$ rpki-client -vvf rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/D0E3A43EABCF11F0B7733310C4F9AE02.roa File: D0E3A43EABCF11F0B7733310C4F9AE02.roa (raw, json) Hash identifier: Ilnu4Ombw62v68xUTdb4wZObUEp/ahOobR/hUSsGRRQ= Subject key identifier: A0:3F:B9:C8:60:FF:4F:D6:20:60:D0:F6:7F:D1:83:75:31:79:E7:16 Certificate issuer: /CN=A91604A8/serialNumber=86E234E2E1E23A4971458D2A72614DF13895E29A Certificate serial: 012F Authority key identifier: 86:E2:34:E2:E1:E2:3A:49:71:45:8D:2A:72:61:4D:F1:38:95:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/D0E3A43EABCF11F0B7733310C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:18:38 +0000 ROA not before: Sat 18 Oct 2025 03:09:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 26658 IP address blocks: 45.127.160.0/22 maxlen: 24 103.196.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.crl rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604A8, serialNumber=86E234E2E1E23A4971458D2A72614DF13895E29A Validity Not Before: Oct 18 03:09:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59c3e-b470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:01:d7:01:2c:bd:68:91:e4:f5:c0:b7:6f:59: 38:28:83:75:d4:04:27:39:aa:0b:4e:96:05:43:55: 5f:06:a2:97:6c:e6:c1:95:b4:2a:b9:26:d3:77:b1: da:99:ce:24:97:34:44:10:9f:25:d6:e6:5c:48:dd: e5:28:e7:fd:c8:79:91:7d:03:c3:b6:4f:48:d1:4d: 7c:49:d3:ec:50:96:bb:12:4b:7e:1e:43:df:65:7b: 9d:94:ac:c8:4b:2b:93:d5:a2:f1:be:b7:96:fc:76: e5:43:dc:6e:a0:65:5c:56:de:d1:25:53:fd:e8:81: 71:27:47:9b:26:57:87:1a:55:04:3e:70:85:0d:85: f9:6c:25:1f:86:41:e8:87:97:79:79:96:5a:b5:ae: 53:5c:17:93:7b:ed:03:ad:f4:97:7c:96:cc:4e:cc: e2:e3:ec:49:24:39:33:2a:59:5a:d0:1d:c3:40:d8: c6:9f:16:1b:f9:81:0d:72:89:79:e1:f2:cf:9b:f1: 01:72:23:3c:44:5e:d8:4a:6d:57:ee:d1:f3:45:83: b7:05:c0:f7:1e:57:a7:6b:89:02:20:17:a6:a0:a6: 9e:1a:73:97:25:03:5d:94:ec:d1:e9:6a:65:b7:e7: d9:38:65:a0:e6:d1:7c:29:2e:cc:62:26:5a:cf:77: 65:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3F:B9:C8:60:FF:4F:D6:20:60:D0:F6:7F:D1:83:75:31:79:E7:16 X509v3 Authority Key Identifier: keyid:86:E2:34:E2:E1:E2:3A:49:71:45:8D:2A:72:61:4D:F1:38:95:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/huI04uHiOklxRY0qcmFN8TiV4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/huI04uHiOklxRY0qcmFN8TiV4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604A8/A5F8E8785ADC11EF8F4C9377C4F9AE02/D0E3A43EABCF11F0B7733310C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.127.160.0/22 