$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/D7803F3A3A5511EDB9410C50C4F9AE02.roa File: D7803F3A3A5511EDB9410C50C4F9AE02.roa (raw, json) Hash identifier: LkrylPJMa1lM5G24m9Hp0wuID2HJBSNqucTHJxmRA2A= Subject key identifier: 9C:65:3B:42:81:77:ED:5F:38:BA:06:9E:9B:BB:AF:12:66:64:E1:2B Certificate issuer: /CN=A91D5D9F/serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Certificate serial: 029C Authority key identifier: 30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/D7803F3A3A5511EDB9410C50C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:09:02 +0000 ROA not before: Wed 03 Dec 2025 00:29:57 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134988 IP address blocks: 103.204.226.0/23 maxlen: 23 103.204.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5D9F, serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Validity Not Before: Dec 3 00:29:57 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a42c5e-7f59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:72:70:00:54:03:90:35:b7:62:58:c2:28: f6:bc:2f:37:f3:ec:28:5c:95:6f:1c:76:f2:d8:ec: 2a:9f:ab:79:97:85:e2:ae:f7:56:81:e7:08:5d:2c: 8f:38:20:50:28:88:4c:35:6d:eb:8d:42:a9:6b:cd: 73:23:54:f5:10:76:77:9d:aa:96:39:61:82:20:30: 6e:9e:a0:ef:9d:82:0d:b3:b6:03:4b:c9:f6:ea:dc: d5:64:ee:3d:39:de:f7:75:29:e4:5e:6c:2e:41:21: 13:e8:27:a3:9a:bc:4c:55:e9:a5:59:e2:2b:8c:c1: 4f:91:57:79:86:06:8f:d3:86:99:dd:e4:5b:f9:bd: f2:36:05:77:9a:20:3e:da:b8:9e:a1:a3:9c:3a:1f: 90:6d:ac:da:b3:6c:94:16:d9:f5:9a:1e:02:33:d4: fd:30:e0:69:8a:19:a7:b0:7b:d9:2d:4c:35:69:3c: 3b:40:69:20:22:71:b4:88:53:e4:96:c4:16:a4:6d: 84:5e:be:30:77:36:86:fb:1e:5c:41:c7:af:90:45: 15:99:f8:f7:8b:bf:86:61:49:39:89:59:04:fd:fc: 6e:3f:d9:d9:86:30:58:ae:93:62:6e:ad:5e:6e:43: b1:f6:e8:f8:ee:0f:62:27:a2:be:a4:57:1f:f9:e1: b7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:65:3B:42:81:77:ED:5F:38:BA:06:9E:9B:BB:AF:12:66:64:E1:2B X509v3 Authority Key Identifier: keyid:30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/D7803F3A3A5511EDB9410C50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.226.0/23 Signature Algorithm: sha256WithRSAEncryption 18:4f:bc:e6:24:35:f3:d9:54:00:7b:66:c1:32:8e:52:31:a9: 7c:e6:51:43:7b:1c:0f:86:90:28:30:af:f8:de:c0:1e:ab:5f: 47:27:ae:b4:d1:92:1e:3d:65:34:3d:87:a5:5b:da:52:f5:13: 50:72:30:5f:32:aa:12:5e:1f:e8:3b:49:36:59:49:a7:7e:0a: c9:b3:9b:d0:20:ff:c4:c4:1d:e6:54:5f:50:b8:31:76:57:7b: 56:89:e2:b5:49:89:de:a2:8d:0c:31:ab:a4:c5:3f:29:2d:24: 8b:7f:67:15:e5:f8:bb:35:4f:92:f1:50:93:48:76:de:9f:1e: c4:69:5a:99:d0:e5:3d:cc:59:12:60:94:70:4f:6e:82:ea:fd: eb:c3:62:ee:25:37:04:59:6b:ad:94:be:ec:cb:2f:2c:dc:63: a0:af:28:e6:6e:0f:5f:e7:cc:db:0a:be:c2:9a:be:c4:f0:22: 50:aa:b3:84:78:83:f2:5d:02:1e:40:51:4c:f7:04:a9:a4:e6: 8c:d5:e0:eb:ae:4a:5c:9c:e7:08:cd:49:39:2c:08:ff:60:3d: b8:bd:d5:1f:14:a1:a1:56:85:10:85:86:19:86:68:62:ec:a3: f7:fa:d3:41:43:35:f8:2b:d4:95:1b:25:ae:4e:69:ad:37:04: dd:c2:78:07 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEOUYxMTAvBgNVBAUTKDMwRUVGM0U4MTlFOTlCMDAwRDY2NUY2QkQ1OTRBRkE0 QzYyMjZBMkUwHhcNMjUxMjAzMDAyOTU3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmM1ZS03ZjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SdycABUA5A1t2JYwij2vC838+woXJVvHHby2Owqn6t5l4XirvdWgecIXSyP OCBQKIhMNW3rjUKpa81zI1T1EHZ3naqWOWGCIDBunqDvnYINs7YDS8n26tzVZO49 Od73dSnkXmwuQSET6CejmrxMVemlWeIrjMFPkVd5hgaP04aZ3eRb+b3yNgV3miA+ 2rieoaOcOh+Qbazas2yUFtn1mh4CM9T9MOBpihmnsHvZLUw1aTw7QGkgInG0iFPk lsQWpG2EXr4wdzaG+x5cQcevkEUVmfj3i7+GYUk5iVkE/fxuP9nZhjBYrpNibq1e bkOx9uj47g9iJ6K+pFcf+eG3UwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJxlO0KB d+1fOLoGnpu7rxJmZOErMB8GA1UdIwQYMBaAFDDu8+gZ6ZsADWZfa9WUr6TGImou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUQ5Ri85MjZGMzMzRTNB NEYxMUVEQjdCNkFFMjBDNEY5QUUwMi9NTzd6NkJucG13QU5abDlyMVpTdnBNWWlh aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PN3o2Qm5wbXdBTlpsOXIxWlN2cE1ZaWFpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVEOUYvOTI2RjMzM0UzQTRGMTFFREI3QjZBRTIwQzRGOUFFMDIvRDc4MDNGM0Ez QTU1MTFFREI5NDEwQzUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ8ziMA0GCSqGSIb3DQEBCwUAA4IBAQAYT7zmJDXz2VQAe2bBMo5S Mal85lFDexwPhpAoMK/43sAeq19HJ6600ZIePWU0PYelW9pS9RNQcjBfMqoSXh/o O0k2WUmnfgrJs5vQIP/ExB3mVF9QuDF2V3tWieK1SYneoo0MMaukxT8pLSSLf2cV 5fi7NU+S8VCTSHbenx7EaVqZ0OU9zFkSYJRwT26C6v3rw2LuJTcEWWutlL7syy8s 3GOgryjmbg9f58zbCr7Cmr7E8CJQqrOEeIPyXQIeQFFM9wSppOaM1eDrrkpcnOcI zUk5LAj/YD24vdUfFKGhVoUQhYYZhmhi7KP3+tNBQzX4K9SVGyWuTmmtNwTdwngH -----END CERTIFICATE-----Generated at Tue Mar 3 09:19:08 2026 by rpki-client