$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/E989DE0C1E2E11EFB8D12A2BC4F9AE02.roa File: E989DE0C1E2E11EFB8D12A2BC4F9AE02.roa (raw, json) Hash identifier: JS+wQ/n/N85a7D5eKfW4py9j2KTpDdxesCwuqsoCRf4= Subject key identifier: 18:4B:A4:45:39:6E:80:D2:63:32:21:DC:B9:CA:E3:34:10:91:F6:05 Certificate issuer: /CN=A91EEAD3/serialNumber=3745FB9F7EA2C1E252D29BEFD86A6157760D88C0 Certificate serial: 013F Authority key identifier: 37:45:FB:9F:7E:A2:C1:E2:52:D2:9B:EF:D8:6A:61:57:76:0D:88:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N0X7n36iweJS0pvv2GphV3YNiMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/E989DE0C1E2E11EFB8D12A2BC4F9AE02.roa Signing time: Thu 29 Jan 2026 04:23:48 +0000 ROA not before: Thu 29 Jan 2026 04:23:48 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134456 IP address blocks: 103.160.60.0/23 maxlen: 23 103.160.60.0/24 maxlen: 24 103.160.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/N0X7n36iweJS0pvv2GphV3YNiMA.crl rsync://rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/N0X7n36iweJS0pvv2GphV3YNiMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N0X7n36iweJS0pvv2GphV3YNiMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 03:42:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEAD3, serialNumber=3745FB9F7EA2C1E252D29BEFD86A6157760D88C0 Validity Not Before: Jan 29 04:23:48 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697ae0d4-5556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2a:c7:50:87:7f:c9:f7:88:ad:44:81:f4:9d: 03:d0:7f:0b:78:4a:5e:5d:cc:c9:87:3a:c3:fd:33: 53:1e:d9:f3:3b:d2:cf:3b:83:d7:f8:6d:07:25:bb: 73:e4:9c:64:74:81:85:ce:0d:9a:d3:e5:33:a9:47: 46:61:0f:4d:d2:a6:15:a3:1f:f4:47:7b:f2:ab:85: 84:44:11:41:b1:9a:d8:5d:94:4d:17:c9:a6:d7:a4: ce:e7:da:c4:14:4f:f2:19:24:45:a7:60:40:ef:0c: a6:b1:31:7f:99:08:8e:77:2a:4c:8b:6d:d4:b8:54: bb:60:d7:ef:2e:2e:36:41:e6:1d:db:a8:5c:7f:22: 63:07:17:90:bf:2b:df:a4:f0:6f:55:ca:f6:14:41: df:9f:46:8d:1c:56:c5:99:2e:99:76:34:51:9f:60: 71:e8:ba:71:ef:51:3c:90:00:18:a1:62:43:e6:01: 53:4d:1a:ae:e6:1b:78:08:44:46:d2:db:7c:74:59: 23:01:81:3a:0d:fe:32:29:f2:98:21:b5:82:ac:29: 41:da:5c:41:e4:be:a4:17:d5:0f:b5:55:2f:0f:bf: 83:06:1b:94:b1:e2:6e:f8:58:34:1a:47:bd:cb:b5: 45:15:10:4b:5c:dc:98:e0:c3:4f:cf:e1:d1:b4:43: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4B:A4:45:39:6E:80:D2:63:32:21:DC:B9:CA:E3:34:10:91:F6:05 X509v3 Authority Key Identifier: keyid:37:45:FB:9F:7E:A2:C1:E2:52:D2:9B:EF:D8:6A:61:57:76:0D:88:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/N0X7n36iweJS0pvv2GphV3YNiMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N0X7n36iweJS0pvv2GphV3YNiMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEAD3/D6231A321E2D11EF83D95229C4F9AE02/E989DE0C1E2E11EFB8D12A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.60.0/23 