103.196.100.0/22 Signature Algorithm: sha256WithRSAEncryption 38:ba:04:09:8a:3f:ee:8e:ed:9b:53:48:1c:63:0b:22:44:07: 44:cc:fb:9d:ca:6f:d9:a9:8f:c7:40:13:16:73:fc:7a:08:83: d3:0b:64:c5:d0:0f:ab:18:67:8a:20:45:f7:65:d1:b1:01:8e: 94:75:6a:e7:ad:8d:9e:21:3d:b2:d4:0f:e6:e4:b3:9e:04:77: 83:1f:eb:fe:27:71:75:e8:4d:45:dc:7e:18:ac:a5:bf:7e:0e: 98:16:ed:b1:94:20:33:6e:b4:59:9c:24:5f:be:ec:55:5f:02: 00:c7:34:1e:c3:5a:99:fa:e6:61:05:74:e0:fd:97:bf:38:2c: da:bb:34:c4:24:35:aa:6d:74:85:00:8c:74:5f:0f:72:45:76: 71:27:3f:de:3f:ee:8f:15:2d:1e:9e:8b:e7:62:44:00:dd:61: c5:94:19:e5:94:3d:35:c5:92:39:7c:fa:02:06:4a:0e:44:c4: ee:37:0e:0a:03:94:06:5f:e6:3d:ba:2e:9b:03:de:c3:1a:83: e1:d3:36:e3:44:fd:10:d8:ec:7b:1e:97:5a:cf:08:c6:5c:b3: f6:4a:47:42:0a:12:73:cf:83:9a:40:18:6e:84:5b:a9:8d:bd: e7:b5:3d:61:56:49:dc:7b:91:8b:ca:25:b6:8d:cb:04:d9:ac: 55:a6:c1:6d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QTgxMTAvBgNVBAUTKDg2RTIzNEUyRTFFMjNBNDk3MTQ1OEQyQTcyNjE0REYx Mzg5NUUyOUEwHhcNMjUxMDE4MDMwOTEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWMzZS1iNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswHXASy9aJHk9cC3b1k4KIN11AQnOaoLTpYFQ1VfBqKXbObBlbQquSbTd7Ha mc4klzREEJ8l1uZcSN3lKOf9yHmRfQPDtk9I0U18SdPsUJa7Ekt+HkPfZXudlKzI SyuT1aLxvreW/HblQ9xuoGVcVt7RJVP96IFxJ0ebJleHGlUEPnCFDYX5bCUfhkHo h5d5eZZata5TXBeTe+0DrfSXfJbMTszi4+xJJDkzKlla0B3DQNjGnxYb+YENcol5 4fLPm/EBciM8RF7YSm1X7tHzRYO3BcD3Hlena4kCIBemoKaeGnOXJQNdlOzR6Wpl t+fZOGWg5tF8KS7MYiZaz3dl8QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKA/uchg /0/WIGDQ9n/Rg3UxeecWMB8GA1UdIwQYMBaAFIbiNOLh4jpJcUWNKnJhTfE4leKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBOC9BNUY4RTg3ODVB REMxMUVGOEY0QzkzNzdDNEY5QUUwMi9odUkwNHVIaU9rbHhSWTBxY21GTjhUaVY0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h1STA0dUhpT2tseFJZMHFjbUZOOFRpVjRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QTgvQTVGOEU4Nzg1QURDMTFFRjhGNEM5Mzc3QzRGOUFFMDIvRDBFM0E0M0VB QkNGMTFGMEI3NzMzMzEwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCLX+gAwQCZ8RkMA0GCSqGSIb3DQEBCwUAA4IBAQA4ugQJij/uju2b U0gcYwsiRAdEzPudym/ZqY/HQBMWc/x6CIPTC2TF0A+rGGeKIEX3ZdGxAY6UdWrn rY2eIT2y1A/m5LOeBHeDH+v+J3F16E1F3H4YrKW/fg6YFu2xlCAzbrRZnCRfvuxV XwIAxzQew1qZ+uZhBXTg/Ze/OCzauzTEJDWqbXSFAIx0Xw9yRXZxJz/eP+6PFS0e novnYkQA3WHFlBnllD01xZI5fPoCBkoORMTuNw4KA5QGX+Y9ui6bA97DGoPh0zbj RP0Q2Ox7HpdazwjGXLP2SkdCChJzz4OaQBhuhFupjb3ntT1hVknce5GLyiW2jcsE 2axVpsFt -----END CERTIFICATE-----Generated at Sat Mar 21 22:28:19 2026 by rpki-client