$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa File: 149009E6EE8111EAABC5C05CC4F9AE02.roa (raw, json) Hash identifier: w9oY9c8wL2GIkYPTpV6Vy1fU7WK/sA5zrzu7eI6nJ9I= Subject key identifier: 34:0B:49:D9:0E:14:E6:B0:E2:D2:E9:13:76:55:21:D2:30:9B:A3:7D Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 086D Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:37:53 +0000 ROA not before: Tue 04 Mar 2025 22:09:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4764 IP address blocks: 103.108.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Mar 4 22:09:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fae0-202f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:ce:f2:48:c4:ba:d5:ba:d0:16:25:17:41: 53:5b:15:de:19:41:08:cd:8c:02:e4:a7:c0:7a:ed: e9:40:ca:4f:32:78:b2:99:2e:72:62:2e:a8:1b:71: 97:be:62:98:0c:d7:af:ca:7a:86:2e:c9:0b:7d:1b: ae:16:91:be:bd:23:36:4b:f5:e6:84:96:e5:ff:10: b0:d7:aa:63:6c:a7:7e:aa:ee:7f:56:87:9d:40:af: 9f:37:2e:60:28:30:49:6b:cf:6b:55:38:01:77:fb: 4c:4f:4b:b6:0e:1b:5d:66:41:14:8e:07:5c:23:1b: aa:b0:d3:f8:92:7a:6e:ff:ce:98:8a:48:97:3a:49: f9:0e:a7:15:05:d1:f9:de:a3:12:a6:4b:51:a0:6a: 1c:7d:e6:bf:49:70:d5:6a:81:48:1f:c7:97:8e:ba: 47:be:5f:e7:54:f5:c0:c6:43:fa:b0:b3:c5:a6:26: 54:73:1b:31:da:f9:8f:ca:e9:b0:4e:de:24:5a:a2: 65:dd:a6:4f:b2:cb:06:03:78:5c:b0:c3:3b:07:b3: 64:74:cb:f7:f0:e7:a4:59:a6:86:24:14:5e:68:ec: f8:d0:e0:52:94:e5:9d:fa:c6:e7:58:3f:e4:b5:18: d6:cf:e5:6b:da:89:78:0f:25:aa:da:3a:76:80:a1: c5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0B:49:D9:0E:14:E6:B0:E2:D2:E9:13:76:55:21:D2:30:9B:A3:7D X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.108.202.0/23 Signature Algorithm: sha256WithRSAEncryption 75:71:a1:64:24:48:23:24:2e:ba:7d:0a:a0:cb:ed:7e:19:b0: ff:07:8e:c3:67:ad:bc:ef:6f:56:9b:37:4b:6d:ec:32:d2:d5: 8b:df:90:f2:27:5a:f3:43:59:1c:d5:ba:24:10:38:5e:37:ae: c5:bb:30:a5:91:47:28:38:92:69:e9:0c:fd:1f:de:a0:3c:d5: 3a:ed:05:32:ee:57:2e:96:94:8e:c6:4b:b2:c5:73:eb:b4:a0: fc:f1:af:74:f8:03:35:32:8a:3a:56:62:7b:b7:6f:e9:f0:e4: 04:5d:b4:89:98:28:61:a1:6b:a3:cf:7a:c7:69:cb:f0:94:00: af:56:71:c9:69:e8:4f:72:f4:c3:1e:dd:1a:1f:32:16:b6:fb: 29:82:20:06:75:c4:a3:8b:a7:b1:82:45:6f:c4:a0:d0:6d:47: 45:e2:25:59:b7:54:19:7f:31:da:44:d2:75:50:df:44:a9:77: 27:5c:1b:17:63:a6:3f:70:50:e9:3c:d9:48:26:bc:9a:47:65: 12:02:b7:98:14:92:1a:38:85:7b:f1:7a:24:f3:f7:67:dc:61: aa:3c:88:91:a5:5d:4c:e1:80:61:c6:55:55:6a:32:93:3f:69: 95:a7:b2:ad:06:1c:e2:99:e2:5a:45:ec:9b:9d:77:73:41:16: e3:ab:6b:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwMzA0MjIwOTMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmFlMC0yMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFnO8kjEutW60BYlF0FTWxXeGUEIzYwC5KfAeu3pQMpPMniymS5yYi6oG3GX vmKYDNevynqGLskLfRuuFpG+vSM2S/XmhJbl/xCw16pjbKd+qu5/VoedQK+fNy5g KDBJa89rVTgBd/tMT0u2DhtdZkEUjgdcIxuqsNP4knpu/86YikiXOkn5DqcVBdH5 3qMSpktRoGocfea/SXDVaoFIH8eXjrpHvl/nVPXAxkP6sLPFpiZUcxsx2vmPyumw Tt4kWqJl3aZPsssGA3hcsMM7B7NkdMv38OekWaaGJBReaOz40OBSlOWd+sbnWD/k tRjWz+Vr2ol4DyWq2jp2gKHFqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDQLSdkO FOaw4tLpE3ZVIdIwm6N9MB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QjQvNEE2NUVBQzhFRTgwMTFFQUEwRjgyQzVDQzRGOUFFMDIvMTQ5MDA5RTZF RTgxMTFFQUFCQzVDMDVDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2zKMA0GCSqGSIb3DQEBCwUAA4IBAQB1caFkJEgjJC66fQqgy+1+ GbD/B47DZ628729WmzdLbewy0tWL35DyJ1rzQ1kc1bokEDheN67FuzClkUcoOJJp 6Qz9H96gPNU67QUy7lculpSOxkuyxXPrtKD88a90+AM1Moo6VmJ7t2/p8OQEXbSJ mChhoWujz3rHacvwlACvVnHJaehPcvTDHt0aHzIWtvspgiAGdcSji6exgkVvxKDQ bUdF4iVZt1QZfzHaRNJ1UN9EqXcnXBsXY6Y/cFDpPNlIJryaR2USAreYFJIaOIV7 8Xok8/dn3GGqPIiRpV1M4YBhxlVVajKTP2mVp7KtBhzimeJaReybnXdzQRbjq2vX -----END CERTIFICATE-----Generated at Mon Mar 2 13:19:34 2026 by rpki-client