$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa File: 8F400B883FFE11EEBFDFCF4CC4F9AE02.roa (raw, json) Hash identifier: TKSK9Fbd2mGfRIWIuXW2sAX+wU3+hOvWjdi8lnX9rnU= Subject key identifier: 4A:A2:9B:12:90:B5:B0:A9:EF:43:91:73:55:DB:90:55:F2:71:01:EA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5E72 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:18:15 +0000 ROA not before: Thu 28 Aug 2025 14:55:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150861 IP address blocks: 103.68.248.0/22 maxlen: 22 103.147.188.0/23 maxlen: 23 103.182.20.0/23 maxlen: 23 2001:df0:74c0::/48 maxlen: 48 2405:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24178 (0x5e72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60ca7-ba75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:68:a5:24:ee:78:2b:02:de:f0:11:0d:fe:66: e5:e8:a0:c7:19:09:49:bc:92:ab:3f:97:02:f7:7b: 3c:77:20:d5:21:8e:01:80:08:c5:1c:ea:cb:51:1c: 1f:fa:9f:dd:be:34:e8:1b:6f:95:5d:32:2d:92:95: 7b:59:26:78:68:49:a7:05:6a:18:26:44:ac:b8:8c: 38:af:16:ea:8f:e3:aa:b8:e5:54:2d:28:f7:5b:dc: a5:9a:9c:12:2a:fd:3d:ea:3a:14:62:8f:79:ba:69: 2d:51:2a:d3:d5:d5:c0:d5:19:0d:72:44:43:94:9c: 62:47:c0:28:07:35:b4:14:dd:6f:82:81:6f:42:69: c1:1a:ab:45:cc:e5:f3:d3:f2:20:0f:f9:a5:df:af: 45:dc:59:c1:11:99:83:02:b9:2d:07:81:c3:5e:28: c2:49:7a:c1:51:47:01:ec:e3:da:1d:08:43:15:33: 94:52:2c:78:58:cf:12:f7:3c:27:88:90:07:d3:19: 86:ee:5b:5e:f5:77:e7:2b:f1:3f:09:6b:9e:d4:9e: aa:9d:9f:00:76:08:e7:26:bb:1c:cf:c0:a7:f8:2b: 46:bd:40:84:95:96:42:9c:41:08:88:aa:02:82:29: 5f:7e:5e:10:21:ba:d6:15:04:1b:81:02:b1:bd:78: 9b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A2:9B:12:90:B5:B0:A9:EF:43:91:73:55:DB:90:55:F2:71:01:EA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.248.0/22 103.147.188.0/23 103.182.20.0/23 IPv6: 2001:df0:74c0::/48 2405:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 7e:2e:e3:4d:1b:a4:e8:46:85:b6:7a:15:7c:43:a6:3f:df:51: 05:02:98:94:8d:e1:ce:b7:dd:84:ae:e8:5a:a3:46:3f:31:ad: 4e:ce:8f:cd:a4:f1:b1:0a:f6:a2:c7:e6:fe:3d:8d:8f:89:12: b9:c5:39:7a:d3:d6:39:35:2a:b9:7a:df:50:9a:e6:de:a9:58: 66:fa:35:ba:e1:94:04:28:f5:b7:b6:a1:e5:6e:c5:7a:87:c0: cf:f9:99:aa:98:54:87:bf:f1:50:3a:42:16:29:78:36:d7:4f: d4:e8:2b:b0:2d:0a:34:bd:4a:d5:61:21:d5:04:b2:94:9a:00: 4e:55:f2:fe:10:c6:f2:4c:6a:72:08:b0:93:44:e9:3e:50:8f: 38:08:aa:0f:1d:c9:e4:06:ca:77:69:a7:d6:1d:06:ce:f0:6b: 72:11:78:01:ce:bc:fc:22:2b:10:7d:7d:1f:02:3c:c6:55:70: 88:73:8a:45:0a:53:0c:e1:88:7f:f1:b4:26:c5:67:72:78:86: 7b:4c:ff:9e:bc:6a:4b:06:4d:6f:02:fd:87:db:12:1f:32:62: 50:c6:1c:a3:42:ab:27:c2:4c:44:a8:6b:60:33:ef:57:4e:d2: 6d:b5:06:79:d1:d0:30:4e:09:e8:c1:7c:3f:e0:30:f4:b4:49: 49:46:40:b3 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICXnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGNhNy1iYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WilJO54KwLe8BEN/mbl6KDHGQlJvJKrP5cC93s8dyDVIY4BgAjFHOrLURwf +p/dvjToG2+VXTItkpV7WSZ4aEmnBWoYJkSsuIw4rxbqj+OquOVULSj3W9ylmpwS Kv096joUYo95umktUSrT1dXA1RkNckRDlJxiR8AoBzW0FN1vgoFvQmnBGqtFzOXz 0/IgD/ml369F3FnBEZmDArktB4HDXijCSXrBUUcB7OPaHQhDFTOUUix4WM8S9zwn iJAH0xmG7lte9XfnK/E/CWue1J6qnZ8AdgjnJrscz8Cn+CtGvUCElZZCnEEIiKoC gilffl4QIbrWFQQbgQKxvXib4QIDAQABo4IChjCCAoIwHQYDVR0OBBYEFEqimxKQ tbCp70ORc1XbkFXycQHqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEY0MDBCODgz RkZFMTFFRUJGREZDRjRDQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQCZ0T4AwQBZ5O8AwQBZ7YUMBgEAgACMBIDBwAgAQ3wdMADBwAkBRDA AAAwDQYJKoZIhvcNAQELBQADggEBAH4u400bpOhGhbZ6FXxDpj/fUQUCmJSN4c63 3YSu6FqjRj8xrU7Oj82k8bEK9qLH5v49jY+JErnFOXrT1jk1Krl631Ca5t6pWGb6 NbrhlAQo9be2oeVuxXqHwM/5maqYVIe/8VA6QhYpeDbXT9ToK7AtCjS9StVhIdUE spSaAE5V8v4QxvJManIIsJNE6T5QjzgIqg8dyeQGyndpp9YdBs7wa3IReAHOvPwi KxB9fR8CPMZVcIhzikUKUwzhiH/xtCbFZ3J4hntM/568aksGTW8C/YfbEh8yYlDG HKNCqyfCTESoa2Az71dO0m21BnnR0DBOCejBfD/gMPS0SUlGQLM= -----END CERTIFICATE-----Generated at Sat Mar 7 22:42:52 2026 by rpki-client