$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa File: F3173EDC898C11EA97286262C4F9AE02.roa (raw, json) Hash identifier: GNVMRmxpK7mVQconnlOE34cE3Vp+VynLXCF2Ha4Paq8= Subject key identifier: 9B:7D:74:E3:95:48:B0:EE:B9:FD:B8:B1:C1:51:9D:09:3A:4F:43:9C Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 0A31 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:02:03 +0000 ROA not before: Tue 30 Sep 2025 20:21:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132165 IP address blocks: 27.96.92.0/24 maxlen: 24 27.96.93.0/24 maxlen: 24 27.96.94.0/24 maxlen: 24 27.96.95.0/24 maxlen: 24 103.196.160.0/24 maxlen: 24 103.196.161.0/24 maxlen: 24 103.196.162.0/24 maxlen: 24 103.196.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2609 (0xa31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Sep 30 20:21:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a446db-888f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:0b:4f:c4:8c:14:ac:df:4c:5b:c2:21:2b: 37:1e:95:57:99:fb:82:ed:84:0d:30:d4:09:49:28: 2c:12:24:15:23:30:2f:1f:79:d4:64:24:ab:f5:1f: d6:dc:9d:c0:58:49:87:98:35:ec:fa:ca:93:ba:b8: 4d:4f:94:69:c8:95:9f:d5:11:8f:70:e7:66:7e:98: 45:97:7b:23:a5:7c:cc:0d:50:8f:d7:28:71:4c:8f: a8:2b:7b:22:0e:e6:05:e6:b9:ac:fe:5c:df:66:b8: 92:a5:39:a8:2e:11:c4:25:5c:f3:03:e5:ab:f3:f4: c9:85:ed:3d:b1:b4:fa:6e:b6:b7:a6:5d:c6:88:c7: 5f:61:40:fa:26:69:fb:68:2d:7b:f1:59:ea:c7:da: fa:b6:3b:e5:d1:5e:60:0f:b5:be:a0:d9:f0:43:1e: c4:28:af:a3:b1:4b:7e:f5:23:78:15:e1:38:62:24: e8:08:ef:b9:f4:90:0e:cf:52:24:d2:a3:81:fc:8d: 54:b5:6c:51:82:25:4d:40:50:c3:78:a6:a1:9e:a9: 4b:5e:61:7a:60:6b:ed:32:f8:ba:06:6e:c9:44:12: 75:1c:49:a2:5e:6e:5f:7c:8c:b4:e3:0d:0c:95:c4: 5c:a7:7c:c1:69:8a:a7:76:90:96:bb:d0:6c:d0:7b: 49:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7D:74:E3:95:48:B0:EE:B9:FD:B8:B1:C1:51:9D:09:3A:4F:43:9C X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/F3173EDC898C11EA97286262C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.96.92.0/22 103.196.160.0/22 Signature Algorithm: sha256WithRSAEncryption 95:aa:2f:b5:2e:19:d2:9c:22:3a:7c:78:67:f8:d2:72:81:b9: 13:b5:fc:a0:7c:9a:59:99:8d:18:c4:a7:6b:2b:00:0e:25:1c: b5:d7:7d:04:ca:11:79:1f:0e:c3:81:b4:b9:65:11:99:5e:66: b8:11:a9:ec:14:82:aa:ea:7a:31:e0:d0:c4:69:38:98:c5:aa: f5:b9:76:d4:b9:51:b4:af:87:88:0f:05:64:ee:db:d7:17:95: a1:cb:21:7f:11:69:83:65:41:4a:99:9d:e4:58:24:63:1e:85: 26:4f:33:30:f8:4d:2f:ea:bf:b0:72:c5:be:b9:1c:dc:bb:10: 1a:4c:89:d8:f7:c2:57:47:3f:34:54:49:ba:a5:0f:43:d3:fa: 3c:fd:85:cf:3b:c4:75:cf:4a:4d:aa:f3:d2:f4:ea:2d:a4:1c: ad:41:4b:4e:93:0e:4b:d2:c1:15:11:cf:4d:d6:5c:88:54:25: 8c:6a:79:18:13:bb:f7:26:ff:61:69:85:e5:6c:7f:c3:60:35: a3:21:5b:d6:a4:7e:8f:a3:7c:b7:34:20:be:73:3e:6e:1e:14: 6c:61:c2:89:2b:16:7c:65:11:ca:7c:fa:30:80:e5:de:03:34: 62:69:b6:56:be:d5:47:0e:30:00:0f:62:1d:2d:9a:e1:bd:87: d3:6d:af:71 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwOTMwMjAyMTU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDZkYi04ODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT0LT8SMFKzfTFvCISs3HpVXmfuC7YQNMNQJSSgsEiQVIzAvH3nUZCSr9R/W 3J3AWEmHmDXs+sqTurhNT5RpyJWf1RGPcOdmfphFl3sjpXzMDVCP1yhxTI+oK3si DuYF5rms/lzfZriSpTmoLhHEJVzzA+Wr8/TJhe09sbT6bra3pl3GiMdfYUD6Jmn7 aC178Vnqx9r6tjvl0V5gD7W+oNnwQx7EKK+jsUt+9SN4FeE4YiToCO+59JAOz1Ik 0qOB/I1UtWxRgiVNQFDDeKahnqlLXmF6YGvtMvi6Bm7JRBJ1HEmiXm5ffIy04w0M lcRcp3zBaYqndpCWu9Bs0HtJnQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFJt9dOOV SLDuuf24scFRnQk6T0OcMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcxNjQvMjI4QUJGNzQ4OThCMTFFQTkyNzU5QTVDQzRGOUFFMDIvRjMxNzNFREM4 OThDMTFFQTk3Mjg2MjYyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCG2BcAwQCZ8SgMA0GCSqGSIb3DQEBCwUAA4IBAQCVqi+1LhnSnCI6 fHhn+NJygbkTtfygfJpZmY0YxKdrKwAOJRy1130EyhF5Hw7DgbS5ZRGZXma4Eans FIKq6nox4NDEaTiYxar1uXbUuVG0r4eIDwVk7tvXF5WhyyF/EWmDZUFKmZ3kWCRj HoUmTzMw+E0v6r+wcsW+uRzcuxAaTInY98JXRz80VEm6pQ9D0/o8/YXPO8R1z0pN qvPS9OotpBytQUtOkw5L0sEVEc9N1lyIVCWMankYE7v3Jv9haYXlbH/DYDWjIVvW pH6Po3y3NCC+cz5uHhRsYcKJKxZ8ZRHKfPowgOXeAzRiabZWvtVHDjAAD2IdLZrh vYfTba9x -----END CERTIFICATE-----Generated at Mon Mar 2 11:03:02 2026 by rpki-client