$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/8C4BB9AED9DB11EF9AE05220C4F9AE02.roa File: 8C4BB9AED9DB11EF9AE05220C4F9AE02.roa (raw, json) Hash identifier: CN1S5iBG91fG5Dyt4QhTqMPNL4CwNQilfba/5yYIoFo= Subject key identifier: 9A:19:44:08:6C:E0:64:1E:32:CD:5C:96:E8:2B:06:A3:C5:21:8B:0B Certificate issuer: /CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Certificate serial: 0697 Authority key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/8C4BB9AED9DB11EF9AE05220C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:01:36 +0000 ROA not before: Thu 04 Dec 2025 21:35:48 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 6134 IP address blocks: 103.158.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 22:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4EDE, serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Validity Not Before: Dec 4 21:35:48 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a519b0-088a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:de:e4:3b:90:4e:6e:78:7b:04:5d:2f:4a:d6: b7:65:21:c1:20:0d:4a:1a:e6:92:61:01:5a:25:f1: 24:b7:a3:9c:e9:6a:41:d8:28:27:70:c2:8c:38:cf: 71:8c:5f:23:4a:53:c0:d0:b6:86:39:a7:e1:ca:b6: 4b:6f:60:65:60:98:c3:f5:12:c6:68:3a:ed:98:0f: e7:16:7a:ee:18:9e:8b:3f:0f:04:88:7f:ac:77:54: 12:34:d6:8f:e3:a4:38:cc:ca:a0:1a:c9:c0:41:e5: df:6e:cb:3f:6b:b0:8e:11:02:52:2d:1d:ce:b6:36: 2e:c0:44:8d:0d:72:a7:2b:22:4e:21:1a:f8:a6:7a: 81:f3:49:b3:75:90:1f:55:63:ac:82:e6:b1:50:b5: ea:31:d8:7a:e1:61:cd:c8:3a:14:9d:06:61:ab:bd: 55:eb:58:d6:9c:87:ff:e8:81:10:99:2a:0c:e1:c8: e0:69:78:db:a8:48:2c:db:ae:09:c2:f6:94:4e:e0: 8d:ca:d5:ce:d5:5c:db:10:18:46:bc:2d:1c:d8:40: b2:0a:67:39:00:3e:9e:8f:35:8b:cc:5d:1d:ef:96: 1e:d8:47:20:d4:07:42:e6:c5:36:ee:80:ca:5d:32: c7:4a:1b:92:f7:84:eb:76:79:3c:91:15:f8:4d:4c: 4b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:19:44:08:6C:E0:64:1E:32:CD:5C:96:E8:2B:06:A3:C5:21:8B:0B X509v3 Authority Key Identifier: keyid:AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/8C4BB9AED9DB11EF9AE05220C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:a8:02:e8:4e:a8:67:dd:5c:2c:1c:c3:c0:fd:6a:98:d0:ed: 6b:48:a8:ec:fb:b5:03:ab:4f:9a:34:34:b9:f7:23:e7:b2:2c: ee:a7:8e:55:05:bb:1a:7c:5f:2f:72:4a:10:e8:79:14:e3:ac: a1:75:30:56:bd:13:80:59:9a:d2:9f:13:20:42:9f:6f:85:05: 86:91:aa:2d:21:36:e2:01:38:eb:a5:ca:03:5a:98:fa:16:70: ff:e2:ae:33:ba:1c:2a:2b:49:dd:a2:3d:79:7a:72:56:b0:49: 6e:26:2a:ed:43:22:9b:0e:bd:d6:0e:31:31:bb:32:4a:52:35: 55:2f:dd:4a:30:9c:d8:f5:2d:b3:0d:75:81:62:b0:dd:65:46: 5a:18:4f:3b:10:b0:07:49:be:e0:16:1b:66:72:c5:f0:3c:68: f5:b3:f8:25:44:af:2d:f5:ca:02:9c:9c:f9:e3:00:7a:ae:62: 91:c0:a7:b9:10:3b:3f:ca:f7:1b:ff:2d:ba:23:d0:7a:f9:46: ee:a5:31:ab:7c:fb:06:df:2f:8b:e1:7d:76:a7:5c:cc:a5:d8: 04:99:36:e5:6a:58:a8:77:43:c3:38:26:f5:d6:30:3e:33:7e: 13:75:1b:17:a1:29:10:b1:0c:37:2b:7f:31:e9:51:31:45:22: f1:e6:20:41 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFREUxMTAvBgNVBAUTKEFBQjg4MUI4MjE0N0MzMDM2QjgwRkM2NzU5MzREQzJF NDZDRTBGN0YwHhcNMjUxMjA0MjEzNTQ4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTliMC0wODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxt7kO5BObnh7BF0vSta3ZSHBIA1KGuaSYQFaJfEkt6Oc6WpB2CgncMKMOM9x jF8jSlPA0LaGOafhyrZLb2BlYJjD9RLGaDrtmA/nFnruGJ6LPw8EiH+sd1QSNNaP 46Q4zMqgGsnAQeXfbss/a7COEQJSLR3OtjYuwESNDXKnKyJOIRr4pnqB80mzdZAf VWOsguaxULXqMdh64WHNyDoUnQZhq71V61jWnIf/6IEQmSoM4cjgaXjbqEgs264J wvaUTuCNytXO1VzbEBhGvC0c2ECyCmc5AD6ejzWLzF0d75Ye2Ecg1AdC5sU27oDK XTLHShuS94Trdnk8kRX4TUxLnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJoZRAhs 4GQeMs1clugrBqPFIYsLMB8GA1UdIwQYMBaAFKq4gbghR8MDa4D8Z1k03C5Gzg9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEVERS8yQ0IwMzI1OEJF NzkxMUVCOTUxMThCMTlDNEY5QUUwMi9xcmlCdUNGSHd3TnJnUHhuV1RUY0xrYk9E MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyaUJ1Q0ZId3dOcmdQeG5XVFRjTGtiT0QzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRFREUvMkNCMDMyNThCRTc5MTFFQjk1MTE4QjE5QzRGOUFFMDIvOEM0QkI5QUVE OURCMTFFRjlBRTA1MjIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ56+MA0GCSqGSIb3DQEBCwUAA4IBAQBuqALoTqhn3VwsHMPA/WqY 0O1rSKjs+7UDq0+aNDS59yPnsizup45VBbsafF8vckoQ6HkU46yhdTBWvROAWZrS nxMgQp9vhQWGkaotITbiATjrpcoDWpj6FnD/4q4zuhwqK0ndoj15enJWsEluJirt QyKbDr3WDjExuzJKUjVVL91KMJzY9S2zDXWBYrDdZUZaGE87ELAHSb7gFhtmcsXw PGj1s/glRK8t9coCnJz54wB6rmKRwKe5EDs/yvcb/y26I9B6+UbupTGrfPsG3y+L 4X12p1zMpdgEmTblaliod0PDOCb11jA+M34TdRsXoSkQsQw3K38x6VExRSLx5iBB -----END CERTIFICATE-----Generated at Thu Mar 12 22:56:09 2026 by rpki-client