$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/98845C5C54EC11E791C3F825C4F9AE02.roa File: 98845C5C54EC11E791C3F825C4F9AE02.roa (raw, json) Hash identifier: RgGxes55Cf9AH3d3EYwb9YtqtEyegUEJUKWydJiiJyM= Subject key identifier: 0A:55:97:15:CA:45:81:E3:1B:AC:EE:BF:2D:1E:E3:AF:6C:2E:5A:E3 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 29D6 Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/98845C5C54EC11E791C3F825C4F9AE02.roa Signing time: Wed 28 Jan 2026 16:13:03 +0000 ROA not before: Wed 28 Jan 2026 16:13:03 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58473 IP address blocks: 103.28.72.0/24 maxlen: 24 103.60.132.0/23 maxlen: 24 103.240.132.0/24 maxlen: 24 2402:df80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 15:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10710 (0x29d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17, serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Jan 28 16:13:03 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697a358e-fbdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:bd:6e:d3:21:05:d7:a6:2a:eb:c6:68:b6: b4:de:f9:21:26:8e:35:b1:35:3e:4d:42:2b:25:47: 09:cf:fc:88:ad:15:87:3b:ba:08:ba:0e:35:0e:bf: ff:3a:9c:25:21:3d:32:d5:2f:4f:69:78:c6:0c:d7: 55:09:fe:89:94:db:ef:d6:d4:c6:b5:4d:cc:e9:20: 50:45:dd:31:4c:d4:a8:8d:8b:99:e3:38:87:6b:32: 8f:98:64:8a:5a:dc:cf:e2:80:ce:a1:36:0b:36:fc: 62:8c:5a:70:b0:82:9f:d0:32:82:0d:38:9c:a9:24: 54:ce:cd:f6:97:a8:8e:e1:09:1d:a0:6f:67:ba:08: e1:90:6d:ad:1a:2b:09:48:97:36:f7:0b:83:e3:db: 0a:57:40:f0:20:db:51:94:dc:02:3f:97:89:c4:0d: b5:0f:33:69:e0:b7:c7:b9:0f:9e:03:2b:af:75:e8: 52:a8:87:ca:c8:4e:97:cd:cb:17:92:3a:11:ea:6b: af:07:be:f7:c3:11:59:b7:63:57:5e:71:00:2f:49: ba:8d:51:fa:22:62:81:f1:7e:c4:73:9a:0c:71:b3: 6c:91:aa:a1:af:e5:40:eb:4f:36:e2:13:2a:58:29: 90:40:ac:cc:43:b4:b0:f6:f1:70:74:75:86:f6:4f: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:55:97:15:CA:45:81:E3:1B:AC:EE:BF:2D:1E:E3:AF:6C:2E:5A:E3 X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/98845C5C54EC11E791C3F825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.72.0/24 103.60.132.0/23 103.240.132.0/24 IPv6: 2402:df80::/32 Signature Algorithm: sha256WithRSAEncryption 3c:67:7d:08:57:6e:de:aa:1c:26:63:f6:42:b3:64:18:30:b3: e1:35:a5:40:6a:88:f6:a7:25:02:a5:93:c1:ee:e9:73:ec:96: 18:c3:e8:04:53:83:ed:4a:e7:d4:cb:ee:b8:2f:63:a0:28:9c: 46:56:89:7a:d7:8b:c7:be:a1:09:1d:29:e9:bf:70:95:f3:a9: 07:7e:2d:70:c2:9c:5e:e0:f7:6b:52:cf:20:d0:86:1f:b8:7e: 1f:39:0f:07:37:4c:94:64:18:7b:e3:ba:52:df:54:4b:25:31: a6:70:fd:f3:1a:4b:4b:05:86:ac:88:dc:47:c5:e7:af:c2:5f: e8:99:b7:fd:15:2a:8c:82:ed:80:c4:d0:2b:27:45:48:95:7c: 4a:f9:92:13:94:8c:81:00:74:b6:88:91:35:73:16:a8:7d:85: ef:26:21:1a:d0:72:93:1f:57:c5:93:c1:72:67:3d:b3:d6:61: bb:77:82:18:8e:38:54:0c:d7:5e:3f:61:5e:6c:12:8b:4e:e0: f8:ac:85:54:08:d6:3d:13:73:79:5c:94:6c:40:62:a7:74:09: 64:42:67:e9:97:14:7b:a9:dc:85:c5:ce:3c:28:bb:59:26:e5: ef:03:6e:89:f8:b8:5a:69:46:77:4a:64:1d:19:b7:37:90:66: 5d:c2:48:16 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICKdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjYwMTI4MTYxMzAzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhMzU4ZS1mYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3C9btMhBdemKuvGaLa03vkhJo41sTU+TUIrJUcJz/yIrRWHO7oIug41Dr// OpwlIT0y1S9PaXjGDNdVCf6JlNvv1tTGtU3M6SBQRd0xTNSojYuZ4ziHazKPmGSK WtzP4oDOoTYLNvxijFpwsIKf0DKCDTicqSRUzs32l6iO4QkdoG9nugjhkG2tGisJ SJc29wuD49sKV0DwINtRlNwCP5eJxA21DzNp4LfHuQ+eAyuvdehSqIfKyE6XzcsX kjoR6muvB773wxFZt2NXXnEAL0m6jVH6ImKB8X7Ec5oMcbNskaqhr+VA60824hMq WCmQQKzMQ7Sw9vFwdHWG9k82cwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFApVlxXK RYHjG6zuvy0e469sLlrjMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFFMTcvNDQ1RUUwOTQ1OEJEMTFFNDkzODNBQjc2QzRGOUFFMDIvOTg4NDVDNUM1 NEVDMTFFNzkxQzNGODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnHEgDBAFnPIQDBABn8IQwDQQCAAIwBwMFACQC34AwDQYJ KoZIhvcNAQELBQADggEBADxnfQhXbt6qHCZj9kKzZBgws+E1pUBqiPanJQKlk8Hu 6XPslhjD6ARTg+1K59TL7rgvY6AonEZWiXrXi8e+oQkdKem/cJXzqQd+LXDCnF7g 92tSzyDQhh+4fh85Dwc3TJRkGHvjulLfVEslMaZw/fMaS0sFhqyI3EfF56/CX+iZ t/0VKoyC7YDE0CsnRUiVfEr5khOUjIEAdLaIkTVzFqh9he8mIRrQcpMfV8WTwXJn PbPWYbt3ghiOOFQM114/YV5sEotO4PishVQI1j0Tc3lclGxAYqd0CWRCZ+mXFHup 3IXFzjwou1km5e8Dbon4uFppRndKZB0ZtzeQZl3CSBY= -----END CERTIFICATE-----Generated at Thu Feb 19 18:18:01 2026 by rpki-client