$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa File: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (raw, json) Hash identifier: 5SIEytqj/kUtficVvfQzNkbf84VZDuhF0/ee1j7nlyY= Subject key identifier: 0A:19:08:09:25:DE:1E:D4:C3:80:0C:C5:D9:92:3E:D8:40:5F:64:F2 Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 01C2 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:18:41 +0000 ROA not before: Fri 29 Aug 2025 04:52:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151627 IP address blocks: 103.125.158.0/23 maxlen: 23 103.125.158.0/24 maxlen: 24 103.125.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Aug 29 04:52:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3f661-67a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:2a:b0:3d:a7:9e:74:f8:54:af:f3:32:82: 8e:22:7a:b5:75:36:d3:fb:f7:71:90:ef:e4:74:48: 7a:b1:b1:1b:90:91:96:7c:bc:be:86:e4:46:aa:1a: 1b:25:4e:b5:dd:90:c4:78:9a:4f:7d:84:63:ac:2a: d1:16:eb:f4:ad:2c:82:b0:d8:bb:42:21:b3:d8:3e: 55:32:b8:0f:ba:ba:0f:35:97:1b:dd:b2:0c:6d:71: 50:81:15:85:79:b0:08:4b:08:91:e2:d1:07:65:40: 6e:47:92:2a:95:65:9c:33:ff:01:b2:4f:c9:a1:05: 88:e9:2d:f7:3f:ef:f7:57:d8:9c:1c:b7:e6:f5:cf: 64:38:09:0d:32:c6:80:b6:0b:8c:6e:8d:8f:5e:f9: dd:d2:34:b7:4d:53:80:b8:f9:02:8b:34:ca:a0:3a: 38:ed:26:7d:6e:58:21:cb:1e:e9:6c:72:af:eb:4d: 5e:b1:ae:82:92:56:21:b5:b0:b3:99:6d:49:b7:ae: 82:4f:85:0a:58:cf:5e:4b:ba:8b:fa:b0:c2:09:0c: e6:3f:73:45:78:f0:23:dc:54:7f:4b:31:41:31:6d: b0:2a:92:ee:7a:43:e6:3c:0e:11:2e:c1:e9:0f:88: c8:5a:51:bb:72:ab:db:7b:71:13:59:86:20:4f:da: 97:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:19:08:09:25:DE:1E:D4:C3:80:0C:C5:D9:92:3E:D8:40:5F:64:F2 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/12E1FD886C9C11EE9F3C5653C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.125.158.0/23 Signature Algorithm: sha256WithRSAEncryption 57:c9:ea:39:45:96:61:a3:ed:77:83:1f:ec:d8:44:33:4d:bc: 74:fe:98:cf:7c:e0:91:14:04:0e:94:4d:1e:2d:6f:b8:9a:04: db:90:7e:27:1b:6b:9d:fd:59:f6:a5:f2:c0:76:fa:d7:55:34: 06:42:12:b6:cd:a5:af:ae:48:2c:3a:39:1d:8c:82:2c:97:4d: 30:0f:85:9b:f3:ae:a6:5c:b4:c4:98:6e:65:56:88:22:ab:f8: 40:13:8e:53:2c:1a:c5:b0:81:ab:e1:dd:47:3e:4a:06:fc:61: cf:85:ac:92:08:fe:fe:fc:4e:10:88:55:03:a0:0a:8e:8c:f9: 76:c1:f7:12:c9:b9:92:91:be:c1:2e:59:5e:c3:3c:05:f1:93: 0c:82:94:b8:43:45:d6:7e:81:f3:4c:2f:ac:64:cb:9e:b0:34: 66:22:f4:16:fd:fe:11:f6:75:a2:31:bf:73:a6:71:03:5d:2b: f6:2a:00:d0:ab:a8:7a:d1:b6:94:77:c0:11:1f:b0:ee:0a:d9: 75:db:92:75:f7:0b:32:a5:59:01:50:ea:6c:c1:cc:5e:1c:64: 53:4c:c3:b8:aa:57:7b:cf:1d:10:26:6d:1a:8f:9b:c8:b1:f7: 26:d1:27:b6:43:d3:5d:28:d3:6e:04:12:27:f3:20:de:6c:21: bc:db:94:e9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUwODI5MDQ1MjUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjY2MS02N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8gqsD2nnnT4VK/zMoKOInq1dTbT+/dxkO/kdEh6sbEbkJGWfLy+huRGqhob JU613ZDEeJpPfYRjrCrRFuv0rSyCsNi7QiGz2D5VMrgPuroPNZcb3bIMbXFQgRWF ebAISwiR4tEHZUBuR5IqlWWcM/8Bsk/JoQWI6S33P+/3V9icHLfm9c9kOAkNMsaA tguMbo2PXvnd0jS3TVOAuPkCizTKoDo47SZ9blghyx7pbHKv601esa6CklYhtbCz mW1Jt66CT4UKWM9eS7qL+rDCCQzmP3NFePAj3FR/SzFBMW2wKpLuekPmPA4RLsHp D4jIWlG7cqvbe3ETWYYgT9qXZwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAoZCAkl 3h7Uw4AMxdmSPthAX2TyMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk1M0IvQzhEMDM5MjI2QzlBMTFFRTg1QkZERjRGQzRGOUFFMDIvMTJFMUZEODg2 QzlDMTFFRTlGM0M1NjUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ32eMA0GCSqGSIb3DQEBCwUAA4IBAQBXyeo5RZZho+13gx/s2EQz Tbx0/pjPfOCRFAQOlE0eLW+4mgTbkH4nG2ud/Vn2pfLAdvrXVTQGQhK2zaWvrkgs OjkdjIIsl00wD4Wb866mXLTEmG5lVogiq/hAE45TLBrFsIGr4d1HPkoG/GHPhayS CP7+/E4QiFUDoAqOjPl2wfcSybmSkb7BLllewzwF8ZMMgpS4Q0XWfoHzTC+sZMue sDRmIvQW/f4R9nWiMb9zpnEDXSv2KgDQq6h60baUd8ARH7DuCtl125J19wsypVkB UOpswcxeHGRTTMO4qld7zx0QJm0aj5vIsfcm0Se2Q9NdKNNuBBIn8yDebCG825Tp -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:30 2026 by rpki-client