$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/8504C794D12411EBAD06CD48C4F9AE02.roa File: 8504C794D12411EBAD06CD48C4F9AE02.roa (raw, json) Hash identifier: z3K78kKecVQMmJ50EY3GJXcrFCdRmrLxw9yA8ww2hMY= Subject key identifier: 6A:E2:86:E7:4A:9F:61:92:E5:5E:26:FB:5A:B5:03:19:92:A4:5C:19 Certificate issuer: /CN=A91DF55D/serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Certificate serial: 0638 Authority key identifier: 60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/8504C794D12411EBAD06CD48C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:46:28 +0000 ROA not before: Fri 16 Jan 2026 22:18:32 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138505 IP address blocks: 103.160.252.0/23 maxlen: 23 103.160.252.0/24 maxlen: 24 103.160.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF55D, serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Validity Not Before: Jan 16 22:18:32 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45f54-379a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b4:65:f6:c0:63:fa:e2:80:ab:de:2a:8d:d4: 06:da:99:ce:d7:1e:40:d6:f1:c5:de:ad:18:10:b8: 1f:6e:53:f2:a6:b9:b6:3a:95:e2:98:63:66:eb:d6: 0d:3a:95:54:66:3e:76:7d:78:0c:ed:e9:4f:8f:b9: ea:38:7a:be:66:33:6a:88:e4:92:13:4d:b8:f5:1a: d5:ed:72:24:7f:7c:2e:e1:6a:57:c9:9f:1c:d7:9a: 6f:af:75:08:16:bd:01:73:b5:48:44:ec:d9:f4:cf: 10:88:74:a3:40:3b:f2:97:bd:af:fb:da:42:82:b8: 51:42:7e:1b:fb:8a:c8:8c:b3:f4:f9:06:d5:ec:68: 91:7c:5c:ab:f5:61:40:ca:67:61:8e:8d:65:5a:fd: 74:7a:58:76:73:a8:00:d1:a4:cd:db:2e:93:b8:2c: f8:f0:98:aa:e6:29:0c:aa:be:3f:18:f1:96:aa:d8: 72:c4:9a:d5:c3:d0:68:fc:03:51:a0:98:93:0b:9f: 57:32:bd:56:a7:4a:75:2b:d5:7d:a2:62:d1:80:df: e7:47:30:6e:53:64:74:e1:18:e3:e4:b4:c9:39:4f: fb:69:0a:9b:be:ec:01:bd:f6:a3:5a:7d:ee:b9:ae: 78:73:63:34:1d:68:69:5d:43:25:a0:ab:1b:e8:2f: bd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E2:86:E7:4A:9F:61:92:E5:5E:26:FB:5A:B5:03:19:92:A4:5C:19 X509v3 Authority Key Identifier: keyid:60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/8504C794D12411EBAD06CD48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.160.252.0/23 Signature Algorithm: sha256WithRSAEncryption 29:cf:5f:1b:3f:31:f4:b9:19:fc:3b:7d:60:5f:d7:2f:f1:16: 28:c6:2a:a2:c5:ca:7b:22:02:5d:21:df:eb:bb:15:8a:c7:aa: 32:79:29:99:fd:58:6e:ac:7d:96:7e:95:5c:45:f3:a0:7e:1c: 48:dc:b9:e7:27:bf:34:4d:93:dd:d3:4d:91:40:dd:df:cd:8e: b7:d7:99:84:bd:dd:b7:81:85:d8:d8:f4:7c:e7:f0:94:2e:67: 06:40:35:bc:db:b6:d7:31:53:ab:ca:dd:b4:91:ae:19:93:84: 45:fc:d9:93:a1:8a:72:b3:c7:23:15:37:18:0a:c5:79:a3:81: 02:ca:56:45:7c:6e:50:a4:08:dc:ae:86:d7:31:dd:8d:20:65: b4:cb:2e:2e:06:4a:80:d4:51:45:ee:bb:fc:ac:8d:0d:ab:85: fb:e3:9f:d7:37:a1:a8:95:56:d9:f7:fc:4d:5a:c0:48:d3:1a: f1:36:e1:2e:e9:7f:9e:53:9f:07:5b:00:b0:af:ee:15:99:18: 75:aa:b3:6d:e6:1b:e5:9e:6c:fb:36:51:e8:d1:17:46:4c:40: 03:ff:83:79:b4:4e:44:f5:5c:12:0c:ce:f6:37:63:11:8d:a8: f5:bb:a1:39:1b:5b:e7:b5:16:2d:51:9b:ca:1a:80:96:bd:56: 6c:95:c6:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY1NUQxMTAvBgNVBAUTKDYwREMzNzVEQUFDQzk3ODFCQjcwMkUwMzg4MkEzMjVG RUJCRkU5QjQwHhcNMjYwMTE2MjIxODMyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWY1NC0zNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbRl9sBj+uKAq94qjdQG2pnO1x5A1vHF3q0YELgfblPyprm2OpXimGNm69YN OpVUZj52fXgM7elPj7nqOHq+ZjNqiOSSE0249RrV7XIkf3wu4WpXyZ8c15pvr3UI Fr0Bc7VIROzZ9M8QiHSjQDvyl72v+9pCgrhRQn4b+4rIjLP0+QbV7GiRfFyr9WFA ymdhjo1lWv10elh2c6gA0aTN2y6TuCz48Jiq5ikMqr4/GPGWqthyxJrVw9Bo/ANR oJiTC59XMr1Wp0p1K9V9omLRgN/nRzBuU2R04Rjj5LTJOU/7aQqbvuwBvfajWn3u ua54c2M0HWhpXUMloKsb6C+9IQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGrihudK n2GS5V4m+1q1AxmSpFwZMB8GA1UdIwQYMBaAFGDcN12qzJeBu3AuA4gqMl/rv+m0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjU1RC9FN0E3N0JFRUQx MUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0RzdjQzREaUNveVgtdV82 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOdzNYYXJNbDRHN2NDNERpQ295WC11XzZiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY1NUQvRTdBNzdCRUVEMTFGMTFFQjlFNUIxQTgyQzRGOUFFMDIvODUwNEM3OTRE MTI0MTFFQkFEMDZDRDQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6D8MA0GCSqGSIb3DQEBCwUAA4IBAQApz18bPzH0uRn8O31gX9cv 8RYoxiqixcp7IgJdId/ruxWKx6oyeSmZ/VhurH2WfpVcRfOgfhxI3LnnJ780TZPd 002RQN3fzY6315mEvd23gYXY2PR85/CULmcGQDW827bXMVOryt20ka4Zk4RF/NmT oYpys8cjFTcYCsV5o4ECylZFfG5QpAjcrobXMd2NIGW0yy4uBkqA1FFF7rv8rI0N q4X745/XN6GolVbZ9/xNWsBI0xrxNuEu6X+eU58HWwCwr+4VmRh1qrNt5hvlnmz7 NlHo0RdGTEAD/4N5tE5E9VwSDM72N2MRjaj1u6E5G1vntRYtUZvKGoCWvVZslcZE -----END CERTIFICATE-----Generated at Mon Mar 2 10:51:17 2026 by rpki-client