:d8:9e:f5:9d:8e:f4:35:d7:06: 9b:cb:48:58:ed:3f:68:43:ca:5c:b4:76:ac:26:d0: 0c:9c:ea:a9:9b:9b:f7:d7:4d:f0:08:f1:fb:e8:a1: 77:83:f4:49:74:de:f0:5b:f3:cd:57:2e:cf:67:18: e7:d7:e7:9c:24:6c:dd:49:56:ff:7c:a9:da:63:ff: bb:ee:13:f0:3c:21:18:18:2b:d6:da:d7:89:fa:67: 48:38:61:5d:2c:d3:dc:89:49:9b:44:42:2d:dc:a5: 15:46:9a:ae:86:e7:dd:bf:dc:23:6e:ae:e3:c6:2d: 60:05:4c:ae:d9:d2:3f:ab:35:3f:01:94:8b:bd:18: 4e:34:58:d4:92:8f:63:70:b7:b8:81:92:da:34:de: 45:7c:d8:be:ba:5d:0f:79:25:7c:64:13:a0:d7:b4: 72:f5:b1:a4:63:a7:41:5a:1e:56:33:65:48:79:fb: 97:39:40:c0:a3:c9:e5:13:ca:3e:e6:21:f7:c7:c4: 35:af:8e:f8:bf:66:1d:04:68:6f:fc:6d:e8:71:7a: 04:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:71:BF:31:3E:04:25:AC:C4:66:D5:12:0B:44:4D:ED:29:DA:5D:66 X509v3 Authority Key Identifier: keyid:D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.174.99.0/24 Signature Algorithm: sha256WithRSAEncryption dc:a0:de:b8:87:a5:f9:f3:07:ea:08:c9:6f:f4:ce:e2:c8:ce: 14:c2:64:a5:04:0f:4f:f5:88:0d:ff:6e:04:d5:af:37:83:ba: a5:d4:84:c9:c6:c5:ac:39:bc:49:ae:f3:91:0c:c5:d1:d6:c3: 16:72:38:9b:bf:cb:23:7f:a7:e9:7b:99:99:4b:8a:a1:4a:cb: fe:ec:62:39:69:69:ab:2d:05:3f:43:c1:bf:11:c7:ed:92:31: 13:dd:a5:ce:36:6a:3d:16:df:99:0f:90:23:2b:da:60:24:35: 82:4c:e3:f6:87:6b:87:58:70:24:49:d7:b9:e1:df:fc:5f:b7: 74:89:0d:b9:25:47:18:04:71:d6:82:f0:2c:b2:fb:be:98:4f: 32:c4:0a:5b:fe:48:47:da:e6:1f:bc:33:5d:91:b2:72:2d:70: fc:5e:18:e2:64:d7:42:72:95:2e:c2:2f:4a:d9:da:83:d6:eb: 7c:13:b4:5b:0e:b5:40:78:16:c2:de:ab:3e:af:e3:7d:55:2a: 15:40:d1:e9:fb:64:15:1c:45:9b:5f:05:e2:8f:11:f1:6f:0e: 67:c6:7c:66:89:83:6a:64:cb:d0:32:ef:5a:96:15:80:59:2e: 82:ad:fe:56:d2:d3:a2:09:a1:49:1a:58:b3:34:28:e1:54:52: dc:fb:0e:43 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFGOTUxMTAvBgNVBAUTKEQ2RjA2NzI0RDA5Njg3MDdFRDFERkFGREJCMjI1ODAy QjNEQUExOTQwHhcNMjUxMDI5MDE0NTI5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGNmNy0xMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq17vzb3lJVS1wgRSXxoBEWwBQIbPeObhYBjiOo7VtuiTdv15dBpIqUFh7PhM FmKFftfYnvWdjvQ11waby0hY7T9oQ8pctHasJtAMnOqpm5v3103wCPH76KF3g/RJ dN7wW/PNVy7PZxjn1+ecJGzdSVb/fKnaY/+77hPwPCEYGCvW2teJ+mdIOGFdLNPc iUmbREIt3KUVRpquhufdv9wjbq7jxi1gBUyu2dI/qzU/AZSLvRhONFjUko9jcLe4 gZLaNN5FfNi+ul0PeSV8ZBOg17Ry9bGkY6dBWh5WM2VIefuXOUDAo8nlE8o+5iH3 x8Q1r474v2YdBGhv/G3ocXoEVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFExxvzE+ BCWsxGbVEgtETe0p2l1mMB8GA1UdIwQYMBaAFNbwZyTQlocH7R36/bsiWAKz2qGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUY5NS9GRjkzRUM3MjE5 NUYxMUVEQjJCREY5NUVDNEY5QUUwMi8xdkJuSk5DV2h3ZnRIZnI5dXlKWUFyUGFv WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF2Qm5KTkNXaHdmdEhmcjl1eUpZQXJQYW9aUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFGOTUvRkY5M0VDNzIxOTVGMTFFREIyQkRGOTVFQzRGOUFFMDIvQzk2NUU4QzQ2 Nzk5MTFFRUI0NjZFRDM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ65jMA0GCSqGSIb3DQEBCwUAA4IBAQDcoN64h6X58wfqCMlv9M7i yM4UwmSlBA9P9YgN/24E1a83g7ql1ITJxsWsObxJrvORDMXR1sMWcjibv8sjf6fp e5mZS4qhSsv+7GI5aWmrLQU/Q8G/EcftkjET3aXONmo9Ft+ZD5AjK9pgJDWCTOP2 h2uHWHAkSde54d/8X7d0iQ25JUcYBHHWgvAssvu+mE8yxApb/khH2uYfvDNdkbJy LXD8XhjiZNdCcpUuwi9K2dqD1ut8E7RbDrVAeBbC3qs+r+N9VSoVQNHp+2QVHEWb XwXijxHxbw5nxnxmiYNqZMvQMu9alhWAWS6Crf5W0tOiCaFJGlizNCjhVFLc+w5D -----END CERTIFICATE-----Generated at Mon Mar 2 07:11:21 2026 by rpki-client