$ rpki-client -vvf rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/2E809260BFC511EBAD79ED25C4F9AE02.roa File: 2E809260BFC511EBAD79ED25C4F9AE02.roa (raw, json) Hash identifier: FPfmVwpTYMNQ4U5n1Dcya5Lt6CLsXP0IYEvObMjwM64= Subject key identifier: BD:91:67:97:E8:83:3A:0C:9E:8C:5B:A1:B5:42:B9:C2:CB:DA:F1:9E Certificate issuer: /CN=A91F60A7/serialNumber=48F1327632D7DBEF331C0E2489EEE3F5BEFB8452 Certificate serial: 066F Authority key identifier: 48:F1:32:76:32:D7:DB:EF:33:1C:0E:24:89:EE:E3:F5:BE:FB:84:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPEydjLX2-8zHA4kie7j9b77hFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/2E809260BFC511EBAD79ED25C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:50:11 +0000 ROA not before: Fri 04 Jul 2025 23:35:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135345 IP address blocks: 103.166.248.0/24 maxlen: 24 103.166.249.0/24 maxlen: 24 2407:5dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/SPEydjLX2-8zHA4kie7j9b77hFI.crl rsync://rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/SPEydjLX2-8zHA4kie7j9b77hFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPEydjLX2-8zHA4kie7j9b77hFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F60A7, serialNumber=48F1327632D7DBEF331C0E2489EEE3F5BEFB8452 Validity Not Before: Jul 4 23:35:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40bd3-de79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:49:e8:93:c5:e3:e2:c8:d7:73:02:56:a7:0c: 10:9a:4c:ae:06:b5:2e:ad:6a:4a:88:3a:98:c4:3c: fa:e7:92:b2:6e:75:f3:c6:97:21:dc:0f:1a:a7:a3: 81:e9:f0:00:c6:9b:bf:f3:b2:8a:61:86:f1:2e:55: 8c:b5:f3:e1:9d:56:e1:63:45:ae:58:b1:91:db:10: aa:15:fe:8b:51:46:1b:36:cf:f9:ce:09:70:6d:57: 99:b3:8e:c8:79:7e:35:59:61:22:a0:0a:aa:09:7d: 37:2f:55:45:5f:70:fa:0d:82:5f:2f:93:2d:66:70: 14:37:d3:78:ee:af:2b:9c:e5:f2:a7:f8:d0:85:93: 4a:fb:1a:2b:18:b7:bc:83:2d:1b:39:a9:a8:4d:bf: ad:19:26:83:ee:77:46:eb:72:e3:ae:00:18:3f:52: 8c:10:42:54:95:ef:e8:f7:c3:c5:1f:e3:31:3c:56: 0c:50:94:a0:6e:fa:2a:74:aa:d6:dc:51:b4:b9:98: 6c:e5:cd:f4:96:17:d6:ed:ab:f7:c9:95:4d:4f:6e: 02:b2:cb:9f:d9:3d:d5:da:50:94:28:84:e0:20:77: ac:45:2e:cc:1b:f9:6d:5d:c0:cf:00:69:d6:95:84: 84:e3:2e:d5:8b:22:ff:c8:99:ae:42:f9:9a:44:5c: 4b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:91:67:97:E8:83:3A:0C:9E:8C:5B:A1:B5:42:B9:C2:CB:DA:F1:9E X509v3 Authority Key Identifier: keyid:48:F1:32:76:32:D7:DB:EF:33:1C:0E:24:89:EE:E3:F5:BE:FB:84:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/SPEydjLX2-8zHA4kie7j9b77hFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPEydjLX2-8zHA4kie7j9b77hFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F60A7/4E00FE9ABD1D11EB9AD85D45C4F9AE02/2E809260BFC511EBAD79ED25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.248.0/23 