$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa File: 204E25DADE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: xijaZu6pAwwNLd6WONxWQ6mZqU3GdiHzZC1uaLYBENo= Subject key identifier: 6A:C7:72:4F:63:97:8B:29:94:6E:BF:FE:91:0B:44:90:8B:59:8E:73 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0504 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:35 +0000 ROA not before: Sun 08 Feb 2026 02:08:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 205960 IP address blocks: 103.254.72.0/22 maxlen: 22 103.254.73.0/24 maxlen: 24 103.254.74.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 192.197.113.0/24 maxlen: 24 199.212.57.0/24 maxlen: 24 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Feb 8 02:08:39 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48642-712a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:81:6e:b9:94:e0:52:0a:ad:1e:27:d7:88:a6: 3e:08:2d:d5:47:7c:d8:9b:bf:6a:1a:e1:4c:dd:d6: 55:42:b1:3e:e6:cd:db:f4:20:79:fd:e8:42:34:1f: cf:63:78:92:5f:bd:f0:9e:67:6e:80:08:7a:4b:50: 80:86:7d:11:69:d4:e7:35:9e:eb:c1:29:d6:5c:2b: 5b:c9:9a:c8:cd:38:44:00:fb:86:3c:7c:60:0b:32: 45:e2:03:df:9e:29:0b:4e:a7:6e:e7:aa:09:f7:fa: 2d:b5:f9:df:aa:b3:b7:f6:8d:96:81:03:ff:58:b6: 25:42:6b:cf:56:a0:45:84:2f:95:ca:c3:4f:65:2d: a3:95:b8:a5:28:45:02:ee:19:5f:df:ce:1b:5e:2f: 04:65:b0:ad:da:6a:01:66:cf:5a:e8:7e:b8:8f:54: e5:89:0e:b1:a9:ba:66:fa:c5:b5:88:72:90:a8:6b: e9:3d:5f:f2:71:63:53:92:6f:8d:2f:f1:f1:b6:f7: 7c:c2:81:59:92:6d:17:5f:f1:d4:2b:1c:92:ba:fc: a6:65:4a:e9:a9:7f:0f:e5:71:a3:d1:b9:d6:4e:b6: e3:80:63:07:f9:5c:6d:d0:e9:d0:0f:72:16:8e:b8: 41:9f:55:41:1b:37:71:5d:7c:0a:7f:8d:6d:cd:c7: 88:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C7:72:4F:63:97:8B:29:94:6E:BF:FE:91:0B:44:90:8B:59:8E:73 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.72.0/22 192.51.188.0/24 192.197.113.0/24 199.212.57.0/24 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption 64:a1:e7:5b:c3:cc:2b:af:2d:d5:15:15:c2:39:60:93:78:27: f2:9b:2d:c0:56:cc:86:ca:15:6f:64:60:4b:90:c9:40:0a:5f: 9b:33:96:bf:b3:57:1f:5e:83:da:f4:b1:38:87:83:fe:cc:c6: ec:c6:97:bc:ce:ba:a5:35:78:2d:59:98:ae:f2:76:5c:55:28: 0b:8e:5e:b6:c7:ac:a4:6d:0e:79:8d:98:75:42:48:c0:c4:9a: 2a:49:78:93:24:cb:7c:93:b8:d0:40:d2:48:7b:cf:16:38:32: ee:0e:71:fc:ca:e2:ef:91:e9:fa:2e:1b:e8:57:b0:ce:3e:9e: 84:27:3d:69:97:de:ca:3d:b6:b8:0c:cf:ea:64:db:d2:47:12: 1c:1f:30:ac:b2:dc:71:7c:ba:98:fd:38:fb:6a:67:9b:0d:d9: 9b:b5:cf:2f:52:9f:ba:6b:75:4e:9e:a3:ed:c1:f6:c8:33:7f: f4:96:f3:36:c4:5d:fa:98:57:da:b8:e5:85:9f:6a:36:c0:d1: b6:e5:19:95:5f:48:f7:b9:06:3d:42:22:2d:fb:d5:08:7d:3d: 6e:9e:76:01:64:1b:eb:cd:77:79:1a:ea:84:d7:66:ae:d5:09: 48:7d:9a:11:0e:50:cd:c8:7e:ba:c0:43:b0:b0:96:50:66:13: 60:ba:ad:2b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjYwMjA4MDIwODM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODY0Mi03MTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIFuuZTgUgqtHifXiKY+CC3VR3zYm79qGuFM3dZVQrE+5s3b9CB5/ehCNB/P Y3iSX73wnmdugAh6S1CAhn0RadTnNZ7rwSnWXCtbyZrIzThEAPuGPHxgCzJF4gPf nikLTqdu56oJ9/ottfnfqrO39o2WgQP/WLYlQmvPVqBFhC+VysNPZS2jlbilKEUC 7hlf384bXi8EZbCt2moBZs9a6H64j1TliQ6xqbpm+sW1iHKQqGvpPV/ycWNTkm+N L/Hxtvd8woFZkm0XX/HUKxySuvymZUrpqX8P5XGj0bnWTrbjgGMH+Vxt0OnQD3IW jrhBn1VBGzdxXXwKf41tzceIxwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFGrHck9j l4splG6//pELRJCLWY5zMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMjA0RTI1REFE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZ/5IAwQAwDO8AwQAwMVxAwQAx9Q5AwQAzDS/MA0GCSqGSIb3DQEB CwUAA4IBAQBkoedbw8wrry3VFRXCOWCTeCfymy3AVsyGyhVvZGBLkMlACl+bM5a/ s1cfXoPa9LE4h4P+zMbsxpe8zrqlNXgtWZiu8nZcVSgLjl62x6ykbQ55jZh1QkjA xJoqSXiTJMt8k7jQQNJIe88WODLuDnH8yuLvken6LhvoV7DOPp6EJz1pl97KPba4 DM/qZNvSRxIcHzCsstxxfLqY/Tj7amebDdmbtc8vUp+6a3VOnqPtwfbIM3/0lvM2 xF36mFfauOWFn2o2wNG25RmVX0j3uQY9QiIt+9UIfT1unnYBZBvrzXd5GuqE12au 1QlIfZoRDlDNyH66wEOwsJZQZhNguq0r -----END CERTIFICATE-----Generated at Sat Mar 7 20:06:47 2026 by rpki-client