$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/0CC86DF4FB5311F09CD98C1F476F56BC.roa File: 0CC86DF4FB5311F09CD98C1F476F56BC.roa (raw, json) Hash identifier: zmUGqNKP1l1FS6Nt/6rkwRmHKjZnQKttQWEMo/g2TI0= Subject key identifier: DC:EC:08:49:51:59:6D:BB:D0:65:65:6E:88:F2:AA:6E:74:D2:2B:23 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 0457 Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/0CC86DF4FB5311F09CD98C1F476F56BC.roa Signing time: Sun 01 Mar 2026 16:50:37 +0000 ROA not before: Tue 27 Jan 2026 07:37:36 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 59371 IP address blocks: 103.84.45.0/24 maxlen: 24 103.84.46.0/24 maxlen: 24 103.84.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 23:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Jan 27 07:37:36 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a46e5d-69bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:00:a3:df:b5:68:1e:9a:30:79:21:b7:f6:b5: 76:50:a2:52:e3:bf:f9:04:ad:00:f2:59:f1:5d:d6: 6f:02:5b:ef:c4:79:fd:92:60:6c:a2:fe:05:86:55: b7:db:dc:00:73:c2:a8:60:24:8d:c1:43:5e:9e:3a: 1b:87:66:0e:5f:50:78:cf:e8:9f:6a:1e:a7:9d:08: 80:c3:92:8a:b7:5c:c2:6e:c1:3b:c6:8b:c8:6b:e8: 94:ff:8c:a3:f7:0d:1e:87:f5:65:5e:09:10:90:4a: de:b1:e3:c1:f1:43:b7:65:80:37:dd:f6:ef:b5:64: 23:ba:58:27:12:2c:57:d4:83:3b:21:61:cf:8a:ef: f1:e6:29:ba:60:20:9a:df:c8:4c:e9:ed:ba:25:f9: f3:c5:49:fc:0d:ba:59:91:4d:91:49:47:ab:bf:9b: 85:54:e0:51:02:3f:27:08:e1:a8:e0:bf:77:58:74: a7:f2:1a:4a:03:d2:3c:e3:e8:0d:1b:fc:85:8e:f9: 32:b9:43:51:eb:3f:17:66:53:a2:1c:d0:68:00:99: 46:e2:df:c9:bb:2c:2f:6d:d4:3a:cb:09:23:58:55: 78:bb:79:b5:50:ae:b3:f6:5b:ef:e0:2d:8b:8d:ab: 2b:dc:29:47:f1:ae:d8:91:54:60:09:4f:03:8b:b8: f5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EC:08:49:51:59:6D:BB:D0:65:65:6E:88:F2:AA:6E:74:D2:2B:23 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/0CC86DF4FB5311F09CD98C1F476F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.84.45.0-103.84.47.255 Signature Algorithm: sha256WithRSAEncryption a9:2b:20:2c:f9:f5:44:6a:fc:aa:0b:5b:06:58:d6:e4:a2:6b: b4:a2:b2:96:df:8e:f5:2e:bd:49:9d:b8:d1:2d:4d:af:a8:9f: 55:e0:ab:a2:50:29:ae:00:20:c7:0e:1e:24:45:85:80:e5:89: 3f:63:8e:1b:94:b6:d0:0d:96:3f:09:f8:e0:6b:cc:fe:d2:c1: fa:43:57:95:fa:6e:e7:58:78:12:f2:ae:e8:24:e5:d1:78:c3: 0f:fc:5d:50:e7:1b:7c:c0:ef:12:bb:23:29:b7:26:48:8c:cb: d9:90:1a:d4:0a:87:da:d3:9c:40:15:c9:70:1f:e6:3c:d6:6e: 6d:68:2b:d0:7d:2f:50:62:f7:34:89:27:32:d9:91:ad:9d:0e: 25:0e:1e:0e:e8:c1:f5:e2:af:43:d4:87:fd:16:fd:71:73:14: cd:f2:59:62:bb:ec:19:2a:22:46:d0:dc:eb:c4:6b:4d:5f:d5: 2d:b0:26:d3:7d:fc:02:3f:15:a2:f0:e1:05:f3:44:aa:3c:60: 17:b6:bf:a8:ae:79:17:68:a2:77:9c:78:06:88:b4:5c:e0:3d: 9d:52:89:67:d3:0a:aa:86:e6:8b:f9:49:6e:53:c1:b1:c5:a7: 67:c7:7d:d2:ae:0e:81:05:cd:23:6e:a3:3c:15:c5:52:36:bf: 48:fd:50:b6 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjYwMTI3MDczNzM2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU1ZC02OWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowCj37VoHpoweSG39rV2UKJS47/5BK0A8lnxXdZvAlvvxHn9kmBsov4FhlW3 29wAc8KoYCSNwUNenjobh2YOX1B4z+ifah6nnQiAw5KKt1zCbsE7xovIa+iU/4yj 9w0eh/VlXgkQkEresePB8UO3ZYA33fbvtWQjulgnEixX1IM7IWHPiu/x5im6YCCa 38hM6e26JfnzxUn8DbpZkU2RSUerv5uFVOBRAj8nCOGo4L93WHSn8hpKA9I84+gN G/yFjvkyuUNR6z8XZlOiHNBoAJlG4t/JuywvbdQ6ywkjWFV4u3m1UK6z9lvv4C2L jasr3ClH8a7YkVRgCU8Di7j1rwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFNzsCElR WW270GVlbojyqm500isjMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvMENDODZERjRG QjUzMTFGMDlDRDk4QzFGNDc2RjU2QkMucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBABnVC0DBARnVCAwDQYJKoZIhvcNAQELBQADggEBAKkrICz59URq /KoLWwZY1uSia7SispbfjvUuvUmduNEtTa+on1Xgq6JQKa4AIMcOHiRFhYDliT9j jhuUttANlj8J+OBrzP7SwfpDV5X6budYeBLyrugk5dF4ww/8XVDnG3zA7xK7Iym3 JkiMy9mQGtQKh9rTnEAVyXAf5jzWbm1oK9B9L1Bi9zSJJzLZka2dDiUOHg7owfXi r0PUh/0W/XFzFM3yWWK77BkqIkbQ3OvEa01f1S2wJtN9/AI/FaLw4QXzRKo8YBe2 v6iueRdooneceAaItFzgPZ1SiWfTCqqG5ov5SW5TwbHFp2fHfdKuDoEFzSNuozwV xVI2v0j9ULY= -----END CERTIFICATE-----Generated at Wed Mar 11 21:01:56 2026 by rpki-client