$ rpki-client -vvf rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/9FBFD358C0F911EFA63F3E64C4F9AE02.roa File: 9FBFD358C0F911EFA63F3E64C4F9AE02.roa (raw, json) Hash identifier: 4TV8BQvGQOPCjwu1hfuKhiPEYBr7ZdB7aG0hWWk1nqQ= Subject key identifier: 4F:95:B9:AF:F0:F4:77:CB:F4:98:CD:48:49:8C:44:77:B4:49:2B:4A Certificate issuer: /CN=A91E80FB/serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Certificate serial: 045F Authority key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/9FBFD358C0F911EFA63F3E64C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:23:02 +0000 ROA not before: Tue 17 Feb 2026 00:20:54 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 141688 IP address blocks: 103.162.4.0/23 maxlen: 23 103.162.4.0/24 maxlen: 24 103.162.5.0/24 maxlen: 24 118.91.190.0/24 maxlen: 24 202.89.73.0/24 maxlen: 24 2407:bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E80FB, serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Validity Not Before: Feb 17 00:20:54 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44bc6-a9a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:1c:4c:bb:7a:c1:a9:27:dc:ec:48:7d:58: 0f:a2:11:04:1b:1a:09:9d:20:78:74:f0:3f:bc:10: 76:bb:26:d5:6f:0c:f6:4f:63:02:d6:a8:8d:75:20: 08:2f:12:dd:9c:a2:69:66:6e:3b:fb:74:fa:f1:a9: fb:1e:a9:7d:ea:10:d7:18:b0:94:a9:47:d0:eb:5c: 3c:31:cd:9c:02:f6:29:31:50:42:c7:4d:8a:79:a7: da:1a:ad:22:31:dd:89:d7:ff:ec:9f:0f:c0:46:0e: 0e:6e:85:b8:c7:d9:e7:69:e6:cc:f8:4a:64:76:e3: 8c:b6:29:3a:af:b5:65:03:0c:e4:45:30:b5:bb:a7: 53:72:82:ef:a1:1d:4d:fd:87:d6:13:4f:ed:7f:c4: d5:0e:47:18:4c:3e:d7:c2:09:68:4d:87:ca:a5:48: 9d:dc:ee:80:b4:8d:9b:af:a7:f9:17:db:0e:84:4c: 49:31:6e:02:52:fb:d6:d9:49:2f:fb:99:af:e8:80: 2d:8c:32:9b:1d:a2:3e:1d:e5:10:3f:af:e7:c7:84: 46:9f:79:b1:be:09:85:9a:8f:6e:48:5b:71:2c:d2: e9:4d:da:ab:8d:4e:41:48:19:97:8e:dc:d6:3f:1d: 7d:33:75:72:86:72:50:c4:f1:9c:03:f5:8f:7e:03: 86:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:95:B9:AF:F0:F4:77:CB:F4:98:CD:48:49:8C:44:77:B4:49:2B:4A X509v3 Authority Key Identifier: keyid:40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/9FBFD358C0F911EFA63F3E64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.162.4.0/23 118.91.190.0/24 202.89.73.0/24 IPv6: 2407:bc0::/32 Signature Algorithm: sha256WithRSAEncryption 83:29:6f:9e:00:c4:e0:e1:43:36:01:88:ba:28:9d:ff:05:2d: ae:ec:53:ad:ca:f8:0f:83:23:82:da:23:29:0b:bd:6b:72:da: 3e:41:40:b7:a2:0b:65:af:89:2a:ed:fd:2d:dc:b3:63:bc:a2: 1c:12:99:4d:66:d6:4c:63:59:1a:fd:e9:23:e9:56:4e:09:56: af:64:94:ec:82:ab:be:a6:2c:57:bb:04:b5:39:09:9f:61:b0: 9e:cb:6b:da:6c:0b:6e:7e:00:47:dc:ee:5d:3e:51:d5:4f:1e: 8e:d9:59:a0:31:85:e0:22:fe:a9:b3:99:0a:7d:d8:77:a5:80: 01:6a:87:e6:e0:5f:c8:14:fa:f2:f6:e6:03:fc:2c:ee:2f:60: 21:b1:e8:72:dd:2a:3e:71:14:de:61:18:b6:2c:c6:6a:85:04: d3:dd:ab:c4:fc:4b:59:b5:dd:03:a4:f6:3a:d9:c6:34:f2:38: e1:49:ea:f7:26:0c:5a:34:ca:33:fe:36:b3:46:ca:56:d0:be: 5e:9f:54:0a:34:fc:06:e1:bc:c6:27:3a:49:68:56:a8:11:2f: fc:94:4b:63:05:4f:e0:ed:dd:28:13:4d:6d:65:3c:fa:b1:25: bd:f4:55:22:04:ee:61:29:28:21:be:ed:18:57:30:f5:82:29: b6:12:9e:9d -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgwRkIxMTAvBgNVBAUTKDQwODVBRTEzNEI2MzM4QTEyNzY1NzI4M0VCQkMxNkMx MkYyMEI4NjIwHhcNMjYwMjE3MDAyMDU0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGJjNi1hOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oUcTLt6wakn3OxIfVgPohEEGxoJnSB4dPA/vBB2uybVbwz2T2MC1qiNdSAI LxLdnKJpZm47+3T68an7Hql96hDXGLCUqUfQ61w8Mc2cAvYpMVBCx02KeafaGq0i Md2J1//snw/ARg4OboW4x9nnaebM+EpkduOMtik6r7VlAwzkRTC1u6dTcoLvoR1N /YfWE0/tf8TVDkcYTD7XwgloTYfKpUid3O6AtI2br6f5F9sOhExJMW4CUvvW2Ukv +5mv6IAtjDKbHaI+HeUQP6/nx4RGn3mxvgmFmo9uSFtxLNLpTdqrjU5BSBmXjtzW Px19M3VyhnJQxPGcA/WPfgOGgwIDAQABo4ICezCCAncwHQYDVR0OBBYEFE+Vua/w 9HfL9JjNSEmMRHe0SStKMB8GA1UdIwQYMBaAFECFrhNLYzihJ2Vyg+u8FsEvILhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODBGQi82MjhENTIwQzhG QjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9LRW5aWEtENjd3V3dTOGd1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJV3VFMHRqT0tFblpYS0Q2N3dXd1M4Z3VHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgwRkIvNjI4RDUyMEM4RkI2MTFFQzkyQkQyNTEwQzRGOUFFMDIvOUZCRkQzNThD MEY5MTFFRkE2M0YzRTY0QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZ6IEAwQAdlu+AwQAyllJMA0EAgACMAcDBQAkBwvAMA0GCSqGSIb3 DQEBCwUAA4IBAQCDKW+eAMTg4UM2AYi6KJ3/BS2u7FOtyvgPgyOC2iMpC71rcto+ QUC3ogtlr4kq7f0t3LNjvKIcEplNZtZMY1ka/ekj6VZOCVavZJTsgqu+pixXuwS1 OQmfYbCey2vabAtufgBH3O5dPlHVTx6O2VmgMYXgIv6ps5kKfdh3pYABaofm4F/I FPry9uYD/CzuL2Ahsehy3So+cRTeYRi2LMZqhQTT3avE/EtZtd0DpPY62cY08jjh Ser3JgxaNMoz/jazRspW0L5en1QKNPwG4bzGJzpJaFaoES/8lEtjBU/g7d0oE01t ZTz6sSW99FUiBO5hKSghvu0YVzD1gim2Ep6d -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:43 2026 by rpki-client