IPv6: 2407:5dc0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:05:af:fe:38:37:1c:ec:3d:92:6a:16:ac:f4:b6:6d:da:2b: 87:b8:d9:11:1c:51:03:a7:3a:3c:fc:53:6d:04:f8:e3:65:16: 0c:a9:2d:e1:d9:12:28:80:17:b2:80:2b:4b:4d:dc:c4:7a:62: d5:0b:f9:e2:6f:2f:31:06:95:04:6a:e2:3f:4f:9d:b2:4e:d6: bb:33:55:5d:b5:52:ee:99:25:e1:e4:e0:0e:8a:61:23:0a:d6: 78:bf:6a:3f:c4:df:51:2d:a9:0c:e4:49:3b:69:bf:00:b3:0d: bd:f9:28:5d:af:84:a9:09:17:37:5e:b5:6a:e0:92:c0:e4:f1: 21:1a:07:97:82:1f:20:ab:99:a9:20:e9:64:7a:b3:b3:51:71: 19:26:44:43:ea:60:a6:bb:b2:a0:bc:01:de:2d:6c:27:28:67: 79:87:1c:00:82:af:41:e0:85:89:53:b4:b5:c4:3d:1a:94:0b: f9:eb:89:e5:45:ce:c0:9a:e3:2d:27:30:8f:21:e9:9d:ee:dc: 98:71:f9:b4:5e:eb:3e:29:c5:db:e8:f1:f0:62:5d:c4:85:43: 1c:04:b2:0b:a9:98:ba:3b:a8:c7:14:11:b3:e3:06:3f:d5:fc: 7c:57:c6:9b:80:44:05:6a:6f:dc:e6:13:3c:bd:64:f5:da:59: 04:79:04:cc -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwQTcxMTAvBgNVBAUTKDQ4RjEzMjc2MzJEN0RCRUYzMzFDMEUyNDg5RUVFM0Y1 QkVGQjg0NTIwHhcNMjUwNzA0MjMzNTM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGJkMy1kZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUnok8Xj4sjXcwJWpwwQmkyuBrUurWpKiDqYxDz655KybnXzxpch3A8ap6OB 6fAAxpu/87KKYYbxLlWMtfPhnVbhY0WuWLGR2xCqFf6LUUYbNs/5zglwbVeZs47I eX41WWEioAqqCX03L1VFX3D6DYJfL5MtZnAUN9N47q8rnOXyp/jQhZNK+xorGLe8 gy0bOamoTb+tGSaD7ndG63LjrgAYP1KMEEJUle/o98PFH+MxPFYMUJSgbvoqdKrW 3FG0uZhs5c30lhfW7av3yZVNT24Cssuf2T3V2lCUKITgIHesRS7MG/ltXcDPAGnW lYSE4y7ViyL/yJmuQvmaRFxLKQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFL2RZ5fo gzoMnoxbobVCucLL2vGeMB8GA1UdIwQYMBaAFEjxMnYy19vvMxwOJInu4/W++4RS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjBBNy80RTAwRkU5QUJE MUQxMUVCOUFEODVENDVDNEY5QUUwMi9TUEV5ZGpMWDItOHpIQTRraWU3ajliNzdo RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQRXlkakxYMi04ekhBNGtpZTdqOWI3N2hGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYwQTcvNEUwMEZFOUFCRDFEMTFFQjlBRDg1RDQ1QzRGOUFFMDIvMkU4MDkyNjBC RkM1MTFFQkFENzlFRDI1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6b4MA0EAgACMAcDBQAkB13AMA0GCSqGSIb3DQEBCwUAA4IBAQAu Ba/+ODcc7D2Sahas9LZt2iuHuNkRHFEDpzo8/FNtBPjjZRYMqS3h2RIogBeygCtL TdzEemLVC/niby8xBpUEauI/T52yTta7M1VdtVLumSXh5OAOimEjCtZ4v2o/xN9R LakM5Ek7ab8Asw29+Shdr4SpCRc3XrVq4JLA5PEhGgeXgh8gq5mpIOlkerOzUXEZ JkRD6mCmu7KgvAHeLWwnKGd5hxwAgq9B4IWJU7S1xD0alAv564nlRc7AmuMtJzCP Iemd7tyYcfm0Xus+KcXb6PHwYl3EhUMcBLILqZi6O6jHFBGz4wY/1fx8V8abgEQF am/c5hM8vWT12lkEeQTM -----END CERTIFICATE-----Generated at Mon Mar 2 05:49:34 2026 by rpki-client