$ rpki-client -vvf rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/825697D20F7911F1809984312C3D8C67.roa File: 825697D20F7911F1809984312C3D8C67.roa (raw, json) Hash identifier: zwLj1p60QJZhGqM9OFrvvmZ63ABgfQGgbVPoX25wiFA= Subject key identifier: E4:28:0D:D1:67:99:56:FC:03:73:74:86:21:5A:DD:B6:FD:6E:91:F8 Certificate issuer: /CN=A91F78E2/serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Certificate serial: 13 Authority key identifier: A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/825697D20F7911F1809984312C3D8C67.roa Signing time: Mon 02 Mar 2026 14:34:52 +0000 ROA not before: Sat 21 Feb 2026 23:03:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134843 IP address blocks: 103.102.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F78E2, serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Validity Not Before: Feb 21 23:03:18 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a00c-cce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:c4:57:e0:ad:b0:8c:c3:2d:03:19:33:5b: 5b:54:f0:a5:e6:bc:3b:71:e6:f6:91:40:6f:11:25: bc:16:0d:b0:0a:3e:66:7a:b2:53:53:07:32:91:ba: f6:7b:cf:e6:29:c4:8c:f7:4a:35:a5:da:8c:d4:2f: a1:13:f9:91:0c:88:ef:a0:39:1b:04:bd:fb:93:ab: 22:e6:d4:d2:2b:e3:5c:94:6c:ef:32:c4:eb:2f:c1: 4c:f7:e3:83:7b:04:78:a5:91:58:48:c7:0d:9c:77: d2:95:c8:de:d2:bb:ae:f2:75:1d:45:f9:46:7f:aa: 44:d6:71:c1:5d:18:2c:38:26:03:ee:19:4c:fc:bc: 7f:15:0c:1e:04:fe:0c:0f:69:4e:ca:4a:2b:f9:8f: 9c:38:84:c0:a4:df:90:ae:a2:bb:b3:61:1f:0e:90: 81:44:50:96:11:bd:94:32:98:13:8a:6e:6a:1d:ad: 3a:88:a5:ce:60:0d:13:33:4e:cb:05:90:db:e7:99: 36:68:f9:e6:79:0c:b8:42:03:9d:86:bc:b7:8b:68: 41:4b:3e:ea:49:7e:3d:bf:f6:d3:66:84:5a:79:e5: e2:fe:ef:d3:88:e7:79:9c:07:0b:2a:13:3d:53:02: 25:74:ec:17:6d:20:99:70:8e:30:8b:d3:47:97:fb: 3c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:28:0D:D1:67:99:56:FC:03:73:74:86:21:5A:DD:B6:FD:6E:91:F8 X509v3 Authority Key Identifier: keyid:A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/825697D20F7911F1809984312C3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.102.232.0/23 Signature Algorithm: sha256WithRSAEncryption a8:02:0b:27:59:d5:8e:c4:59:e0:a6:2d:73:00:06:4a:a2:96: b8:2c:d6:ed:27:f8:40:71:a6:5e:92:ff:c6:5e:53:d7:af:cf: 58:8d:aa:4f:f7:41:7c:7e:19:24:7a:dd:d3:78:3e:f7:bd:e6: 76:60:d5:e4:e4:af:b0:c9:eb:ec:c1:80:9a:1e:06:ae:6f:ea: 8e:cb:78:9b:09:12:f5:a9:f9:7d:e2:6f:c6:4f:da:f1:9c:35: 2c:f4:d1:1b:76:f7:8b:e6:e6:59:12:26:62:c0:a3:d6:28:c7: c3:54:d0:6a:7c:83:34:37:74:c9:b2:ad:79:1f:42:c9:80:9c: 37:6a:ee:a8:c5:e1:62:a4:40:f7:5a:2c:4d:47:37:15:ff:79: e3:be:29:b2:34:ff:32:ec:52:4c:f2:5f:c8:1b:16:8a:3b:96: 30:76:3d:99:25:c8:db:ce:f5:1c:91:9d:ec:ee:c8:a9:fc:9b: 05:bc:f8:14:0a:ef:6a:e1:ef:19:23:2e:3b:73:5f:af:38:0c: 28:30:41:63:7d:21:2a:10:b6:fe:38:73:8d:48:10:c3:78:9c: 20:96:a2:df:60:26:a7:1b:d4:b0:3c:ec:32:e7:72:43:3e:20: 47:7d:75:b6:2c:9d:8c:ad:c4:a7:07:92:a1:7b:00:2c:91:81: 68:36:dd:8f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzhFMjExMC8GA1UEBRMoQTM0NjY0OEI0QURGNEZDNUI0NzdDN0RBMkNGMDVCMTY4 NDM3REI1RDAeFw0yNjAyMjEyMzAzMThaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhMDBjLWNjZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIFsRX4K2wjMMtAxkzW1tU8KXmvDtx5vaRQG8RJbwWDbAKPmZ6slNTBzKRuvZ7 z+YpxIz3SjWl2ozUL6ET+ZEMiO+gORsEvfuTqyLm1NIr41yUbO8yxOsvwUz344N7 BHilkVhIxw2cd9KVyN7Su67ydR1F+UZ/qkTWccFdGCw4JgPuGUz8vH8VDB4E/gwP aU7KSiv5j5w4hMCk35CuoruzYR8OkIFEUJYRvZQymBOKbmodrTqIpc5gDRMzTssF kNvnmTZo+eZ5DLhCA52GvLeLaEFLPupJfj2/9tNmhFp55eL+79OI53mcBwsqEz1T AiV07BdtIJlwjjCL00eX+zwJAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU5CgN0WeZ VvwDc3SGIVrdtv1ukfgwHwYDVR0jBBgwFoAUo0Zki0rfT8W0d8faLPBbFoQ3210w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OEUyL0M4RjRBOEUyMDc5 OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhXMGQ4ZmFMUEJiRm9RMzIx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzBaa2kwcmZUOFcwZDhmYUxQQmJGb1EzMjEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzhFMi9DOEY0QThFMjA3OTkxMUYxQTVBRTlBMUIwRTNEOEM2Ny84MjU2OTdEMjBG NzkxMUYxODA5OTg0MzEyQzNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnZugwDQYJKoZIhvcNAQELBQADggEBAKgCCydZ1Y7EWeCmLXMABkqi lrgs1u0n+EBxpl6S/8ZeU9evz1iNqk/3QXx+GSR63dN4Pve95nZg1eTkr7DJ6+zB gJoeBq5v6o7LeJsJEvWp+X3ib8ZP2vGcNSz00Rt294vm5lkSJmLAo9Yox8NU0Gp8 gzQ3dMmyrXkfQsmAnDdq7qjF4WKkQPdaLE1HNxX/eeO+KbI0/zLsUkzyX8gbFoo7 ljB2PZklyNvO9RyRnezuyKn8mwW8+BQK72rh7xkjLjtzX684DCgwQWN9ISoQtv44 c41IEMN4nCCWot9gJqcb1LA87DLnckM+IEd9dbYsnYytxKcHkqF7ACyRgWg23Y8= -----END CERTIFICATE-----Generated at Mon Mar 2 18:39:24 2026 by rpki-client