$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/E0C5B7148F2C11EEA361B22FC4F9AE02.roa File: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (raw, json) Hash identifier: a2Eak+r8Eojdu+clly0gi9Nawkq6TirHUh3AZGHAXRg= Subject key identifier: F8:3C:DC:AA:C0:9C:7B:28:F0:65:8C:94:03:E1:BF:A2:BE:D2:0B:F9 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 04FF Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/E0C5B7148F2C11EEA361B22FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:30 +0000 ROA not before: Tue 30 Dec 2025 23:19:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136038 IP address blocks: 103.254.72.0/22 maxlen: 22 103.254.72.0/24 maxlen: 24 103.254.73.0/24 maxlen: 24 103.254.74.0/24 maxlen: 24 103.254.75.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 192.197.113.0/24 maxlen: 24 199.212.57.0/24 maxlen: 24 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Dec 30 23:19:49 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4863e-753e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:de:dd:b9:f4:a2:fa:86:00:35:cc:2a:e8: 02:07:4c:81:d9:d0:87:ae:f7:8c:bb:2f:fa:f8:4f: c6:f7:b1:0c:71:a4:5c:cb:17:5b:93:08:68:50:2d: 0d:bd:b1:c5:c7:55:58:05:6e:37:c1:d9:18:98:6a: f4:33:7d:6b:dc:b0:5c:09:51:eb:aa:c8:cc:30:42: 40:fb:28:e7:b9:1d:7d:b4:1d:f0:19:aa:b6:04:52: 12:5c:b7:4d:54:ff:dd:40:83:64:f7:17:45:fe:16: f2:ae:6d:33:57:8c:25:14:97:ab:ab:7d:f1:0b:da: 69:31:45:7c:ac:0a:6f:b5:fd:be:03:17:2b:57:7d: 9d:a3:0f:27:80:ea:d6:40:33:cd:e5:1b:ff:a6:72: 76:6b:eb:5b:d5:d5:ec:26:9a:ce:54:d4:1a:17:66: 09:bb:ca:a7:d8:4f:26:1d:b2:1a:df:46:85:42:e8: c3:ee:b9:f8:34:5c:18:c5:29:d4:41:de:45:ec:96: 2d:d4:09:00:45:75:88:34:ca:cc:db:88:8e:91:3d: e2:b9:97:fd:d9:de:a7:2e:64:f1:b4:44:be:b7:e8: d9:bb:46:49:6a:68:ee:f9:4b:09:2f:dc:7c:86:5d: f1:d4:fe:9b:a2:26:85:cb:3f:49:53:3f:c6:c0:77: 0f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:3C:DC:AA:C0:9C:7B:28:F0:65:8C:94:03:E1:BF:A2:BE:D2:0B:F9 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/E0C5B7148F2C11EEA361B22FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.72.0/22 192.51.188.0/24 192.197.113.0/24 199.212.57.0/24 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption 84:ac:b3:ec:33:f3:90:f2:21:5a:5a:5d:14:59:f7:41:f2:cc: 3e:66:7c:2c:65:f9:82:d4:eb:b9:f3:19:72:c7:47:7f:1e:63: 08:43:e3:5a:06:31:93:6a:1a:1c:04:25:d1:53:06:d9:2d:37: 53:15:d1:a6:f0:44:5d:e9:54:f2:a4:c1:93:2e:14:2d:27:8a: 61:45:3a:14:90:b6:54:2d:9c:2b:b6:19:9e:89:31:9f:3a:b9: 0b:6c:90:76:de:24:e7:33:1e:f9:37:fb:c6:25:de:56:23:7a: 9d:ee:2c:78:d7:18:36:cf:3b:e2:dd:1d:83:71:03:7f:2f:fd: 52:d6:85:2b:13:c9:53:19:f3:07:b7:4b:55:5a:46:34:05:7c: e8:e1:6f:a0:0f:61:43:28:40:b7:11:ea:a0:26:a5:3c:9b:10: d5:bd:96:37:fe:a9:10:3d:24:ae:79:eb:e8:04:71:ea:a3:b1: c6:e5:a2:c3:e5:94:0c:73:83:6a:51:1d:ef:cf:0b:5c:46:58: aa:d2:37:1a:e4:86:68:4b:53:e3:47:58:9c:72:91:fa:bc:05: 41:56:a8:8c:6a:f5:6b:0d:0c:49:83:89:6d:41:6e:1f:6f:a0: d4:93:df:6b:57:50:0a:7c:42:ca:02:62:00:39:78:4e:75:a9: d9:8a:bd:1a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUxMjMwMjMxOTQ5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYzZS03NTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMTe3bn0ovqGADXMKugCB0yB2dCHrveMuy/6+E/G97EMcaRcyxdbkwhoUC0N vbHFx1VYBW43wdkYmGr0M31r3LBcCVHrqsjMMEJA+yjnuR19tB3wGaq2BFISXLdN VP/dQINk9xdF/hbyrm0zV4wlFJerq33xC9ppMUV8rApvtf2+AxcrV32dow8ngOrW QDPN5Rv/pnJ2a+tb1dXsJprOVNQaF2YJu8qn2E8mHbIa30aFQujD7rn4NFwYxSnU Qd5F7JYt1AkARXWINMrM24iOkT3iuZf92d6nLmTxtES+t+jZu0ZJamju+UsJL9x8 hl3x1P6boiaFyz9JUz/GwHcPFwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFPg83KrA nHso8GWMlAPhv6K+0gv5MB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvRTBDNUI3MTQ4 RjJDMTFFRUEzNjFCMjJGQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZ/5IAwQAwDO8AwQAwMVxAwQAx9Q5AwQAzDS/MA0GCSqGSIb3DQEB CwUAA4IBAQCErLPsM/OQ8iFaWl0UWfdB8sw+ZnwsZfmC1Ou58xlyx0d/HmMIQ+Na BjGTahocBCXRUwbZLTdTFdGm8ERd6VTypMGTLhQtJ4phRToUkLZULZwrthmeiTGf OrkLbJB23iTnMx75N/vGJd5WI3qd7ix41xg2zzvi3R2DcQN/L/1S1oUrE8lTGfMH t0tVWkY0BXzo4W+gD2FDKEC3EeqgJqU8mxDVvZY3/qkQPSSueevoBHHqo7HG5aLD 5ZQMc4NqUR3vzwtcRliq0jca5IZoS1PjR1iccpH6vAVBVqiMavVrDQxJg4ltQW4f b6DUk99rV1AKfELKAmIAOXhOdanZir0a -----END CERTIFICATE-----Generated at Mon Mar 2 05:59:32 2026 by rpki-client