$ rpki-client -vvf rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/8A145232FCFC11F0A8CB3974376F56BC.roa File: 8A145232FCFC11F0A8CB3974376F56BC.roa (raw, json) Hash identifier: YqmEyZS6T8ZP+ZWqHEOmTSVDfEXkhd0Jyf1hmgfzLAY= Subject key identifier: 11:54:88:AC:4D:96:32:1E:33:5C:47:E3:5F:22:29:C0:C1:A5:D8:E0 Certificate issuer: /CN=A91E427F/serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Certificate serial: 07 Authority key identifier: 95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/8A145232FCFC11F0A8CB3974376F56BC.roa Signing time: Thu 29 Jan 2026 10:28:48 +0000 ROA not before: Thu 29 Jan 2026 10:28:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38868 IP address blocks: 103.133.192.0/24 maxlen: 24 103.133.193.0/24 maxlen: 24 103.133.194.0/24 maxlen: 24 103.133.195.0/24 maxlen: 24 119.40.112.0/20 maxlen: 20 119.40.112.0/22 maxlen: 22 119.40.116.0/22 maxlen: 22 119.40.120.0/22 maxlen: 22 119.40.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 07:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E427F, serialNumber=9560BCA9AB6C68BD909F304C5B22BA63639CF01C Validity Not Before: Jan 29 10:28:48 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=697b3660-29cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:2b:97:0b:e2:15:8d:da:17:58:fe:23:5b: 5d:e3:ff:2d:67:33:27:45:a9:05:9b:da:ab:62:e8: a5:90:1c:ab:90:fa:e0:4f:d5:d6:ee:27:a3:0b:3a: 1e:cd:4b:b8:bf:58:4b:ae:c8:92:b9:a1:8e:9e:a5: 6c:92:b4:67:42:0b:e4:5b:14:6c:e6:31:ab:9d:27: 0f:93:81:52:67:ff:82:23:74:47:37:56:d8:15:6d: 11:a3:05:d9:7e:fc:c7:81:a9:a7:44:ac:2e:df:56: 97:95:9a:09:64:0e:29:80:d4:dd:81:f1:0a:ee:37: 6d:77:93:a0:b7:4d:52:c8:96:09:a6:f2:f8:c2:41: 94:b2:16:b5:f2:f7:68:4b:da:5f:de:38:8a:fb:1d: 44:50:5f:41:73:76:57:1e:bc:86:a6:51:03:75:5d: d9:e6:ed:a9:cf:5b:c3:68:d8:b2:1f:88:0e:03:06: fc:c9:78:b1:17:ad:d4:50:e4:15:13:e5:a9:0d:77: b6:89:09:4a:62:e0:83:9e:7e:61:37:85:2f:28:01: 23:8f:b4:79:ad:87:77:b8:ef:17:54:6a:63:f5:65: 97:ae:a4:74:54:70:59:ba:44:64:00:8c:41:34:4e: c0:01:fd:56:11:00:7a:d8:82:e5:93:c0:59:a0:0f: db:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:54:88:AC:4D:96:32:1E:33:5C:47:E3:5F:22:29:C0:C1:A5:D8:E0 X509v3 Authority Key Identifier: keyid:95:60:BC:A9:AB:6C:68:BD:90:9F:30:4C:5B:22:BA:63:63:9C:F0:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWC8qatsaL2QnzBMWyK6Y2Oc8Bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E427F/3BBDACE2FC0611F0AA1BCE05746F56BC/8A145232FCFC11F0A8CB3974376F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.192.0/22 119.40.112.