$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/1CF68346F0BF11EEA1A0B559C4F9AE02.roa File: 1CF68346F0BF11EEA1A0B559C4F9AE02.roa (raw, json) Hash identifier: 5i9orl/wj5lIkSZvllknr+eLB/4FGIEcPJ9e1tcvTP0= Subject key identifier: 53:36:C9:CE:1D:AC:EF:FA:8B:D4:8A:AD:2F:BB:E9:75:B6:59:98:A5 Certificate issuer: /CN=A91975CC/serialNumber=0BAC42986E9ABDB7CEE2CDFB2A9FE8D6D02AAB5C Certificate serial: 040D Authority key identifier: 0B:AC:42:98:6E:9A:BD:B7:CE:E2:CD:FB:2A:9F:E8:D6:D0:2A:AB:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6xCmG6avbfO4s37Kp_o1tAqq1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/1CF68346F0BF11EEA1A0B559C4F9AE02.roa Signing time: Thu 29 Jan 2026 00:20:24 +0000 ROA not before: Thu 29 Jan 2026 00:20:24 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134697 IP address blocks: 45.248.48.0/22 maxlen: 24 103.205.28.0/23 maxlen: 24 103.214.220.0/22 maxlen: 24 103.216.190.0/23 maxlen: 24 144.48.164.0/22 maxlen: 24 203.7.236.0/22 maxlen: 24 203.12.0.0/23 maxlen: 24 203.12.2.0/23 maxlen: 24 203.12.4.0/23 maxlen: 24 203.12.6.0/23 maxlen: 23 203.12.6.0/24 maxlen: 24 203.12.7.0/24 maxlen: 24 203.12.8.0/23 maxlen: 24 203.12.10.0/23 maxlen: 24 203.12.12.0/23 maxlen: 24 203.12.14.0/23 maxlen: 24 2404:e80::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/C6xCmG6avbfO4s37Kp_o1tAqq1w.crl rsync://rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/C6xCmG6avbfO4s37Kp_o1tAqq1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6xCmG6avbfO4s37Kp_o1tAqq1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 23:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=0BAC42986E9ABDB7CEE2CDFB2A9FE8D6D02AAB5C Validity Not Before: Jan 29 00:20:24 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697aa7c7-e407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8b:8d:26:bf:e2:81:f8:d3:34:0b:28:21:15: 4a:c8:a3:fa:ed:df:7d:e8:6e:64:cc:22:9a:75:ad: 42:a9:24:8d:be:6a:d8:69:5a:8d:6d:03:1e:fe:8f: 6c:f1:de:d4:38:1b:d9:f0:c2:6d:f5:f4:9a:e0:44: be:bc:4e:64:09:07:6b:69:b3:f1:c8:c2:3e:03:ea: bd:aa:fe:6c:9c:38:24:7e:03:88:97:db:8d:26:b7: b8:e9:32:31:a8:0b:56:62:43:b7:5a:ab:a2:ae:f9: f2:80:7b:d2:5b:4c:f1:51:7b:b4:3e:08:1f:e6:35: 4a:54:81:0d:c3:99:f0:b9:b2:79:3e:0d:de:85:c8: 5b:1e:cb:05:dc:53:5f:61:18:95:f7:76:24:c2:4c: 0a:d5:66:bf:05:ee:ba:b3:9f:a2:1a:d6:6b:28:dc: 69:11:77:86:a3:9d:bf:98:22:e1:8a:0e:4a:62:aa: 40:cc:f5:a3:f0:e6:5e:8a:a3:23:44:90:e7:cf:9a: d5:4f:f9:c0:13:06:fb:be:ce:ee:47:f4:d1:55:88: 13:7f:eb:08:ef:aa:ae:68:f2:d7:d4:23:9e:2b:6c: 34:4e:60:45:08:e0:0d:f3:e6:0d:49:e0:91:fd:fc: 76:c2:9d:cd:03:c2:36:f3:19:26:bf:b5:a5:36:bf: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:36:C9:CE:1D:AC:EF:FA:8B:D4:8A:AD:2F:BB:E9:75:B6:59:98:A5 X509v3 Authority Key Identifier: