$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa File: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (raw, json) Hash identifier: NdHvCz04ygMhEdy3te9H+OifuIBwvEnTvTRWLq7jQEE= Subject key identifier: 49:9E:83:D0:29:86:97:EA:26:3B:19:D1:39:61:C6:E6:9E:A2:25:4A Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0CB5 Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:54:00 +0000 ROA not before: Fri 12 Sep 2025 18:58:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58695 IP address blocks: 103.15.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Sep 12 18:58:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a444f8-8758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cc:41:24:85:68:f4:f1:44:98:72:32:cc:9f: cd:0e:b5:87:48:92:06:bb:06:47:1d:df:c5:ae:47: 66:ab:a8:f0:c7:3a:26:34:10:fc:62:fe:3a:96:46: 19:3f:70:d4:cb:a6:36:c2:f4:13:73:99:a0:f5:84: 46:a6:57:ca:1e:8d:33:7f:c7:8d:cb:67:c6:02:54: 47:f8:1f:1c:f9:07:01:96:cc:9f:b2:2f:91:30:91: 29:0e:8b:0d:b7:a3:0e:e5:ae:d8:aa:d2:7a:e6:73: c2:6b:94:08:16:2f:72:05:85:dd:af:2f:16:00:1d: 85:e2:d6:62:61:7a:6f:9a:22:dd:b2:92:9c:92:d9: 98:da:20:b8:e7:fc:4e:45:54:7a:99:d2:7d:fd:05: 06:15:17:2b:77:71:6d:2a:83:bc:6e:bd:c1:40:9f: aa:80:9b:4d:6b:07:0b:e8:93:b5:50:30:48:70:de: f7:26:41:f7:ab:fb:2a:c3:25:93:a3:e9:b6:21:f0: 05:b3:89:6d:d1:51:f9:f0:ba:57:62:00:95:77:1c: 29:1b:a6:4a:c0:5d:dd:2e:76:76:fa:12:67:ed:a5: f7:77:2c:cd:17:4e:32:8a:a6:a2:26:24:b2:c9:59: 3b:75:4c:ad:4d:fa:bd:fe:2d:2b:d1:9c:84:2c:b8: b3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9E:83:D0:29:86:97:EA:26:3B:19:D1:39:61:C6:E6:9E:A2:25:4A X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.15.224.0/23 Signature Algorithm: sha256WithRSAEncryption 45:e4:74:b8:67:4c:b1:b7:9a:34:3e:4c:9b:a7:ac:d2:49:4e: b5:a2:2a:aa:b0:d6:c6:28:fe:7c:78:2f:3c:00:e5:7f:2a:c1: 95:b2:4e:94:34:fe:1e:b6:cb:25:dc:d9:9d:12:30:6f:45:67: 55:45:0f:44:cb:c5:ad:73:9d:31:07:f6:f6:82:0a:92:86:53: aa:32:43:70:ff:f1:c5:37:86:d8:c6:18:f4:95:1a:0b:d2:aa: 62:fe:bb:5e:af:95:b5:78:a7:0e:18:8f:cd:77:cf:2e:ac:ed: 08:65:36:3f:ba:6e:7b:62:4a:19:dc:09:c8:78:4b:12:55:38: 63:a8:61:b1:ce:00:52:02:15:d4:7e:b7:ce:81:22:f2:83:36: 06:13:f5:70:14:2c:60:cd:4c:7e:c2:f3:e8:de:b2:6f:c5:95: d7:28:01:4a:97:bc:b5:e3:ad:30:a2:8b:d6:0f:97:65:dc:81: 54:13:f9:49:14:a4:5b:98:1d:41:3a:e0:c4:98:bf:4c:bc:d0: 9e:97:f1:b5:1d:d1:21:60:aa:ab:09:57:a7:ee:5e:dd:c2:f5: a3:b1:44:02:f6:e3:10:fa:58:76:a4:af:a9:36:0b:4e:07:1d: ae:ea:58:e8:b9:e0:87:79:df:1f:b1:48:a5:55:70:46:ff:22: 09:99:c3:98 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjUwOTEyMTg1ODI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDRmOC04NzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8xBJIVo9PFEmHIyzJ/NDrWHSJIGuwZHHd/Frkdmq6jwxzomNBD8Yv46lkYZ P3DUy6Y2wvQTc5mg9YRGplfKHo0zf8eNy2fGAlRH+B8c+QcBlsyfsi+RMJEpDosN t6MO5a7YqtJ65nPCa5QIFi9yBYXdry8WAB2F4tZiYXpvmiLdspKcktmY2iC45/xO RVR6mdJ9/QUGFRcrd3FtKoO8br3BQJ+qgJtNawcL6JO1UDBIcN73JkH3q/sqwyWT o+m2IfAFs4lt0VH58LpXYgCVdxwpG6ZKwF3dLnZ2+hJn7aX3dyzNF04yiqaiJiSy yVk7dUytTfq9/i0r0ZyELLizVQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEmeg9Ap hpfqJjsZ0TlhxuaeoiVKMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM4MDYvQjQ3MkZFMkEwQjdDMTFFQTgwODNFOTM2QzRGOUFFMDIvNEU1NEFBNEMw QjdFMTFFQTlEOEJBNDNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZw/gMA0GCSqGSIb3DQEBCwUAA4IBAQBF5HS4Z0yxt5o0Pkybp6zS SU61oiqqsNbGKP58eC88AOV/KsGVsk6UNP4etssl3NmdEjBvRWdVRQ9Ey8Wtc50x B/b2ggqShlOqMkNw//HFN4bYxhj0lRoL0qpi/rter5W1eKcOGI/Nd88urO0IZTY/ um57YkoZ3AnIeEsSVThjqGGxzgBSAhXUfrfOgSLygzYGE/VwFCxgzUx+wvPo3rJv xZXXKAFKl7y1460woovWD5dl3IFUE/lJFKRbmB1BOuDEmL9MvNCel/G1HdEhYKqr CVen7l7dwvWjsUQC9uMQ+lh2pK+pNgtOBx2u6ljoueCHed8fsUilVXBG/yIJmcOY -----END CERTIFICATE-----Generated at Mon Mar 2 17:45:35 2026 by rpki-client