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:4b:b3:aa:ae:c4:ec:ff:47:c8:8b:80:b6:84:31:a6:bb:c4: 03:ae:cf:1c:a8:b6:33:dd:69:4c:a4:eb:2a:47:5c:11:53:a5: 11:53:30:51:b9:d4:f1:cc:a7:8f:6a:72:27:d8:44:5b:9f:ed: 3a:c9:80:a1:52:ac:ff:51:2d:48:a1:47:1f:22:54:d5:64:03: d2:fb:f9:91:7f:6a:69:2d:02:33:40:45:87:7a:38:30:5c:62: b5:da:e3:44:4c:74:af:61:3f:24:35:eb:0d:05:44:00:42:eb: ff:d5:12:46:27:bd:8f:02:e4:c9:ad:84:55:10:65:6a:28:7d: 4c:25:2a:97:ce:45:21:2f:61:0c:1c:56:e3:08:8c:05:4a:44: 32:9e:cd:08:d0:3d:98:c1:26:9f:1f:40:98:95:a8:13:37:ce: a6:81:66:7f:5b:44:ed:7f:7b:8c:b4:ee:ad:0b:e1:18:6b:94: 61:53:43:98:8b:55:01:af:96:35:ec:02:d8:d3:bc:65:af:a7: a6:6d:fd:cf:27:29:4a:57:34:09:b5:00:fa:32:2b:a3:db:22: f5:7a:fe:24:4f:12:d6:89:56:24:f6:37:17:6d:05:b1:0a:9b: 84:19:e1:4a:e0:b0:fa:05:70:68:83:d8:93:ff:b5:49:5b:0c: b6:a9:7d:f3 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDDAhBOTFF NDI3RjExMC8GA1UEBRMoOTU2MEJDQTlBQjZDNjhCRDkwOUYzMDRDNUIyMkJBNjM2 MzlDRjAxQzAeFw0yNjAxMjkxMDI4NDhaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMMDTY5N2IzNjYwLTI5Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOTCuXC+IVjdoXWP4jW13j/y1nMydFqQWb2qti6KWQHKuQ+uBP1dbuJ6MLOh7N S7i/WEuuyJK5oY6epWyStGdCC+RbFGzmMaudJw+TgVJn/4IjdEc3VtgVbRGjBdl+ /MeBqadErC7fVpeVmglkDimA1N2B8QruN213k6C3TVLIlgmm8vjCQZSyFrXy92hL 2l/eOIr7HURQX0FzdlcevIamUQN1Xdnm7anPW8No2LIfiA4DBvzJeLEXrdRQ5BUT 5akNd7aJCUpi4IOefmE3hS8oASOPtHmth3e47xdUamP1ZZeupHRUcFm6RGQAjEE0 TsAB/VYRAHrYguWTwFmgD9snAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUEVSIrE2W Mh4zXEfjXyIpwMGl2OAwHwYDVR0jBBgwFoAUlWC8qatsaL2QnzBMWyK6Y2Oc8Bww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0MjdGLzNCQkRBQ0UyRkMw NjExRjBBQTFCQ0UwNTc0NkY1NkJDL2xXQzhxYXRzYUwyUW56Qk1XeUs2WTJPYzhC dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFdDOHFhdHNhTDJRbnpCTVd5SzZZMk9jOEJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDI3Ri8zQkJEQUNFMkZDMDYxMUYwQUExQkNFMDU3NDZGNTZCQy84QTE0NTIzMkZD RkMxMUYwQThDQjM5NzQzNzZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmeFwAMEBHcocDANBgkqhkiG9w0BAQsFAAOCAQEALUuzqq7E 7P9HyIuAtoQxprvEA67PHKi2M91pTKTrKkdcEVOlEVMwUbnU8cynj2pyJ9hEW5/t OsmAoVKs/1EtSKFHHyJU1WQD0vv5kX9qaS0CM0BFh3o4MFxitdrjREx0r2E/JDXr DQVEAELr/9USRie9jwLkya2EVRBlaih9TCUql85FIS9hDBxW4wiMBUpEMp7NCNA9 mMEmnx9AmJWoEzfOpoFmf1tE7X97jLTurQvhGGuUYVNDmItVAa+WNewC2NO8Za+n pm39zycpSlc0CbUA+jIro9si9Xr+JE8S1olWJPY3F20FsQqbhBnhSuCw+gVwaIPY k/+1SVsMtql98w== -----END CERTIFICATE-----Generated at Thu Feb 19 16:37:41 2026 by rpki-client