$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa File: A48D6CEEED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: QBJI5LdULU2e5orwS4ikcr8BUSBVB/lSyajOi0W52j4= Subject key identifier: C8:F9:E5:CC:3A:2B:EE:0E:B8:A3:CA:EE:86:1E:2C:08:87:A6:63:49 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 03BE Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:55:50 +0000 ROA not before: Wed 11 Jun 2025 02:18:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140224 IP address blocks: 103.189.255.0/24 maxlen: 24 2407:2440:1a::/48 maxlen: 48 2407:2440:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 00:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 02:18:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a588d6-91fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:b7:d4:a1:10:4f:53:6b:9f:82:b7:ae:8a: d1:46:b5:e6:b9:a6:47:63:71:5c:db:e1:0b:84:98: c0:30:1c:8b:db:b5:92:07:7f:01:84:0f:8d:47:9e: 4f:51:a1:32:23:cb:e9:fb:03:1a:7f:3a:04:c1:2a: 07:c2:0f:93:1b:6f:98:c1:b9:86:9f:70:ef:75:54: dc:3d:04:bb:78:8f:2c:b8:a2:a3:2f:75:e3:9f:b4: 98:fb:9c:27:6e:9d:fa:01:52:b5:c5:fb:ce:fd:9a: 70:d7:dc:26:4e:e9:33:d9:68:f3:82:4c:51:0f:16: 32:c7:f0:8f:f0:8b:18:9b:7d:65:68:e0:99:2d:e1: 9c:d9:05:b5:47:f3:e8:e4:82:ee:e0:85:78:63:1a: b4:0a:39:80:26:24:f3:56:30:ee:57:ef:21:30:86: a0:8a:91:00:f1:b9:32:bf:bd:0c:fa:57:36:b9:b3: 3a:5b:ae:4b:68:0d:ad:70:43:4d:59:9c:19:1b:24: 93:6b:48:5f:fd:ff:dc:f3:3e:49:6b:9b:96:e0:5a: 6a:ab:29:03:d5:c3:1b:f4:10:c3:e8:9f:97:32:17: 96:38:c0:71:ca:b9:be:75:df:e9:ae:60:42:fb:c5: 54:71:b6:78:97:95:f2:97:b5:ba:29:5f:82:42:f1: 09:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F9:E5:CC:3A:2B:EE:0E:B8:A3:CA:EE:86:1E:2C:08:87:A6:63:49 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A48D6CEEED6311EDB69EB62AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.255.0/24 IPv6: 2407:2440:1a::/48 2407:2440:29::/48 Signature Algorithm: sha256WithRSAEncryption 5f:2e:90:a7:e6:54:de:6a:ca:90:c2:e6:2e:9d:1b:a2:ae:8e: a9:b3:37:72:44:00:fe:30:7a:58:0c:4e:a7:3b:64:32:eb:cc: 84:05:dc:02:95:a1:df:af:bc:e3:ac:ea:27:6c:58:6b:2e:d5: f5:ff:99:f8:c4:65:01:76:92:cc:db:9b:3f:59:b6:d5:ab:ad: 02:17:40:7f:ef:4e:c1:9d:91:0c:8a:90:f9:f4:fa:54:79:4d: 1a:c1:18:2c:88:3f:64:47:9d:37:86:31:03:51:c1:60:7f:dd: bc:de:cd:20:df:99:18:c3:8c:d4:e9:f8:f7:07:01:24:83:dd: 3d:62:de:99:99:b8:4a:41:54:cc:40:20:7c:e8:e5:e1:05:85: 31:c0:b3:20:19:24:b9:aa:0f:84:b0:3a:65:90:86:5b:91:7d: 6a:5b:2d:5d:b0:15:16:fa:8f:56:fd:61:ab:da:48:c4:fd:0b: 9f:2c:68:2b:58:42:04:2f:15:7f:77:ea:76:ea:5c:e5:f1:61: 02:ae:7e:a2:04:c3:3d:c4:31:40:80:94:79:d2:56:5e:c2:7c: c5:0c:e5:66:a2:41:c8:f2:4f:52:11:9f:05:b2:d4:63:2b:10: 30:af:3e:bf:de:41:c6:96:00:1d:20:61:f6:41:1d:0e:0c:a7: ee:72:70:12 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwNjExMDIxODM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODhkNi05MWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusa31KEQT1Nrn4K3rorRRrXmuaZHY3Fc2+ELhJjAMByL27WSB38BhA+NR55P UaEyI8vp+wMafzoEwSoHwg+TG2+YwbmGn3DvdVTcPQS7eI8suKKjL3Xjn7SY+5wn bp36AVK1xfvO/Zpw19wmTukz2WjzgkxRDxYyx/CP8IsYm31laOCZLeGc2QW1R/Po 5ILu4IV4Yxq0CjmAJiTzVjDuV+8hMIagipEA8bkyv70M+lc2ubM6W65LaA2tcENN WZwZGySTa0hf/f/c8z5Ja5uW4FpqqykD1cMb9BDD6J+XMheWOMBxyrm+dd/prmBC +8VUcbZ4l5Xyl7W6KV+CQvEJJQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFMj55cw6 K+4OuKPK7oYeLAiHpmNJMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTQ4RDZDRUVF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAZ73/MBgEAgACMBIDBwAkByRAABoDBwAkByRAACkwDQYJKoZIhvcN AQELBQADggEBAF8ukKfmVN5qypDC5i6dG6KujqmzN3JEAP4welgMTqc7ZDLrzIQF 3AKVod+vvOOs6idsWGsu1fX/mfjEZQF2kszbmz9ZttWrrQIXQH/vTsGdkQyKkPn0 +lR5TRrBGCyIP2RHnTeGMQNRwWB/3bzezSDfmRjDjNTp+PcHASSD3T1i3pmZuEpB VMxAIHzo5eEFhTHAsyAZJLmqD4SwOmWQhluRfWpbLV2wFRb6j1b9YavaSMT9C58s aCtYQgQvFX936nbqXOXxYQKufqIEwz3EMUCAlHnSVl7CfMUM5WaiQcjyT1IRnwWy 1GMrEDCvPr/eQcaWAB0gYfZBHQ4Mp+5ycBI= -----END CERTIFICATE-----Generated at Fri Mar 13 11:15:00 2026 by rpki-client