$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/2245CE0A606811EB80E3D531C4F9AE02.roa File: 2245CE0A606811EB80E3D531C4F9AE02.roa (raw, json) Hash identifier: KUlAq2KLbGk5cksCgTwF3G1lgCxTTgrZ6xrP0bqSyS4= Subject key identifier: 8E:9E:96:57:66:3A:77:0C:5F:31:84:ED:2C:5E:1E:AB:C9:E0:ED:9D Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 1202 Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/2245CE0A606811EB80E3D531C4F9AE02.roa Signing time: Thu 05 Feb 2026 04:14:37 +0000 ROA not before: Thu 05 Feb 2026 04:14:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135025 IP address blocks: 14.102.168.0/22 maxlen: 22 14.102.168.0/24 maxlen: 24 14.102.169.0/24 maxlen: 24 14.102.170.0/24 maxlen: 24 14.102.171.0/24 maxlen: 24 103.206.80.0/22 maxlen: 22 103.206.80.0/24 maxlen: 24 103.206.81.0/24 maxlen: 24 103.206.82.0/24 maxlen: 24 103.206.83.0/24 maxlen: 24 2404:2380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 16:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4610 (0x1202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Feb 5 04:14:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6984192d-b27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:66:ca:42:0e:63:69:79:ef:30:a2:ad:f2: ab:63:ee:b4:92:90:f0:51:5c:16:7c:6d:12:43:72: 1e:d1:44:73:40:07:ca:10:49:6b:2a:9f:c9:52:cc: 31:ab:b0:4f:db:36:da:c0:33:85:1c:53:1f:98:6e: cc:73:1c:ad:a4:11:67:bf:bd:94:b6:89:48:cc:ed: 2b:09:97:36:c2:3e:4f:a9:38:76:46:47:36:10:3f: bc:49:ff:d2:f0:95:db:41:6c:2d:4f:d6:a7:a7:b0: 5d:e3:44:e0:51:34:7f:e3:c7:52:39:a6:d7:fa:2f: 76:fd:84:2b:87:2d:c4:c6:c0:67:3a:46:11:f8:ba: cb:e3:e5:fa:8e:23:91:32:73:f3:dd:5d:b3:b8:e4: 9e:49:c1:a2:cd:95:3b:ea:97:e1:bc:b0:18:c2:a7: 3c:46:13:1b:eb:53:b3:03:ce:1b:f3:88:ff:fb:3f: 46:b8:f2:b0:02:ba:cc:f1:38:56:ee:27:c2:96:3c: a8:5b:2b:02:10:ad:2c:00:e0:90:00:e6:83:b8:33: fa:3b:7c:aa:bc:44:6f:04:7c:51:33:46:e6:6d:d9: 2b:4c:20:80:e6:a4:a8:0a:ce:ff:1c:3c:d3:eb:8f: a3:ab:35:21:9c:2f:ea:fd:e3:d6:d8:ae:b9:c2:5c: 2f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9E:96:57:66:3A:77:0C:5F:31:84:ED:2C:5E:1E:AB:C9:E0:ED:9D X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/2245CE0A606811EB80E3D531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.102.168.0/22 103.206.80.0/22 IPv6: 2404:2380::/32 Signature Algorithm: sha256WithRSAEncryption b7:1b:04:d1:31:b6:7e:9a:e7:c7:4b:22:d4:94:e4:14:97:91: ac:99:d7:fa:d8:51:d5:a7:61:a4:49:1c:08:8c:1e:c3:33:38: c0:cc:70:c2:b7:41:0f:6c:7f:81:7f:c9:39:d5:fe:82:a6:a4: 36:91:01:4e:8f:c8:50:d7:1a:2a:7b:5c:82:23:15:c7:d8:0e: c0:17:a9:f4:68:36:94:1a:57:9a:92:58:9d:48:c6:90:21:a3: c3:b7:e1:cb:11:87:e3:a7:94:28:07:b3:7a:77:40:de:11:82: 95:d7:be:b2:21:64:ef:c0:49:06:09:9f:4b:26:de:30:3f:e6: 6a:fe:36:0b:0b:ba:33:ba:c2:e4:07:a8:02:9d:c2:ab:35:e8: a3:f4:eb:41:66:90:0b:41:7c:21:61:8d:96:29:eb:3a:35:77: 31:f2:3d:2c:f4:26:09:1f:a1:1c:cc:04:30:de:f6:45:00:a8: f1:e0:5d:78:5e:a0:89:f2:4e:22:2a:b6:50:7d:80:73:af:a6: c8:43:a8:91:a5:29:06:49:ae:60:53:86:65:d4:64:35:7e:d9: ec:75:67:cb:80:8e:34:bc:aa:df:b4:6c:06:84:3f:d3:6a:c4: e3:d0:bb:f7:21:46:87:a8:0a:fd:c4:1b:27:97:a0:26:cc:71: 64:55:e4:e2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjYwMjA1MDQxNDM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTg0MTkyZC1iMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgxmykIOY2l57zCirfKrY+60kpDwUVwWfG0SQ3Ie0URzQAfKEElrKp/JUswx q7BP2zbawDOFHFMfmG7McxytpBFnv72UtolIzO0rCZc2wj5PqTh2Rkc2ED+8Sf/S 8JXbQWwtT9anp7Bd40TgUTR/48dSOabX+i92/YQrhy3ExsBnOkYR+LrL4+X6jiOR MnPz3V2zuOSeScGizZU76pfhvLAYwqc8RhMb61OzA84b84j/+z9GuPKwArrM8ThW 7ifCljyoWysCEK0sAOCQAOaDuDP6O3yqvERvBHxRM0bmbdkrTCCA5qSoCs7/HDzT 64+jqzUhnC/q/ePW2K65wlwvBwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFI6elldm OncMXzGE7SxeHqvJ4O2dMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYwQTMvRTRERjk2QUFGREY4MTFFOEFEMkMxMjYyQzRGOUFFMDIvMjI0NUNFMEE2 MDY4MTFFQjgwRTNENTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIOZqgDBAJnzlAwDQQCAAIwBwMFACQEI4AwDQYJKoZIhvcN AQELBQADggEBALcbBNExtn6a58dLItSU5BSXkayZ1/rYUdWnYaRJHAiMHsMzOMDM cMK3QQ9sf4F/yTnV/oKmpDaRAU6PyFDXGip7XIIjFcfYDsAXqfRoNpQaV5qSWJ1I xpAho8O34csRh+OnlCgHs3p3QN4RgpXXvrIhZO/ASQYJn0sm3jA/5mr+NgsLujO6 wuQHqAKdwqs16KP060FmkAtBfCFhjZYp6zo1dzHyPSz0JgkfoRzMBDDe9kUAqPHg XXheoInyTiIqtlB9gHOvpshDqJGlKQZJrmBThmXUZDV+2ex1Z8uAjjS8qt+0bAaE P9NqxOPQu/chRoeoCv3EGyeXoCbMcWRV5OI= -----END CERTIFICATE-----Generated at Fri Feb 20 02:44:18 2026 by rpki-client