$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/994AC0903E1E11EFB5BBDD3BC4F9AE02.roa File: 994AC0903E1E11EFB5BBDD3BC4F9AE02.roa (raw, json) Hash identifier: kbZVkD6jRKFqNBUgIZMNtq7Y+KDfzPzcA1djWWgpFT4= Subject key identifier: 84:4F:57:A3:03:A4:12:87:8E:4E:48:88:BB:74:A5:7A:33:78:68:1D Certificate issuer: /CN=A91D5AA8/serialNumber=D04CB1E27157868F74F36D707915D9D7F097C908 Certificate serial: 025E Authority key identifier: D0:4C:B1:E2:71:57:86:8F:74:F3:6D:70:79:15:D9:D7:F0:97:C9:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Eyx4nFXho90821weRXZ1_CXyQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/994AC0903E1E11EFB5BBDD3BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:20:16 +0000 ROA not before: Fri 23 Jan 2026 01:22:10 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 25687 IP address blocks: 103.224.8.0/22 maxlen: 22 103.224.8.0/24 maxlen: 24 103.224.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/0Eyx4nFXho90821weRXZ1_CXyQg.crl rsync://rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/0Eyx4nFXho90821weRXZ1_CXyQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Eyx4nFXho90821weRXZ1_CXyQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5AA8, serialNumber=D04CB1E27157868F74F36D707915D9D7F097C908 Validity Not Before: Jan 23 01:22:10 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43d10-516b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:ea:09:fe:8e:fe:62:50:99:35:a4:62:b1: 97:cd:b8:2d:de:7e:3f:40:4b:28:62:d4:e4:12:b9: 96:e8:dc:17:a9:45:0a:0d:1d:7b:d9:fe:47:0c:57: 5b:f8:40:6e:e4:c1:ff:6b:71:b0:19:eb:38:2e:41: f8:26:c0:b8:a2:77:0d:4c:1c:85:3a:3a:17:6c:99: 39:a3:89:83:c5:fd:c9:d8:3e:15:11:2e:88:e9:4e: ff:c3:15:91:1e:24:8a:cc:66:e3:51:5e:78:68:94: f9:7d:23:38:1d:10:d2:0c:81:77:c3:85:10:68:32: bf:38:b0:38:c6:fd:24:ea:2d:d1:4e:93:56:6b:af: 82:8c:ca:d0:f7:5c:68:48:ed:71:50:ac:a3:e3:cc: 5f:c0:ac:31:76:99:55:6c:7c:01:9d:25:6c:2b:4b: c7:13:eb:2f:5a:ba:59:b2:d8:64:36:21:87:6d:f6: d4:51:d1:2d:31:81:56:49:d4:1b:14:92:bb:41:42: bf:24:ca:46:71:9c:0e:24:4a:47:1f:05:25:bc:b9: 4c:22:1b:68:22:a6:18:09:e4:36:f7:dd:d1:f2:54: 47:d4:7a:b8:3f:a1:8f:3f:3d:51:31:11:9b:06:e0: 3f:e0:86:a8:86:9f:0e:d6:2e:42:d8:11:04:e2:37: 96:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4F:57:A3:03:A4:12:87:8E:4E:48:88:BB:74:A5:7A:33:78:68:1D X509v3 Authority Key Identifier: keyid:D0:4C:B1:E2:71:57:86:8F:74:F3:6D:70:79:15:D9:D7:F0:97:C9:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/0Eyx4nFXho90821weRXZ1_CXyQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Eyx4nFXho90821weRXZ1_CXyQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5AA8/2785991291EF11EDB06BAD1FC4F9AE02/994AC0903E1E11EFB5BBDD3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.8.