$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa File: 5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa (raw, json) Hash identifier: NTWzneRsI6xBoZcMBa/cRNUEBFQFqDaPLGuJ4Y8AzAY= Subject key identifier: 13:DB:DE:24:9F:C2:04:79:05:68:9E:D8:C0:0C:3E:5F:36:71:12:02 Certificate issuer: /CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Certificate serial: 0696 Authority key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:01:36 +0000 ROA not before: Thu 04 Dec 2025 21:35:46 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 42960 IP address blocks: 103.158.190.0/23 maxlen: 23 103.158.190.0/24 maxlen: 24 103.158.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1686 (0x696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4EDE, serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Validity Not Before: Dec 4 21:35:46 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a519b0-5bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:aa:9c:7a:56:95:b5:b4:ab:04:ca:7a:a8:54: b6:38:96:ce:6f:71:ef:f4:56:1d:9e:b4:d5:1b:e8: c0:ee:7f:54:76:05:6e:89:f3:7b:06:ed:3a:d6:55: 13:63:d0:c4:82:56:f6:80:41:ce:57:79:20:f5:4a: 73:52:fa:9a:6a:08:3a:89:e0:5f:03:7c:43:c2:db: 68:6d:ba:be:c1:93:fa:86:cc:b2:81:d8:b9:2f:e7: 4d:6e:37:12:ec:05:7b:f5:c6:0d:fe:bd:89:55:8e: c4:fa:19:43:ae:0d:00:cd:41:1c:23:48:eb:63:8b: ee:6e:0c:b0:b9:ea:da:95:1e:2e:d6:e5:16:97:68: 7e:7b:ea:82:ed:98:2d:79:37:f2:46:5a:bc:ae:1a: a4:1e:a7:c8:49:65:a9:f4:04:e5:a1:73:29:cc:59: 03:db:7a:d5:2d:15:a6:64:48:63:e2:cf:f1:98:90: 58:63:ed:3f:f4:da:a9:27:ce:14:d8:d8:ab:11:c1: b7:89:a6:f4:b6:95:c2:08:e0:94:8c:1a:0b:d8:e4: fd:d7:a8:27:b8:04:50:35:1a:46:4c:25:37:6f:5f: 3f:e7:34:46:a4:1c:81:eb:75:75:e6:c9:01:73:40: 80:ce:90:2a:7d:74:22:26:98:e3:12:ab:ee:a9:ea: e7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DB:DE:24:9F:C2:04:79:05:68:9E:D8:C0:0C:3E:5F:36:71:12:02 X509v3 Authority Key Identifier: keyid:AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:f4:d4:10:1d:ab:ac:3f:08:53:c5:6e:44:a7:d6:5b:83:cc: af:84:7f:68:d5:7c:56:1d:15:9a:f3:0f:8f:f6:b0:74:db:60: 3d:03:d4:99:e9:29:3d:8b:85:cb:af:f2:d1:4e:82:34:ed:3b: 8e:27:47:9d:cf:61:92:c8:1f:5b:ac:c3:fe:4a:fd:3a:8d:2d: b5:38:95:16:1e:4e:2e:d9:59:a9:5e:d4:a3:09:2e:02:99:65: 65:f0:a8:5d:47:19:ad:88:c0:57:36:31:f4:42:e5:ef:02:59: fd:a0:93:92:26:b5:1e:14:5e:60:fa:f1:22:41:c6:30:53:9e: 40:00:9b:33:77:61:10:15:29:4e:e9:49:08:d6:cf:3a:e5:00: 55:f9:f9:0d:1d:39:d1:50:51:40:b5:19:0a:b0:91:c3:c9:93: c6:1e:91:cf:83:fd:47:3c:1d:84:f8:98:40:67:8e:84:51:61: 98:09:8b:6c:8a:30:62:f7:60:05:91:92:43:de:b8:d2:11:b9: 81:37:58:73:43:b4:08:be:9f:f5:64:b0:6d:3d:b3:56:78:04: d7:66:1b:75:ed:84:58:0b:f6:4e:ae:cb:93:e0:d4:58:81:49: 97:a3:1d:16:6f:41:c3:72:2e:ac:fd:17:c2:13:ae:d0:a0:30: a2:dc:2e:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFREUxMTAvBgNVBAUTKEFBQjg4MUI4MjE0N0MzMDM2QjgwRkM2NzU5MzREQzJF NDZDRTBGN0YwHhcNMjUxMjA0MjEzNTQ2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTliMC01YmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6qcelaVtbSrBMp6qFS2OJbOb3Hv9FYdnrTVG+jA7n9UdgVuifN7Bu061lUT Y9DEglb2gEHOV3kg9UpzUvqaagg6ieBfA3xDwttobbq+wZP6hsyygdi5L+dNbjcS 7AV79cYN/r2JVY7E+hlDrg0AzUEcI0jrY4vubgywueralR4u1uUWl2h+e+qC7Zgt eTfyRlq8rhqkHqfISWWp9ATloXMpzFkD23rVLRWmZEhj4s/xmJBYY+0/9NqpJ84U 2NirEcG3iab0tpXCCOCUjBoL2OT916gnuARQNRpGTCU3b18/5zRGpByB63V15skB c0CAzpAqfXQiJpjjEqvuqernLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBPb3iSf wgR5BWie2MAMPl82cRICMB8GA1UdIwQYMBaAFKq4gbghR8MDa4D8Z1k03C5Gzg9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEVERS8yQ0IwMzI1OEJF NzkxMUVCOTUxMThCMTlDNEY5QUUwMi9xcmlCdUNGSHd3TnJnUHhuV1RUY0xrYk9E MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyaUJ1Q0ZId3dOcmdQeG5XVFRjTGtiT0QzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRFREUvMkNCMDMyNThCRTc5MTFFQjk1MTE4QjE5QzRGOUFFMDIvNUE5QkZDM0FC RTdDMTFFQjhCQzI1QzFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ56+MA0GCSqGSIb3DQEBCwUAA4IBAQCK9NQQHausPwhTxW5Ep9Zb g8yvhH9o1XxWHRWa8w+P9rB022A9A9SZ6Sk9i4XLr/LRToI07TuOJ0edz2GSyB9b rMP+Sv06jS21OJUWHk4u2VmpXtSjCS4CmWVl8KhdRxmtiMBXNjH0QuXvAln9oJOS JrUeFF5g+vEiQcYwU55AAJszd2EQFSlO6UkI1s865QBV+fkNHTnRUFFAtRkKsJHD yZPGHpHPg/1HPB2E+JhAZ46EUWGYCYtsijBi92AFkZJD3rjSEbmBN1hzQ7QIvp/1 ZLBtPbNWeATXZht17YRYC/ZOrsuT4NRYgUmXox0Wb0HDci6s/RfCE67QoDCi3C7X -----END CERTIFICATE-----Generated at Sat Mar 7 04:10:18 2026 by rpki-client