$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa File: 216DB034DE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: w1LkgMGS8oqwPRuQKx3FjuBZt3rf+t0hZFmWkXtaaSY= Subject key identifier: 09:31:16:3E:F6:91:16:B0:D1:08:53:6D:B0:E3:59:C4:F1:2C:DF:F9 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0500 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:31 +0000 ROA not before: Tue 30 Dec 2025 23:19:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136526 IP address blocks: 103.254.72.0/22 maxlen: 22 103.254.74.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Dec 30 23:19:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4863f-5626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:29:2c:84:3d:0b:49:b5:46:aa:cd:0e:c8: bb:42:27:95:af:67:d2:af:82:2e:12:9c:41:5b:46: d3:3a:09:f2:93:78:a5:d2:84:aa:c0:45:cd:c9:78: 75:56:ce:81:1f:2f:0b:10:5f:72:32:0b:10:94:da: 49:c1:0e:01:6e:b8:6b:bf:b4:5a:c7:00:f3:d6:26: 19:5d:f7:a3:fd:36:7d:b4:2d:17:34:54:dc:db:d0: 11:87:97:e1:d4:33:62:78:d8:f6:2a:85:02:4c:ec: 5f:b9:e9:12:af:9b:a0:a7:02:c3:7b:02:58:f8:fc: 1e:40:e0:49:28:63:3d:34:6e:6d:ea:30:20:c3:15: 59:78:c9:f0:bd:27:8e:5b:32:f2:57:87:92:fd:8d: 21:65:eb:8e:cf:2e:de:de:e1:7f:73:b2:6c:d6:b7: d9:7c:ed:ea:5c:05:b2:d5:16:79:f8:3a:aa:67:d5: 8f:ac:5a:59:2b:d8:13:a7:fa:f7:c1:31:cd:24:03: d0:0e:7e:b8:eb:d2:d6:c5:0e:08:f5:ff:a4:93:ef: bf:d0:d5:9c:dd:e7:ed:d4:88:b4:bd:df:58:cc:74: 16:22:7a:2e:01:8c:bc:26:bc:98:5d:67:c9:b6:27: 34:07:0d:42:84:43:72:a0:90:29:18:5c:2d:00:0f: 7e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:31:16:3E:F6:91:16:B0:D1:08:53:6D:B0:E3:59:C4:F1:2C:DF:F9 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/216DB034DE9711EC9289256FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.72.0/22 192.51.188.0/24 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ef:28:11:f7:66:48:24:c3:5e:9f:c6:d1:ed:43:d3:54:e5: d7:57:32:e7:ef:77:4b:f3:25:c1:41:c2:5b:b4:85:79:d9:2c: 49:a3:b7:54:be:34:d9:53:9e:83:d8:b1:7d:b0:66:db:62:c9: f3:b6:94:b6:21:a3:72:88:ce:21:c1:82:9f:83:8e:60:a1:c5: 3b:b6:38:6c:6a:1d:0e:8f:38:12:2e:bb:57:42:a6:96:dc:d8: 84:33:95:86:0c:f4:aa:b3:56:f1:0b:ac:48:0c:d0:a4:2c:a6: 5b:f4:6f:11:c7:3d:09:61:15:9e:e1:7e:40:da:06:7a:90:10: 69:01:4b:94:93:8a:2c:10:06:b9:aa:4f:15:16:b0:92:fc:11: ed:03:80:f8:ad:4f:50:ab:ce:97:0d:5e:b9:e4:50:1c:bf:6f: a3:76:ac:97:82:67:0e:47:a1:2c:c0:2b:d6:88:56:01:ff:e7: 37:89:1b:49:65:db:54:08:d3:5f:75:6f:ba:cc:04:4b:e3:9c: 0c:15:7b:8e:44:b4:bd:55:26:87:3e:0f:77:50:f5:c2:a6:fa: 63:64:f8:2a:03:b4:d9:d7:2d:71:52:38:11:f2:a1:fd:b0:4b: d5:0b:d9:e9:19:f2:6e:1e:3f:71:88:86:f6:62:e9:84:80:6d: ae:82:4a:be -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUxMjMwMjMxOTUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYzZi01NjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3UpLIQ9C0m1RqrNDsi7QieVr2fSr4IuEpxBW0bTOgnyk3il0oSqwEXNyXh1 Vs6BHy8LEF9yMgsQlNpJwQ4Bbrhrv7RaxwDz1iYZXfej/TZ9tC0XNFTc29ARh5fh 1DNieNj2KoUCTOxfuekSr5ugpwLDewJY+PweQOBJKGM9NG5t6jAgwxVZeMnwvSeO WzLyV4eS/Y0hZeuOzy7e3uF/c7Js1rfZfO3qXAWy1RZ5+DqqZ9WPrFpZK9gTp/r3 wTHNJAPQDn6469LWxQ4I9f+kk++/0NWc3eft1Ii0vd9YzHQWInouAYy8JryYXWfJ tic0Bw1ChENyoJApGFwtAA9+swIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAkxFj72 kRaw0QhTbbDjWcTxLN/5MB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMjE2REIwMzRE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ/5IAwQAwDO8AwQAzDS/MA0GCSqGSIb3DQEBCwUAA4IBAQAg7ygR 92ZIJMNen8bR7UPTVOXXVzLn73dL8yXBQcJbtIV52SxJo7dUvjTZU56D2LF9sGbb YsnztpS2IaNyiM4hwYKfg45gocU7tjhsah0OjzgSLrtXQqaW3NiEM5WGDPSqs1bx C6xIDNCkLKZb9G8Rxz0JYRWe4X5A2gZ6kBBpAUuUk4osEAa5qk8VFrCS/BHtA4D4 rU9Qq86XDV655FAcv2+jdqyXgmcOR6EswCvWiFYB/+c3iRtJZdtUCNNfdW+6zARL 45wMFXuORLS9VSaHPg93UPXCpvpjZPgqA7TZ1y1xUjgR8qH9sEvVC9npGfJuHj9x iIb2YumEgG2ugkq+ -----END CERTIFICATE-----Generated at Mon Mar 2 06:26:51 2026 by rpki-client