$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/70F65056CDB911F0BDBD9948C4F9AE02.roa File: 70F65056CDB911F0BDBD9948C4F9AE02.roa (raw, json) Hash identifier: CyMSzXkj1o9GyJUXEuedzA/o5HAcXdmRkRalhaJUrLo= Subject key identifier: 3B:26:33:F2:33:B1:74:BD:FC:58:1E:B9:4A:0C:A1:7A:37:84:AB:51 Certificate issuer: /CN=A91ED17F/serialNumber=17F4FB128756EBB0BAC59D4E0F4B7E087279760D Certificate serial: 0869 Authority key identifier: 17:F4:FB:12:87:56:EB:B0:BA:C5:9D:4E:0F:4B:7E:08:72:79:76:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/70F65056CDB911F0BDBD9948C4F9AE02.roa Signing time: Mon 16 Feb 2026 20:17:38 +0000 ROA not before: Mon 16 Feb 2026 20:17:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58800 IP address blocks: 103.245.108.0/22 maxlen: 22 103.245.108.0/24 maxlen: 24 103.245.109.0/24 maxlen: 24 103.245.110.0/24 maxlen: 24 103.245.111.0/24 maxlen: 24 150.107.52.0/24 maxlen: 24 150.107.53.0/24 maxlen: 24 150.107.54.0/24 maxlen: 24 2406:b00::/32 maxlen: 32 2406:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.crl rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED17F, serialNumber=17F4FB128756EBB0BAC59D4E0F4B7E087279760D Validity Not Before: Feb 16 20:17:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69937b62-ac69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1a:70:12:9d:13:aa:04:47:51:81:5a:1b:79: 9e:bf:f6:d1:46:35:c5:e3:49:c6:54:95:7e:ea:a1: a5:69:94:6f:ce:57:e1:03:a5:4c:60:61:79:b0:19: d4:37:a4:7c:cd:13:13:30:f3:b6:c0:1f:88:ee:4d: a4:3e:9c:76:21:35:5a:e7:fe:b2:be:b3:ec:58:36: a2:e0:40:ae:ef:1f:e4:21:4f:90:a9:cd:c5:da:26: 4e:b9:88:8b:9d:91:b9:c5:4b:46:38:60:7c:44:e7: 49:86:06:6b:14:39:62:70:93:e1:67:97:c3:8c:59: 23:2b:1d:d4:3d:6e:ac:d6:6c:95:9a:0a:c3:4e:31: d1:3b:53:fc:dd:27:0a:cc:33:a9:42:58:f9:e5:81: 1a:4a:a4:db:04:67:a3:34:a2:83:6e:c0:ad:4a:a9: 99:e6:d5:26:21:90:cd:5a:10:ec:df:ec:f4:ff:b8: 6e:a9:f0:9e:4c:07:2e:fd:ef:34:39:82:7a:81:fb: 26:f7:19:20:6f:0b:38:8e:5b:a3:2c:c4:ba:dc:15: 65:13:ff:5a:c5:31:62:65:6d:35:b2:a2:e7:04:26: 27:50:1d:07:3c:31:95:40:32:97:8c:79:a1:74:bb: a9:6e:2e:6c:d6:ee:82:32:76:87:b8:aa:6e:01:41: 02:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:26:33:F2:33:B1:74:BD:FC:58:1E:B9:4A:0C:A1:7A:37:84:AB:51 X509v3 Authority Key Identifier: keyid:17:F4:FB:12:87:56:EB:B0:BA:C5:9D:4E:0F:4B:7E:08:72:79:76:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/F_T7EodW67C6xZ1OD0t-CHJ5dg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_T7EodW67C6xZ1OD0t-CHJ5dg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED17F/A56D5F40FB4711EABEF47D3EC4F9AE02/70F65056CDB911F0BDBD9948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.108.0/22 