$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/1FBEA1EEDE9711EC9289256FC4F9AE02.roa File: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: GS31bTdPfKVJ1J6UCJ9YLKFQUEEmZi77Y2aiEp3HKVY= Subject key identifier: 87:10:B5:83:E8:0C:49:69:20:8E:E9:BB:98:93:3B:C5:5E:F0:8A:55 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0505 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/1FBEA1EEDE9711EC9289256FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:35 +0000 ROA not before: Sun 08 Feb 2026 02:23:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137427 IP address blocks: 103.254.72.0/22 maxlen: 22 103.254.73.0/24 maxlen: 24 192.197.113.0/24 maxlen: 24 199.212.57.0/24 maxlen: 24 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Feb 8 02:23:44 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48643-8b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ad:28:e9:c2:0d:8e:a6:13:3a:02:df:a9:23: b8:12:83:43:a1:ca:59:be:bb:f4:0c:84:31:8d:67: 07:d7:d6:4d:35:d8:c6:a1:79:4e:9f:21:86:a5:d2: b7:20:32:4d:e9:17:b2:f7:0b:3d:1f:c4:81:64:a6: 38:8a:9a:97:e4:18:9e:75:e1:72:a7:5c:4b:2a:de: 52:54:1e:5b:dc:7f:ea:94:80:a5:22:82:6c:69:ef: 7a:30:f6:f8:6c:fa:c6:7f:cf:73:3d:b1:ec:cd:e5: 6b:59:c0:97:2e:aa:f1:79:56:ae:f8:a6:99:48:16: 46:3b:cc:0a:bb:c5:2e:50:21:3b:c2:5e:9a:fd:6b: e2:2c:9a:70:10:47:b3:26:0f:e1:99:a6:2b:07:f2: a4:94:57:44:d3:98:f5:de:ba:1c:03:2a:fc:cf:63: 91:6b:23:30:d0:a1:e2:3a:33:23:38:e4:45:97:26: ba:c0:4e:c3:04:f5:04:a2:ee:b8:7d:1e:f1:a9:10: 8b:b1:e8:49:76:e1:f9:34:bf:27:4d:fe:24:76:46: 31:cd:a5:ad:36:e1:0b:aa:28:9b:12:f7:ff:5e:de: fa:9f:34:71:0a:b4:02:6e:df:1b:78:13:6b:49:06: 70:41:5e:1c:d5:5b:21:77:92:8c:00:1e:50:3e:6e: 5f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:10:B5:83:E8:0C:49:69:20:8E:E9:BB:98:93:3B:C5:5E:F0:8A:55 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/1FBEA1EEDE9711EC9289256FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.72.0/22 192.197.113.0/24 199.212.57.0/24 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption a4:8d:2c:eb:9a:1d:fa:30:7e:e5:3f:01:a3:91:82:d8:6e:70: 2a:33:fa:b7:30:d9:20:a5:d6:66:f8:c9:8e:7b:32:7b:87:0d: 6b:4a:ac:8f:84:44:7f:fd:5d:2d:24:86:0e:2d:8d:6c:f1:97: 3a:83:23:b3:88:e4:c4:7f:9c:49:e2:e5:a5:7b:4a:ad:bb:66: 9d:2b:fa:f0:b0:c6:2d:bb:94:70:57:01:95:0a:21:d1:d1:5f: dd:52:b9:b3:a9:b2:0b:c8:e6:28:af:b3:1a:22:c1:07:08:36: d2:a3:60:a0:b3:8c:03:17:e9:7f:c1:50:4d:1a:97:53:47:1b: 39:b4:59:69:cb:61:ec:23:12:e2:19:60:01:c8:df:b6:fa:b7: 8c:b3:54:28:f6:89:df:c2:18:2f:5c:1c:62:31:9d:05:c4:0e: 08:52:4b:a5:c4:22:51:98:cb:d5:97:1b:ce:23:ee:ce:b1:a7: e1:ac:66:47:24:d6:7d:2a:06:b4:be:a9:ff:d4:4f:65:3b:b7: 49:f7:09:14:9d:19:ca:25:1b:68:5b:32:8f:e7:99:41:d7:6f: 16:25:dd:68:93:fc:6b:1a:ac:cc:c2:94:eb:04:24:2e:0e:44: 29:11:3f:de:48:61:af:bf:c6:d5:4e:20:e8:22:5f:11:c1:8b: ab:57:d4:71 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjYwMjA4MDIyMzQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODY0My04YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa0o6cINjqYTOgLfqSO4EoNDocpZvrv0DIQxjWcH19ZNNdjGoXlOnyGGpdK3 IDJN6Rey9ws9H8SBZKY4ipqX5BiedeFyp1xLKt5SVB5b3H/qlIClIoJsae96MPb4 bPrGf89zPbHszeVrWcCXLqrxeVau+KaZSBZGO8wKu8UuUCE7wl6a/WviLJpwEEez Jg/hmaYrB/KklFdE05j13rocAyr8z2ORayMw0KHiOjMjOORFlya6wE7DBPUEou64 fR7xqRCLsehJduH5NL8nTf4kdkYxzaWtNuELqiibEvf/Xt76nzRxCrQCbt8beBNr SQZwQV4c1Vshd5KMAB5QPm5f1QIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFIcQtYPo DElpII7pu5iTO8Ve8IpVMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMUZCRUExRUVE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCZ/5IAwQAwMVxAwQAx9Q5AwQAzDS/MA0GCSqGSIb3DQEBCwUAA4IB AQCkjSzrmh36MH7lPwGjkYLYbnAqM/q3MNkgpdZm+MmOezJ7hw1rSqyPhER//V0t JIYOLY1s8Zc6gyOziOTEf5xJ4uWle0qtu2adK/rwsMYtu5RwVwGVCiHR0V/dUrmz qbILyOYor7MaIsEHCDbSo2Cgs4wDF+l/wVBNGpdTRxs5tFlpy2HsIxLiGWAByN+2 +reMs1Qo9onfwhgvXBxiMZ0FxA4IUkulxCJRmMvVlxvOI+7OsafhrGZHJNZ9Kga0 vqn/1E9lO7dJ9wkUnRnKJRtoWzKP55lB128WJd1ok/xrGqzMwpTrBCQuDkQpET/e SGGvv8bVTiDoIl8RwYurV9Rx -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:11 2026 by rpki-client