$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa File: 16A4DFE893C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: D28JViq5DTul15vvpmV6z9+X0ID4UKSv89OD87IAkHk= Subject key identifier: 1E:CD:2B:80:19:2D:DE:8A:1D:4F:39:45:1A:D3:55:A7:CF:99:C1:BC Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 065D Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:14 +0000 ROA not before: Thu 10 Jul 2025 23:35:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 20473 IP address blocks: 103.168.42.0/24 maxlen: 24 103.168.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8, serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Jul 10 23:35:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46e0a-bdee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:72:01:bf:0d:10:e4:7d:97:75:40:02:f1:e5: f8:26:eb:e0:f7:5e:aa:1b:18:0d:f5:f2:fe:d8:ea: b1:25:f9:96:f3:2d:32:a2:cd:df:74:54:43:c3:2f: 47:e4:79:30:46:52:0b:86:bd:f7:2d:ae:e2:68:fe: 76:cf:93:3a:97:e9:2b:2a:71:e6:67:bc:fa:24:88: 81:12:d9:0b:d6:08:49:a9:32:8d:1b:bb:c6:c6:77: 81:9b:2d:c2:20:dc:1d:bf:db:56:cc:6a:53:00:fb: d3:1d:34:04:0d:70:17:e4:b4:d5:b1:90:5a:1c:68: 3a:99:6c:5b:ac:3b:c1:bc:f3:d2:e9:60:cb:fb:3c: ad:21:1e:e2:f9:24:ce:44:a9:29:bb:9d:5d:2c:96: da:04:68:e1:c9:0d:63:f2:f9:79:3f:a3:6d:54:af: a6:b0:c5:c0:be:5e:25:3c:67:ef:b0:cc:bb:9a:7d: f4:6f:e8:d9:72:7d:5b:11:ce:d6:87:88:fd:e9:e6: 66:1d:0d:3e:f3:9f:e4:68:7c:ed:2b:70:d4:79:16: ee:93:47:3e:df:94:a7:11:f8:d8:64:3d:6b:f9:88: d6:6a:1f:0a:8e:ff:04:5a:bd:c3:0e:73:7a:d9:55: 86:4e:74:9f:bb:3a:49:1a:4b:71:a4:d1:ec:72:23: 6e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:CD:2B:80:19:2D:DE:8A:1D:4F:39:45:1A:D3:55:A7:CF:99:C1:BC X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.168.42.0/23 Signature Algorithm: sha256WithRSAEncryption b3:2e:ac:77:3b:da:91:ed:d4:db:e5:3a:6a:8d:ae:90:7e:4a: b5:fe:6a:24:cd:fb:7b:be:57:38:de:4d:11:24:40:d6:5c:55: 81:b3:6d:2e:d0:3c:af:c2:82:ca:b2:cc:17:31:75:19:9e:f8: e3:93:a8:a9:a6:53:8d:9d:b6:0f:34:18:8a:fb:70:26:4c:cb: af:c6:7c:96:78:1f:36:df:40:52:6e:d5:54:c7:96:ec:b7:e0: e1:eb:b4:24:7a:f0:b6:13:a4:6f:88:16:46:57:47:38:26:6b: ca:95:8f:45:23:b1:77:eb:58:f1:79:64:d3:df:9e:1f:65:c4: 9d:48:e4:69:92:e5:33:71:c1:63:46:06:ff:09:f2:bc:a7:36: d9:c6:81:f8:33:ae:11:03:54:f8:57:79:f5:65:94:9f:6d:b3: ac:5f:3f:e9:f3:b2:89:d0:11:14:b3:2e:44:ae:26:3e:ac:ab: 4e:f1:bb:9f:5d:08:d4:4d:8c:3e:73:8f:e5:c8:b6:e0:f6:93: 7a:bb:ad:28:89:36:d0:5c:ff:5c:ad:bd:21:64:24:3e:30:e6: b2:ad:f7:d5:26:69:ef:ec:aa:03:4a:70:e1:79:f5:02:a9:24: 2e:15:72:4f:91:7b:c8:58:32:22:f3:24:7e:c5:35:46:57:15: ce:8b:2d:41 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjUwNzEwMjMzNTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUwYS1iZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunIBvw0Q5H2XdUAC8eX4Juvg916qGxgN9fL+2OqxJfmW8y0yos3fdFRDwy9H 5HkwRlILhr33La7iaP52z5M6l+krKnHmZ7z6JIiBEtkL1ghJqTKNG7vGxneBmy3C INwdv9tWzGpTAPvTHTQEDXAX5LTVsZBaHGg6mWxbrDvBvPPS6WDL+zytIR7i+STO RKkpu51dLJbaBGjhyQ1j8vl5P6NtVK+msMXAvl4lPGfvsMy7mn30b+jZcn1bEc7W h4j96eZmHQ0+85/kaHztK3DUeRbuk0c+35SnEfjYZD1r+YjWah8Kjv8EWr3DDnN6 2VWGTnSfuzpJGktxpNHsciNuSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB7NK4AZ Ld6KHU85RRrTVafPmcG8MB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTZBNERGRTg5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6gqMA0GCSqGSIb3DQEBCwUAA4IBAQCzLqx3O9qR7dTb5Tpqja6Q fkq1/mokzft7vlc43k0RJEDWXFWBs20u0DyvwoLKsswXMXUZnvjjk6ipplONnbYP NBiK+3AmTMuvxnyWeB8230BSbtVUx5bst+Dh67QkevC2E6RviBZGV0c4JmvKlY9F I7F361jxeWTT354fZcSdSORpkuUzccFjRgb/CfK8pzbZxoH4M64RA1T4V3n1ZZSf bbOsXz/p87KJ0BEUsy5EriY+rKtO8bufXQjUTYw+c4/lyLbg9pN6u60oiTbQXP9c rb0hZCQ+MOayrffVJmnv7KoDSnDhefUCqSQuFXJPkXvIWDIi8yR+xTVGVxXOiy1B -----END CERTIFICATE-----Generated at Mon Mar 2 07:42:35 2026 by rpki-client