$ rpki-client -vvf rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/82DA388A0F7911F1809984312C3D8C67.roa File: 82DA388A0F7911F1809984312C3D8C67.roa (raw, json) Hash identifier: DwV5RyDcCjRsx1pQK6SE6C7k8xmybS0fqEBWiL5+TBM= Subject key identifier: 9D:E1:71:0D:C7:39:27:42:17:03:00:77:32:E9:0C:D2:CA:80:EB:3F Certificate issuer: /CN=A91F78E2/serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Certificate serial: 14 Authority key identifier: A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/82DA388A0F7911F1809984312C3D8C67.roa Signing time: Mon 02 Mar 2026 14:34:53 +0000 ROA not before: Sat 21 Feb 2026 23:03:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 2764 IP address blocks: 103.102.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 07:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F78E2, serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Validity Not Before: Feb 21 23:03:19 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a00d-a34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:ba:d9:70:1d:25:02:5b:4a:42:ac:bd:a0: 42:ea:35:73:69:aa:6e:f7:c0:32:4b:cf:48:d8:68: 60:8c:ab:62:20:8c:1c:2e:53:14:b4:a4:5f:6c:11: f4:7b:66:88:4f:ba:29:28:c4:19:05:45:03:74:6c: 41:fc:da:97:73:69:0d:93:9a:9e:42:7f:72:fb:f1: 27:2e:8b:59:a2:9f:56:ed:94:75:a0:fa:98:c5:37: cb:5d:06:ff:8e:39:0f:49:0b:dd:36:fb:08:ec:33: 94:e1:5c:45:81:8e:6f:67:26:9b:a3:8f:51:0c:89: 0e:9b:69:e4:89:a3:66:24:26:42:40:09:a2:33:93: 70:e2:6b:4c:24:88:5e:2e:6f:e1:13:b4:e9:67:e5: 1a:62:47:17:6c:90:e7:7a:68:e8:cb:b2:d7:00:e0: be:44:a7:8f:b3:88:6b:4a:47:7c:b6:12:9a:67:eb: 02:87:b1:11:71:99:cb:40:5e:24:16:76:37:5c:2e: 41:55:3a:c9:2a:16:30:63:d9:ae:d1:a6:3a:a7:87: 05:b9:b7:44:2c:dd:f8:32:02:a8:9a:d7:97:fc:41: b2:b0:7c:7c:94:25:35:6a:0c:67:59:c6:62:3c:db: 2d:f5:14:1a:c5:76:c9:6c:18:78:de:16:5d:99:e1: 53:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E1:71:0D:C7:39:27:42:17:03:00:77:32:E9:0C:D2:CA:80:EB:3F X509v3 Authority Key Identifier: keyid:A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/82DA388A0F7911F1809984312C3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.102.232.0/23 Signature Algorithm: sha256WithRSAEncryption 37:89:99:76:af:97:cd:2d:de:21:08:7c:2d:22:c0:cd:05:50: b4:45:62:1a:29:30:4b:1f:4e:27:e9:60:42:ef:78:90:c2:b8: 9e:e9:c9:39:8f:ce:db:59:87:8c:d4:82:40:b8:77:fc:1a:5c: 42:f5:16:f2:05:0c:75:3a:9f:cf:73:31:24:d6:c8:75:0b:06: 4a:ae:24:59:ec:75:bd:9a:8e:24:0e:c5:07:e6:ee:26:d0:e8: 70:ad:18:b8:9e:41:af:32:37:16:a4:e2:2b:6f:1c:ac:9f:3e: 37:1c:2b:3d:ee:ea:54:ee:ca:5a:54:d4:85:aa:b8:0c:5f:67: 63:fc:a7:4e:12:08:b2:f4:9b:32:5f:f6:48:8a:82:0a:c3:99: f5:e3:c3:7e:8d:2c:97:cd:38:30:58:fe:bc:ef:03:40:84:c5: fa:cb:af:f9:be:fb:ba:40:d0:37:18:6d:62:05:44:6d:58:94: 9a:14:be:87:e9:32:be:30:57:89:c9:32:28:e9:ec:7c:cb:7e: 4e:fa:c5:04:45:bf:87:d1:c3:4a:bf:00:f9:bc:1b:0a:cf:18: 83:26:cb:37:9f:29:b3:39:f2:ad:c6:8c:ce:24:ac:60:f6:39: 93:9f:1d:99:d1:db:c7:ea:98:f2:bc:9a:9e:9b:53:53:01:d6: 22:fc:86:32 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzhFMjExMC8GA1UEBRMoQTM0NjY0OEI0QURGNEZDNUI0NzdDN0RBMkNGMDVCMTY4 NDM3REI1RDAeFw0yNjAyMjEyMzAzMTlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhMDBkLWEzNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqOLrZcB0lAltKQqy9oELqNXNpqm73wDJLz0jYaGCMq2IgjBwuUxS0pF9sEfR7 ZohPuikoxBkFRQN0bEH82pdzaQ2Tmp5Cf3L78Scui1min1btlHWg+pjFN8tdBv+O OQ9JC902+wjsM5ThXEWBjm9nJpujj1EMiQ6baeSJo2YkJkJACaIzk3Dia0wkiF4u b+ETtOln5RpiRxdskOd6aOjLstcA4L5Ep4+ziGtKR3y2Eppn6wKHsRFxmctAXiQW djdcLkFVOskqFjBj2a7RpjqnhwW5t0Qs3fgyAqia15f8QbKwfHyUJTVqDGdZxmI8 2y31FBrFdslsGHjeFl2Z4VMNAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUneFxDcc5 J0IXAwB3MukM0sqA6z8wHwYDVR0jBBgwFoAUo0Zki0rfT8W0d8faLPBbFoQ3210w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OEUyL0M4RjRBOEUyMDc5 OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhXMGQ4ZmFMUEJiRm9RMzIx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzBaa2kwcmZUOFcwZDhmYUxQQmJGb1EzMjEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzhFMi9DOEY0QThFMjA3OTkxMUYxQTVBRTlBMUIwRTNEOEM2Ny84MkRBMzg4QTBG NzkxMUYxODA5OTg0MzEyQzNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnZugwDQYJKoZIhvcNAQELBQADggEBADeJmXavl80t3iEIfC0iwM0F ULRFYhopMEsfTifpYELveJDCuJ7pyTmPzttZh4zUgkC4d/waXEL1FvIFDHU6n89z MSTWyHULBkquJFnsdb2ajiQOxQfm7ibQ6HCtGLieQa8yNxak4itvHKyfPjccKz3u 6lTuylpU1IWquAxfZ2P8p04SCLL0mzJf9kiKggrDmfXjw36NLJfNODBY/rzvA0CE xfrLr/m++7pA0DcYbWIFRG1YlJoUvofpMr4wV4nJMijp7HzLfk76xQRFv4fRw0q/ APm8GwrPGIMmyzefKbM58q3GjM4krGD2OZOfHZnR28fqmPK8mp6bU1MB1iL8hjI= -----END CERTIFICATE-----Generated at Thu Mar 12 22:52:55 2026 by rpki-client