$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa File: 207388F2D45E11EE8D29793EC4F9AE02.roa (raw, json) Hash identifier: GZLAqFDcKyRRvVvDeTXr2Kcx2FQWYyo5VaaW0SZn3+0= Subject key identifier: 95:B9:60:5E:23:E3:48:F3:6E:CD:32:86:3A:ED:BD:7C:D9:09:EB:E7 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 052C Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:01:13 +0000 ROA not before: Fri 14 Nov 2025 22:44:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136897 IP address blocks: 103.175.196.0/23 maxlen: 23 103.175.196.0/24 maxlen: 24 2001:df7:fc80::/48 maxlen: 48 2001:df7:fc80::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA, serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Nov 14 22:44:27 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a454b9-90b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0f:4f:54:04:33:db:7c:5f:85:4e:89:6b:02: b8:2a:21:7e:df:82:b5:e0:85:20:32:02:1c:a3:4c: 4a:0a:49:05:10:32:31:02:12:80:cd:bc:28:f2:5f: 4a:3a:d5:54:6e:ea:f3:3d:02:54:a3:b7:61:49:3e: 45:54:29:12:69:b8:b3:15:ac:8e:8b:16:86:82:5c: 09:39:b8:fc:ac:49:01:75:0f:5c:9d:94:d8:b6:af: 7a:6c:5b:d6:0c:8b:67:eb:e4:6c:03:04:ed:ad:3d: ba:7c:af:bb:55:9c:b9:69:4e:0a:cd:90:79:62:24: 80:fa:dc:ab:82:99:df:0a:68:db:fd:70:40:e3:de: 6a:bb:3e:c2:28:52:2b:0b:26:0b:57:bd:7e:59:a3: 21:b9:b2:d5:68:2b:b9:92:ab:83:c1:94:bf:2b:e0: c8:9d:67:5f:d1:8f:01:33:0d:43:58:fc:fd:fd:02: 9f:53:cc:82:f8:f6:bd:96:49:cb:03:30:7a:f0:b6: b7:db:8b:db:98:91:b8:39:5e:f5:10:56:1c:2c:59: 66:85:a7:29:8d:eb:ed:7f:35:ae:0f:e4:79:3d:b3: ce:1a:b6:8a:d1:2e:b1:52:a1:de:a8:98:59:a4:3a: 26:12:76:a6:e6:5b:1f:93:03:fc:4a:20:8c:ea:c8: d7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B9:60:5E:23:E3:48:F3:6E:CD:32:86:3A:ED:BD:7C:D9:09:EB:E7 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/207388F2D45E11EE8D29793EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.175.196.0/23 IPv6: 2001:df7:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 68:da:07:0b:79:e5:54:64:b7:22:f3:bd:bf:f9:ed:11:11:5f: b2:70:60:ea:69:9a:a4:e3:89:0d:e0:40:6f:f9:9c:6f:ce:31: f5:1b:a2:45:ef:a8:1f:7c:23:1b:ba:67:a2:cf:3c:d8:ac:10: a3:a9:2b:c6:01:59:d8:7a:85:d8:6d:80:99:87:b5:11:9a:a9: 36:5d:c5:ec:3a:c8:34:08:ac:7a:6a:f8:ba:c5:59:d9:bb:df: 32:8e:1c:11:c2:bd:34:49:21:89:6b:ef:c0:3c:34:93:d6:c7: 3b:84:ee:f7:b2:8f:cd:a5:bf:42:ee:9b:66:43:db:6b:bc:fc: 3d:77:c2:37:af:c4:28:e5:cf:da:c4:a1:c3:00:3c:f4:25:3e: 81:8d:af:d6:b4:f5:3f:ee:40:ca:b2:40:eb:56:41:b3:90:5f: 8d:65:e3:3b:b0:9e:e9:ea:ba:69:f2:d0:0f:d4:7c:6f:5b:3f: 71:30:d4:c0:be:e8:98:13:68:fc:0a:e5:f5:21:c0:d0:fc:3b: db:bb:4f:cd:c6:ca:e4:ff:09:ab:5c:95:68:94:ce:05:2e:ec: 7a:4b:4e:d0:27:25:26:22:64:bb:03:a6:6d:60:24:2d:be:1b: f6:da:29:63:70:02:dd:bb:a7:b8:6f:1d:57:4e:5d:27:ee:4a: c8:ca:f2:8b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUxMTE0MjI0NDI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTRiOS05MGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzg9PVAQz23xfhU6JawK4KiF+34K14IUgMgIco0xKCkkFEDIxAhKAzbwo8l9K OtVUburzPQJUo7dhST5FVCkSabizFayOixaGglwJObj8rEkBdQ9cnZTYtq96bFvW DItn6+RsAwTtrT26fK+7VZy5aU4KzZB5YiSA+tyrgpnfCmjb/XBA495quz7CKFIr CyYLV71+WaMhubLVaCu5kquDwZS/K+DInWdf0Y8BMw1DWPz9/QKfU8yC+Pa9lknL AzB68La324vbmJG4OV71EFYcLFlmhacpjevtfzWuD+R5PbPOGraK0S6xUqHeqJhZ pDomEnam5lsfkwP8SiCM6sjXkwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJW5YF4j 40jzbs0yhjrtvXzZCevnMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E4RUEvRDhDQTEzQzI0MDQ5MTFFQzlCNkVGRTdCQzRGOUFFMDIvMjA3Mzg4RjJE NDVFMTFFRThEMjk3OTNFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6/EMA8EAgACMAkDBwAgAQ33/IAwDQYJKoZIhvcNAQELBQADggEB AGjaBwt55VRktyLzvb/57RERX7JwYOppmqTjiQ3gQG/5nG/OMfUbokXvqB98Ixu6 Z6LPPNisEKOpK8YBWdh6hdhtgJmHtRGaqTZdxew6yDQIrHpq+LrFWdm73zKOHBHC vTRJIYlr78A8NJPWxzuE7veyj82lv0Lum2ZD22u8/D13wjevxCjlz9rEocMAPPQl PoGNr9a09T/uQMqyQOtWQbOQX41l4zuwnunqumny0A/UfG9bP3Ew1MC+6JgTaPwK 5fUhwND8O9u7T83GyuT/CatclWiUzgUu7HpLTtAnJSYiZLsDpm1gJC2+G/baKWNw At27p7hvHVdOXSfuSsjK8os= -----END CERTIFICATE-----Generated at Sat Mar 7 15:42:33 2026 by rpki-client