$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa File: AF7700B2B52A11EAB9426C7DC4F9AE02.roa (raw, json) Hash identifier: BeGrC5mJSgW0geDJyC0tfvb5uk3Luu/Jt19BeOwKBXI= Subject key identifier: A6:BE:60:65:9E:A9:D8:6A:D9:83:38:D7:AB:B4:14:78:D8:F8:4A:6B Certificate issuer: /CN=A91C3083/serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Certificate serial: 1BAB Authority key identifier: B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa Signing time: Tue 10 Feb 2026 16:13:50 +0000 ROA not before: Tue 10 Feb 2026 16:13:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133854 IP address blocks: 103.81.204.0/24 maxlen: 24 103.81.205.0/24 maxlen: 24 103.81.206.0/24 maxlen: 24 202.144.200.0/24 maxlen: 24 202.144.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 16:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7083 (0x1bab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3083, serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Validity Not Before: Feb 10 16:13:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=698b593e-266b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f8:cf:86:ef:90:b1:05:3f:7c:24:20:7e:e6: 2e:e1:70:26:64:d4:99:e8:e3:f4:17:8f:51:f5:dd: 8d:d6:fa:3c:63:e7:1b:82:a7:75:1e:2c:5f:1a:bc: 3a:84:77:ec:66:77:8c:a9:ae:96:92:41:07:69:f3: ba:8e:40:9d:52:71:cb:97:71:0d:0d:c2:0e:4b:fa: 7e:95:00:83:7c:c4:dd:61:11:e0:89:1e:a4:eb:76: 0d:c6:de:7d:7a:4a:ee:ac:81:d0:45:88:80:8a:ba: f8:39:6f:29:79:21:70:6c:1c:a2:f7:02:87:53:25: 91:97:f7:a2:d4:af:ee:eb:1a:4f:7a:81:6e:aa:8c: 96:3a:a2:3d:5d:8e:fb:72:3d:ec:12:f1:6a:5c:e7: ae:b4:a1:12:20:19:06:05:0f:3d:fb:fc:d3:da:03: 5b:28:77:7e:ab:ab:15:4c:c2:d9:83:9b:f9:49:2a: 9d:f3:7f:ff:f6:8c:c9:99:18:b2:4d:8e:6e:c3:54: 2a:f5:34:fd:d5:70:7a:60:a0:9c:f3:3c:4a:52:bb: 20:45:3b:73:91:3e:0d:2a:01:aa:0c:41:18:30:35: 46:98:ce:25:af:e3:25:37:4a:3d:79:17:15:61:05: e8:70:03:79:26:7d:23:2b:8b:cf:d8:25:d8:68:14: e7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BE:60:65:9E:A9:D8:6A:D9:83:38:D7:AB:B4:14:78:D8:F8:4A:6B X509v3 Authority Key Identifier: keyid:B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.204.0-103.81.206.255 202.144.200.0/24 202.144.202.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:41:a6:1d:6c:1e:db:8e:37:b1:30:4d:6a:0e:95:3e:58:b3: b5:fb:23:2c:7a:55:5d:95:45:14:26:3a:4a:ad:44:14:05:81: c9:64:2c:7f:7b:cc:75:e0:19:3f:6f:ac:31:52:c8:3e:3b:63: 53:bd:d2:3f:15:0b:34:62:62:07:46:b9:2d:d7:cf:19:b2:a3: 5a:c3:03:2d:34:8d:af:ee:cb:ce:47:f8:bd:13:e3:2b:34:eb: 25:31:27:b4:a4:22:ea:59:50:f8:08:ad:a1:2b:8a:e2:74:25: 5e:dc:b1:0d:56:bb:b5:8d:fa:4c:82:78:d8:8f:8f:c4:66:fe: ea:06:51:e8:b5:6e:6a:9d:88:37:48:d8:a7:6e:1e:09:cc:68: da:57:df:70:67:97:99:b3:03:9f:81:01:d9:b4:f0:54:a1:3d: 10:45:03:2e:85:6c:aa:9a:c8:9b:96:3e:a2:60:b2:7c:82:2e: 0d:df:3e:17:50:2d:c9:08:5e:66:54:96:f9:8e:af:56:fa:1a: 8b:f9:70:3d:d8:fd:00:15:e0:98:ef:c4:4e:eb:6e:13:41:9c: 24:90:1f:37:71:c2:bf:15:da:9d:bd:3e:1a:25:0a:e7:d7:2b: 61:e2:4c:c9:18:d2:0b:22:fa:78:d5:b4:a3:ff:a0:4b:b0:ad: 67:78:91:96 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICG6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QzMwODMxMTAvBgNVBAUTKEI3QUE1MzczODMyMTRENjQ4RTYzM0JDQzQyMEQzQkQ2 ODYxNjc4RkQwHhcNMjYwMjEwMTYxMzUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OThiNTkzZS0yNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfjPhu+QsQU/fCQgfuYu4XAmZNSZ6OP0F49R9d2N1vo8Y+cbgqd1HixfGrw6 hHfsZneMqa6WkkEHafO6jkCdUnHLl3ENDcIOS/p+lQCDfMTdYRHgiR6k63YNxt59 ekrurIHQRYiAirr4OW8peSFwbByi9wKHUyWRl/ei1K/u6xpPeoFuqoyWOqI9XY77 cj3sEvFqXOeutKESIBkGBQ89+/zT2gNbKHd+q6sVTMLZg5v5SSqd83//9ozJmRiy TY5uw1Qq9TT91XB6YKCc8zxKUrsgRTtzkT4NKgGqDEEYMDVGmM4lr+MlN0o9eRcV YQXocAN5Jn0jK4vP2CXYaBTn7wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFKa+YGWe qdhq2YM416u0FHjY+EprMB8GA1UdIwQYMBaAFLeqU3ODIU1kjmM7zEINO9aGFnj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA4My9BMENGMDU5QTJF NjAxMUU3Qjc0NzNFNzBDNEY5QUUwMi90NnBUYzRNaFRXU09ZenZNUWcwNzFvWVdl UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2cFRjNE1oVFdTT1l6dk1RZzA3MW9ZV2VQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMwODMvQTBDRjA1OUEyRTYwMTFFN0I3NDczRTcwQzRGOUFFMDIvQUY3NzAwQjJC NTJBMTFFQUI5NDI2QzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAmdRzAMEAGdRzgMEAMqQyAMEAMqQyjANBgkqhkiG9w0B AQsFAAOCAQEAbEGmHWwe2443sTBNag6VPliztfsjLHpVXZVFFCY6Sq1EFAWByWQs f3vMdeAZP2+sMVLIPjtjU73SPxULNGJiB0a5LdfPGbKjWsMDLTSNr+7Lzkf4vRPj KzTrJTEntKQi6llQ+AitoSuK4nQlXtyxDVa7tY36TIJ42I+PxGb+6gZR6LVuap2I N0jYp24eCcxo2lffcGeXmbMDn4EB2bTwVKE9EEUDLoVsqprIm5Y+omCyfIIuDd8+ F1AtyQheZlSW+Y6vVvoai/lwPdj9ABXgmO/ETutuE0GcJJAfN3HCvxXanb0+GiUK 59crYeJMyRjSCyL6eNW0o/+gS7CtZ3iRlg== -----END CERTIFICATE-----Generated at Fri Feb 20 00:12:14 2026 by rpki-client