$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa File: 2A28A576FDA111F08BC1F4B75F6F56BC.roa (raw, json) Hash identifier: ZiHweXF9jRqX84ys8swTy+CqxHspaZgHuGaBaKYXdfA= Subject key identifier: B8:82:02:3B:05:FB:A6:CB:C8:4B:27:9C:45:FD:C4:F4:1D:D2:21:E8 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 99 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa Signing time: Fri 30 Jan 2026 06:01:49 +0000 ROA not before: Fri 30 Jan 2026 06:01:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14576 IP address blocks: 103.152.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 05:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jan 30 06:01:49 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=697c494d-e2f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e7:c6:84:f4:64:ba:4a:d3:9b:3c:51:ac:da: ab:20:ab:ab:c6:84:eb:98:27:89:18:e9:89:13:55: e1:56:41:af:c8:3f:45:00:78:2c:d9:5f:da:c3:e9: 8c:d9:f2:a3:ae:d5:54:fa:96:b7:9e:b6:50:43:40: 42:0f:1b:bf:a1:94:93:cc:71:3c:45:66:71:7a:93: c0:a9:fe:84:83:94:27:93:8d:3f:f8:63:e5:89:38: 1d:01:3b:a8:7e:3b:d3:17:bc:53:95:2c:21:88:d8: b8:dd:16:e6:ee:28:68:59:6f:0c:52:14:6a:36:0d: 83:66:01:2c:43:fa:02:5a:51:6d:95:27:49:1c:c8: e5:b2:68:ea:22:96:dd:70:0c:bb:cc:f2:41:55:c7: 86:76:6d:96:ce:63:1e:2c:5e:16:d5:51:75:ac:16: 6a:a2:12:45:c7:a3:da:7c:e9:19:e9:64:d0:52:3a: 63:c2:59:58:8b:3b:f6:26:88:9b:cb:5c:48:57:3d: 9d:2d:e7:da:88:09:ba:3b:d2:8c:f3:41:3d:e9:95: fc:c8:67:17:46:a1:75:0e:b9:ea:7c:cc:6c:47:8b: 9a:28:72:b2:63:8c:79:4a:31:e8:4c:df:03:25:5f: c6:28:cd:13:24:a6:8f:12:f9:2f:dd:89:78:bd:6d: 55:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:82:02:3B:05:FB:A6:CB:C8:4B:27:9C:45:FD:C4:F4:1D:D2:21:E8 X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.136.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:44:6d:9b:e6:65:6b:08:67:31:d8:21:f6:64:83:19:ec:9b: 36:16:8c:d5:75:1c:28:b1:3c:60:ca:d0:8b:64:36:c6:23:a5: 56:6c:fc:8d:83:8a:55:55:99:57:32:61:95:c1:5e:60:3b:44: 09:e2:eb:9e:0a:a9:9c:bc:b7:1e:f2:70:21:27:1f:ad:32:45: 7e:1e:bf:9c:59:7a:15:08:54:0b:9a:50:89:11:70:cf:d4:b3: 7c:6b:fe:58:28:a7:73:85:49:d9:f3:5f:2c:ac:97:73:1c:d7: a4:3e:24:e2:1e:a7:bd:50:fb:1f:ac:61:10:e2:8a:07:fd:56: bb:9c:52:ec:33:f9:35:b5:2c:2c:7a:3e:79:6a:5a:c0:06:6b: 12:de:7f:a1:ba:5e:a6:cc:6b:f7:96:04:c6:fe:50:14:ae:90: 0c:2c:b7:c3:09:e8:b5:95:69:ab:91:fe:a1:7d:5e:b5:3e:07: ce:06:cc:56:51:73:cf:73:09:d4:c3:36:79:a8:29:03:45:66: 2a:b9:79:69:34:ea:eb:7f:38:45:c3:96:01:96:3d:78:e4:a8: 42:1d:5b:04:45:cf:87:e6:07:6b:a0:53:59:88:2b:18:eb:71: 29:3f:55:e4:9d:b8:09:64:74:59:a1:85:a2:2e:e7:5d:d2:cf: fb:0e:d0:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJFREUxMTAvBgNVBAUTKDlEQjI1OEMxNzBCMjMyMjk0RDg2M0Y2MEQyREMwMTIz Q0RBQUU3ODkwHhcNMjYwMTMwMDYwMTQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdjNDk0ZC1lMmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlOfGhPRkukrTmzxRrNqrIKurxoTrmCeJGOmJE1XhVkGvyD9FAHgs2V/aw+mM 2fKjrtVU+pa3nrZQQ0BCDxu/oZSTzHE8RWZxepPAqf6Eg5Qnk40/+GPliTgdATuo fjvTF7xTlSwhiNi43Rbm7ihoWW8MUhRqNg2DZgEsQ/oCWlFtlSdJHMjlsmjqIpbd cAy7zPJBVceGdm2WzmMeLF4W1VF1rBZqohJFx6PafOkZ6WTQUjpjwllYizv2Joib y1xIVz2dLefaiAm6O9KM80E96ZX8yGcXRqF1DrnqfMxsR4uaKHKyY4x5SjHoTN8D JV/GKM0TJKaPEvkv3Yl4vW1VGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLiCAjsF +6bLyEsnnEX9xPQd0iHoMB8GA1UdIwQYMBaAFJ2yWMFwsjIpTYY/YNLcASPNqueJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkVERS81NUNCMkUwNDFB QjQxMUYwODVERDY5NEFDNEY5QUUwMi9uYkpZd1hDeU1pbE5oajlnMHR3Qkk4MnE1 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJFREUvNTVDQjJFMDQxQUI0MTFGMDg1REQ2OTRBQzRGOUFFMDIvMkEyOEE1NzZG REExMTFGMDhCQzFGNEI3NUY2RjU2QkMucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmIgwDQYJKoZIhvcNAQELBQADggEBAI9EbZvmZWsIZzHY IfZkgxnsmzYWjNV1HCixPGDK0ItkNsYjpVZs/I2DilVVmVcyYZXBXmA7RAni654K qZy8tx7ycCEnH60yRX4ev5xZehUIVAuaUIkRcM/Us3xr/lgop3OFSdnzXyysl3Mc 16Q+JOIep71Q+x+sYRDiigf9VrucUuwz+TW1LCx6PnlqWsAGaxLef6G6XqbMa/eW BMb+UBSukAwst8MJ6LWVaauR/qF9XrU+B84GzFZRc89zCdTDNnmoKQNFZiq5eWk0 6ut/OEXDlgGWPXjkqEIdWwRFz4fmB2ugU1mIKxjrcSk/VeSduAlkdFmhhaIu513S z/sO0EI= -----END CERTIFICATE-----Generated at Fri Feb 20 02:41:30 2026 by rpki-client