$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/DD7FC172E17D11EFAC0A7E29C4F9AE02.roa File: DD7FC172E17D11EFAC0A7E29C4F9AE02.roa (raw, json) Hash identifier: CR884Fx/vNDalD1W0H8kE8PE03fgD5p2vcrIaYfDsSM= Subject key identifier: F3:61:96:5F:04:11:04:AB:7D:7A:1A:F7:F4:3E:5A:A3:93:75:DB:03 Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0B0F Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/DD7FC172E17D11EFAC0A7E29C4F9AE02.roa Signing time: Fri 30 Jan 2026 16:13:53 +0000 ROA not before: Fri 30 Jan 2026 16:13:53 +0000 ROA not after: Tue 02 Jun 2026 00:00:00 +0000 asID: 134983 IP address blocks: 103.204.200.0/22 maxlen: 24 202.181.12.0/22 maxlen: 24 2404:c280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 15:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2831 (0xb0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413, serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Jan 30 16:13:53 2026 GMT Not After : Jun 2 00:00:00 2026 GMT Subject: CN=697cd8c1-0991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:09:28:d6:e0:5f:84:f3:a9:1c:b5:28:10:7e: 61:62:f6:87:9e:51:88:38:11:0d:fa:05:a1:ff:dd: f5:2a:9b:16:26:9b:54:08:6c:67:a8:24:90:08:b6: f5:f2:7d:23:4e:7c:e2:9d:41:a2:ea:51:81:04:71: 87:c7:81:5d:8c:10:4c:90:0f:12:65:77:60:06:8c: bf:10:a4:d8:47:cd:36:ec:7c:2a:3f:50:9a:8c:64: 94:3e:ef:e3:21:69:c3:d0:84:cc:61:ae:cc:b3:9c: e5:9c:10:04:42:45:91:b0:fe:3f:3d:52:50:20:84: 05:b9:02:d5:ac:69:c2:fb:73:57:4b:43:fa:38:f3: e7:86:40:30:7a:25:7e:55:29:0f:25:f0:d9:be:de: de:b0:46:45:1b:3a:fe:e0:4c:0d:fb:c0:9c:c6:6f: c4:6a:e1:69:b2:40:fb:ea:f3:e0:9a:27:0b:52:e4: 2f:0f:6b:6c:a1:82:36:2b:33:12:47:6f:c1:97:4c: 72:70:e0:f7:0e:34:87:08:3d:4f:6e:b0:02:c6:f0: 1b:6a:08:f2:11:91:57:09:48:a7:c7:80:46:69:76: 71:49:e8:73:3b:4f:1e:5d:bc:11:78:23:66:27:60: 6a:31:7d:a9:e6:66:f3:e2:9b:36:b0:39:1e:9f:f2: 6d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:61:96:5F:04:11:04:AB:7D:7A:1A:F7:F4:3E:5A:A3:93:75:DB:03 X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/DD7FC172E17D11EFAC0A7E29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.200.0/22 202.181.12.0/22 IPv6: 2404:c280::/32 Signature Algorithm: sha256WithRSAEncryption a6:99:45:78:86:bf:2e:e8:77:d9:d6:0f:f4:20:11:74:e4:56: 5b:9e:e3:96:11:7c:f2:af:26:25:f6:fe:53:c3:59:1b:91:48: 28:df:a8:47:e4:9f:82:9b:66:9d:86:27:f9:f1:a0:3d:f7:c1: 0b:1f:c4:f7:1f:7c:b8:34:bf:3f:0d:35:9e:3f:9a:55:c8:cb: 4d:23:0c:23:39:3c:d2:96:1b:e5:48:9c:a4:ae:94:01:5e:bf: 34:81:e2:93:e6:fc:40:54:03:50:1e:f2:8f:06:c9:2b:7f:4c: be:21:26:49:64:43:5f:4a:9c:9e:31:e0:40:bd:56:da:37:68: 3d:e5:a0:1f:22:77:2a:19:a8:34:b3:32:c3:4f:eb:cd:09:15: 9c:f7:e8:63:19:03:ec:36:35:0a:d2:01:34:2b:67:7d:46:a0: 71:a2:33:b6:2f:55:2d:6a:1e:52:76:6f:19:f7:1e:8e:c9:1c: c3:e9:0e:43:89:7a:69:cd:cf:51:a6:91:3e:0b:b9:36:a0:4b: f3:16:de:55:67:3c:6e:d1:03:7c:a6:4c:3f:7e:82:56:a4:ef: d7:b3:ef:02:43:9a:80:42:ba:8d:96:e9:70:7e:9c:fd:3b:dd: 1a:47:5e:1a:54:87:7e:bb:5e:2a:80:d9:35:04:7a:11:24:3d: ee:c5:f1:b6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjYwMTMwMTYxMzUzWhcNMjYwNjAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdjZDhjMS0wOTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgko1uBfhPOpHLUoEH5hYvaHnlGIOBEN+gWh/931KpsWJptUCGxnqCSQCLb1 8n0jTnzinUGi6lGBBHGHx4FdjBBMkA8SZXdgBoy/EKTYR8027HwqP1CajGSUPu/j IWnD0ITMYa7Ms5zlnBAEQkWRsP4/PVJQIIQFuQLVrGnC+3NXS0P6OPPnhkAweiV+ VSkPJfDZvt7esEZFGzr+4EwN+8Ccxm/EauFpskD76vPgmicLUuQvD2tsoYI2KzMS R2/Bl0xycOD3DjSHCD1PbrACxvAbagjyEZFXCUinx4BGaXZxSehzO08eXbwReCNm J2BqMX2p5mbz4ps2sDken/JtAQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPNhll8E EQSrfXoa9/Q+WqOTddsDMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ0MTMvMDgxNkU3NTRGRkI0MTFFNTk0NDMxMDJDQzRGOUFFMDIvREQ3RkMxNzJF MTdEMTFFRkFDMEE3RTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnzMgDBALKtQwwDQQCAAIwBwMFACQEwoAwDQYJKoZIhvcN AQELBQADggEBAKaZRXiGvy7od9nWD/QgEXTkVlue45YRfPKvJiX2/lPDWRuRSCjf qEfkn4KbZp2GJ/nxoD33wQsfxPcffLg0vz8NNZ4/mlXIy00jDCM5PNKWG+VInKSu lAFevzSB4pPm/EBUA1Ae8o8GySt/TL4hJklkQ19KnJ4x4EC9Vto3aD3loB8idyoZ qDSzMsNP680JFZz36GMZA+w2NQrSATQrZ31GoHGiM7YvVS1qHlJ2bxn3Ho7JHMPp DkOJemnNz1GmkT4LuTagS/MW3lVnPG7RA3ymTD9+glak79ez7wJDmoBCuo2W6XB+ nP073RpHXhpUh367XiqA2TUEehEkPe7F8bY= -----END CERTIFICATE-----Generated at Thu Feb 19 23:12:26 2026 by rpki-client