keyid:0B:AC:42:98:6E:9A:BD:B7:CE:E2:CD:FB:2A:9F:E8:D6:D0:2A:AB:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/C6xCmG6avbfO4s37Kp_o1tAqq1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6xCmG6avbfO4s37Kp_o1tAqq1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/1EA343E2AFE311ECA2CB066DC4F9AE02/1CF68346F0BF11EEA1A0B559C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.48.0/22 103.205.28.0/23 103.214.220.0/22 103.216.190.0/23 144.48.164.0/22 203.7.236.0/22 203.12.0.0/20 IPv6: 2404:e80::/32 Signature Algorithm: sha256WithRSAEncryption 2d:2b:31:cb:db:2c:c2:e6:61:b5:c4:47:ed:8b:ed:03:87:42: 95:d6:56:01:bb:c8:b7:0e:33:4d:7e:4f:81:1e:42:9e:e8:1d: 75:32:74:30:63:d1:da:d3:9e:97:8a:21:86:2f:62:88:48:ab: 87:cd:88:0b:8b:62:11:24:2e:af:2c:cc:4e:0f:4c:89:bc:03: 1d:4d:33:b6:cb:fa:87:df:58:ee:79:13:73:89:35:a9:7a:63: 1c:41:8b:93:34:07:73:c6:1b:ce:ab:88:bb:bc:d3:88:d0:7b: 63:7d:87:22:2f:76:c6:07:06:4d:1b:95:57:8a:b9:c7:2b:2d: 41:35:b4:e7:7e:aa:ab:af:da:dd:59:04:30:a2:a7:59:54:a2: 93:8b:9a:4f:c4:ba:e6:f6:7a:a5:b6:82:d7:ba:4a:b7:f1:4a: 03:23:59:52:22:ad:9c:a8:4f:92:f3:97:8e:ae:99:12:7f:07: 06:1c:97:10:b9:08:04:e0:90:9f:3d:ea:44:2a:47:d4:b3:7c: fb:2f:f0:60:c6:91:68:16:ec:00:d4:ad:8b:84:5e:3b:63:9a: 53:55:fd:de:f0:e6:86:26:92:53:0d:cb:3a:4a:39:d7:c1:43: b7:ab:9e:02:e0:5c:d9:1f:9e:28:8b:e1:6a:4b:d9:ca:d7:e0: b1:e5:55:01 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTc1Q0MxMTAvBgNVBAUTKDBCQUM0Mjk4NkU5QUJEQjdDRUUyQ0RGQjJBOUZFOEQ2 RDAyQUFCNUMwHhcNMjYwMTI5MDAyMDI0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhYTdjNy1lNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4uNJr/igfjTNAsoIRVKyKP67d996G5kzCKada1CqSSNvmrYaVqNbQMe/o9s 8d7UOBvZ8MJt9fSa4ES+vE5kCQdrabPxyMI+A+q9qv5snDgkfgOIl9uNJre46TIx qAtWYkO3WquirvnygHvSW0zxUXu0Pggf5jVKVIENw5nwubJ5Pg3ehchbHssF3FNf YRiV93YkwkwK1Wa/Be66s5+iGtZrKNxpEXeGo52/mCLhig5KYqpAzPWj8OZeiqMj RJDnz5rVT/nAEwb7vs7uR/TRVYgTf+sI76quaPLX1COeK2w0TmBFCOAN8+YNSeCR /fx2wp3NA8I28xkmv7WlNr+zWQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFFM2yc4d rO/6i9SKrS+76XW2WZilMB8GA1UdIwQYMBaAFAusQphumr23zuLN+yqf6NbQKqtc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xRUEzNDNFMkFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi9DNnhDbUc2YXZiZk80czM3S3BfbzF0QXFx MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2eENtRzZhdmJmTzRzMzdLcF9vMXRBcXExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTc1Q0MvMUVBMzQzRTJBRkUzMTFFQ0EyQ0IwNjZEQzRGOUFFMDIvMUNGNjgzNDZG MEJGMTFFRUExQTBCNTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIt+DADBAFnzRwDBAJn1twDBAFn2L4DBAKQMKQDBALLB+wD BATLDAAwDQQCAAIwBwMFACQEDoAwDQYJKoZIhvcNAQELBQADggEBAC0rMcvbLMLm YbXER+2L7QOHQpXWVgG7yLcOM01+T4EeQp7oHXUydDBj0drTnpeKIYYvYohIq4fN iAuLYhEkLq8szE4PTIm8Ax1NM7bL+offWO55E3OJNal6YxxBi5M0B3PGG86riLu8 04jQe2N9hyIvdsYHBk0blVeKuccrLUE1tOd+qquv2t1ZBDCip1lUopOLmk/Euub2 eqW2gte6SrfxSgMjWVIirZyoT5Lzl46umRJ/BwYclxC5CATgkJ896kQqR9SzfPsv 8GDGkWgW7ADUrYuEXjtjmlNV/d7w5oYmklMNyzpKOdfBQ7erngLgXNkfniiL4WpL 2crX4LHlVQE= -----END CERTIFICATE-----Generated at Fri Feb 20 01:33:50 2026 by rpki-client