$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa File: 5AFFB9E48C2211EDAE44DD87C4F9AE02.roa (raw, json) Hash identifier: 56OWJIaGJbU897Qsu8EsYt1ihb4Vo/hHqb3TZGrUjxU= Subject key identifier: 5C:0C:0D:69:3D:3F:E7:91:08:E9:66:67:EF:54:19:60:44:25:73:93 Certificate issuer: /CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Certificate serial: 027E Authority key identifier: 45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:52:32 +0000 ROA not before: Sun 08 Feb 2026 05:58:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.221.246.0/24 maxlen: 24 103.221.247.0/24 maxlen: 24 2001:df0:7880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8903, serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Validity Not Before: Feb 8 05:58:32 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46ed0-1c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ca:ab:6c:34:55:18:f3:cb:ee:7b:0e:3e:75: ce:b2:58:ef:49:31:7d:bf:1c:f9:b1:6b:70:e9:d2: 05:e4:19:ba:f7:7f:03:49:53:e4:20:2c:e5:6f:28: b2:11:15:02:f4:c4:d1:d1:a3:3e:38:00:95:93:76: fa:5d:00:bc:19:1d:ec:32:2b:e2:84:dd:f9:27:3b: 13:1a:33:e7:03:3e:3b:46:58:39:9a:d3:f6:ce:c9: b0:f5:e8:ce:66:33:aa:6c:ab:0e:d4:31:88:d0:4e: a0:be:c1:dc:9c:48:82:71:d6:4e:c9:79:11:b1:71: d1:43:82:04:3b:b7:92:5d:93:00:6f:4a:6e:90:6f: 4b:7c:a8:87:44:3b:7e:8c:5d:a2:84:34:67:b9:66: dd:89:34:e7:d0:66:cf:47:49:c2:a9:6a:0c:20:20: 9a:d1:16:51:47:ad:47:45:2f:32:75:6a:cc:8b:7d: bc:87:97:37:61:3b:e7:dc:a6:8d:2a:b0:93:4d:22: ef:ce:72:ab:78:a5:e1:a8:56:7d:fb:cd:f8:36:ed: 98:8a:dc:10:82:f8:b8:ce:c4:19:e9:d3:8a:44:ba: 68:12:ee:ce:da:26:e4:31:72:ed:5d:1c:b7:af:69: 5e:46:20:de:99:63:7f:7e:13:90:80:da:7f:7a:58: 89:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0C:0D:69:3D:3F:E7:91:08:E9:66:67:EF:54:19:60:44:25:73:93 X509v3 Authority Key Identifier: keyid:45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.221.246.0/23 IPv6: 2001:df0:7880::/48 Signature Algorithm: sha256WithRSAEncryption 2b:83:65:94:8f:d1:53:55:49:8d:81:08:56:3b:b7:e8:6e:cf: f2:47:17:3d:a9:46:85:d7:19:97:21:ca:2b:ca:03:3e:51:f0: ea:67:2d:10:eb:f5:86:4d:1d:3e:24:73:61:ad:32:aa:38:4d: 3c:da:13:07:e6:6e:ba:af:75:44:9f:0a:09:d5:07:e5:5f:48: 3b:0b:1b:f6:e0:34:d1:4a:d2:dc:35:aa:0a:41:03:0f:07:c6: 45:38:94:4f:c0:7b:0d:0e:f9:c4:5e:9c:b9:c5:94:66:bc:43: 30:13:de:0b:f1:82:7b:d9:97:15:df:76:8f:f8:61:1e:cb:1c: 69:70:36:97:bb:0e:29:22:a4:c3:93:a6:53:4e:0c:f7:9d:e9: 1b:a8:83:81:25:e1:15:0b:17:54:b7:57:30:35:df:09:e8:2b: 82:3b:82:aa:b1:7d:98:09:b7:19:97:30:de:d8:85:03:b5:d0: b9:6a:3f:77:32:5b:e7:fa:da:bc:81:5d:5c:c8:63:91:11:ad: 09:70:b7:ac:56:03:60:82:a7:d1:82:13:e6:c3:09:f5:50:dc: 01:37:9e:38:e1:c4:c0:12:66:db:0d:19:c6:96:45:be:b9:e9: dd:b8:22:26:fb:6c:e5:ca:06:94:0b:d2:93:2c:24:72:a7:c1: df:03:fa:08 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MDMxMTAvBgNVBAUTKDQ1NkFGNUU1NjY3REUyNDhBOUNGMENFQjkwQzZEMUIz RDNFRDZGQTgwHhcNMjYwMjA4MDU1ODMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmVkMC0xYzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcqrbDRVGPPL7nsOPnXOsljvSTF9vxz5sWtw6dIF5Bm6938DSVPkICzlbyiy ERUC9MTR0aM+OACVk3b6XQC8GR3sMivihN35JzsTGjPnAz47Rlg5mtP2zsmw9ejO ZjOqbKsO1DGI0E6gvsHcnEiCcdZOyXkRsXHRQ4IEO7eSXZMAb0pukG9LfKiHRDt+ jF2ihDRnuWbdiTTn0GbPR0nCqWoMICCa0RZRR61HRS8ydWrMi328h5c3YTvn3KaN KrCTTSLvznKreKXhqFZ9+834Nu2YitwQgvi4zsQZ6dOKRLpoEu7O2ibkMXLtXRy3 r2leRiDemWN/fhOQgNp/eliJOwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFwMDWk9 P+eRCOlmZ+9UGWBEJXOTMB8GA1UdIwQYMBaAFEVq9eVmfeJIqc8M65DG0bPT7W+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkwMy9EODk4MjY1QThD MUYxMUVEQUU0NDFEODdDNEY5QUUwMi9SV3IxNVdaOTRraXB6d3pya01iUnM5UHRi NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXcjE1V1o5NGtpcHp3enJrTWJSczlQdGI2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MDMvRDg5ODI2NUE4QzFGMTFFREFFNDQxRDg3QzRGOUFFMDIvNUFGRkI5RTQ4 QzIyMTFFREFFNDRERDg3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ932MA8EAgACMAkDBwAgAQ3weIAwDQYJKoZIhvcNAQELBQADggEB ACuDZZSP0VNVSY2BCFY7t+huz/JHFz2pRoXXGZchyivKAz5R8OpnLRDr9YZNHT4k c2GtMqo4TTzaEwfmbrqvdUSfCgnVB+VfSDsLG/bgNNFK0tw1qgpBAw8HxkU4lE/A ew0O+cRenLnFlGa8QzAT3gvxgnvZlxXfdo/4YR7LHGlwNpe7DikipMOTplNODPed 6Ruog4El4RULF1S3VzA13wnoK4I7gqqxfZgJtxmXMN7YhQO10LlqP3cyW+f62ryB XVzIY5ERrQlwt6xWA2CCp9GCE+bDCfVQ3AE3njjhxMASZtsNGcaWRb656d24Iib7 bOXKBpQL0pMsJHKnwd8D+gg= -----END CERTIFICATE-----Generated at Fri Mar 13 22:46:01 2026 by rpki-client