$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/A1B8513612FE11ED8A1DA356C4F9AE02.roa File: A1B8513612FE11ED8A1DA356C4F9AE02.roa (raw, json) Hash identifier: 9Ep6t3AG8CiRPlIf3Yv4Y03998NV9+HGAvq1KC0HiaM= Subject key identifier: D2:8F:93:02:69:97:68:31:BC:FB:43:33:89:37:93:18:70:06:6E:4E Certificate issuer: /CN=A91B0913/serialNumber=0F797D7C2A5D35A7CBDBE84DFC73CB9819D5EF23 Certificate serial: 0306 Authority key identifier: 0F:79:7D:7C:2A:5D:35:A7:CB:DB:E8:4D:FC:73:CB:98:19:D5:EF:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D3l9fCpdNafL2-hN_HPLmBnV7yM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/A1B8513612FE11ED8A1DA356C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:36:48 +0000 ROA not before: Tue 25 Nov 2025 06:25:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150150 IP address blocks: 103.8.215.0/24 maxlen: 24 2402:3960::/32 maxlen: 32 2402:3960:1000::/48 maxlen: 48 2402:3960:2000::/48 maxlen: 48 2402:3960:3000::/48 maxlen: 48 2402:3960:4000::/48 maxlen: 48 2402:3960:5000::/48 maxlen: 48 2402:3960:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/D3l9fCpdNafL2-hN_HPLmBnV7yM.crl rsync://rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/D3l9fCpdNafL2-hN_HPLmBnV7yM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D3l9fCpdNafL2-hN_HPLmBnV7yM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 774 (0x306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0913, serialNumber=0F797D7C2A5D35A7CBDBE84DFC73CB9819D5EF23 Validity Not Before: Nov 25 06:25:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a080-7602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:85:dd:d0:c9:3e:81:8a:0a:99:7f:57:09:e9: 71:ec:47:86:c0:67:7f:07:df:d6:29:81:c5:37:86: a7:0e:1a:0e:7f:62:bd:a2:a5:b6:1e:e8:b2:1d:b7: 49:e7:f9:2d:81:f7:4e:e3:62:3b:2d:7e:e0:09:b5: a0:89:ce:32:34:cb:d6:db:f4:b7:f9:3b:ec:64:70: 9e:dc:af:e2:e3:10:d1:94:21:5f:84:a8:d5:cf:7a: 3b:3c:ec:50:f0:c8:13:e3:c8:24:0b:2f:59:09:a9: 9a:17:ed:10:4c:e0:4f:ff:69:ae:32:1f:b7:e8:64: bb:86:18:7b:fa:52:9b:97:9b:cf:9c:de:2d:08:0e: 86:e3:58:ec:67:c3:fd:14:0e:77:79:25:49:eb:d7: 62:64:5a:23:df:5f:d2:98:67:eb:ea:14:18:dc:0e: 77:0a:19:c9:ca:a3:e8:45:74:4f:be:f1:23:d4:d1: e3:06:fa:51:c5:5f:b3:21:73:d9:b8:bc:c9:c5:8d: e2:eb:ab:89:c1:b4:40:a7:ac:a0:0b:e6:93:db:38: be:2b:25:14:45:85:7f:b3:1c:e2:95:50:fd:88:3f: a8:b0:1f:c6:f3:3d:15:4c:2e:4a:a5:ad:1f:57:1c: 4a:48:c3:9f:aa:25:fb:a1:29:d7:92:68:66:2c:41: d7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:8F:93:02:69:97:68:31:BC:FB:43:33:89:37:93:18:70:06:6E:4E X509v3 Authority Key Identifier: