$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa File: C2D66F8271A911EEAEEE351CC4F9AE02.roa (raw, json) Hash identifier: YyDBfzVVG7Y4R4RVtmCOmRwrmmvCpbOUWV0JKeds9m8= Subject key identifier: FE:DF:43:E2:23:89:44:D0:4F:C3:50:AE:35:67:0D:99:97:15:53:36 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 01A5 Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa Signing time: Thu 01 Jan 2026 03:22:20 +0000 ROA not before: Thu 01 Jan 2026 03:22:20 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132060 IP address blocks: 103.67.76.0/24 maxlen: 24 103.67.77.0/24 maxlen: 24 2001:df3:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 02:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D, serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: Jan 1 03:22:20 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6955e86c-002f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2c:c3:90:c1:ea:7e:ee:6f:42:f6:c0:51:2b: 58:07:7d:ac:14:34:eb:0e:68:17:b3:fa:42:68:e8: d8:f9:4f:54:7b:29:56:1a:c8:f9:58:b7:02:77:6a: 15:87:6e:fa:78:52:2c:eb:01:22:ea:e8:47:a2:c8: b6:14:d7:aa:e8:16:51:48:20:b8:1f:8d:3e:db:cb: 3a:53:1a:e2:87:77:f1:36:5e:30:31:cc:11:be:c2: 9e:3c:6e:29:b3:fa:4c:30:90:49:2a:fa:10:20:f9: 2e:63:a4:75:67:b9:e9:c6:03:60:e7:f7:f5:40:b7: d5:95:62:08:2e:29:4e:75:7b:7f:82:38:0a:a2:bc: 6f:9a:57:1e:12:cb:7e:e4:fe:68:a6:b0:2a:fd:7c: 96:ec:d3:e4:cb:6e:b5:ab:41:8d:91:08:4d:f0:c9: 1d:29:ba:11:95:61:29:ae:05:22:b7:71:0d:66:12: 77:b4:df:e2:6a:f3:dd:95:17:7e:b4:59:16:c1:c9: 8c:28:c2:42:81:1a:4e:c3:0c:51:fc:a5:f3:ea:49: 2a:ef:7a:44:d1:36:33:09:6b:1d:d8:00:0d:9e:3a: 53:6b:d5:a3:47:4d:e2:6b:08:d7:ab:ae:ac:da:5f: 86:e5:74:4a:25:7f:60:7a:d5:6f:bf:05:ea:31:5a: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DF:43:E2:23:89:44:D0:4F:C3:50:AE:35:67:0D:99:97:15:53:36 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.76.0/23 IPv6: 2001:df3:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 7e:66:ed:71:28:49:6b:35:84:0d:5e:95:b4:0d:a9:dc:7e:68: d3:88:47:13:2f:03:56:3d:d2:ca:37:ff:c5:92:90:a6:50:bc: 16:8d:65:c4:51:cf:6d:f7:18:15:5f:29:f3:7d:36:94:1d:8a: 5c:fc:4c:7b:f1:e6:e6:68:32:0a:3c:83:15:67:71:bb:da:90: 87:5e:8c:b8:a5:eb:67:b9:82:ef:1d:2f:43:61:ea:04:4d:32: 32:d8:bd:e0:8a:9d:06:40:0f:9f:a5:ea:17:1d:c0:89:65:67: e0:95:46:4b:f5:f3:9c:3d:71:af:af:94:80:47:08:88:45:48: 2c:81:00:7d:18:70:c9:06:22:af:dd:88:ae:84:02:56:a9:5f: 47:41:d0:e0:c9:6e:c2:b9:6f:8f:f6:42:84:83:5a:92:df:13: f0:1e:9b:42:ef:45:b3:99:26:ea:df:30:a4:b8:7b:ba:cd:4c: b3:db:29:07:e6:42:77:9f:18:db:d5:5e:1f:dd:2f:3e:d7:3f: 7c:1b:95:8e:db:46:9f:13:19:0c:3b:1b:15:e3:fd:09:b9:ac: 85:a2:8d:b3:5b:b7:04:4b:02:da:08:a4:9a:51:a0:cd:d4:fa: 05:87:92:e0:fd:9e:3e:7c:26:6f:04:36:7c:ad:db:a2:3b:2e: bb:ae:27:aa -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjYwMTAxMDMyMjIwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1ZTg2Yy0wMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yzDkMHqfu5vQvbAUStYB32sFDTrDmgXs/pCaOjY+U9UeylWGsj5WLcCd2oV h276eFIs6wEi6uhHosi2FNeq6BZRSCC4H40+28s6Uxrih3fxNl4wMcwRvsKePG4p s/pMMJBJKvoQIPkuY6R1Z7npxgNg5/f1QLfVlWIILilOdXt/gjgKorxvmlceEst+ 5P5oprAq/XyW7NPky261q0GNkQhN8MkdKboRlWEprgUit3ENZhJ3tN/iavPdlRd+ tFkWwcmMKMJCgRpOwwxR/KXz6kkq73pE0TYzCWsd2AANnjpTa9WjR03iawjXq66s 2l+G5XRKJX9getVvvwXqMVrMFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP7fQ+Ij iUTQT8NQrjVnDZmXFVM2MB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY2NkQvNTExQTg5MkU3MUE4MTFFRUI0MzdGMTgxQzRGOUFFMDIvQzJENjZGODI3 MUE5MTFFRUFFRUUzNTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQ0wwDwQCAAIwCQMHACABDfMOwDANBgkqhkiG9w0BAQsF AAOCAQEAfmbtcShJazWEDV6VtA2p3H5o04hHEy8DVj3Syjf/xZKQplC8Fo1lxFHP bfcYFV8p8302lB2KXPxMe/Hm5mgyCjyDFWdxu9qQh16MuKXrZ7mC7x0vQ2HqBE0y Mti94IqdBkAPn6XqFx3AiWVn4JVGS/XznD1xr6+UgEcIiEVILIEAfRhwyQYir92I roQCVqlfR0HQ4Mluwrlvj/ZChINakt8T8B6bQu9Fs5km6t8wpLh7us1Ms9spB+ZC d58Y29VeH90vPtc/fBuVjttGnxMZDDsbFeP9CbmshaKNs1u3BEsC2gikmlGgzdT6 BYeS4P2ePnwmbwQ2fK3bojsuu64nqg== -----END CERTIFICATE-----Generated at Fri Feb 20 01:51:04 2026 by rpki-client