$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa File: 8E4BBF50F5C511EF89110646C4F9AE02.roa (raw, json) Hash identifier: 1qbYu5KRZI3rxH4kzvhF/miC5oW7IXAqReX/2/VUDaU= Subject key identifier: DB:B0:DE:D8:53:33:52:6F:C9:B0:D6:89:0B:FF:F6:F9:BF:C2:3A:DA Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 04AE Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:01:55 +0000 ROA not before: Sun 10 Aug 2025 21:01:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140950 IP address blocks: 103.153.174.0/24 maxlen: 24 2001:df4:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Aug 10 21:01:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48d23-1581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7c:c1:78:01:ce:95:2d:d7:28:41:f9:35:9b: 12:52:79:e0:61:81:37:fc:ba:8f:23:d6:71:74:8c: 1b:1c:2e:97:30:ab:5e:26:cf:aa:9a:99:c7:0b:1f: b0:4e:5d:3e:dd:93:7f:53:a1:76:a4:60:21:90:fd: da:c2:89:f0:f9:5e:0e:e9:88:66:04:00:6d:4a:93: 00:e8:31:d8:89:d1:d2:83:40:7c:51:5a:5f:98:94: f4:40:e3:fb:ba:dd:2c:32:9e:1b:3e:0d:b9:c4:04: 88:30:80:70:04:ff:bc:10:7b:b4:f7:7e:6e:88:03: b1:8b:e6:fb:73:a6:3d:70:0d:a8:10:c4:68:85:d8: 5c:fa:29:c1:48:cc:a9:89:1d:da:f0:36:62:3f:87: 5b:e2:57:d1:2c:22:54:58:98:a1:52:82:db:1a:c6: 25:0f:50:8a:ac:47:19:71:34:94:cb:a4:8a:fb:31: d7:23:ed:84:96:97:49:91:32:fe:d5:ef:08:e7:1c: b4:20:7b:5b:87:06:37:33:bb:4a:bc:f0:3d:40:00: 0f:66:0f:65:c8:49:4b:fd:17:10:4e:10:70:40:6f: a5:a9:b7:b5:fd:82:a5:82:53:dc:8c:af:b4:70:7d: a8:6a:8a:54:f7:c6:6b:9d:8f:3d:b0:a8:40:7d:e6: dd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B0:DE:D8:53:33:52:6F:C9:B0:D6:89:0B:FF:F6:F9:BF:C2:3A:DA X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.153.174.0/24 IPv6: 2001:df4:5380::/48 Signature Algorithm: sha256WithRSAEncryption 20:a3:45:28:d1:39:18:34:88:54:79:bd:ab:0d:95:ec:ec:e1: 47:ed:f4:f0:5c:42:b7:d9:c0:96:9f:b2:2f:55:fe:d0:be:86: 22:a2:9c:ea:36:f4:1a:81:2b:e0:1e:d3:77:48:f9:26:25:d9: 5e:4d:0f:f9:05:5e:b7:91:29:bd:21:79:83:5f:3c:b9:ba:70: 19:c3:74:08:ab:19:39:14:62:43:51:0d:d9:da:a8:8c:91:66: 08:41:0c:1b:ba:e0:16:4c:e3:88:32:a7:e1:98:a3:84:23:aa: d9:1d:05:68:e2:64:f7:c9:6c:7b:15:5b:f4:4a:53:1c:5d:12: e4:85:e1:26:e2:ea:32:eb:4c:e5:94:22:20:5f:dc:c3:1f:17: 2b:43:f5:22:bc:78:de:14:14:b5:96:90:ba:eb:03:47:b1:4a: a1:42:5d:e5:c3:a4:56:5d:4c:c7:80:a6:b8:25:a6:87:9d:56: 8e:d4:85:fa:18:d6:2c:ef:55:3a:12:a6:e7:90:34:14:18:a7: b6:3b:fc:53:b7:3d:88:d0:11:af:98:b4:22:62:d4:7c:7f:86: 4e:29:85:00:03:d8:8a:ac:61:68:b9:1f:49:f1:55:f1:15:41: 5f:71:19:42:71:6a:c8:f8:d5:c7:57:6c:24:16:9a:27:d2:3f: 42:d9:37:53 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwODEwMjEwMTU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQyMy0xNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1XzBeAHOlS3XKEH5NZsSUnngYYE3/LqPI9ZxdIwbHC6XMKteJs+qmpnHCx+w Tl0+3ZN/U6F2pGAhkP3awonw+V4O6YhmBABtSpMA6DHYidHSg0B8UVpfmJT0QOP7 ut0sMp4bPg25xASIMIBwBP+8EHu0935uiAOxi+b7c6Y9cA2oEMRohdhc+inBSMyp iR3a8DZiP4db4lfRLCJUWJihUoLbGsYlD1CKrEcZcTSUy6SK+zHXI+2ElpdJkTL+ 1e8I5xy0IHtbhwY3M7tKvPA9QAAPZg9lyElL/RcQThBwQG+lqbe1/YKlglPcjK+0 cH2oaopU98ZrnY89sKhAfebd3wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNuw3thT M1JvybDWiQv/9vm/wjraMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZBQjIvMEFGMkVBQUFDRjcwMTFFQThBRTU1RDQ4QzRGOUFFMDIvOEU0QkJGNTBG NUM1MTFFRjg5MTEwNjQ2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5muMA8EAgACMAkDBwAgAQ30U4AwDQYJKoZIhvcNAQELBQADggEB ACCjRSjRORg0iFR5vasNlezs4Uft9PBcQrfZwJafsi9V/tC+hiKinOo29BqBK+Ae 03dI+SYl2V5ND/kFXreRKb0heYNfPLm6cBnDdAirGTkUYkNRDdnaqIyRZghBDBu6 4BZM44gyp+GYo4QjqtkdBWjiZPfJbHsVW/RKUxxdEuSF4Sbi6jLrTOWUIiBf3MMf FytD9SK8eN4UFLWWkLrrA0exSqFCXeXDpFZdTMeAprglpoedVo7UhfoY1izvVToS pueQNBQYp7Y7/FO3PYjQEa+YtCJi1Hx/hk4phQAD2IqsYWi5H0nxVfEVQV9xGUJx asj41cdXbCQWmifSP0LZN1M= -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:49 2026 by rpki-client