$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa File: F690CAECF87D11E9A746D05BC4F9AE02.roa (raw, json) Hash identifier: M4C8jEhIls7w2dv7sJFlagnJmuYCA5HtYmJCzU8Vk+c= Subject key identifier: CF:20:A2:C8:05:19:A6:89:87:D0:AF:F0:46:44:F6:A9:FA:E1:9D:F6 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D19 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:39:01 +0000 ROA not before: Mon 14 Jul 2025 18:57:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136759 IP address blocks: 103.95.96.0/22 maxlen: 24 2401:5a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jul 14 18:57:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42555-ff8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5b:50:10:f6:5f:91:57:90:3c:0b:f9:a7:72: a5:d0:e1:c5:cf:7f:7c:34:c7:33:21:2e:0d:98:b4: ec:66:f3:d9:b6:57:03:21:55:e1:b2:cf:f5:ee:f9: 8a:74:31:67:89:33:ec:a8:1f:4a:f6:a3:84:a7:b1: 28:47:2f:f3:c1:30:f9:8c:ea:5b:a5:d3:c2:ec:9d: 1f:a9:3d:c1:0b:ab:93:6e:23:3a:46:8f:3f:c9:8a: a4:2a:6e:a1:30:20:3d:bf:8a:ee:ea:3c:8c:de:f8: 18:38:1c:b5:43:1d:4c:a2:dd:c7:2d:9d:09:aa:49: 41:03:1b:5a:07:2a:22:fd:58:83:6b:5d:41:a3:0a: 47:09:9b:bf:15:05:16:18:f2:d1:59:62:3a:02:3d: 7a:2b:0a:1e:38:cf:fa:00:06:37:f8:20:73:da:ba: 5b:e6:3b:f2:a8:71:f9:bc:99:ff:47:0b:c2:0d:75: bb:23:aa:5e:73:12:2c:51:31:7d:14:82:85:8f:7c: 8f:c5:66:66:8a:3b:85:9c:4b:da:64:5d:37:8e:11: d2:a7:1e:06:6c:18:d3:2f:a0:2d:66:5b:ca:9a:95: 80:88:c3:e7:d9:52:5f:cc:58:f7:c6:fb:7d:f7:41: 5c:a8:06:c6:94:61:8f:e9:5d:e5:63:1b:e1:31:6f: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:20:A2:C8:05:19:A6:89:87:D0:AF:F0:46:44:F6:A9:FA:E1:9D:F6 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.95.96.0/22 IPv6: 2401:5a40::/32 Signature Algorithm: sha256WithRSAEncryption 2f:11:32:d6:d8:8a:ac:21:d2:2e:02:9e:0a:bb:1f:15:ad:ab: 2b:25:11:fa:e2:4c:81:59:d1:ad:74:fb:8e:9e:24:80:44:da: b8:49:1a:71:90:7d:51:d6:27:a1:98:94:bc:2e:15:b5:7b:d3: 94:07:d2:f0:8b:5a:bb:e1:e4:6b:9f:96:e0:24:01:4a:88:e6: 15:18:ba:45:3b:b7:47:b1:71:26:44:f4:22:46:87:1c:09:a3: be:49:4c:ce:c1:e7:86:1c:6a:10:dd:dd:b2:82:4a:b1:f6:65: 66:b8:17:5c:c5:7d:9a:88:68:83:b7:fd:73:a9:2c:1c:04:ed: bc:dc:3d:74:c0:92:04:d8:a5:c3:4b:f0:9b:00:66:69:13:b5: b5:4b:10:52:32:41:09:a6:20:c3:f2:7b:28:e7:d5:c1:e7:c0: a8:44:b3:d0:1a:f4:fc:ba:7f:ce:ed:2a:08:45:1b:3a:12:2c: a3:01:04:8b:ee:0b:e3:e3:25:f1:b2:66:87:e2:e8:c9:6a:1b: 03:4c:b7:e9:fd:d9:bd:7b:0f:59:3c:d4:1b:a8:b8:54:0d:5f: 23:80:52:95:10:93:68:2a:53:c9:0e:e8:1b:97:f5:4e:6c:2c: 11:57:33:ae:7d:81:6f:2c:2b:e3:8e:5e:27:1a:8a:f2:6f:dc: ba:db:26:a3 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjUwNzE0MTg1NzUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjU1NS1mZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzltQEPZfkVeQPAv5p3Kl0OHFz398NMczIS4NmLTsZvPZtlcDIVXhss/17vmK dDFniTPsqB9K9qOEp7EoRy/zwTD5jOpbpdPC7J0fqT3BC6uTbiM6Ro8/yYqkKm6h MCA9v4ru6jyM3vgYOBy1Qx1Mot3HLZ0JqklBAxtaByoi/ViDa11BowpHCZu/FQUW GPLRWWI6Aj16KwoeOM/6AAY3+CBz2rpb5jvyqHH5vJn/RwvCDXW7I6pecxIsUTF9 FIKFj3yPxWZmijuFnEvaZF03jhHSpx4GbBjTL6AtZlvKmpWAiMPn2VJfzFj3xvt9 90FcqAbGlGGP6V3lYxvhMW/KcwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFM8gosgF GaaJh9Cv8EZE9qn64Z32MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJGQjAvQTNBQjQzQjJGODdDMTFFOUFBMkNGMTU4QzRGOUFFMDIvRjY5MENBRUNG ODdEMTFFOUE3NDZEMDVCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ19gMA0EAgACMAcDBQAkAVpAMA0GCSqGSIb3DQEBCwUAA4IBAQAv ETLW2IqsIdIuAp4Kux8VrasrJRH64kyBWdGtdPuOniSARNq4SRpxkH1R1iehmJS8 LhW1e9OUB9Lwi1q74eRrn5bgJAFKiOYVGLpFO7dHsXEmRPQiRoccCaO+SUzOweeG HGoQ3d2ygkqx9mVmuBdcxX2aiGiDt/1zqSwcBO283D10wJIE2KXDS/CbAGZpE7W1 SxBSMkEJpiDD8nso59XB58CoRLPQGvT8un/O7SoIRRs6EiyjAQSL7gvj4yXxsmaH 4ujJahsDTLfp/dm9ew9ZPNQbqLhUDV8jgFKVEJNoKlPJDugbl/VObCwRVzOufYFv LCvjjl4nGoryb9y62yaj -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:36 2026 by rpki-client