$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa File: 8608449A356511EC9715F015C4F9AE02.roa (raw, json) Hash identifier: 6cpkIlvY+eAWkZd1IGQR7w8+Mu+zR4HanQ7ax6nwheE= Subject key identifier: AF:96:AC:91:F8:41:8B:79:23:5D:3E:6F:C5:1C:A9:24:9D:61:50:42 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0592 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:41:33 +0000 ROA not before: Thu 30 Oct 2025 23:44:05 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147014 IP address blocks: 103.173.4.0/24 maxlen: 24 103.173.5.0/24 maxlen: 24 2407:dc40::/32 maxlen: 32 2407:dc40::/48 maxlen: 48 2407:dc40:1::/48 maxlen: 48 2407:dc40:2::/48 maxlen: 48 2407:dc40:3::/48 maxlen: 48 2407:dc40:4::/48 maxlen: 48 2407:dc40:5::/48 maxlen: 48 2407:dc40:6::/48 maxlen: 48 2407:dc40:7::/48 maxlen: 48 2407:dc40:8::/48 maxlen: 48 2407:dc40:9::/48 maxlen: 48 2407:dc40:a::/48 maxlen: 48 2407:dc40:b::/48 maxlen: 48 2407:dc40:c::/48 maxlen: 48 2407:dc40:d::/48 maxlen: 48 2407:dc40:e::/48 maxlen: 48 2407:dc40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Oct 30 23:44:05 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a433fd-bcf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ad:51:7d:d6:dc:c6:7f:9c:bc:4f:c7:0e:61: b4:0e:02:23:e3:02:53:fb:f4:b5:35:08:14:f0:a4: 1b:8e:e5:fe:c8:c8:ee:24:3f:4d:6e:b3:42:c8:01: ce:60:a9:a5:98:56:ee:99:ef:c4:ec:ef:3b:77:c1: af:30:73:c6:e7:08:f0:72:c8:1a:09:3a:b6:9b:e2: 9c:c8:e5:a8:38:13:8e:47:0d:f4:7e:8b:b5:0b:5f: de:37:43:45:f8:ad:a9:59:28:ee:ff:0e:22:d7:43: 20:bd:27:6e:05:4c:69:a5:8f:fe:81:1b:3f:ec:b4: b2:4f:b1:9c:18:0f:53:73:7a:63:3c:87:41:3c:1c: 37:d9:3d:e2:1b:d3:42:23:ce:84:06:79:9c:68:eb: 3c:24:4c:e1:1f:f3:5e:d1:4e:5f:3a:58:6e:91:ff: 27:38:33:b9:5e:77:4e:8e:e2:e3:fb:ef:76:49:19: 35:d9:18:ed:88:4f:2a:46:e4:69:44:3e:9d:d9:e0: ca:b9:a9:c2:ef:07:70:15:75:1a:c2:a3:77:e1:18: 7c:87:1f:76:29:51:9d:8d:ee:b0:06:58:e2:9f:be: 5a:22:a0:8f:eb:6d:de:d9:96:18:ba:6a:7c:8f:aa: 3d:6d:b4:b2:47:a2:ce:e5:68:51:83:f2:91:de:f0: d8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:96:AC:91:F8:41:8B:79:23:5D:3E:6F:C5:1C:A9:24:9D:61:50:42 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/8608449A356511EC9715F015C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.4.0/23 IPv6: 2407:dc40::/32 Signature Algorithm: sha256WithRSAEncryption 13:14:9e:06:52:e8:44:a2:20:70:f1:f0:06:e0:ce:be:bf:00: 2b:24:55:90:6f:43:e1:5d:13:83:f8:ed:1c:18:b1:ab:cd:4b: ce:bb:a8:38:13:f7:22:bc:eb:2e:5b:12:80:ca:f6:8e:0c:6c: 24:a2:8a:37:4d:3b:b9:8d:b6:d2:23:86:04:1b:73:89:fa:40: 98:58:8a:6a:47:5f:20:9c:9c:06:88:06:86:7e:21:7c:c2:7f: a9:94:8a:8c:6d:67:be:6f:93:99:e3:00:1b:43:32:32:44:b0: 6a:47:bc:ba:27:60:d0:19:d3:8a:9e:96:4d:2c:8b:bf:b8:d4: ad:ce:ed:46:cf:51:62:b0:57:fe:fb:11:20:c9:87:e2:3e:41: e2:6a:1a:67:ea:8b:95:e9:7b:ae:ff:e2:22:56:0a:bb:af:d7: 38:87:7d:12:92:c8:52:6f:ae:8e:10:4f:84:e7:42:4d:c7:1c: 9f:67:39:14:52:55:f3:22:53:ed:c5:47:25:32:a2:fb:d0:cc: 42:18:73:7a:0e:2c:14:d9:08:d8:e1:f3:7d:4a:3e:bb:17:91: 2b:13:c8:67:a6:82:47:04:a8:b0:c3:9f:b8:7e:2f:37:79:ba: 51:df:56:19:55:8e:36:cb:c2:d4:71:19:02:86:9b:a8:79:9d: 07:85:9d:b1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUxMDMwMjM0NDA1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzNmZC1iY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsK1Rfdbcxn+cvE/HDmG0DgIj4wJT+/S1NQgU8KQbjuX+yMjuJD9NbrNCyAHO YKmlmFbume/E7O87d8GvMHPG5wjwcsgaCTq2m+KcyOWoOBOORw30fou1C1/eN0NF +K2pWSju/w4i10MgvSduBUxppY/+gRs/7LSyT7GcGA9Tc3pjPIdBPBw32T3iG9NC I86EBnmcaOs8JEzhH/Ne0U5fOlhukf8nODO5XndOjuLj++92SRk12RjtiE8qRuRp RD6d2eDKuanC7wdwFXUawqN34Rh8hx92KVGdje6wBljin75aIqCP623e2ZYYump8 j6o9bbSyR6LO5WhRg/KR3vDYrQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFK+WrJH4 QYt5I10+b8UcqSSdYVBCMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0OTAvMzIxRjU5MUUxNDYyMTFFQzk4NjhDMjQ2QzRGOUFFMDIvODYwODQ0OUEz NTY1MTFFQzk3MTVGMDE1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ60EMA0EAgACMAcDBQAkB9xAMA0GCSqGSIb3DQEBCwUAA4IBAQAT FJ4GUuhEoiBw8fAG4M6+vwArJFWQb0PhXROD+O0cGLGrzUvOu6g4E/civOsuWxKA yvaODGwkooo3TTu5jbbSI4YEG3OJ+kCYWIpqR18gnJwGiAaGfiF8wn+plIqMbWe+ b5OZ4wAbQzIyRLBqR7y6J2DQGdOKnpZNLIu/uNStzu1Gz1FisFf++xEgyYfiPkHi ahpn6ouV6Xuu/+IiVgq7r9c4h30SkshSb66OEE+E50JNxxyfZzkUUlXzIlPtxUcl MqL70MxCGHN6DiwU2QjY4fN9Sj67F5ErE8hnpoJHBKiww5+4fi83ebpR31YZVY42 y8LUcRkChpuoeZ0HhZ2x -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:36 2026 by rpki-client