$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa File: 9DF7DA5C557C11E7B34BCE81C4F9AE02.roa (raw, json) Hash identifier: QYJCGTrhNobc9om3BoJ26lPH+BId3l/MUNDCYqKgq0Q= Subject key identifier: 41:32:10:35:75:85:91:0A:23:F5:7A:46:8F:D2:DF:E8:66:A7:DD:7E Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 1AB8 Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:41:55 +0000 ROA not before: Mon 22 Sep 2025 16:35:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134433 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.85.0/24 maxlen: 24 103.241.86.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 2407:d500::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6840 (0x1ab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Validity Not Before: Sep 22 16:35:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46c53-1fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:39:ab:e1:11:7a:06:cd:f7:62:73:8d:c7:5c: 1f:5a:bb:be:1e:72:8f:b6:37:7c:50:22:bd:f2:b3: 7b:9b:fb:f1:44:70:99:7f:38:2f:47:f4:4c:0d:4b: 43:28:86:dc:a0:fc:7f:51:a7:56:36:ce:ce:93:d9: 14:b8:12:44:74:18:ac:39:d7:7c:82:42:9d:f6:5f: 4c:2e:92:bc:c4:45:4a:95:62:68:de:d8:56:83:4b: 13:5f:e2:f9:6d:0a:a3:52:2f:d5:5d:d5:59:74:2c: 60:b9:37:f6:7b:0d:39:fc:36:36:08:54:ea:a2:68: cf:e5:b4:24:37:32:e1:a6:1e:35:25:6d:e6:12:b8: 0d:6f:25:2d:af:44:3d:1c:03:9e:34:90:3a:ed:2a: b4:3e:b8:eb:99:30:b2:36:67:ea:90:26:d4:05:57: ae:45:63:99:b4:c0:16:45:88:70:d0:a9:84:f0:2a: 22:15:04:aa:0c:fb:d5:00:79:18:37:19:fc:1f:10: c9:ac:9d:c6:88:83:28:89:d0:80:e5:2c:26:50:2f: 9f:31:60:4a:9b:4b:ef:53:2a:a6:f4:f9:d5:de:b0: 85:39:1b:96:61:ea:f4:1b:92:f6:b3:da:8b:03:be: fa:c7:de:c3:93:21:1d:31:9d:ab:67:8c:0f:0f:00: 42:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:32:10:35:75:85:91:0A:23:F5:7A:46:8F:D2:DF:E8:66:A7:DD:7E X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/22 IPv6: 2407:d500::/32 Signature Algorithm: sha256WithRSAEncryption b9:e6:61:2d:47:d0:e5:e8:6b:3d:04:58:6e:10:f9:e8:78:bd: 29:e9:ce:07:1d:84:9c:c2:10:3f:95:3e:e5:3b:b4:fc:b6:10: b5:a0:3c:0a:3c:84:f7:36:ef:65:03:80:02:69:4a:26:f1:d1: 8d:0f:b7:63:04:de:6c:f0:27:64:fc:a6:0f:d5:57:0e:d8:6a: 44:69:07:96:b0:e4:7d:1d:9a:65:fc:69:73:4b:6e:f5:2e:e0: 6e:34:55:c3:c7:58:b5:94:8f:86:71:e2:52:25:e1:86:97:78: 6d:e4:dd:2c:a6:47:0c:76:4e:35:12:d5:12:79:d5:67:98:72: 7c:35:60:f9:68:22:2d:17:13:05:6b:68:de:8f:a1:01:00:a4: cb:a4:88:c1:ec:ec:24:f2:fb:09:16:6c:68:97:7c:2e:31:35: ce:47:f9:a8:79:bd:8a:e6:14:98:bf:f1:4f:dd:ed:4a:0c:a1: 84:04:62:ec:4d:f5:dc:ce:70:66:e0:2e:6d:e7:f2:60:b8:da: 1e:8e:57:97:b3:ce:9e:96:ed:3e:82:b7:5e:0f:33:49:29:f2: 4e:d0:b3:69:58:df:7a:a8:72:55:a4:7f:1c:59:5a:62:85:1f: f7:af:1d:ee:21:74:b7:7b:4c:f8:28:8c:c6:06:7c:ff:cc:69: 2f:f5:fc:d9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICGrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjUwOTIyMTYzNTE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmM1My0xZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjmr4RF6Bs33YnONx1wfWru+HnKPtjd8UCK98rN7m/vxRHCZfzgvR/RMDUtD KIbcoPx/UadWNs7Ok9kUuBJEdBisOdd8gkKd9l9MLpK8xEVKlWJo3thWg0sTX+L5 bQqjUi/VXdVZdCxguTf2ew05/DY2CFTqomjP5bQkNzLhph41JW3mErgNbyUtr0Q9 HAOeNJA67Sq0PrjrmTCyNmfqkCbUBVeuRWOZtMAWRYhw0KmE8CoiFQSqDPvVAHkY Nxn8HxDJrJ3GiIMoidCA5SwmUC+fMWBKm0vvUyqm9PnV3rCFORuWYer0G5L2s9qL A776x97DkyEdMZ2rZ4wPDwBCHwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEEyEDV1 hZEKI/V6Ro/S3+hmp91+MB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvOURGN0RBNUM1 NTdDMTFFN0IzNEJDRTgxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ/FUMA0EAgACMAcDBQAkB9UAMA0GCSqGSIb3DQEBCwUAA4IBAQC5 5mEtR9Dl6Gs9BFhuEPnoeL0p6c4HHYScwhA/lT7lO7T8thC1oDwKPIT3Nu9lA4AC aUom8dGND7djBN5s8Cdk/KYP1VcO2GpEaQeWsOR9HZpl/GlzS271LuBuNFXDx1i1 lI+GceJSJeGGl3ht5N0spkcMdk41EtUSedVnmHJ8NWD5aCItFxMFa2jej6EBAKTL pIjB7Owk8vsJFmxol3wuMTXOR/moeb2K5hSYv/FP3e1KDKGEBGLsTfXcznBm4C5t 5/JguNoejleXs86elu0+grdeDzNJKfJO0LNpWN96qHJVpH8cWVpihR/3rx3uIXS3 e0z4KIzGBnz/zGkv9fzZ -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:17 2026 by rpki-client