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:4a:08:25:ec:d9:f0:16:70:ff:72:26:cf:e5:94:f8:2c:56: 9c:35:a2:0d:a2:8c:33:4f:8f:12:d9:6c:71:e6:a4:2a:12:56: a3:f3:d0:99:b9:29:1c:47:67:9c:a9:fa:ec:9f:88:2f:9a:61: 91:25:28:64:f1:e3:2e:9c:80:ea:7d:45:dc:97:86:36:6c:21: 3a:6d:cc:5b:7c:a6:b3:42:21:3c:51:4a:0f:99:0d:52:a0:a4: 0f:e2:74:94:42:46:28:8f:60:c5:0a:2f:a7:ad:90:93:e8:14: 32:a3:31:39:64:eb:0d:c3:c1:73:55:09:72:4a:e9:cb:b1:bd: 0b:83:5a:7e:a8:96:81:c5:32:4b:c1:4c:a1:05:35:2e:6c:63: 9e:50:02:b3:30:a5:b0:2a:88:11:26:a8:29:ae:bf:80:2c:3f: 22:a8:91:2b:63:5b:22:c0:72:8d:a7:de:82:ab:a5:d3:7c:26: 9f:3d:db:11:dd:d8:27:93:40:3a:2c:ff:d4:8e:d4:28:ce:c6: 06:da:5a:f1:30:94:f7:11:99:b8:e3:fa:7f:f7:f4:b6:8c:11: 51:e5:d0:7d:29:9c:a2:58:af:1c:92:64:b4:61:d1:d8:c2:54: 79:8a:e3:4d:9f:df:52:9d:0d:c1:3c:fe:4f:6b:cb:16:09:61: 01:ca:12:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBQTgxMTAvBgNVBAUTKEQwNENCMUUyNzE1Nzg2OEY3NEYzNkQ3MDc5MTVEOUQ3 RjA5N0M5MDgwHhcNMjYwMTIzMDEyMjEwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2QxMC01MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9TqCf6O/mJQmTWkYrGXzbgt3n4/QEsoYtTkErmW6NwXqUUKDR172f5HDFdb +EBu5MH/a3GwGes4LkH4JsC4oncNTByFOjoXbJk5o4mDxf3J2D4VES6I6U7/wxWR HiSKzGbjUV54aJT5fSM4HRDSDIF3w4UQaDK/OLA4xv0k6i3RTpNWa6+CjMrQ91xo SO1xUKyj48xfwKwxdplVbHwBnSVsK0vHE+svWrpZsthkNiGHbfbUUdEtMYFWSdQb FJK7QUK/JMpGcZwOJEpHHwUlvLlMIhtoIqYYCeQ2993R8lRH1Hq4P6GPPz1RMRGb BuA/4Iaohp8O1i5C2BEE4jeWoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIRPV6MD pBKHjk5IiLt0pXozeGgdMB8GA1UdIwQYMBaAFNBMseJxV4aPdPNtcHkV2dfwl8kI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUFBOC8yNzg1OTkxMjkx RUYxMUVEQjA2QkFEMUZDNEY5QUUwMi8wRXl4NG5GWGhvOTA4MjF3ZVJYWjFfQ1h5 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBFeXg0bkZYaG85MDgyMXdlUlhaMV9DWHlRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVBQTgvMjc4NTk5MTI5MUVGMTFFREIwNkJBRDFGQzRGOUFFMDIvOTk0QUMwOTAz RTFFMTFFRkI1QkJERDNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+AIMA0GCSqGSIb3DQEBCwUAA4IBAQAdSggl7NnwFnD/cibP5ZT4 LFacNaINoowzT48S2Wxx5qQqElaj89CZuSkcR2ecqfrsn4gvmmGRJShk8eMunIDq fUXcl4Y2bCE6bcxbfKazQiE8UUoPmQ1SoKQP4nSUQkYoj2DFCi+nrZCT6BQyozE5 ZOsNw8FzVQlySunLsb0Lg1p+qJaBxTJLwUyhBTUubGOeUAKzMKWwKogRJqgprr+A LD8iqJErY1siwHKNp96Cq6XTfCafPdsR3dgnk0A6LP/UjtQozsYG2lrxMJT3EZm4 4/p/9/S2jBFR5dB9KZyiWK8ckmS0YdHYwlR5iuNNn99SnQ3BPP5Pa8sWCWEByhJz -----END CERTIFICATE-----Generated at Mon Mar 2 11:03:07 2026 by rpki-client