$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa File: 84121C245CE111E9824BCF76C4F9AE02.roa (raw, json) Hash identifier: iM5ErjMAMk7FLPZ/o7dh2jbYMhKH8uYqSFG8iIYX2mg= Subject key identifier: 4B:FF:68:5F:A9:90:E7:9B:0E:F8:4F:EE:94:F6:AD:AD:BA:C2:DF:68 Certificate issuer: /CN=A91EB7BD/serialNumber=66034D2136C43B14382157E12BB74B2CBA9D97A3 Certificate serial: 1214 Authority key identifier: 66:03:4D:21:36:C4:3B:14:38:21:57:E1:2B:B7:4B:2C:BA:9D:97:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:18:42 +0000 ROA not before: Wed 02 Apr 2025 17:46:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38447 IP address blocks: 103.134.64.0/24 maxlen: 24 203.84.132.0/24 maxlen: 24 2404:5f40::/48 maxlen: 48 2404:5f40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.crl rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4628 (0x1214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB7BD, serialNumber=66034D2136C43B14382157E12BB74B2CBA9D97A3 Validity Not Before: Apr 2 17:46:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40472-6e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:10:a9:ef:52:dc:a7:2e:1a:e6:2f:96:08:a3: 89:17:ad:c4:04:a2:79:82:2d:34:ec:af:a4:69:9e: 5e:12:13:71:5d:c8:2e:38:78:30:e8:70:bc:62:78: 06:ac:5e:58:0d:d1:39:33:72:3d:d3:62:c5:24:2b: a3:3c:f0:5d:de:be:78:bb:18:dd:91:aa:7f:b0:10: fa:ac:a6:f9:fb:41:83:1d:61:23:41:9a:95:fe:f0: ba:c0:f1:b3:ad:2b:f1:a4:7b:2a:63:4b:a4:d9:3d: 10:c9:f7:4e:e3:e2:95:dc:64:7b:37:c5:ba:7e:6f: ea:03:af:b7:b5:7c:ee:9d:aa:38:41:45:5c:1d:a6: ec:03:cd:55:fc:37:1d:9e:8e:40:cd:b5:88:b9:f7: 42:5c:08:0e:3b:e9:69:16:13:34:c0:d2:f8:09:09: 9f:9c:0d:07:bf:d2:0b:b0:33:f7:ba:b4:68:2a:eb: a5:1b:e9:ac:27:da:63:4f:a8:e1:f1:ae:11:4e:15: 29:a3:5e:a1:0a:e0:37:61:6d:7c:1e:dc:a4:44:e1: a6:83:b8:b7:48:7c:fc:59:57:51:30:7f:a7:1f:06: a6:b6:31:de:48:12:07:6b:8f:0a:b1:3d:b6:43:f3: 41:c6:41:9e:f2:ea:85:1d:e5:7a:04:b5:35:c0:77: b2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FF:68:5F:A9:90:E7:9B:0E:F8:4F:EE:94:F6:AD:AD:BA:C2:DF:68 X509v3 Authority Key Identifier: keyid:66:03:4D:21:36:C4:3B:14:38:21:57:E1:2B:B7:4B:2C:BA:9D:97:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgNNITbEOxQ4IVfhK7dLLLqdl6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB7BD/4317278CFE9011E8BBB95A14C4F9AE02/84121C245CE111E9824BCF76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.64.0/24 203.84.132.0/24 IPv6: 2404:5f40::/48 2404:5f40:2::/48 Signature Algorithm: sha256WithRSAEncryption 