$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa File: 09E46A74C07F11ECB0707F18C4F9AE02.roa (raw, json) Hash identifier: kBFUh+A5t0uG5ToonKBS8JyMqqztNI0BDIiwYVryoTc= Subject key identifier: 2D:D1:C8:88:C8:AD:F0:C9:DD:FA:8B:09:AF:FA:B7:3E:FF:1A:1E:D5 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 03DB Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:03:34 +0000 ROA not before: Sun 03 Aug 2025 01:38:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142153 IP address blocks: 103.166.250.0/23 maxlen: 23 103.166.250.0/24 maxlen: 24 103.166.251.0/24 maxlen: 24 2001:df6:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Aug 3 01:38:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40ef5-7c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:cb:58:a1:76:83:c4:a6:f4:86:1f:ba:b9: 96:1c:6b:8c:3a:5d:3e:36:a1:75:3b:ba:dc:fa:47: a9:46:39:69:b7:14:7a:9e:05:ae:12:35:ab:88:f9: 5f:af:86:fb:cf:15:ab:33:3f:1c:62:07:84:df:19: be:93:10:e2:cc:e7:c2:1a:45:37:50:f4:e5:3e:d3: 6c:0e:12:23:67:38:31:02:44:64:58:b5:8f:8c:c8: d6:f8:36:96:0a:37:1c:82:a1:86:9e:c8:a0:0d:d8: 52:07:16:b6:15:0d:d3:18:2b:78:97:15:d1:65:80: 82:78:67:2b:ba:e6:28:16:c2:bf:37:a3:2a:9e:9b: 60:42:2b:9e:66:bc:64:38:a0:f8:b8:9c:42:14:7c: d5:f1:82:5d:70:dc:a5:a1:03:03:fa:58:e5:a3:49: 49:50:85:07:7a:cd:56:0c:0f:70:f3:67:f2:e9:91: a3:6d:7e:8c:0e:3c:a9:07:22:a8:d8:a5:76:36:b7: c8:ec:e1:48:c7:37:6e:6d:24:f5:46:18:06:63:76: 86:48:c8:c7:04:47:00:8d:4d:e8:3b:7d:69:85:bc: 10:d8:31:4d:7d:d6:94:1e:11:59:e5:d8:b5:7f:0c: 4e:cc:f0:d1:6f:14:18:8b:9d:a1:53:a6:64:00:aa: 2e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D1:C8:88:C8:AD:F0:C9:DD:FA:8B:09:AF:FA:B7:3E:FF:1A:1E:D5 X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/09E46A74C07F11ECB0707F18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.250.0/23 IPv6: 2001:df6:a080::/48 Signature Algorithm: sha256WithRSAEncryption 56:d2:ba:21:b5:01:7b:59:af:00:a7:0b:0a:1f:d0:2c:c7:86: dc:67:1b:4b:29:f6:0a:2f:4c:87:f4:11:ff:05:40:b6:bd:ed: 82:0d:16:c3:51:8b:99:0d:fb:03:60:47:ec:1e:12:6f:5a:56: 07:c5:2e:71:d6:3a:ba:0e:0a:9e:cc:2e:61:6e:55:22:19:fe: 22:0e:5c:58:e5:92:6a:d5:fa:51:ba:01:22:2d:a2:17:83:94: 7a:41:cb:4e:66:c7:7c:f7:43:dd:98:4c:28:6f:ba:5e:bf:33: 97:19:29:85:bf:51:a8:db:99:2b:c6:ed:18:79:a3:b5:2c:69: d4:40:df:84:70:10:9c:83:e9:13:32:ea:f5:78:45:a1:6e:cc: 58:cc:63:ca:4d:58:ef:ab:bf:53:7c:34:dd:4a:0d:76:5f:28: c9:3a:07:db:ff:bb:fe:c7:99:ee:53:57:87:b2:d7:08:8f:d0: 96:5c:a6:9e:88:c8:bd:00:22:f3:8a:5d:d3:3b:ec:1c:f6:4b: f7:87:e4:93:37:d7:5f:0f:a2:48:78:b1:1a:80:8a:b1:6c:fa: 12:0f:58:10:65:95:b3:53:3e:46:eb:eb:6d:60:77:25:bc:29: 8e:3b:bd:5a:fb:f5:05:f1:07:a4:42:58:10:74:65:b6:5d:7f: 5f:99:80:a1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUwODAzMDEzODU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGVmNS03YzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ/LWKF2g8Sm9IYfurmWHGuMOl0+NqF1O7rc+kepRjlptxR6ngWuEjWriPlf r4b7zxWrMz8cYgeE3xm+kxDizOfCGkU3UPTlPtNsDhIjZzgxAkRkWLWPjMjW+DaW CjccgqGGnsigDdhSBxa2FQ3TGCt4lxXRZYCCeGcruuYoFsK/N6MqnptgQiueZrxk OKD4uJxCFHzV8YJdcNyloQMD+ljlo0lJUIUHes1WDA9w82fy6ZGjbX6MDjypByKo 2KV2NrfI7OFIxzdubST1RhgGY3aGSMjHBEcAjU3oO31phbwQ2DFNfdaUHhFZ5di1 fwxOzPDRbxQYi52hU6ZkAKoujQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFC3RyIjI rfDJ3fqLCa/6tz7/Gh7VMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE1OTAvOTUxMEU4NkFDMDdCMTFFQzk4N0I4NDdGQzRGOUFFMDIvMDlFNDZBNzRD MDdGMTFFQ0IwNzA3RjE4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6b6MA8EAgACMAkDBwAgAQ32oIAwDQYJKoZIhvcNAQELBQADggEB AFbSuiG1AXtZrwCnCwof0CzHhtxnG0sp9govTIf0Ef8FQLa97YINFsNRi5kN+wNg R+weEm9aVgfFLnHWOroOCp7MLmFuVSIZ/iIOXFjlkmrV+lG6ASItoheDlHpBy05m x3z3Q92YTChvul6/M5cZKYW/UajbmSvG7Rh5o7UsadRA34RwEJyD6RMy6vV4RaFu zFjMY8pNWO+rv1N8NN1KDXZfKMk6B9v/u/7Hme5TV4ey1wiP0JZcpp6IyL0AIvOK XdM77Bz2S/eH5JM3118Pokh4sRqAirFs+hIPWBBllbNTPkbr621gdyW8KY47vVr7 9QXxB6RCWBB0ZbZdf1+ZgKE= -----END CERTIFICATE-----Generated at Mon Mar 2 10:52:17 2026 by rpki-client