$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/90576660E19711EFA11C2227C4F9AE02.roa File: 90576660E19711EFA11C2227C4F9AE02.roa (raw, json) Hash identifier: SbQ07SZkIUexY6BShk1zIXQlbPwca/laV4B0navHFPI= Subject key identifier: B4:23:27:75:42:07:90:7E:53:6E:DB:8D:82:6F:0D:67:A4:0C:A0:41 Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0CB1 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/90576660E19711EFA11C2227C4F9AE02.roa Signing time: Wed 28 Jan 2026 18:15:42 +0000 ROA not before: Wed 28 Jan 2026 18:15:42 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136027 IP address blocks: 103.80.70.0/23 maxlen: 23 103.80.70.0/24 maxlen: 24 103.80.71.0/24 maxlen: 24 103.107.123.0/24 maxlen: 24 103.121.175.0/24 maxlen: 24 2001:df6:de00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 18:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3249 (0xcb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0, serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Jan 28 18:15:42 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=697a524e-2d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:58:9e:38:2c:bd:20:ee:28:c1:00:c6:40: 8f:1c:7d:ac:1d:8e:1d:dd:18:24:e3:f2:2a:39:76: 1c:08:e5:15:b5:4c:12:85:ee:8b:0b:c8:82:e6:92: 6d:9e:da:5a:9b:88:fb:20:dc:41:3d:8f:17:8d:0c: a6:b6:d2:c9:72:7b:d4:b6:e6:20:82:5a:f2:09:9d: c6:fa:f4:b9:78:fb:12:fd:4a:7d:de:ed:16:34:35: d9:18:aa:ba:09:29:d1:77:30:4e:59:35:58:3a:66: 7d:e3:fb:36:ca:bc:eb:3f:17:10:7a:61:d2:8a:71: 4a:73:5b:99:72:0b:10:e4:71:75:f3:36:ec:08:20: b4:7d:ef:67:df:a6:6a:23:65:9c:b4:90:81:95:0b: 58:64:a4:52:ea:f9:89:a8:2a:e6:62:1f:6c:40:fc: 84:0c:7f:d6:ec:e8:85:09:97:db:fa:89:04:78:9a: 44:c6:d8:88:6c:2e:2f:4f:63:1b:f1:17:cf:43:47: 34:65:be:01:ce:c1:6c:f9:5c:b5:27:62:17:26:1b: ff:7b:f7:d5:da:03:20:71:66:9a:47:af:37:a2:74: 25:83:a4:3b:d9:4e:8d:5d:79:18:0b:b2:34:05:4a: bc:21:0a:68:89:25:43:9c:e5:ce:39:11:86:f7:be: 1d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:23:27:75:42:07:90:7E:53:6E:DB:8D:82:6F:0D:67:A4:0C:A0:41 X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/90576660E19711EFA11C2227C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.70.0/23 103.107.123.0/24 103.121.175.0/24 IPv6: 2001:df6:de00::/48 Signature Algorithm: sha256WithRSAEncryption 54:2e:18:f3:54:c6:fd:88:08:12:b1:96:96:30:a8:1c:1b:41: 41:52:c3:04:d3:29:e8:8a:c0:ae:e1:5d:a7:19:95:7f:23:6c: 35:7e:45:f4:55:13:57:76:78:8e:39:4b:e9:13:a9:a0:52:0d: 6d:db:ff:71:c0:cf:6a:ac:90:97:c7:7c:c4:5f:1a:94:9b:d0: 26:74:60:cc:35:86:ab:bc:de:ba:fd:6e:20:84:38:98:03:ab: d6:64:d3:4d:20:3c:5c:29:6a:ee:3d:46:a0:2c:00:5a:16:d1: 19:3e:20:e1:56:05:75:b4:57:ad:ab:fa:af:77:ef:c4:4a:a5: 4b:51:f6:17:f3:85:98:d5:0a:d6:04:e1:f0:f4:02:9a:ce:d0: c9:eb:40:d8:af:b4:68:5e:60:4a:d4:ea:7c:22:ea:1f:aa:e2: 17:90:e8:07:d6:57:3d:33:cd:3f:cc:70:c6:45:c0:51:08:8d: da:90:97:be:42:03:ca:cf:99:45:6d:bd:5a:99:7f:be:3f:83: 99:24:23:1f:13:ee:54:13:28:93:01:07:a0:2b:e7:3a:52:c4: ec:37:1d:4d:01:d9:66:17:33:be:37:9c:db:e0:23:34:f8:ab: 29:ee:3a:b3:91:9f:58:3e:65:bd:cc:74:c1:b7:70:31:23:cc: cf:e3:50:1e -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICDLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjYwMTI4MTgxNTQyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhNTI0ZS0yZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT5YnjgsvSDuKMEAxkCPHH2sHY4d3Rgk4/IqOXYcCOUVtUwShe6LC8iC5pJt ntpam4j7INxBPY8XjQymttLJcnvUtuYgglryCZ3G+vS5ePsS/Up93u0WNDXZGKq6 CSnRdzBOWTVYOmZ94/s2yrzrPxcQemHSinFKc1uZcgsQ5HF18zbsCCC0fe9n36Zq I2WctJCBlQtYZKRS6vmJqCrmYh9sQPyEDH/W7OiFCZfb+okEeJpExtiIbC4vT2Mb 8RfPQ0c0Zb4BzsFs+Vy1J2IXJhv/e/fV2gMgcWaaR683onQlg6Q72U6NXXkYC7I0 BUq8IQpoiSVDnOXOORGG974d/wIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFLQjJ3VC B5B+U27bjYJvDWekDKBBMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RjAvQTY2MzE5RjAxMkQ5MTFFQUExNkE0QjYxQzRGOUFFMDIvOTA1NzY2NjBF MTk3MTFFRkExMUMyMjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAFnUEYDBABna3sDBABnea8wDwQCAAIwCQMHACABDfbeADAN BgkqhkiG9w0BAQsFAAOCAQEAVC4Y81TG/YgIErGWljCoHBtBQVLDBNMp6IrAruFd pxmVfyNsNX5F9FUTV3Z4jjlL6ROpoFINbdv/ccDPaqyQl8d8xF8alJvQJnRgzDWG q7zeuv1uIIQ4mAOr1mTTTSA8XClq7j1GoCwAWhbRGT4g4VYFdbRXrav6r3fvxEql S1H2F/OFmNUK1gTh8PQCms7QyetA2K+0aF5gStTqfCLqH6riF5DoB9ZXPTPNP8xw xkXAUQiN2pCXvkIDys+ZRW29Wpl/vj+DmSQjHxPuVBMokwEHoCvnOlLE7DcdTQHZ Zhczvjec2+AjNPirKe46s5GfWD5lvcx0wbdwMSPMz+NQHg== -----END CERTIFICATE-----Generated at Fri Feb 20 00:14:52 2026 by rpki-client