$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa File: D41A1814442211EBBF7D9D65C4F9AE02.roa (raw, json) Hash identifier: xjXTQWH1dcV8roauORyB1NKCDzaqjShTuWoQvdygakg= Subject key identifier: 33:C3:A1:E4:48:6E:E3:6A:16:72:84:CE:B2:EB:E9:BE:52:25:C1:5F Certificate issuer: /CN=A91E1257/serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Certificate serial: 079C Authority key identifier: 1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:28:53 +0000 ROA not before: Wed 22 Oct 2025 22:41:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141216 IP address blocks: 103.156.154.0/24 maxlen: 24 103.156.155.0/24 maxlen: 24 2407:d3c0::/32 maxlen: 32 2407:d3c0:2001::/48 maxlen: 48 2407:d3c0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1257, serialNumber=1ED782BE62D71017668B28A32689E470EDA201F8 Validity Not Before: Oct 22 22:41:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43105-5a5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:57:91:aa:ae:75:e2:66:36:29:ea:b8:6e: 11:f1:4c:a3:51:bb:2a:c5:36:32:7d:45:61:fc:fd: 02:28:a5:d2:5f:fb:fb:b8:10:80:5b:e2:49:82:a8: 47:23:ef:7f:31:c1:4c:c0:39:22:2d:07:9e:f3:40: 33:9f:8d:fe:8f:8d:7a:20:d3:af:08:e7:c4:bb:89: fc:4a:1a:64:b9:ba:d4:2a:0c:bf:5a:dc:12:0b:88: 5d:5b:e1:21:10:d3:d4:78:5b:58:2d:25:d1:23:cf: 23:34:3b:e5:f8:9d:5b:8f:54:a0:25:f8:c8:6b:cf: 39:ac:0a:aa:68:41:7d:92:16:72:8c:c3:f9:ff:ff: d9:2d:c2:40:3f:03:de:aa:0d:f1:e4:5c:d2:2c:bb: ab:83:88:5a:32:0c:36:a1:d7:0b:19:13:59:7d:68: d9:0a:2e:79:45:62:78:12:5c:85:a0:b4:f4:3d:d4: e9:ce:8f:f2:d8:5f:1a:5a:23:bb:96:1a:ca:a1:5e: fb:a0:dc:c0:12:05:37:a3:e8:39:35:c0:cc:29:33: 22:28:8d:dd:15:08:cc:ea:79:da:e4:30:90:5b:80: 09:85:54:8c:36:89:e3:3e:60:0e:a5:51:af:41:1e: 39:b9:94:f4:d5:b6:25:97:43:77:6d:32:cc:19:6a: 33:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C3:A1:E4:48:6E:E3:6A:16:72:84:CE:B2:EB:E9:BE:52:25:C1:5F X509v3 Authority Key Identifier: keyid:1E:D7:82:BE:62:D7:10:17:66:8B:28:A3:26:89:E4:70:ED:A2:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/HteCvmLXEBdmiyijJonkcO2iAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HteCvmLXEBdmiyijJonkcO2iAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1257/A90F1EE6442011EB856CD162C4F9AE02/D41A1814442211EBBF7D9D65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.154.0/23 IPv6: 2407:d3c0::/32 Signature Algorithm: sha256WithRSAEncryption b4:89:90:23:87:0b:87:40:5b:4a:30:63:a0:45:c4:49:58:6d: 48:f7:81:1d:07:f3:ab:b1:8a:95:64:44:09:2f:75:12:ce:9b: 98:01:86:b9:63:ad:7b:cb:e5:2d:1d:e2:eb:f0:30:b3:e5:6e: c7:08:1c:e7:26:fe:0c:2a:6e:14:5e:42:82:18:91:90:67:bb: 4c:5f:26:6c:4a:a4:c8:37:12:b9:24:3c:e1:2a:fd:f6:81:e5: 4c:9d:47:8a:06:67:70:39:93:04:5c:7f:ba:1c:57:88:a9:f1: 8e:e1:c1:24:a1:ad:43:b5:74:cf:5d:bd:cb:b1:24:7e:7d:c4: 6a:7a:bc:7d:e3:98:73:cb:a9:be:ec:b8:59:9d:75:7a:a6:33: 95:9f:c9:12:f6:16:46:09:94:5e:c6:69:b1:15:37:82:42:79: 26:06:50:7e:2d:a7:db:84:e3:f2:6c:b8:02:1c:74:9c:73:c4: 5a:d0:c2:39:e5:cc:9b:5c:b4:fc:09:a5:03:08:99:72:84:36: 1f:98:db:7f:86:e6:04:ac:1b:fb:67:d5:4e:3c:be:1e:99:de: 83:cd:82:9e:11:11:25:68:4c:13:3a:a0:85:e1:2b:7a:56:60: 08:03:cd:09:16:eb:25:8c:28:78:90:05:b5:96:b2:c9:32:4c: 6d:13:14:f5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyNTcxMTAvBgNVBAUTKDFFRDc4MkJFNjJENzEwMTc2NjhCMjhBMzI2ODlFNDcw RURBMjAxRjgwHhcNMjUxMDIyMjI0MTA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzEwNS01YTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnupXkaqudeJmNinquG4R8UyjUbsqxTYyfUVh/P0CKKXSX/v7uBCAW+JJgqhH I+9/McFMwDkiLQee80Azn43+j416INOvCOfEu4n8ShpkubrUKgy/WtwSC4hdW+Eh ENPUeFtYLSXRI88jNDvl+J1bj1SgJfjIa885rAqqaEF9khZyjMP5///ZLcJAPwPe qg3x5FzSLLurg4haMgw2odcLGRNZfWjZCi55RWJ4ElyFoLT0PdTpzo/y2F8aWiO7 lhrKoV77oNzAEgU3o+g5NcDMKTMiKI3dFQjM6nna5DCQW4AJhVSMNonjPmAOpVGv QR45uZT01bYll0N3bTLMGWozzwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDPDoeRI buNqFnKEzrLr6b5SJcFfMB8GA1UdIwQYMBaAFB7Xgr5i1xAXZosooyaJ5HDtogH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTI1Ny9BOTBGMUVFNjQ0 MjAxMUVCODU2Q0QxNjJDNEY5QUUwMi9IdGVDdm1MWEVCZG1peWlqSm9ua2NPMmlB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0ZUN2bUxYRUJkbWl5aWpKb25rY08yaUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEyNTcvQTkwRjFFRTY0NDIwMTFFQjg1NkNEMTYyQzRGOUFFMDIvRDQxQTE4MTQ0 NDIyMTFFQkJGN0Q5RDY1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5yaMA0EAgACMAcDBQAkB9PAMA0GCSqGSIb3DQEBCwUAA4IBAQC0 iZAjhwuHQFtKMGOgRcRJWG1I94EdB/OrsYqVZEQJL3USzpuYAYa5Y617y+UtHeLr 8DCz5W7HCBznJv4MKm4UXkKCGJGQZ7tMXyZsSqTINxK5JDzhKv32geVMnUeKBmdw OZMEXH+6HFeIqfGO4cEkoa1DtXTPXb3LsSR+fcRqerx945hzy6m+7LhZnXV6pjOV n8kS9hZGCZRexmmxFTeCQnkmBlB+LafbhOPybLgCHHScc8Ra0MI55cybXLT8CaUD CJlyhDYfmNt/huYErBv7Z9VOPL4emd6DzYKeERElaEwTOqCF4St6VmAIA80JFusl jCh4kAW1lrLJMkxtExT1 -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:15 2026 by rpki-client