$ rpki-client -vvf rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa File: 8880996075DC11EA84E0A94CC4F9AE02.roa (raw, json) Hash identifier: vo53YtzGeGIKeOoWqYEtmacMxuuNHq234aBr2CO7Z5w= Subject key identifier: CD:5A:A6:93:9D:42:54:34:24:84:A8:87:F1:BA:48:AE:AD:C0:66:17 Certificate issuer: /CN=A91F18DE/serialNumber=F0FDA24882C675A3C601DBFA5C0263C23A692A22 Certificate serial: 0A94 Authority key identifier: F0:FD:A2:48:82:C6:75:A3:C6:01:DB:FA:5C:02:63:C2:3A:69:2A:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:29:44 +0000 ROA not before: Sun 06 Apr 2025 20:00:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140090 IP address blocks: 103.148.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.crl rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2708 (0xa94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F18DE, serialNumber=F0FDA24882C675A3C601DBFA5C0263C23A692A22 Validity Not Before: Apr 6 20:00:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40708-1db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0c:86:48:67:6e:2f:b0:48:ae:91:ff:87:cd: ca:3c:b4:c8:b7:7a:4e:a1:10:d4:a1:21:04:4d:df: a1:af:96:08:47:3b:cc:77:93:67:20:68:a0:e0:f8: 3c:71:d5:57:8e:c9:5d:96:da:d4:28:bb:87:57:41: e8:39:ab:a2:9b:dd:04:e6:ab:ef:22:f9:26:70:42: 4f:67:a5:3c:3c:ae:12:31:d6:7c:f4:36:11:5e:b4: 7b:54:37:d3:77:56:4c:96:37:b8:98:82:60:b7:f0: 36:43:00:2d:e4:54:29:d6:6a:6a:c5:4d:c5:5a:d9: 97:56:ae:9f:73:ab:bb:e3:8a:d5:98:d1:67:21:c6: fa:60:eb:d0:7d:84:51:7f:b2:ea:92:9f:61:68:ca: 70:d7:5e:9d:9c:7c:81:6f:8b:49:c2:c1:a5:d0:6e: 79:52:5f:71:50:d6:1c:02:1e:99:9b:64:f7:a9:48: cf:d3:26:57:79:96:81:50:c9:28:d6:e5:67:f0:e0: 1e:be:64:1e:60:b4:4e:f6:01:cd:f7:4c:d3:86:33: 35:eb:c0:e6:2b:42:85:d7:89:16:37:49:ef:6d:e8: 7d:2e:95:18:9f:30:35:89:06:68:65:a8:f6:e2:7f: b4:58:4d:ea:33:96:46:f1:8f:9a:14:4b:41:3f:80: 6f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5A:A6:93:9D:42:54:34:24:84:A8:87:F1:BA:48:AE:AD:C0:66:17 X509v3 Authority Key Identifier: keyid:F0:FD:A2:48:82:C6:75:A3:C6:01:DB:FA:5C:02:63:C2:3A:69:2A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.98.0/23 Signature Algorithm: sha256WithRSAEncryption b5:43:c7:a1:27:4b:2d:fd:46:83:6f:34:d6:79:d7:fb:c9:84: f2:d3:e4:31:c9:44:77:27:f3:65:74:7a:2a:68:d5:1b:5d:c8: 05:14:62:9d:66:ab:8e:1c:d7:36:a1:b5:c9:c5:e4:6d:99:58: ac:39:3b:5a:13:1c:1e:c0:d9:3d:4c:04:94:3b:bb:a1:ee:09: 75:4a:8f:96:15:12:0f:e3:cb:01:b3:0d:6a:bc:fb:cf:23:87: c1:7e:d6:e8:25:da:71:d0:51:9a:5d:3c:e2:f3:93:3f:5b:82: 9f:2e:48:f0:d7:11:44:79:cd:6e:26:5a:81:19:61:06:fa:8e: ab:d3:6c:07:ae:d8:f3:fb:16:1c:b7:cb:45:03:78:da:05:65: cb:10:2a:35:79:28:5c:ab:da:44:a8:04:23:b2:b6:ce:48:09: 3a:12:3f:51:ed:b0:36:f2:f0:61:45:41:5e:95:28:2e:41:a4: 0a:49:69:7f:55:ec:8f:d8:a3:8a:e9:a5:b3:a3:f1:25:42:80: 84:12:b7:b8:6e:14:f4:22:9a:a8:5e:5d:17:3d:7e:06:56:62: fb:2d:16:f6:0b:bd:74:bb:29:24:5d:a3:d3:f0:ab:9f:9b:b1: 48:a5:54:75:07:1d:13:c8:26:e2:14:58:61:ff:f3:f7:10:9e: d9:03:9f:e0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE4REUxMTAvBgNVBAUTKEYwRkRBMjQ4ODJDNjc1QTNDNjAxREJGQTVDMDI2M0My M0E2OTJBMjIwHhcNMjUwNDA2MjAwMDAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDcwOC0xZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowyGSGduL7BIrpH/h83KPLTIt3pOoRDUoSEETd+hr5YIRzvMd5NnIGig4Pg8 cdVXjsldltrUKLuHV0HoOauim90E5qvvIvkmcEJPZ6U8PK4SMdZ89DYRXrR7VDfT d1ZMlje4mIJgt/A2QwAt5FQp1mpqxU3FWtmXVq6fc6u744rVmNFnIcb6YOvQfYRR f7Lqkp9haMpw116dnHyBb4tJwsGl0G55Ul9xUNYcAh6Zm2T3qUjP0yZXeZaBUMko 1uVn8OAevmQeYLRO9gHN90zThjM168DmK0KF14kWN0nvbeh9LpUYnzA1iQZoZaj2 4n+0WE3qM5ZG8Y+aFEtBP4BvXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM1appOd QlQ0JISoh/G6SK6twGYXMB8GA1UdIwQYMBaAFPD9okiCxnWjxgHb+lwCY8I6aSoi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMThERS9FRUExM0M5Qzc1 REExMUVBQjQ5M0YwNDlDNEY5QUUwMi84UDJpU0lMR2RhUEdBZHY2WEFKandqcHBL aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhQMmlTSUxHZGFQR0FkdjZYQUpqd2pwcEtpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE4REUvRUVBMTNDOUM3NURBMTFFQUI0OTNGMDQ5QzRGOUFFMDIvODg4MDk5NjA3 NURDMTFFQTg0RTBBOTRDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5RiMA0GCSqGSIb3DQEBCwUAA4IBAQC1Q8ehJ0st/UaDbzTWedf7 yYTy0+QxyUR3J/NldHoqaNUbXcgFFGKdZquOHNc2obXJxeRtmVisOTtaExwewNk9 TASUO7uh7gl1So+WFRIP48sBsw1qvPvPI4fBftboJdpx0FGaXTzi85M/W4KfLkjw 1xFEec1uJlqBGWEG+o6r02wHrtjz+xYct8tFA3jaBWXLECo1eShcq9pEqAQjsrbO SAk6Ej9R7bA28vBhRUFelSguQaQKSWl/VeyP2KOK6aWzo/ElQoCEEre4bhT0Ipqo Xl0XPX4GVmL7LRb2C710uykkXaPT8Kufm7FIpVR1Bx0TyCbiFFhh//P3EJ7ZA5/g -----END CERTIFICATE-----Generated at Mon Mar 2 10:22:59 2026 by rpki-client