$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/CC08667A7A6011EB9BC9937BC4F9AE02.roa File: CC08667A7A6011EB9BC9937BC4F9AE02.roa (raw, json) Hash identifier: 8w0OkkiQMesnqjsDX17pMHO1P+oif+rNa46fjPHMrwM= Subject key identifier: 0D:FE:6C:94:60:DA:00:58:21:68:E8:3E:B4:8E:83:8A:A5:25:DA:DA Certificate issuer: /CN=A91F3AF8/serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682 Certificate serial: 084C Authority key identifier: 53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/CC08667A7A6011EB9BC9937BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:44:10 +0000 ROA not before: Wed 31 Dec 2025 21:16:57 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38477 IP address blocks: 103.254.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3AF8, serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682 Validity Not Before: Dec 31 21:16:57 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45eca-7378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:98:95:4c:00:a9:29:21:97:e0:51:27:c8:65: 37:01:72:29:58:b9:27:f9:50:dc:61:96:c2:78:bc: b6:23:13:91:25:6f:41:c1:9e:67:16:d3:eb:e1:1d: d0:ee:ae:d0:9c:bd:40:ae:75:9c:20:f5:07:5d:f0: e8:66:eb:0c:a6:e6:b4:bd:4d:77:e8:a8:21:fc:93: 22:7f:b8:91:04:69:ad:69:4e:36:cb:29:73:ec:1e: 88:bb:93:06:80:eb:ac:01:66:d4:7a:b9:10:99:36: d7:34:8e:ce:90:b5:e1:f2:ae:8e:df:55:95:25:17: 1e:d0:f3:58:b3:b8:51:9d:93:14:2e:35:71:67:01: 15:8d:2b:64:97:ae:33:2a:e1:75:85:f0:b8:a9:dd: 9d:03:ff:a7:69:71:fd:1a:f2:28:5f:61:88:a5:b7: 14:2f:e8:97:c7:92:c5:d0:67:ac:ef:c1:df:14:11: 22:d5:2b:2b:6f:9c:1a:0c:0b:98:9f:56:6b:f8:72: c0:56:f8:3e:8c:86:5f:e3:e4:35:42:3a:c8:42:a2: db:2a:49:ef:ea:68:c5:a9:5f:72:c9:db:ed:1d:11: 0c:fc:2c:f5:f9:82:f4:36:34:23:c1:5d:c2:78:a5: f6:4b:81:d2:93:1c:bd:0f:44:d0:a3:ad:38:39:88: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:FE:6C:94:60:DA:00:58:21:68:E8:3E:B4:8E:83:8A:A5:25:DA:DA X509v3 Authority Key Identifier: keyid:53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/CC08667A7A6011EB9BC9937BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.195.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:a7:fc:0b:8d:b6:35:47:06:d5:93:77:e5:25:07:1e:80:53: b1:ff:27:99:62:70:10:97:de:85:92:79:8e:89:70:a0:e8:ca: a8:eb:b9:58:4f:6b:78:84:30:01:20:67:6a:7a:f5:26:61:04: bf:86:5d:58:be:02:76:d5:05:15:25:90:d3:88:2a:49:14:d1: 96:2c:6f:82:e4:be:62:40:a0:ab:04:c5:06:98:55:6a:7c:8a: 28:08:bd:fe:31:e7:58:8f:c5:00:0d:bb:fd:3a:01:ca:bc:57: 35:4e:bf:4a:6c:e1:39:19:6b:cb:b5:1d:2a:31:c5:12:97:bb: 04:f3:54:5b:ee:b9:ae:91:80:1f:25:ba:49:1c:b7:ce:61:f8: 56:a0:12:f5:3b:94:03:86:62:dd:d5:a8:29:99:61:dd:99:bc: 0b:e6:c0:2d:63:8d:11:77:32:76:ea:0a:3c:78:31:11:f3:19: 83:88:a1:32:f1:87:02:6b:e8:db:30:27:da:9c:31:b9:f4:e8: 91:cf:1e:f3:c8:16:fb:9a:f3:f6:d6:a6:63:6c:24:04:4e:5d: 5b:6e:5b:af:11:30:10:f4:b6:40:ce:e1:12:62:4c:87:5c:99: 8e:af:7e:70:15:b4:0b:b3:86:db:92:20:81:8f:a0:40:82:a6: 38:b9:72:34 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNBRjgxMTAvBgNVBAUTKDUzMEQyOUFEQzBGQjFDRjI4MzdEMzlCQjg2MzQzNDg2 QzFDNzE2ODIwHhcNMjUxMjMxMjExNjU3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWVjYS03Mzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZiVTACpKSGX4FEnyGU3AXIpWLkn+VDcYZbCeLy2IxORJW9BwZ5nFtPr4R3Q 7q7QnL1ArnWcIPUHXfDoZusMpua0vU136Kgh/JMif7iRBGmtaU42yylz7B6Iu5MG gOusAWbUerkQmTbXNI7OkLXh8q6O31WVJRce0PNYs7hRnZMULjVxZwEVjStkl64z KuF1hfC4qd2dA/+naXH9GvIoX2GIpbcUL+iXx5LF0Ges78HfFBEi1Ssrb5waDAuY n1Zr+HLAVvg+jIZf4+Q1QjrIQqLbKknv6mjFqV9yydvtHREM/Cz1+YL0NjQjwV3C eKX2S4HSkxy9D0TQo604OYiFFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA3+bJRg 2gBYIWjoPrSOg4qlJdraMB8GA1UdIwQYMBaAFFMNKa3A+xzyg305u4Y0NIbBxxaC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0FGOC80ODI5N0ZFRTAy RkUxMUVCQjcwNjY0M0VDNEY5QUUwMi9VdzBwcmNEN0hQS0RmVG03aGpRMGhzSEhG b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V3MHByY0Q3SFBLRGZUbTdoalEwaHNISEZvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNBRjgvNDgyOTdGRUUwMkZFMTFFQkI3MDY2NDNFQzRGOUFFMDIvQ0MwODY2N0E3 QTYwMTFFQjlCQzk5MzdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ/7DMA0GCSqGSIb3DQEBCwUAA4IBAQAMp/wLjbY1RwbVk3flJQce gFOx/yeZYnAQl96FknmOiXCg6Mqo67lYT2t4hDABIGdqevUmYQS/hl1YvgJ21QUV JZDTiCpJFNGWLG+C5L5iQKCrBMUGmFVqfIooCL3+MedYj8UADbv9OgHKvFc1Tr9K bOE5GWvLtR0qMcUSl7sE81Rb7rmukYAfJbpJHLfOYfhWoBL1O5QDhmLd1agpmWHd mbwL5sAtY40RdzJ26go8eDER8xmDiKEy8YcCa+jbMCfanDG59OiRzx7zyBb7mvP2 1qZjbCQETl1bbluvETAQ9LZAzuESYkyHXJmOr35wFbQLs4bbkiCBj6BAgqY4uXI0 -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:06 2026 by rpki-client