$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa File: 1D2E7286A6B111E997D5EA57C4F9AE02.roa (raw, json) Hash identifier: aQnXnhdg8oX1nnoz3IdT+IsXlHOgRbi5z4h0+f1hayI= Subject key identifier: AD:6F:48:99:72:B5:A8:9E:9A:FD:09:F7:F6:65:9A:A9:96:A7:A5:A1 Certificate issuer: /CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Certificate serial: 0EEC Authority key identifier: F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa Signing time: Fri 02 Jan 2026 18:14:50 +0000 ROA not before: Fri 02 Jan 2026 18:14:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 23881 IP address blocks: 45.121.192.0/24 maxlen: 24 45.121.193.0/24 maxlen: 24 45.121.194.0/24 maxlen: 24 45.121.195.0/24 maxlen: 24 103.15.180.0/24 maxlen: 24 103.15.181.0/24 maxlen: 24 103.15.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 17:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3820 (0xeec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Validity Not Before: Jan 2 18:14:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69580b1a-c1ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:36:3b:51:7b:67:0d:68:6e:10:16:ce:f2: f6:4e:0e:e8:9e:d1:b0:a7:e4:4f:a2:3b:f4:11:80: 72:a3:64:0d:a3:a2:2d:e7:ee:64:72:58:17:53:31: cc:4d:d1:3a:5f:93:04:de:f4:8b:d9:01:09:51:b6: e8:7a:57:ac:3c:70:bc:a2:3e:de:e3:d0:7b:0d:67: 40:00:8e:2b:c6:61:e5:9d:fc:13:1b:16:cf:46:c0: 39:38:44:33:a6:96:e6:26:f6:38:54:91:bb:88:83: 06:61:e8:c9:01:c5:0f:f9:c9:d8:34:43:13:1e:94: 97:16:29:b2:c4:83:a3:4d:cd:01:e7:b8:4d:d2:86: 71:d2:61:55:c2:7b:e0:35:73:a3:ca:2e:d7:d1:17: b7:45:c3:b7:e9:64:0a:9b:91:bb:56:80:5f:59:af: 49:7e:6b:13:20:6c:39:81:a4:20:08:c0:b7:46:96: e0:79:ec:e2:c7:f4:73:7a:a9:df:6c:a5:b1:6a:4b: 54:f8:f5:69:9c:c5:eb:3c:78:2b:61:71:03:6d:a9: de:33:cb:4c:ba:b7:a8:4e:80:fd:3d:46:9a:7c:ac: b1:92:64:04:e3:47:13:1e:5b:d0:09:3e:49:e9:48: ab:e3:81:9a:6c:5b:b8:20:29:ce:e6:d2:4a:77:1f: b1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6F:48:99:72:B5:A8:9E:9A:FD:09:F7:F6:65:9A:A9:96:A7:A5:A1 X509v3 Authority Key Identifier: keyid:F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.192.0/22 103.15.180.0/23 103.15.183.0/24 Signature Algorithm: sha256WithRSAEncryption 86:e8:e4:7d:e2:13:db:b7:1e:2b:fe:2c:89:3e:d9:3c:81:11: fa:0b:c3:0e:95:3b:71:1f:3d:28:a6:70:c6:78:57:41:a9:84: 67:eb:44:09:3c:be:1b:b6:d4:28:ff:c4:01:2e:c5:98:e4:e1: bd:00:cb:15:ce:46:32:6b:f2:a6:73:6d:66:23:ae:55:b1:68: b0:78:74:5d:e2:04:0d:09:85:09:9e:e9:b9:69:5f:9a:13:f8: ff:09:bd:07:9f:37:13:f5:08:e5:20:41:7c:e4:71:b8:80:7f: 5d:16:7b:83:f8:fe:19:ef:ed:84:06:34:00:c1:ad:bc:8b:5a: 1e:16:2f:83:7f:da:a9:2f:18:4d:d1:06:8e:e2:94:ed:b9:fe: ad:a4:f0:f4:e4:19:4d:26:df:98:84:05:3d:83:85:be:13:ec: d5:c8:bd:73:b0:af:d4:d6:ad:24:08:fd:73:8b:d4:55:33:c9: 42:07:6a:d8:cf:ae:40:a6:ea:13:a1:d3:63:09:09:38:05:9a: 9a:5f:ef:04:cf:7a:17:8c:6f:1c:e3:f4:c8:2e:25:34:ec:c6: 9c:7b:ee:79:35:18:89:4a:a9:a9:9d:19:5b:30:68:2d:c9:0d: d5:eb:84:3c:a3:d2:93:32:c7:7b:30:79:94:45:ed:2b:ca:9d: 14:1d:ab:b9 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0VGM0UxMTAvBgNVBAUTKEY4OTZDQzRGNTNDMkE2N0IzMDQ2RTdBQjI5MDMzRDUw RjQ4MkQ0ODgwHhcNMjYwMTAyMTgxNDUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU4MGIxYS1jMWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqQ2O1F7Zw1obhAWzvL2Tg7ontGwp+RPojv0EYByo2QNo6It5+5kclgXUzHM TdE6X5ME3vSL2QEJUbboelesPHC8oj7e49B7DWdAAI4rxmHlnfwTGxbPRsA5OEQz ppbmJvY4VJG7iIMGYejJAcUP+cnYNEMTHpSXFimyxIOjTc0B57hN0oZx0mFVwnvg NXOjyi7X0Re3RcO36WQKm5G7VoBfWa9JfmsTIGw5gaQgCMC3Rpbgeezix/Rzeqnf bKWxaktU+PVpnMXrPHgrYXEDbaneM8tMureoToD9PUaafKyxkmQE40cTHlvQCT5J 6Uir44GabFu4ICnO5tJKdx+xbwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFK1vSJly taiemv0J9/ZlmqmWp6WhMB8GA1UdIwQYMBaAFPiWzE9TwqZ7MEbnqykDPVD0gtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9EMjU0QjVDNDk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi8tSmJNVDFQQ3Buc3dSdWVyS1FNOVVQU0Mx SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KYk1UMVBDcG5zd1J1ZXJLUU05VVBTQzFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvRDI1NEI1QzQ5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvMUQyRTcyODZB NkIxMTFFOTk3RDVFQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItecADBAFnD7QDBABnD7cwDQYJKoZIhvcNAQELBQADggEB AIbo5H3iE9u3Hiv+LIk+2TyBEfoLww6VO3EfPSimcMZ4V0GphGfrRAk8vhu21Cj/ xAEuxZjk4b0AyxXORjJr8qZzbWYjrlWxaLB4dF3iBA0JhQme6blpX5oT+P8JvQef NxP1COUgQXzkcbiAf10We4P4/hnv7YQGNADBrbyLWh4WL4N/2qkvGE3RBo7ilO25 /q2k8PTkGU0m35iEBT2Dhb4T7NXIvXOwr9TWrSQI/XOL1FUzyUIHatjPrkCm6hOh 02MJCTgFmppf7wTPeheMbxzj9MguJTTsxpx77nk1GIlKqamdGVswaC3JDdXrhDyj 0pMyx3sweZRF7SvKnRQdq7k= -----END CERTIFICATE-----Generated at Thu Feb 19 22:41:13 2026 by rpki-client