$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa File: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (raw, json) Hash identifier: IuH5kcHoFsLnyWqZvnPLZ41QjQrRVTRKSN253nyPkhI= Subject key identifier: 33:C9:03:66:3C:39:4C:2E:21:FB:DF:A9:2B:70:C1:F6:2F:57:F7:72 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 0404 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa Signing time: Fri 09 Jan 2026 11:42:32 +0000 ROA not before: Fri 09 Jan 2026 11:42:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141732 IP address blocks: 103.162.234.0/23 maxlen: 24 2407:1e40::/32 maxlen: 32 2407:1e40:4::/46 maxlen: 46 2407:1e40:5::/48 maxlen: 48 2407:1e40:8::/46 maxlen: 46 2407:1e40:200::/48 maxlen: 48 2407:1e40:300::/48 maxlen: 48 2407:1e40:400::/48 maxlen: 48 2407:1e40:500::/48 maxlen: 48 2407:1e40:600::/48 maxlen: 48 2407:1e40:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 23:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9, serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Jan 9 11:42:32 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6960e9a8-dea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ec:93:4a:17:46:9c:03:89:1c:55:17:2e:d5: d3:a4:14:81:fe:7c:09:c2:54:62:0d:69:d6:a1:f7: a3:95:fd:a2:52:f5:78:d4:4a:c1:f2:c9:29:a9:22: bd:a8:46:86:93:f1:c4:74:b1:a8:8f:cb:ee:68:6e: 62:a2:7f:09:4b:a7:3a:45:2d:f2:90:d4:3f:48:c0: 1e:45:3c:f1:3f:a6:62:7b:37:c4:29:59:99:3c:53: 40:4d:9d:51:78:36:8b:67:10:44:53:e1:34:b4:75: 3e:b3:d2:49:0a:35:aa:c3:9d:9c:d3:59:1b:01:6b: 57:bd:3f:eb:50:06:5f:fa:f4:b6:8b:d9:53:5d:dc: 3b:98:a5:da:86:58:d8:93:ac:ea:bd:ed:45:2a:11: 7f:ae:24:f1:e4:82:67:2b:ba:5b:4e:a8:17:96:0a: c8:3c:d0:fe:12:6b:1e:59:ea:92:cb:fb:67:e1:eb: af:07:d0:8e:af:3a:b4:e4:4f:00:6f:8a:6b:8e:05: 69:37:ad:21:ef:53:9a:91:6d:a4:c9:10:4f:f3:e7: 32:4c:78:65:26:7b:dd:64:95:ee:57:c8:29:44:7b: bb:5d:6f:84:d5:0e:e6:db:bc:0f:42:85:ff:9b:59: bf:60:1a:98:85:fe:1b:4c:1c:7e:0a:dd:46:b4:5b: 7e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C9:03:66:3C:39:4C:2E:21:FB:DF:A9:2B:70:C1:F6:2F:57:F7:72 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.234.0/23 IPv6: 2407:1e40::/32 Signature Algorithm: sha256WithRSAEncryption 8c:ba:fc:08:ee:a5:d9:f0:5e:2c:f6:72:c4:bf:58:d7:ea:db: 9b:59:f9:17:2d:1a:17:3e:17:75:20:27:49:7e:4e:74:c8:0f: 38:2f:84:ea:d9:ae:94:29:23:f6:f2:ca:c5:3e:29:36:d5:c8: fd:98:25:a5:05:e1:c5:ff:38:c6:f8:0c:c5:c7:09:b5:55:c2: a5:1a:b5:14:c4:34:f9:67:37:9c:13:26:ed:51:68:8b:46:ee: c8:61:eb:0a:20:df:15:b3:36:f4:30:d0:35:ec:04:ae:f5:3e: 73:6f:7b:31:82:d6:d7:33:21:c2:c4:d9:e8:c7:4b:41:c3:92: 71:56:52:ea:bd:a4:a0:ee:b1:04:86:4d:c0:13:4e:50:ed:3f: 7d:30:2d:27:46:dd:70:e4:7a:0c:27:c0:08:dd:4b:b2:5c:83: cb:23:00:5c:a2:0a:ce:58:0a:a7:62:a3:f0:b3:dc:8a:d3:f4: 61:35:e8:c3:d3:cf:e3:e5:2b:91:14:5f:46:ab:c4:c2:e1:03: f7:ab:5e:4f:2a:5d:97:ac:07:b1:71:66:fa:ce:03:2e:1a:fe: 5d:c6:41:47:8a:e6:15:b8:1d:ee:52:61:a6:7d:47:e8:18:1b: ec:2b:59:4e:dc:c7:14:ef:77:fb:33:28:5a:5b:42:6f:9d:31: cc:13:d8:57 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjYwMTA5MTE0MjMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OTYwZTlhOC1kZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOyTShdGnAOJHFUXLtXTpBSB/nwJwlRiDWnWofejlf2iUvV41ErB8skpqSK9 qEaGk/HEdLGoj8vuaG5ion8JS6c6RS3ykNQ/SMAeRTzxP6ZiezfEKVmZPFNATZ1R eDaLZxBEU+E0tHU+s9JJCjWqw52c01kbAWtXvT/rUAZf+vS2i9lTXdw7mKXahljY k6zqve1FKhF/riTx5IJnK7pbTqgXlgrIPND+EmseWeqSy/tn4euvB9COrzq05E8A b4prjgVpN60h71OakW2kyRBP8+cyTHhlJnvdZJXuV8gpRHu7XW+E1Q7m27wPQoX/ m1m/YBqYhf4bTBx+Ct1GtFt+/QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDPJA2Y8 OUwuIfvfqStwwfYvV/dyMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwQjkvRDEzQkVBQUFBMEZCMTFFQ0E1RDFERjVCQzRGOUFFMDIvQkNEMEY2QjBB MEZGMTFFQzkyNEQ0NDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnouowDQQCAAIwBwMFACQHHkAwDQYJKoZIhvcNAQELBQAD ggEBAIy6/AjupdnwXiz2csS/WNfq25tZ+RctGhc+F3UgJ0l+TnTIDzgvhOrZrpQp I/byysU+KTbVyP2YJaUF4cX/OMb4DMXHCbVVwqUatRTENPlnN5wTJu1RaItG7shh 6wog3xWzNvQw0DXsBK71PnNvezGC1tczIcLE2ejHS0HDknFWUuq9pKDusQSGTcAT TlDtP30wLSdG3XDkegwnwAjdS7Jcg8sjAFyiCs5YCqdio/Cz3IrT9GE16MPTz+Pl K5EUX0arxMLhA/erXk8qXZesB7FxZvrOAy4a/l3GQUeK5hW4He5SYaZ9R+gYG+wr WU7cxxTvd/szKFpbQm+dMcwT2Fc= -----END CERTIFICATE-----Generated at Fri Feb 20 02:44:11 2026 by rpki-client