$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa File: 8B0201183E8911EFB2DCA846C4F9AE02.roa (raw, json) Hash identifier: kDnQaZkgd3eRRV1TX5nuWTf0BQqvLUjGytAokBZ6vug= Subject key identifier: A2:93:9D:B4:49:4C:5E:6C:5C:CA:50:33:76:3A:8E:EB:D3:3A:23:53 Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: 0143 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:51:44 +0000 ROA not before: Fri 05 Sep 2025 06:12:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18196 IP address blocks: 103.72.204.0/22 maxlen: 22 103.72.204.0/24 maxlen: 24 103.72.205.0/24 maxlen: 24 103.72.206.0/24 maxlen: 24 103.72.207.0/24 maxlen: 24 160.202.12.0/22 maxlen: 22 160.202.12.0/24 maxlen: 24 160.202.13.0/24 maxlen: 24 160.202.14.0/24 maxlen: 24 160.202.15.0/24 maxlen: 24 2406:e880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Sep 5 06:12:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a595f0-ccc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:09:de:75:69:89:1b:04:87:3f:95:c0:fc:9b: f6:ee:2f:53:e5:5a:25:61:b9:8f:e1:63:5b:af:be: 5c:4b:02:d6:54:d3:e5:01:a6:52:31:dd:1c:54:20: 94:a9:89:5b:10:01:41:60:8d:31:14:e2:4d:4f:08: e3:36:49:33:09:8a:57:68:71:bc:db:31:15:96:92: 16:c1:1e:f0:7d:2f:64:c4:be:e0:8a:34:4e:a0:ff: bb:29:eb:80:90:b9:6d:3e:df:0b:21:09:c1:5f:82: 06:99:b1:39:24:c0:eb:3b:4c:4c:03:78:3d:2c:df: 56:58:b3:11:42:7d:60:1a:df:f7:0f:73:83:25:af: f6:8d:9a:ac:5d:a1:93:2e:74:39:46:50:99:c5:5f: bb:e0:9f:80:a2:0b:65:8b:7b:98:31:d0:d9:f1:68: e7:01:77:30:f5:68:94:98:05:d6:44:6b:a7:78:72: b7:9b:10:a8:df:cd:c0:14:f4:34:0d:f0:c8:1b:0f: be:c0:1c:46:c9:52:73:b7:df:fe:cc:6c:e9:76:e5: 74:1e:f8:12:55:20:b4:a7:1e:da:bd:c0:4a:ae:02: 3e:dc:ec:67:73:3a:3b:2e:8f:0b:db:e3:b5:dc:7b: 2e:5b:4b:a9:84:54:33:53:50:07:f4:b7:ce:ee:4a: d8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:93:9D:B4:49:4C:5E:6C:5C:CA:50:33:76:3A:8E:EB:D3:3A:23:53 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.204.0/22 160.202.12.0/22 IPv6: 2406:e880::/32 Signature Algorithm: sha256WithRSAEncryption b2:6c:2d:2b:5a:ca:06:ef:4a:6a:2e:f8:6b:23:cf:76:90:2c: 03:5d:9d:27:95:c7:54:1d:f4:d4:4e:66:86:91:aa:2d:f0:99: 99:1f:2f:d5:94:28:5e:f1:92:05:13:ed:e9:11:4c:ae:a2:a1: 60:7c:3b:1d:43:32:50:da:5b:a9:a9:17:2c:6b:dc:49:f5:22: ca:1e:25:6e:51:15:1d:50:1d:2f:c1:74:b3:2c:7a:2a:ff:ed: ad:e1:84:03:93:01:6d:c9:6f:94:ea:12:d2:4f:9c:4e:6f:31: 6c:32:88:66:ed:0d:d3:7d:4a:07:57:f5:1b:cf:c9:02:15:b0: 9c:e0:71:07:0a:41:88:64:f8:28:41:7c:82:81:78:8b:92:0e: 9e:9d:a9:f8:25:33:5d:3b:39:3b:1f:ea:58:d3:aa:f6:b8:4a: c1:71:ca:24:f1:c5:03:57:db:fb:58:32:f0:91:d2:77:bf:3e: ba:f1:1e:97:b1:f2:2b:43:70:e7:1f:a7:97:91:47:69:d3:ef: 36:fd:25:d9:77:12:04:12:f2:cb:6b:7f:25:62:51:5b:e2:70: bd:3a:2e:aa:ab:d2:68:0b:47:16:58:5e:c7:5d:26:04:25:ff: 7b:06:f1:4a:cb:00:b4:4c:aa:7a:d1:42:0e:32:ef:97:5e:2d: 03:55:5c:8e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwOTA1MDYxMjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTVmMC1jY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgnedWmJGwSHP5XA/Jv27i9T5VolYbmP4WNbr75cSwLWVNPlAaZSMd0cVCCU qYlbEAFBYI0xFOJNTwjjNkkzCYpXaHG82zEVlpIWwR7wfS9kxL7gijROoP+7KeuA kLltPt8LIQnBX4IGmbE5JMDrO0xMA3g9LN9WWLMRQn1gGt/3D3ODJa/2jZqsXaGT LnQ5RlCZxV+74J+Aogtli3uYMdDZ8WjnAXcw9WiUmAXWRGuneHK3mxCo383AFPQ0 DfDIGw++wBxGyVJzt9/+zGzpduV0HvgSVSC0px7avcBKrgI+3Oxnczo7Lo8L2+O1 3HsuW0uphFQzU1AH9LfO7krYtQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKKTnbRJ TF5sXMpQM3Y6juvTOiNTMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjExRUUvRTk4QTQ2NTIzRTg3MTFFRkFBMjRBQTQzQzRGOUFFMDIvOEIwMjAxMTgz RTg5MTFFRkIyRENBODQ2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ0jMAwQCoMoMMA0EAgACMAcDBQAkBuiAMA0GCSqGSIb3DQEBCwUA A4IBAQCybC0rWsoG70pqLvhrI892kCwDXZ0nlcdUHfTUTmaGkaot8JmZHy/VlChe 8ZIFE+3pEUyuoqFgfDsdQzJQ2lupqRcsa9xJ9SLKHiVuURUdUB0vwXSzLHoq/+2t 4YQDkwFtyW+U6hLST5xObzFsMohm7Q3TfUoHV/Ubz8kCFbCc4HEHCkGIZPgoQXyC gXiLkg6enan4JTNdOzk7H+pY06r2uErBccok8cUDV9v7WDLwkdJ3vz668R6XsfIr Q3DnH6eXkUdp0+82/SXZdxIEEvLLa38lYlFb4nC9Oi6qq9JoC0cWWF7HXSYEJf97 BvFKywC0TKp60UIOMu+XXi0DVVyO -----END CERTIFICATE-----Generated at Mon Mar 2 18:27:46 2026 by rpki-client