$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/AFCF76ECC43411F0982E427DC4F9AE02.roa File: AFCF76ECC43411F0982E427DC4F9AE02.roa (raw, json) Hash identifier: jArh+Kx+M9ITkZfnTl8gN4nLiWXlDhetGK8juVgx8K0= Subject key identifier: FE:9A:51:CE:C7:2B:8B:40:12:F4:31:AB:24:4A:6C:47:07:F9:AF:66 Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0FFF Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/AFCF76ECC43411F0982E427DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:15:23 +0000 ROA not before: Tue 02 Dec 2025 17:17:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139704 IP address blocks: 103.139.100.0/23 maxlen: 23 103.139.100.0/24 maxlen: 24 103.139.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 17:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4095 (0xfff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Dec 2 17:17:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4823b-3646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:83:ba:0b:a0:4c:1f:5d:5c:16:40:5f:fd:61: 43:eb:79:a4:b9:f4:1a:0b:d0:05:13:c3:73:7f:5f: 8c:8a:f9:a0:e3:87:78:fb:cf:cf:75:3f:be:07:63: 95:81:b0:b7:62:a7:ab:80:27:65:67:53:20:c5:46: 71:d0:b5:16:d4:d2:6e:f4:32:d6:07:35:cf:c2:64: 75:b1:ed:0f:f1:8a:62:bc:e0:e6:26:42:a1:45:8a: 0b:ad:70:73:b1:0c:89:7a:d8:c1:1a:e7:56:61:05: 1e:9a:0a:a7:00:d2:9e:2d:c6:b8:36:84:b7:c6:7e: 52:b0:89:ef:36:ce:58:02:66:15:3b:58:81:3e:f8: d7:3d:cb:3c:5d:c2:30:98:0c:c9:02:c9:5b:16:c2: 58:d3:4b:4b:80:2b:a4:2a:c3:e1:06:c0:ae:b0:ba: 2e:25:11:a0:51:ef:40:1f:3c:ef:ff:dd:29:28:c7: 7e:ee:b1:f8:dc:67:5b:3e:1d:0a:6f:f8:2a:0e:10: d3:d4:ec:a4:b2:53:31:ca:af:bc:2b:01:24:b4:e7: fd:a6:60:57:b7:ef:7b:4e:98:5f:3d:63:38:6c:6e: e0:6d:d6:3d:24:5b:91:2b:6c:04:b8:24:12:14:61: 83:7b:9b:c5:33:2a:67:24:e9:39:69:76:d2:75:d3: 0c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:9A:51:CE:C7:2B:8B:40:12:F4:31:AB:24:4A:6C:47:07:F9:AF:66 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/AFCF76ECC43411F0982E427DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.100.0/23 Signature Algorithm: sha256WithRSAEncryption 13:c9:6a:e8:04:26:01:e3:e6:e0:51:be:73:89:bb:af:43:7c: 0b:b0:60:07:7f:f5:74:dc:39:ba:18:c4:8b:51:62:ed:c9:05: 4a:3e:54:e3:c9:79:90:11:01:51:01:fe:ae:c5:df:c1:82:8c: 4f:0c:21:f1:61:ce:06:74:e2:48:28:9f:7f:b0:81:31:84:8d: 4e:41:62:c4:bb:d9:1b:f3:d7:36:f9:3b:19:28:38:4e:6b:14: 49:c3:94:4a:94:4e:7e:aa:0f:3d:87:81:9f:b9:34:38:b3:b8: c8:6e:54:4f:8b:12:85:2c:f1:65:4e:7e:08:0f:57:df:9b:c0: 35:91:5c:0a:4a:cb:d1:9d:3e:40:c5:34:38:de:4a:78:0d:89: e9:1a:f5:fb:34:c1:cb:42:84:3c:9c:a5:7e:e7:99:7f:a8:9d: 54:df:ef:19:6e:b0:09:7e:24:bd:dd:b9:4a:03:41:fc:92:7a: 98:83:4f:4e:67:78:37:73:20:65:66:3a:ff:a9:9c:a1:3b:6f: c2:f7:e9:50:80:13:bc:02:3b:47:91:2d:5e:6e:ef:3c:2a:5d: da:5a:04:13:4f:7e:7d:bd:c3:0e:50:ad:32:9b:15:89:6d:e6: 2b:ba:cc:83:6c:fa:e3:2b:7c:97:54:49:45:2c:7d:6b:66:6e: 93:36:60:0e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICD/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjUxMjAyMTcxNzU1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIzYi0zNjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YO6C6BMH11cFkBf/WFD63mkufQaC9AFE8Nzf1+Mivmg44d4+8/PdT++B2OV gbC3YqergCdlZ1MgxUZx0LUW1NJu9DLWBzXPwmR1se0P8YpivODmJkKhRYoLrXBz sQyJetjBGudWYQUemgqnANKeLca4NoS3xn5SsInvNs5YAmYVO1iBPvjXPcs8XcIw mAzJAslbFsJY00tLgCukKsPhBsCusLouJRGgUe9AHzzv/90pKMd+7rH43GdbPh0K b/gqDhDT1OykslMxyq+8KwEktOf9pmBXt+97TphfPWM4bG7gbdY9JFuRK2wEuCQS FGGDe5vFMypnJOk5aXbSddMMnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP6aUc7H K4tAEvQxqyRKbEcH+a9mMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvRkE3OEIwNDQ2RkNFMTFFOTg4QzQ0QjNFQzRGOUFFMDIvQUZDRjc2RUND NDM0MTFGMDk4MkU0MjdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4tkMA0GCSqGSIb3DQEBCwUAA4IBAQATyWroBCYB4+bgUb5zibuv Q3wLsGAHf/V03Dm6GMSLUWLtyQVKPlTjyXmQEQFRAf6uxd/BgoxPDCHxYc4GdOJI KJ9/sIExhI1OQWLEu9kb89c2+TsZKDhOaxRJw5RKlE5+qg89h4GfuTQ4s7jIblRP ixKFLPFlTn4ID1ffm8A1kVwKSsvRnT5AxTQ43kp4DYnpGvX7NMHLQoQ8nKV+55l/ qJ1U3+8ZbrAJfiS93blKA0H8knqYg09OZ3g3cyBlZjr/qZyhO2/C9+lQgBO8AjtH kS1ebu88Kl3aWgQTT359vcMOUK0ymxWJbeYrusyDbPrjK3yXVElFLH1rZm6TNmAO -----END CERTIFICATE-----Generated at Wed Mar 4 13:00:20 2026 by rpki-client