$ rpki-client -vvf rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa File: 3B943DB8A12F11EF8A121F33C4F9AE02.roa (raw, json) Hash identifier: vfcF0bfj5f7fHhybVhZoEvWXgyU0bcXi3S8IUTcQGcY= Subject key identifier: D5:15:1A:35:80:36:81:82:95:90:55:78:C5:1D:06:CA:C1:A4:28:31 Certificate issuer: /CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Certificate serial: 0595 Authority key identifier: 98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:13:38 +0000 ROA not before: Tue 16 Dec 2025 23:19:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 197537 IP address blocks: 103.174.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 22:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91623B9, serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Validity Not Before: Dec 16 23:19:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a473c2-f1a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6c:6c:cf:3f:4a:0a:3d:1e:63:a0:77:13:12: 17:1d:fb:6f:3e:f6:6b:57:1f:7e:6c:4f:e6:7d:9b: 20:7e:2b:92:76:f8:2a:d2:89:46:63:57:ae:37:f6: 35:a7:70:24:12:b4:88:44:ff:9e:af:e3:66:72:d9: a1:55:61:7d:8f:d2:05:ce:e6:fa:49:0d:7e:27:a8: e5:b2:e2:d7:8d:72:92:97:b3:61:59:08:9a:dd:4e: 73:84:74:8c:88:48:63:cc:98:d0:79:37:42:0e:86: 0f:40:d4:04:b8:0a:03:ce:44:06:b3:4e:f5:56:e0: 41:33:60:db:ba:68:ea:97:26:07:1f:c0:67:06:07: 38:5f:46:66:db:65:29:eb:dc:f3:fc:64:18:e5:08: 93:4e:db:1e:4a:e8:f3:05:71:33:89:90:b2:20:d2: 96:20:46:a6:56:0c:52:27:c3:f0:90:20:38:3c:2a: 33:58:d6:5d:99:af:b7:db:d4:7b:84:bb:cc:a5:f4: 10:00:9b:75:45:0f:45:62:25:64:85:2c:f2:86:db: dc:58:19:41:42:ba:a2:c7:a9:95:3d:78:87:9b:1d: 88:88:58:05:a1:f5:62:d0:5f:93:d8:d7:dd:15:cd: ea:60:cb:b5:c3:81:a8:76:9a:dc:b0:da:51:bc:e0: 96:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:15:1A:35:80:36:81:82:95:90:55:78:C5:1D:06:CA:C1:A4:28:31 X509v3 Authority Key Identifier: keyid:98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.174.96.0/23 Signature Algorithm: sha256WithRSAEncryption ad:e0:89:e2:80:04:8a:ca:10:6b:58:d7:81:0b:24:f9:32:2e: b1:e3:dd:6e:17:1a:2e:43:a9:54:a7:ff:ce:de:22:f5:fd:de: fb:75:79:94:57:13:77:db:b5:80:79:e1:29:5f:43:3f:a5:12: d1:83:c0:fe:44:49:3a:cd:d5:3f:de:25:c9:e4:e6:67:bc:a7: 97:8a:50:b1:82:ab:07:39:47:68:72:2a:f8:88:ba:df:01:8d: 71:bc:62:aa:aa:3a:bd:7e:48:b4:58:37:52:37:c6:a7:40:80: 98:e2:40:c4:9d:61:9c:7d:f9:d7:f4:95:d5:f5:d3:c2:61:79: 25:e4:86:2f:45:1c:87:e5:dd:b0:82:ec:c8:bd:94:72:73:e4: d0:2c:84:3a:d6:03:34:b5:5e:e6:76:ac:10:29:4e:e3:e2:18: 29:ee:00:22:05:db:ff:55:3c:1b:61:dd:14:e4:d4:57:8d:a3: 50:08:fd:a0:18:20:8f:52:5e:04:9d:bf:7a:cf:18:56:bd:dd: 38:c2:12:40:6b:29:61:1e:e2:a3:5c:87:f5:d0:ea:05:e3:5c: 60:ad:78:77:aa:d2:43:58:d8:84:06:4d:ab:49:dd:42:3d:3d: 48:2a:40:e2:0d:52:ad:8e:70:f6:ff:50:af:db:14:67:12:5b: c1:30:4a:b9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIzQjkxMTAvBgNVBAUTKDk4RTFFQ0JENDVENzg3OUY5QkM5NDM5RjRDNkMyRjI3 MTRBRDM2RjUwHhcNMjUxMjE2MjMxOTMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzNjMi1mMWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mxszz9KCj0eY6B3ExIXHftvPvZrVx9+bE/mfZsgfiuSdvgq0olGY1euN/Y1 p3AkErSIRP+er+NmctmhVWF9j9IFzub6SQ1+J6jlsuLXjXKSl7NhWQia3U5zhHSM iEhjzJjQeTdCDoYPQNQEuAoDzkQGs071VuBBM2DbumjqlyYHH8BnBgc4X0Zm22Up 69zz/GQY5QiTTtseSujzBXEziZCyINKWIEamVgxSJ8PwkCA4PCozWNZdma+329R7 hLvMpfQQAJt1RQ9FYiVkhSzyhtvcWBlBQrqix6mVPXiHmx2IiFgFofVi0F+T2Nfd Fc3qYMu1w4GodprcsNpRvOCWSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNUVGjWA NoGClZBVeMUdBsrBpCgxMB8GA1UdIwQYMBaAFJjh7L1F14efm8lDn0xsLycUrTb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjNCOS83OENFQUNCQzJC MzYxMUVDQUQ1OTVCN0NDNEY5QUUwMi9tT0hzdlVYWGg1LWJ5VU9mVEd3dkp4U3RO dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21PSHN2VVhYaDUtYnlVT2ZUR3d2SnhTdE52VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIzQjkvNzhDRUFDQkMyQjM2MTFFQ0FENTk1QjdDQzRGOUFFMDIvM0I5NDNEQjhB MTJGMTFFRjhBMTIxRjMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ65gMA0GCSqGSIb3DQEBCwUAA4IBAQCt4InigASKyhBrWNeBCyT5 Mi6x491uFxouQ6lUp//O3iL1/d77dXmUVxN327WAeeEpX0M/pRLRg8D+REk6zdU/ 3iXJ5OZnvKeXilCxgqsHOUdocir4iLrfAY1xvGKqqjq9fki0WDdSN8anQICY4kDE nWGcffnX9JXV9dPCYXkl5IYvRRyH5d2wguzIvZRyc+TQLIQ61gM0tV7mdqwQKU7j 4hgp7gAiBdv/VTwbYd0U5NRXjaNQCP2gGCCPUl4Enb96zxhWvd04whJAaylhHuKj XIf10OoF41xgrXh3qtJDWNiEBk2rSd1CPT1IKkDiDVKtjnD2/1Cv2xRnElvBMEq5 -----END CERTIFICATE-----Generated at Tue Mar 10 09:19:06 2026 by rpki-client