Signature Algorithm: sha256WithRSAEncryption 19:a3:35:dc:6b:39:00:e5:07:75:27:cd:d4:0b:8e:9f:3c:d5: 02:15:83:e3:0c:38:c6:8c:ac:6e:63:cb:7b:35:17:8f:87:ce: 6e:1a:40:9a:27:ce:1b:76:d6:c6:a4:4b:bf:50:60:e7:18:3f: b2:4c:2a:7c:45:d8:5e:fd:d5:9b:42:c8:9b:52:9e:21:4a:8f: 48:31:be:9a:d6:d6:72:f7:92:34:f0:60:0b:b7:2e:73:74:ea: 6a:69:55:11:e7:cf:8f:46:9e:59:5e:90:54:d0:7e:01:75:b3: 74:86:cf:2c:95:45:f9:75:76:d7:28:22:59:f5:94:92:c2:90: fa:07:bd:e4:64:e9:c6:ea:9e:da:de:9f:f3:ca:8d:d3:d8:e1: 60:b3:22:8f:e3:77:a9:67:36:84:32:c6:99:8c:39:7e:85:fc: a5:6a:19:0a:8e:64:5a:6f:4c:66:54:e2:58:5d:49:0e:ff:72: 2f:61:de:88:bd:0a:c4:64:11:62:90:b4:77:bd:87:65:33:9d: 30:d4:75:c1:f4:f3:14:ca:17:e5:85:a6:7a:73:3b:f4:cc:d4: 82:94:e9:b7:a8:08:81:84:80:8f:ad:ed:72:b0:0b:ee:84:66: 98:b0:25:98:e4:31:85:62:4f:59:e8:10:19:a5:43:b7:df:04: 4e:ab:23:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RUVBRDMxMTAvBgNVBAUTKDM3NDVGQjlGN0VBMkMxRTI1MkQyOUJFRkQ4NkE2MTU3 NzYwRDg4QzAwHhcNMjYwMTI5MDQyMzQ4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhZTBkNC01NTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCrHUId/yfeIrUSB9J0D0H8LeEpeXczJhzrD/TNTHtnzO9LPO4PX+G0HJbtz 5JxkdIGFzg2a0+UzqUdGYQ9N0qYVox/0R3vyq4WERBFBsZrYXZRNF8mm16TO59rE FE/yGSRFp2BA7wymsTF/mQiOdypMi23UuFS7YNfvLi42QeYd26hcfyJjBxeQvyvf pPBvVcr2FEHfn0aNHFbFmS6ZdjRRn2Bx6Lpx71E8kAAYoWJD5gFTTRqu5ht4CERG 0tt8dFkjAYE6Df4yKfKYIbWCrClB2lxB5L6kF9UPtVUvD7+DBhuUseJu+Fg0Gke9 y7VFFRBLXNyY4MNPz+HRtEPsgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBhLpEU5 boDSYzIh3LnK4zQQkfYFMB8GA1UdIwQYMBaAFDdF+59+osHiUtKb79hqYVd2DYjA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUFEMy9ENjIzMUEzMjFF MkQxMUVGODNEOTUyMjlDNEY5QUUwMi9OMFg3bjM2aXdlSlMwcHZ2MkdwaFYzWU5p TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04wWDduMzZpd2VKUzBwdnYyR3BoVjNZTmlNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBRDMvRDYyMzFBMzIxRTJEMTFFRjgzRDk1MjI5QzRGOUFFMDIvRTk4OURFMEMx RTJFMTFFRkI4RDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoDwwDQYJKoZIhvcNAQELBQADggEBABmjNdxrOQDlB3Un zdQLjp881QIVg+MMOMaMrG5jy3s1F4+Hzm4aQJonzht21sakS79QYOcYP7JMKnxF 2F791ZtCyJtSniFKj0gxvprW1nL3kjTwYAu3LnN06mppVRHnz49GnllekFTQfgF1 s3SGzyyVRfl1dtcoIln1lJLCkPoHveRk6cbqntren/PKjdPY4WCzIo/jd6lnNoQy xpmMOX6F/KVqGQqOZFpvTGZU4lhdSQ7/ci9h3oi9CsRkEWKQtHe9h2UznTDUdcH0 8xTKF+WFpnpzO/TM1IKU6beoCIGEgI+t7XKwC+6EZpiwJZjkMYViT1noEBmlQ7ff BE6rIwc= -----END CERTIFICATE-----Generated at Fri Feb 20 01:35:17 2026 by rpki-client