150.107.52.0-150.107.54.255 IPv6: 2406:b00::/32 Signature Algorithm: sha256WithRSAEncryption 48:99:c8:85:f7:7c:e3:dd:06:8a:da:f3:8f:9f:b1:b8:91:d1: 2f:ff:b6:a3:6a:19:41:c7:3d:0e:ba:bf:16:62:dd:2e:f7:c6: e3:65:9a:83:3e:af:4f:bc:0a:61:a7:c9:d3:76:28:d2:7d:eb: 0e:09:29:a6:e7:8e:82:dc:db:59:36:da:53:1c:63:0d:dd:63: 4f:2e:37:f1:f5:4b:9d:84:0c:32:a7:61:8f:a2:23:61:6b:01: d9:01:98:fc:06:00:c1:02:21:8a:ad:1b:ea:c8:a8:79:a1:1a: db:22:a1:24:9f:2e:6d:6b:a4:d0:11:57:6b:90:83:36:00:95: 0d:4d:f3:ea:d6:08:f8:ae:36:7f:54:c1:77:cf:0e:3b:90:63: 95:ea:2a:33:16:b5:97:ab:85:97:3a:e3:37:8c:4d:12:21:42: 4b:3e:26:95:01:34:a9:8b:01:34:20:ca:b0:46:73:92:25:fd: bb:d4:6a:60:81:24:9e:fa:b4:83:8e:f1:32:ea:ff:c7:5f:67: 29:49:73:1f:90:0f:1f:22:d8:36:69:a3:22:fa:d3:65:8c:b9: a7:6b:97:3d:4c:ea:1d:40:40:cf:de:ed:80:d7:d2:a5:59:c5: 93:2e:61:fc:2c:a4:c2:09:ae:61:7b:c7:14:0c:89:6b:ce:3f: d0:bc:f5:00 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RUQxN0YxMTAvBgNVBAUTKDE3RjRGQjEyODc1NkVCQjBCQUM1OUQ0RTBGNEI3RTA4 NzI3OTc2MEQwHhcNMjYwMjE2MjAxNzM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTkzN2I2Mi1hYzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBpwEp0TqgRHUYFaG3mev/bRRjXF40nGVJV+6qGlaZRvzlfhA6VMYGF5sBnU N6R8zRMTMPO2wB+I7k2kPpx2ITVa5/6yvrPsWDai4ECu7x/kIU+Qqc3F2iZOuYiL nZG5xUtGOGB8ROdJhgZrFDlicJPhZ5fDjFkjKx3UPW6s1myVmgrDTjHRO1P83ScK zDOpQlj55YEaSqTbBGejNKKDbsCtSqmZ5tUmIZDNWhDs3+z0/7huqfCeTAcu/e80 OYJ6gfsm9xkgbws4jlujLMS63BVlE/9axTFiZW01sqLnBCYnUB0HPDGVQDKXjHmh dLupbi5s1u6CMnaHuKpuAUECIQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFDsmM/Iz sXS9/FgeuUoMoXo3hKtRMB8GA1UdIwQYMBaAFBf0+xKHVuuwusWdTg9LfghyeXYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDE3Ri9BNTZENUY0MEZC NDcxMUVBQkVGNDdEM0VDNEY5QUUwMi9GX1Q3RW9kVzY3QzZ4WjFPRDB0LUNISjVk ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfVDdFb2RXNjdDNnhaMU9EMHQtQ0hKNWRnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQxN0YvQTU2RDVGNDBGQjQ3MTFFQUJFRjQ3RDNFQzRGOUFFMDIvNzBGNjUwNTZD REI5MTFGMEJEQkQ5OTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQDBAJn9WwwDAMEApZrNAMEAJZrNjANBAIAAjAHAwUAJAYLADAN BgkqhkiG9w0BAQsFAAOCAQEASJnIhfd8490Gitrzj5+xuJHRL/+2o2oZQcc9Drq/ FmLdLvfG42Wagz6vT7wKYafJ03Yo0n3rDgkppueOgtzbWTbaUxxjDd1jTy438fVL nYQMMqdhj6IjYWsB2QGY/AYAwQIhiq0b6sioeaEa2yKhJJ8ubWuk0BFXa5CDNgCV DU3z6tYI+K42f1TBd88OO5BjleoqMxa1l6uFlzrjN4xNEiFCSz4mlQE0qYsBNCDK sEZzkiX9u9RqYIEknvq0g47xMur/x19nKUlzH5APHyLYNmmjIvrTZYy5p2uXPUzq HUBAz97tgNfSpVnFky5h/CykwgmuYXvHFAyJa84/0Lz1AA== -----END CERTIFICATE-----Generated at Thu Feb 19 21:25:21 2026 by rpki-client