$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa File: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (raw, json) Hash identifier: ySJ9f4a7cg7BoSELqx9I/0KDLVkwX9/nfnRYeM6OTmg= Subject key identifier: AB:B4:7E:C2:BF:8D:6B:08:CD:0A:39:AA:C6:F7:5E:7E:82:48:23:09 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 0869 Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:22:30 +0000 ROA not before: Wed 02 Jul 2025 22:01:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150172 IP address blocks: 103.2.80.0/24 maxlen: 24 103.10.78.0/24 maxlen: 24 103.27.72.0/23 maxlen: 24 103.27.75.0/24 maxlen: 24 220.158.202.0/24 maxlen: 24 2407:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jul 2 22:01:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a459b6-db01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0b:5f:4f:82:13:86:39:6b:6b:24:a2:85:31: 8b:fb:75:e5:5c:ba:5b:2b:56:eb:80:0b:bc:a8:94: aa:7f:af:9c:4f:cb:4b:2f:e6:be:e2:89:7f:a3:3f: 74:56:83:56:de:b0:9f:fc:9a:1d:d9:ae:bf:23:c4: 0a:d9:d4:07:78:d8:e0:c6:0a:7f:20:37:34:9d:23: ec:d5:13:a1:8f:75:f4:a9:aa:b7:5f:c0:bc:ba:08: ff:f8:61:fa:83:82:b2:1a:e1:99:6b:f2:da:e3:0d: e5:6a:fc:97:1e:06:24:8a:c8:00:57:9b:59:5c:91: 2b:6e:97:2e:30:42:54:b6:08:c0:84:09:59:77:48: b8:4b:23:60:32:b8:ba:79:3e:47:c9:e0:15:ea:cf: ec:75:e4:79:ba:8f:94:03:a8:aa:66:fb:77:83:4b: 2d:95:cd:7d:c2:ec:35:a1:73:f7:b2:c4:9c:13:a7: fa:f5:7b:40:19:65:9c:f1:a3:a4:4b:7e:e9:2a:ea: ab:88:80:2d:4d:a5:b5:7d:99:06:81:2b:af:db:e5: 3a:f9:5b:31:16:da:a2:7b:15:bb:3d:7c:86:5a:51: 53:12:b4:14:29:34:f1:0d:2c:9e:72:c4:5c:6b:9d: 0f:de:b4:bd:a1:5c:e7:ce:33:65:08:83:bf:10:d7: 68:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B4:7E:C2:BF:8D:6B:08:CD:0A:39:AA:C6:F7:5E:7E:82:48:23:09 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.2.80.0/24 103.10.78.0/24 103.27.72.0/23 103.27.75.0/24 220.158.202.0/24 IPv6: 2407:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 13:5e:12:15:2b:2d:f8:ce:59:8b:cc:23:70:fd:23:f7:a2:79: 6f:67:0c:36:d4:46:ad:5d:31:39:c6:66:7b:1a:aa:5f:e4:1d: db:3c:87:48:51:bc:ba:32:38:b2:03:fc:56:f5:06:62:79:b7: ef:87:5c:fa:90:9f:f4:96:60:11:ce:38:bb:1e:ac:36:2f:eb: 1f:88:39:a0:21:03:1b:bc:3d:bf:f0:f5:af:73:7a:36:53:48: c9:90:91:17:2e:1d:91:ed:3a:a3:82:49:99:66:1f:5f:50:6a: 25:85:1a:6a:66:db:a7:3b:60:70:e2:0a:f3:5f:8d:27:1f:48: 30:df:88:e4:b4:04:04:da:e1:c2:56:c1:70:3b:9e:0f:0f:0b: 63:11:dd:f8:c4:e2:41:88:04:97:0d:88:36:9a:91:64:cb:ce: ba:a9:9b:87:e1:35:a2:8b:0c:5b:14:36:ef:4d:05:7b:bf:26: 44:c0:2a:44:ce:06:06:9a:e2:9e:81:30:f3:e9:b1:44:d8:02: 3a:24:ac:3b:53:ca:d8:8d:d2:53:dc:96:f3:74:21:cd:0a:e3: 53:8c:95:2f:c3:c6:a7:02:8d:b5:01:26:80:5d:9f:ea:b3:10: 73:bc:e8:bc:e6:e9:4b:04:61:b5:e6:e0:85:fe:4b:11:dc:ad: bd:b6:17:42 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNzAyMjIwMTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTliNi1kYjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QtfT4IThjlraySihTGL+3XlXLpbK1brgAu8qJSqf6+cT8tLL+a+4ol/oz90 VoNW3rCf/Jod2a6/I8QK2dQHeNjgxgp/IDc0nSPs1ROhj3X0qaq3X8C8ugj/+GH6 g4KyGuGZa/La4w3lavyXHgYkisgAV5tZXJErbpcuMEJUtgjAhAlZd0i4SyNgMri6 eT5HyeAV6s/sdeR5uo+UA6iqZvt3g0stlc19wuw1oXP3ssScE6f69XtAGWWc8aOk S37pKuqriIAtTaW1fZkGgSuv2+U6+VsxFtqiexW7PXyGWlFTErQUKTTxDSyecsRc a50P3rS9oVznzjNlCIO/ENdo+wIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFKu0fsK/ jWsIzQo5qsb3Xn6CSCMJMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNTRENkE1MEUwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvQjlBNTFCMUFG QTRGMTFFREI4MkZDQjFGQzRGOUFFMDIucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzAk BAIAATAeAwQAZwJQAwQAZwpOAwQBZxtIAwQAZxtLAwQA3J7KMA8EAgACMAkDBwAk B10AAAAwDQYJKoZIhvcNAQELBQADggEBABNeEhUrLfjOWYvMI3D9I/eieW9nDDbU Rq1dMTnGZnsaql/kHds8h0hRvLoyOLID/Fb1BmJ5t++HXPqQn/SWYBHOOLserDYv 6x+IOaAhAxu8Pb/w9a9zejZTSMmQkRcuHZHtOqOCSZlmH19QaiWFGmpm26c7YHDi CvNfjScfSDDfiOS0BATa4cJWwXA7ng8PC2MR3fjE4kGIBJcNiDaakWTLzrqpm4fh NaKLDFsUNu9NBXu/JkTAKkTOBgaa4p6BMPPpsUTYAjokrDtTytiN0lPclvN0Ic0K 41OMlS/DxqcCjbUBJoBdn+qzEHO86Lzm6UsEYbXm4IX+SxHcrb22F0I= -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:34 2026 by rpki-client