$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/08CD5AD2DA2B11EBA1C6AA3CC4F9AE02.roa File: 08CD5AD2DA2B11EBA1C6AA3CC4F9AE02.roa (raw, json) Hash identifier: ng5bgbFugCpJCI2PYFWeSfminEhUjB176PVU+n+Eszk= Subject key identifier: 95:A6:AA:C8:25:F4:02:F5:40:20:16:59:B8:7A:13:EB:1A:1B:7C:ED Certificate issuer: /CN=A91E5FCD/serialNumber=273AAAE2E3BE994FC2833F85712923CD417B7FAD Certificate serial: 0627 Authority key identifier: 27:3A:AA:E2:E3:BE:99:4F:C2:83:3F:85:71:29:23:CD:41:7B:7F:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/08CD5AD2DA2B11EBA1C6AA3CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:03:55 +0000 ROA not before: Fri 02 Jan 2026 16:15:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136807 IP address blocks: 103.205.39.0/24 maxlen: 24 2001:df0:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.crl rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5FCD, serialNumber=273AAAE2E3BE994FC2833F85712923CD417B7FAD Validity Not Before: Jan 2 16:15:27 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48d9b-ddef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:8b:67:20:65:c9:3d:2e:68:1d:2b:35:9b: 57:41:d9:21:85:68:aa:d7:05:47:93:77:b2:06:4c: 14:a6:9d:96:3a:30:90:29:a1:69:db:11:57:63:b4: 3b:67:b9:0f:e6:94:54:d4:40:c8:76:61:97:cd:2a: 0b:40:68:73:96:ae:ec:23:48:13:9e:25:d4:44:44: e2:41:13:c3:a2:96:1d:05:14:78:f4:37:a7:0e:6c: 08:fe:aa:c5:c1:e9:65:e0:e0:c9:6f:3d:4c:84:3c: d6:f8:b9:3c:86:15:ca:df:20:83:d1:21:02:c7:e0: 87:04:76:9e:1a:06:48:86:56:bc:0a:9f:74:9b:5b: e0:6c:6a:80:40:16:b4:93:7e:6f:08:31:2a:89:29: 7c:51:42:9d:16:d0:7a:86:5b:54:0d:a5:6f:44:67: 30:65:67:ad:b1:10:be:c7:f2:39:4a:87:0c:8a:33: 8e:f5:15:c5:fb:c6:36:09:e8:bc:b6:73:48:a6:dd: c2:8e:91:59:20:ff:31:a0:91:ee:9e:06:91:28:a6: 2b:03:d6:f6:85:0b:18:05:a5:ab:9a:b2:9c:50:b9: 34:3f:8d:3a:25:0c:ff:45:67:34:6c:00:81:04:d9: 3d:12:31:a0:35:2f:fc:8c:f7:02:95:08:a9:08:60: 97:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A6:AA:C8:25:F4:02:F5:40:20:16:59:B8:7A:13:EB:1A:1B:7C:ED X509v3 Authority Key Identifier: keyid:27:3A:AA:E2:E3:BE:99:4F:C2:83:3F:85:71:29:23:CD:41:7B:7F:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jzqq4uO-mU_Cgz-FcSkjzUF7f60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5FCD/0BE0FFE0780E11E78334C521C4F9AE02/08CD5AD2DA2B11EBA1C6AA3CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.205.39.0/24 IPv6: 2001:df0:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 