$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa File: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (raw, json) Hash identifier: 9uRomVH+5dYw+GPoxJgQBv7UYBRR7f6CtZR/ou6pQwk= Subject key identifier: 6C:CD:7D:4C:59:50:3B:B7:AE:E5:DE:35:5F:21:BC:99:2A:B9:6A:51 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0699 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa Signing time: Mon 16 Feb 2026 22:19:14 +0000 ROA not before: Mon 16 Feb 2026 22:19:14 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 139898 IP address blocks: 43.245.56.0/22 maxlen: 24 103.25.140.0/22 maxlen: 24 103.116.88.0/23 maxlen: 24 103.146.200.0/23 maxlen: 24 125.254.50.0/23 maxlen: 24 2405:9f40::/32 maxlen: 40 2405:9f40::/41 maxlen: 48 2405:9f40:80::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 21:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Feb 16 22:19:14 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=699397e1-5422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e5:11:06:c9:38:58:7b:f5:f5:7d:dc:d1:a7: 20:e2:87:2c:40:ef:85:99:d9:aa:bb:20:97:9d:c6: b8:98:6e:d8:5c:d0:82:05:e8:d2:28:b5:b2:13:9a: a3:2e:61:fe:f7:1c:f4:74:38:cd:fb:ac:b0:c7:df: a8:8d:6d:e8:6a:47:e6:2f:6c:f7:c7:e4:a0:23:1e: 17:17:c2:77:24:87:ee:4f:13:15:b1:a2:6c:72:e5: 4e:af:d9:ea:b0:87:ca:d2:a1:14:de:06:99:d5:2a: a3:9d:5a:73:88:28:5f:64:06:54:d2:be:5d:9b:f6: df:2c:62:c8:12:66:79:9b:36:ee:40:8c:a5:da:57: c4:3b:5d:15:df:ee:21:4f:57:8a:c3:a2:a4:37:8e: 20:c9:c7:88:4c:e6:1f:2a:c7:aa:ca:ef:4d:cc:eb: fb:ab:09:ef:ce:7c:bc:b5:a1:9c:91:d9:f6:a6:1f: 7a:c9:47:0d:ce:d8:25:df:96:d2:fd:d3:3a:0b:2e: ea:16:6b:5e:73:af:e5:60:fd:f8:e5:32:16:d6:05: 2e:ba:bb:6d:22:52:f4:1b:a0:0b:96:6c:99:29:29: b4:55:9c:cd:3f:7d:e0:f4:f0:5a:05:a0:35:cb:17: 59:2f:4a:24:54:54:a1:9f:2e:04:65:52:f1:47:f3: 11:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CD:7D:4C:59:50:3B:B7:AE:E5:DE:35:5F:21:BC:99:2A:B9:6A:51 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.56.0/22 103.25.140.0/22 103.116.88.0/23 103.146.200.0/23 125.254.50.0/23 IPv6: 2405:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 24:e3:9d:77:c4:36:08:9f:d2:e3:b3:44:4b:62:71:bc:0f:1f: f3:db:b7:a9:38:a5:5a:8c:a4:c6:29:bd:cf:de:11:77:a9:28: 8c:50:f6:28:27:cf:ba:27:38:23:55:a5:87:fd:c0:b0:03:4c: 3d:72:87:ff:db:92:b1:40:52:a5:2f:c8:65:f5:ef:98:1b:24: cf:80:80:1a:de:b8:f5:97:a4:f8:24:23:20:fc:e1:b4:4b:02: 11:b9:f8:39:af:20:72:21:c4:42:2a:71:00:e1:d5:f9:9e:72: 7d:18:88:85:13:c3:84:fa:0c:2d:43:51:5a:01:6b:80:03:63: 61:14:44:eb:ce:a1:58:06:80:8b:ba:6f:ce:9c:32:d8:8a:d3: 0d:91:fd:39:73:18:b9:e6:e8:c2:05:df:c6:e6:fa:a4:82:f2: ad:82:44:fe:44:4f:2b:10:46:c1:c1:14:09:a8:ed:54:fb:f2: ae:56:7a:09:37:37:1e:d7:ce:5b:64:9c:db:4f:5e:8a:90:be: a4:d9:94:11:82:15:86:7d:6f:68:1f:c3:a4:05:c8:93:72:c8: 76:23:a5:d5:fa:2e:3f:fd:90:a6:19:95:23:d7:49:74:c6:3c: d3:4c:b4:0f:12:af:be:75:92:7d:aa:5a:e8:1d:b1:df:7a:b9: f8:84:1b:e7 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjYwMjE2MjIxOTE0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTkzOTdlMS01NDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OURBsk4WHv19X3c0acg4ocsQO+FmdmquyCXnca4mG7YXNCCBejSKLWyE5qj LmH+9xz0dDjN+6ywx9+ojW3oakfmL2z3x+SgIx4XF8J3JIfuTxMVsaJscuVOr9nq sIfK0qEU3gaZ1SqjnVpziChfZAZU0r5dm/bfLGLIEmZ5mzbuQIyl2lfEO10V3+4h T1eKw6KkN44gyceITOYfKseqyu9NzOv7qwnvzny8taGckdn2ph96yUcNztgl35bS /dM6Cy7qFmtec6/lYP345TIW1gUuurttIlL0G6ALlmyZKSm0VZzNP33g9PBaBaA1 yxdZL0okVFShny4EZVLxR/MRuwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFGzNfUxZ UDu3ruXeNV8hvJkquWpRMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBNDAvOEU5NjRCQ0VBRjc5MTFFQjg0MjE3QTU4QzRGOUFFMDIvOTZGMDkzRDRC RUEwMTFFQjhDQUQ5NjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAIr9TgDBAJnGYwDBAFndFgDBAFnksgDBAF9/jIwDQQCAAIw BwMFACQFn0AwDQYJKoZIhvcNAQELBQADggEBACTjnXfENgif0uOzREticbwPH/Pb t6k4pVqMpMYpvc/eEXepKIxQ9ignz7onOCNVpYf9wLADTD1yh//bkrFAUqUvyGX1 75gbJM+AgBreuPWXpPgkIyD84bRLAhG5+DmvIHIhxEIqcQDh1fmecn0YiIUTw4T6 DC1DUVoBa4ADY2EUROvOoVgGgIu6b86cMtiK0w2R/TlzGLnm6MIF38bm+qSC8q2C RP5ETysQRsHBFAmo7VT78q5Wegk3Nx7XzltknNtPXoqQvqTZlBGCFYZ9b2gfw6QF yJNyyHYjpdX6Lj/9kKYZlSPXSXTGPNNMtA8Sr751kn2qWugdsd96ufiEG+c= -----END CERTIFICATE-----Generated at Fri Feb 20 03:56:08 2026 by rpki-client