keyid:0F:79:7D:7C:2A:5D:35:A7:CB:DB:E8:4D:FC:73:CB:98:19:D5:EF:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/D3l9fCpdNafL2-hN_HPLmBnV7yM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D3l9fCpdNafL2-hN_HPLmBnV7yM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0913/DA713F9612FA11ED84AD7251C4F9AE02/A1B8513612FE11ED8A1DA356C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.215.0/24 IPv6: 2402:3960::/32 Signature Algorithm: sha256WithRSAEncryption 47:33:f5:84:53:a8:19:88:81:fa:fd:c2:4f:72:61:1c:80:18: 03:06:69:0c:2a:ee:d8:29:f0:d9:a5:ae:ed:62:48:ce:61:92: 0e:03:68:42:76:65:9f:e0:36:c5:e3:e2:32:eb:34:67:1a:c9: ec:10:89:e1:a5:f3:c4:70:6b:93:1a:33:7e:51:1c:61:75:5e: ef:58:64:5b:b0:68:f0:42:f6:1d:54:5e:9a:c3:35:5d:1e:9e: c9:b7:09:8d:b7:ba:07:0b:3e:db:28:ca:b1:9c:21:30:89:c9: 27:0a:79:e9:45:3c:7a:2e:85:0f:31:6f:65:d2:90:56:16:3b: 13:e0:72:4b:84:73:d0:18:33:dd:96:5c:f2:4e:22:c1:89:6e: 68:5a:94:a6:84:3f:60:ef:8c:61:40:e5:5b:02:ae:fd:d5:e4: 8e:d1:06:9a:d3:98:1a:05:d4:c4:67:5f:86:bf:99:b5:f6:fe: 6a:5a:53:e9:02:39:57:6c:01:4e:3f:b0:b0:13:cb:c0:bc:43: 6a:df:14:bb:70:83:d6:0a:07:64:d1:64:05:a9:d6:ed:01:ad: fe:d8:c4:63:fc:55:5d:de:e3:3f:59:c1:45:c7:56:16:1f:c3: cf:72:8e:7d:9e:96:61:75:fc:8e:d2:e3:4e:a5:2f:1a:3f:68: e0:cb:8b:5e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA5MTMxMTAvBgNVBAUTKDBGNzk3RDdDMkE1RDM1QTdDQkRCRTg0REZDNzNDQjk4 MTlENUVGMjMwHhcNMjUxMTI1MDYyNTI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTA4MC03NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4Xd0Mk+gYoKmX9XCelx7EeGwGd/B9/WKYHFN4anDhoOf2K9oqW2HuiyHbdJ 5/ktgfdO42I7LX7gCbWgic4yNMvW2/S3+TvsZHCe3K/i4xDRlCFfhKjVz3o7POxQ 8MgT48gkCy9ZCamaF+0QTOBP/2muMh+36GS7hhh7+lKbl5vPnN4tCA6G41jsZ8P9 FA53eSVJ69diZFoj31/SmGfr6hQY3A53ChnJyqPoRXRPvvEj1NHjBvpRxV+zIXPZ uLzJxY3i66uJwbRAp6ygC+aT2zi+KyUURYV/sxzilVD9iD+osB/G8z0VTC5Kpa0f VxxKSMOfqiX7oSnXkmhmLEHX8wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNKPkwJp l2gxvPtDM4k3kxhwBm5OMB8GA1UdIwQYMBaAFA95fXwqXTWny9voTfxzy5gZ1e8j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDkxMy9EQTcxM0Y5NjEy RkExMUVEODRBRDcyNTFDNEY5QUUwMi9EM2w5ZkNwZE5hZkwyLWhOX0hQTG1CblY3 eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QzbDlmQ3BkTmFmTDItaE5fSFBMbUJuVjd5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA5MTMvREE3MTNGOTYxMkZBMTFFRDg0QUQ3MjUxQzRGOUFFMDIvQTFCODUxMzYx MkZFMTFFRDhBMURBMzU2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZwjXMA0EAgACMAcDBQAkAjlgMA0GCSqGSIb3DQEBCwUAA4IBAQBH M/WEU6gZiIH6/cJPcmEcgBgDBmkMKu7YKfDZpa7tYkjOYZIOA2hCdmWf4DbF4+Iy 6zRnGsnsEInhpfPEcGuTGjN+URxhdV7vWGRbsGjwQvYdVF6awzVdHp7JtwmNt7oH Cz7bKMqxnCEwicknCnnpRTx6LoUPMW9l0pBWFjsT4HJLhHPQGDPdllzyTiLBiW5o WpSmhD9g74xhQOVbAq791eSO0Qaa05gaBdTEZ1+Gv5m19v5qWlPpAjlXbAFOP7Cw E8vAvENq3xS7cIPWCgdk0WQFqdbtAa3+2MRj/FVd3uM/WcFFx1YWH8PPco59npZh dfyO0uNOpS8aP2jgy4te -----END CERTIFICATE-----Generated at Wed Mar 4 14:21:52 2026 by rpki-client