$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/87B1CF3484AB11F08EC73477C4F9AE02.roa File: 87B1CF3484AB11F08EC73477C4F9AE02.roa (raw, json) Hash identifier: wj3CysiZUbw6+gol3WXIUNIf6f/KPaKD87i7kYiUu3c= Subject key identifier: FC:3E:51:0B:9B:9D:56:99:F0:F2:51:E0:8E:88:E3:B7:D8:DE:C1:5B Certificate issuer: /CN=A91F08D9/serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Certificate serial: 69 Authority key identifier: 2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/87B1CF3484AB11F08EC73477C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:29:28 +0000 ROA not before: Thu 27 Nov 2025 05:53:03 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153995 IP address blocks: 103.158.150.0/23 maxlen: 23 103.158.150.0/24 maxlen: 24 103.158.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08D9, serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Validity Not Before: Nov 27 05:53:03 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3f8e8-b090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:3a:0a:05:2d:f0:4b:5f:89:09:d9:01:56: 45:88:fb:68:d2:5c:78:2e:01:92:5b:44:68:00:4a: 46:fa:e0:81:7b:e5:5d:d8:28:2d:b5:74:54:94:c0: 39:44:b6:0e:2f:5d:a6:70:2c:01:6e:e9:14:70:e5: 8a:35:87:1e:c1:86:f7:43:04:c7:16:71:c4:37:57: 49:15:e1:d7:6d:dd:6a:36:b3:74:b5:7c:4c:88:d3: 09:7d:87:7c:8c:10:c8:ad:01:13:0b:e0:63:ec:91: b9:bc:6b:84:cf:dd:b1:0d:17:21:2d:b4:c5:52:ed: 70:84:ce:b7:ec:a2:a5:fe:27:0c:3d:ca:10:16:a6: 09:50:8d:a3:ac:90:33:7d:0c:e8:8f:bd:fb:82:5b: ca:2e:7c:ba:cb:c8:04:cd:d6:a7:91:d9:71:d8:a4: 83:fe:04:70:dc:f9:3d:d1:11:c4:60:ff:55:fc:17: 3a:e2:86:0b:ac:74:69:cc:1b:52:83:31:b4:5e:6b: 83:33:73:de:6e:ad:9b:73:be:1c:d1:8d:af:e0:79: 0d:dc:94:eb:2e:67:45:3f:46:b5:94:85:cd:4f:f0: 99:36:85:4d:90:95:8d:ee:e1:06:fb:f1:9c:58:24: 21:81:0e:15:ca:67:c6:57:4d:c9:ce:73:01:82:95: 65:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3E:51:0B:9B:9D:56:99:F0:F2:51:E0:8E:88:E3:B7:D8:DE:C1:5B X509v3 Authority Key Identifier: keyid:2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/87B1CF3484AB11F08EC73477C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.150.0/23 Signature Algorithm: sha256WithRSAEncryption b3:08:a2:1c:ae:15:d2:e0:ae:1d:e0:3a:3d:75:e2:e9:bd:45: d1:44:1a:ad:84:2d:db:af:5f:64:28:81:ad:aa:d6:e0:c3:af: b4:46:c0:2a:0c:8b:4f:03:6c:32:a3:9c:e8:7c:a9:cf:db:52: 13:14:bf:91:08:62:1e:46:5b:59:f2:d5:83:b4:16:e9:39:20: 72:67:fb:cc:ad:d1:37:28:dc:38:42:d3:19:94:c6:bb:9b:32: ed:b5:c8:64:96:be:87:ce:2b:cf:0e:92:23:41:3a:a4:bb:b8: a5:69:e3:6f:35:cc:a2:c4:56:07:fd:28:1c:41:db:f8:3b:11: e3:36:90:84:b0:6c:89:69:74:c3:47:b5:e1:fb:18:02:12:49: 57:17:55:c2:75:c7:d3:83:48:90:8f:19:4f:ad:a7:4a:e3:05: ed:1c:c4:66:28:9f:63:21:36:d8:c0:0b:2d:d0:a5:a5:0a:42: b4:07:69:c8:1b:3e:b1:7b:49:6e:53:59:da:56:57:c1:24:af: 8c:ca:8f:ad:86:1e:88:27:42:9b:09:b4:c1:17:66:a5:bb:eb: d2:55:c4:b9:4c:91:5b:30:60:6f:bd:6d:d4:8c:a1:db:6c:10: 0a:bb:75:c5:a7:f4:58:33:96:63:d9:1b:79:7e:03:f7:ab:1e: bc:3d:52:2a -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhEOTExMC8GA1UEBRMoMkJCN0U2RjY0RTg5M0Q5MTMwNEE4QjI1ODg2MDM1MEQ2 NzUwNTRBRDAeFw0yNTExMjcwNTUzMDNaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNmOGU4LWIwOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCukDoKBS3wS1+JCdkBVkWI+2jSXHguAZJbRGgASkb64IF75V3YKC21dFSUwDlE tg4vXaZwLAFu6RRw5Yo1hx7BhvdDBMcWccQ3V0kV4ddt3Wo2s3S1fEyI0wl9h3yM EMitARML4GPskbm8a4TP3bENFyEttMVS7XCEzrfsoqX+Jww9yhAWpglQjaOskDN9 DOiPvfuCW8oufLrLyATN1qeR2XHYpIP+BHDc+T3REcRg/1X8FzrihgusdGnMG1KD MbRea4Mzc95urZtzvhzRja/geQ3clOsuZ0U/RrWUhc1P8Jk2hU2QlY3u4Qb78ZxY JCGBDhXKZ8ZXTcnOcwGClWVpAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/D5RC5ud Vpnw8lHgjojjt9jewVswHwYDVR0jBBgwFoAUK7fm9k6JPZEwSosliGA1DWdQVK0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEQ5LzBGRDZBQjUyODE3 MTExRjA5QjEwQUU1NkM0RjlBRTAyL0s3Zm05azZKUFpFd1Nvc2xpR0ExRFdkUVZL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzdmbTlrNkpQWkV3U29zbGlHQTFEV2RRVkswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhEOS8wRkQ2QUI1MjgxNzExMUYwOUIxMEFFNTZDNEY5QUUwMi84N0IxQ0YzNDg0 QUIxMUYwOEVDNzM0NzdDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnnpYwDQYJKoZIhvcNAQELBQADggEBALMIohyuFdLgrh3gOj114um9 RdFEGq2ELduvX2Qoga2q1uDDr7RGwCoMi08DbDKjnOh8qc/bUhMUv5EIYh5GW1ny 1YO0Fuk5IHJn+8yt0Tco3DhC0xmUxrubMu21yGSWvofOK88OkiNBOqS7uKVp4281 zKLEVgf9KBxB2/g7EeM2kISwbIlpdMNHteH7GAISSVcXVcJ1x9ODSJCPGU+tp0rj Be0cxGYon2MhNtjACy3QpaUKQrQHacgbPrF7SW5TWdpWV8Ekr4zKj62GHognQpsJ tMEXZqW769JVxLlMkVswYG+9bdSModtsEAq7dcWn9FgzlmPZG3l+A/erHrw9Uio= -----END CERTIFICATE-----Generated at Mon Mar 2 10:51:37 2026 by rpki-client