66:d1:55:af:e4:2b:b7:02:bb:ba:d9:04:52:81:93:cf:32:e0: b3:95:95:ad:81:26:54:1e:4b:b5:1b:f4:d7:ed:a2:3c:4a:7f: 4c:2e:f5:03:40:a3:64:53:ca:fc:a3:7a:46:40:60:d1:fb:eb: ef:a9:ed:5b:9d:7a:d4:35:75:22:e3:7c:9d:c0:9e:7f:28:62: 79:a7:eb:71:f8:0f:d4:1b:bd:ed:84:f2:1c:07:cb:89:4b:78: 22:e4:28:74:10:67:49:09:a7:73:2c:37:43:94:b1:5e:40:d9: 6e:22:0b:81:56:5b:20:bd:03:a0:74:18:23:08:e4:60:b4:18: 9a:eb:36:65:5d:8e:a3:bb:b9:79:66:a7:40:15:22:b4:fe:68: d5:43:f9:f1:83:0d:e3:21:d1:47:ce:33:f5:d8:45:4c:8e:a2: fa:1a:25:54:2e:04:7f:54:4e:5a:1b:c0:40:1e:6c:08:bb:9c: 64:02:cb:fe:be:bd:ec:bf:bc:68:8b:8c:d0:6a:3a:79:2a:c4: 5f:42:99:df:cd:bc:3a:26:76:0c:7a:20:c6:c1:d4:de:98:b8: fd:6d:1e:47:8b:e8:ad:95:e3:ac:c1:c5:dd:9f:76:7b:cd:d2: a9:4e:51:39:52:f7:84:35:85:24:2a:95:db:08:60:21:74:40: 44:1b:25:77 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVGQ0QxMTAvBgNVBAUTKDI3M0FBQUUyRTNCRTk5NEZDMjgzM0Y4NTcxMjkyM0NE NDE3QjdGQUQwHhcNMjYwMTAyMTYxNTI3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQ5Yi1kZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpKLZyBlyT0uaB0rNZtXQdkhhWiq1wVHk3eyBkwUpp2WOjCQKaFp2xFXY7Q7 Z7kP5pRU1EDIdmGXzSoLQGhzlq7sI0gTniXURETiQRPDopYdBRR49DenDmwI/qrF well4ODJbz1MhDzW+Lk8hhXK3yCD0SECx+CHBHaeGgZIhla8Cp90m1vgbGqAQBa0 k35vCDEqiSl8UUKdFtB6hltUDaVvRGcwZWetsRC+x/I5SocMijOO9RXF+8Y2Cei8 tnNIpt3CjpFZIP8xoJHungaRKKYrA9b2hQsYBaWrmrKcULk0P406JQz/RWc0bACB BNk9EjGgNS/8jPcClQipCGCXSwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJWmqsgl 9AL1QCAWWbh6E+saG3ztMB8GA1UdIwQYMBaAFCc6quLjvplPwoM/hXEpI81Be3+t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUZDRC8wQkUwRkZFMDc4 MEUxMUU3ODMzNEM1MjFDNEY5QUUwMi9KenFxNHVPLW1VX0Nnei1GY1NranpVRjdm NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6cXE0dU8tbVVfQ2d6LUZjU2tqelVGN2Y2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTVGQ0QvMEJFMEZGRTA3ODBFMTFFNzgzMzRDNTIxQzRGOUFFMDIvMDhDRDVBRDJE QTJCMTFFQkExQzZBQTNDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ80nMA8EAgACMAkDBwAgAQ3wOwAwDQYJKoZIhvcNAQELBQADggEB AGbRVa/kK7cCu7rZBFKBk88y4LOVla2BJlQeS7Ub9NftojxKf0wu9QNAo2RTyvyj ekZAYNH76++p7VudetQ1dSLjfJ3Ann8oYnmn63H4D9Qbve2E8hwHy4lLeCLkKHQQ Z0kJp3MsN0OUsV5A2W4iC4FWWyC9A6B0GCMI5GC0GJrrNmVdjqO7uXlmp0AVIrT+ aNVD+fGDDeMh0UfOM/XYRUyOovoaJVQuBH9UTlobwEAebAi7nGQCy/6+vey/vGiL jNBqOnkqxF9Cmd/NvDomdgx6IMbB1N6YuP1tHkeL6K2V46zBxd2fdnvN0qlOUTlS 94Q1hSQqldsIYCF0QEQbJXc= -----END CERTIFICATE-----Generated at Mon Mar 2 20:57:08 2026 by rpki-client