63:ee:15:ce:45:6a:97:d0:2c:d5:02:ef:c3:b4:63:74:1e:a7: 0a:31:78:50:d9:a0:c3:6c:f8:82:6a:e5:e7:a2:b2:45:78:5e: bb:d5:2a:5f:dd:c9:c8:57:ef:67:3c:83:17:dd:85:62:cc:66: 90:9a:40:c3:8d:e5:ab:52:e5:69:e6:fb:80:7e:3e:83:8b:69: 66:39:f2:9e:a5:16:ce:5e:47:51:f3:91:57:d7:f2:17:97:8c: 3d:df:a6:c8:bf:a9:80:27:c7:39:56:bf:34:6a:97:6b:70:37: 19:38:e3:2d:96:f0:c3:30:e4:b9:c9:fa:b1:25:4f:c2:d3:92: 88:ed:8f:de:6a:80:56:cf:cd:f8:5b:68:ef:90:ea:1b:03:76: c3:ea:79:21:95:9f:89:cb:23:3b:a8:bd:00:b9:2f:03:a3:45: 13:8a:5f:34:5c:38:36:a5:6e:5b:37:17:3c:53:80:e7:ec:59: c2:49:3c:68:e7:b7:21:7e:42:67:bb:ec:05:e5:a1:2f:14:1f: c2:42:09:f4:2d:5d:cd:ab:0e:06:f2:a7:65:34:b2:50:50:82: 74:64:de:a0:d8:a4:12:42:06:35:c1:91:4c:3e:a1:31:87:75: ed:7c:0d:db:98:e4:15:7b:15:eb:61:58:a8:a3:0a:74:e0:1d: 71:7b:2f:0a -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICEhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI3QkQxMTAvBgNVBAUTKDY2MDM0RDIxMzZDNDNCMTQzODIxNTdFMTJCQjc0QjJD QkE5RDk3QTMwHhcNMjUwNDAyMTc0NjAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQ3Mi02ZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxCp71Lcpy4a5i+WCKOJF63EBKJ5gi007K+kaZ5eEhNxXcguOHgw6HC8YngG rF5YDdE5M3I902LFJCujPPBd3r54uxjdkap/sBD6rKb5+0GDHWEjQZqV/vC6wPGz rSvxpHsqY0uk2T0QyfdO4+KV3GR7N8W6fm/qA6+3tXzunao4QUVcHabsA81V/Dcd no5AzbWIufdCXAgOO+lpFhM0wNL4CQmfnA0Hv9ILsDP3urRoKuulG+msJ9pjT6jh 8a4RThUpo16hCuA3YW18HtykROGmg7i3SHz8WVdRMH+nHwamtjHeSBIHa48KsT22 Q/NBxkGe8uqFHeV6BLU1wHey7QIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFEv/aF+p kOebDvhP7pT2ra26wt9oMB8GA1UdIwQYMBaAFGYDTSE2xDsUOCFX4Su3Syy6nZej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjdCRC80MzE3Mjc4Q0ZF OTAxMUU4QkJCOTVBMTRDNEY5QUUwMi9aZ05OSVRiRU94UTRJVmZoSzdkTExMcWRs Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnTk5JVGJFT3hRNElWZmhLN2RMTExxZGw2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI3QkQvNDMxNzI3OENGRTkwMTFFOEJCQjk1QTE0QzRGOUFFMDIvODQxMjFDMjQ1 Q0UxMTFFOTgyNEJDRjc2QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAS BAIAATAMAwQAZ4ZAAwQAy1SEMBgEAgACMBIDBwAkBF9AAAADBwAkBF9AAAIwDQYJ KoZIhvcNAQELBQADggEBAGPuFc5FapfQLNUC78O0Y3QepwoxeFDZoMNs+IJq5eei skV4XrvVKl/dychX72c8gxfdhWLMZpCaQMON5atS5Wnm+4B+PoOLaWY58p6lFs5e R1HzkVfX8heXjD3fpsi/qYAnxzlWvzRql2twNxk44y2W8MMw5LnJ+rElT8LTkojt j95qgFbPzfhbaO+Q6hsDdsPqeSGVn4nLIzuovQC5LwOjRROKXzRcODalbls3FzxT gOfsWcJJPGjntyF+Qme77AXloS8UH8JCCfQtXc2rDgbyp2U0slBQgnRk3qDYpBJC BjXBkUw+oTGHde18DduY5BV7FethWKijCnTgHXF7Lwo= -----END CERTIFICATE-----Generated at Mon Mar 2 10:59:29 2026 by rpki-client