$ rpki-client -vvf rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/008702ECFD2511EC813E430BC4F9AE02.roa File: 008702ECFD2511EC813E430BC4F9AE02.roa (raw, json) Hash identifier: eTFcd93Ik05dvYU83eyYl+NfNuBY+EuLqHvO4+8nNVQ= Subject key identifier: 79:C0:47:69:F9:5A:D4:9D:85:CB:50:52:0A:D5:3A:27:DD:20:0B:9F Certificate issuer: /CN=A91D86BA/serialNumber=CB2107320EDB392C3B4D6B066D79966E73553DE4 Certificate serial: 0338 Authority key identifier: CB:21:07:32:0E:DB:39:2C:3B:4D:6B:06:6D:79:96:6E:73:55:3D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/008702ECFD2511EC813E430BC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:04:37 +0000 ROA not before: Mon 24 Nov 2025 23:46:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139737 IP address blocks: 103.144.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.crl rsync://rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D86BA, serialNumber=CB2107320EDB392C3B4D6B066D79966E73553DE4 Validity Not Before: Nov 24 23:46:18 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a42b55-8922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bb:74:07:ea:7a:11:16:97:01:92:da:68:fb: 92:c1:93:08:ed:ee:11:af:11:e1:e7:e0:e5:77:a0: fd:d3:5f:c0:eb:f8:66:6d:09:7c:97:ec:65:b1:5b: 79:7e:4a:34:a5:e0:8f:17:84:30:2d:63:bf:fc:ca: 30:9f:c0:22:57:07:8b:7f:ae:4e:c4:85:af:9c:19: af:9c:55:cc:5f:0c:db:0a:63:07:93:9c:48:fd:12: ef:ea:ef:13:40:d3:5f:34:81:d0:17:2b:ca:69:62: 02:90:5f:90:ec:d0:27:2a:1d:47:5e:26:88:fc:4a: 68:8c:03:3f:c9:8e:47:ae:39:c0:f1:e8:00:ba:2f: 62:c3:f5:c0:a0:94:07:51:46:90:00:83:a6:70:bd: 38:25:b3:91:41:59:1d:87:48:6a:25:30:a1:5d:c6: 9b:60:fe:70:40:62:b0:c8:3f:87:8e:74:17:f4:1c: b7:56:77:5e:6e:b4:6c:ba:fc:17:88:68:0d:a3:14: 34:ac:52:b8:0c:d7:7c:74:83:91:06:6f:8e:75:9b: af:3b:40:69:de:bb:bb:28:09:8c:58:8f:df:40:7a: b7:cb:cd:37:ee:7c:86:93:92:8f:46:d3:5a:65:7b: ea:49:4f:31:b5:d2:d0:7f:5f:a6:4d:e0:d0:ae:f7: 50:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C0:47:69:F9:5A:D4:9D:85:CB:50:52:0A:D5:3A:27:DD:20:0B:9F X509v3 Authority Key Identifier: keyid:CB:21:07:32:0E:DB:39:2C:3B:4D:6B:06:6D:79:96:6E:73:55:3D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyEHMg7bOSw7TWsGbXmWbnNVPeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D86BA/A57604C8FD2111ECA2C56283C4F9AE02/008702ECFD2511EC813E430BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.95.0/24 Signature Algorithm: sha256WithRSAEncryption af:98:ab:9b:09:f6:33:d8:f5:30:0e:be:28:37:89:53:d1:5e: 23:18:a7:c0:4e:e5:d1:b8:8f:e4:37:a1:7a:7c:e4:90:74:b0: 20:2c:b1:81:ea:92:4b:0c:c3:d1:56:27:e7:7e:d5:6c:5c:e9: 13:79:63:9e:36:51:fc:b8:0f:8b:81:fa:86:2b:97:de:f8:2e: 16:58:bd:08:3b:15:1c:21:76:05:d7:59:30:cb:4f:a2:72:b4: b0:b6:c0:40:95:a3:c2:fe:19:39:7c:8e:64:a5:fa:cd:27:91: ed:4d:99:83:da:4e:25:3b:8f:a2:a5:2e:53:72:48:65:cc:cd: 4e:9f:b2:2d:4d:08:4c:bd:49:b0:1a:80:5a:65:57:61:fa:3e: 96:de:3e:73:f2:86:96:a6:35:87:f2:c8:76:b0:ba:17:d8:51: 8e:d2:ed:6b:70:3a:68:94:66:49:df:5a:ee:90:91:63:7a:8e: ab:84:15:57:1b:0c:ff:2b:c9:69:63:d5:dc:a9:d5:8f:82:cd: f5:b5:d0:46:d7:91:3f:45:dd:85:4b:b2:1d:0b:57:6c:2b:88: a5:7f:85:9d:89:48:81:db:50:e4:c5:60:36:31:44:b0:0a:ab: 36:f5:68:49:fa:1a:02:46:85:0a:1e:46:fa:0b:e5:2d:1c:87: 10:9d:90:b4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg2QkExMTAvBgNVBAUTKENCMjEwNzMyMEVEQjM5MkMzQjRENkIwNjZENzk5NjZF NzM1NTNERTQwHhcNMjUxMTI0MjM0NjE4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmI1NS04OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLt0B+p6ERaXAZLaaPuSwZMI7e4RrxHh5+Dld6D901/A6/hmbQl8l+xlsVt5 fko0peCPF4QwLWO//Mown8AiVweLf65OxIWvnBmvnFXMXwzbCmMHk5xI/RLv6u8T QNNfNIHQFyvKaWICkF+Q7NAnKh1HXiaI/EpojAM/yY5HrjnA8egAui9iw/XAoJQH UUaQAIOmcL04JbORQVkdh0hqJTChXcabYP5wQGKwyD+HjnQX9By3VndebrRsuvwX iGgNoxQ0rFK4DNd8dIORBm+OdZuvO0Bp3ru7KAmMWI/fQHq3y8037nyGk5KPRtNa ZXvqSU8xtdLQf1+mTeDQrvdQSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHnAR2n5 WtSdhctQUgrVOifdIAufMB8GA1UdIwQYMBaAFMshBzIO2zksO01rBm15lm5zVT3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODZCQS9BNTc2MDRDOEZE MjExMUVDQTJDNTYyODNDNEY5QUUwMi95eUVITWc3Yk9TdzdUV3NHYlhtV2JuTlZQ ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5RUhNZzdiT1N3N1RXc0diWG1XYm5OVlBlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg2QkEvQTU3NjA0QzhGRDIxMTFFQ0EyQzU2MjgzQzRGOUFFMDIvMDA4NzAyRUNG RDI1MTFFQzgxM0U0MzBCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5BfMA0GCSqGSIb3DQEBCwUAA4IBAQCvmKubCfYz2PUwDr4oN4lT 0V4jGKfATuXRuI/kN6F6fOSQdLAgLLGB6pJLDMPRVifnftVsXOkTeWOeNlH8uA+L gfqGK5fe+C4WWL0IOxUcIXYF11kwy0+icrSwtsBAlaPC/hk5fI5kpfrNJ5HtTZmD 2k4lO4+ipS5TckhlzM1On7ItTQhMvUmwGoBaZVdh+j6W3j5z8oaWpjWH8sh2sLoX 2FGO0u1rcDpolGZJ31rukJFjeo6rhBVXGwz/K8lpY9XcqdWPgs31tdBG15E/Rd2F S7IdC1dsK4ilf4WdiUiB21DkxWA2MUSwCqs29WhJ+hoCRoUKHkb6C+UtHIcQnZC0 -----END CERTIFICATE-----Generated at Mon Mar 2 03:40:40 2026 by rpki-client