$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa File: D8D34E92100411EE9849087AC4F9AE02.roa (raw, json) Hash identifier: Ey5Qmkb7s6xip0SHy9WWDBSnwH3yni/O3RgoEtheFV4= Subject key identifier: C1:66:B1:89:7B:27:9C:CA:AA:40:CE:DB:47:28:12:DE:AC:83:90:A9 Certificate issuer: /CN=A91FDCF0/serialNumber=39D09B4A5360808205A9D6914719E0B989CF560B Certificate serial: 1807 Authority key identifier: 39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa Signing time: Thu 08 Jan 2026 17:14:12 +0000 ROA not before: Thu 08 Jan 2026 17:14:12 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132111 IP address blocks: 103.13.75.0/24 maxlen: 24 103.26.170.0/23 maxlen: 24 103.28.162.0/24 maxlen: 24 103.230.124.0/22 maxlen: 24 113.11.188.0/23 maxlen: 24 113.11.190.0/23 maxlen: 24 2001:df0:272::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.crl rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 16:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6151 (0x1807) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCF0, serialNumber=39D09B4A5360808205A9D6914719E0B989CF560B Validity Not Before: Jan 8 17:14:12 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=695fe5e4-6f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:fd:b3:de:9c:f5:ce:1b:16:67:0f:f1:45: ef:a5:71:1c:9a:3a:55:a4:9f:52:77:50:b0:55:03: bf:71:92:bc:1b:d0:4c:a4:8a:1f:3c:06:5a:2a:74: a8:66:55:8e:a0:b9:2a:16:0a:e6:73:3c:4e:ad:2b: 08:6d:fe:df:87:f2:22:3e:86:36:b5:38:61:87:64: 44:02:9e:74:55:2d:58:dd:f4:4c:5f:25:5d:7c:c5: 5e:46:55:6a:cc:06:f5:b9:c1:c7:8f:35:8a:12:96: dc:c4:55:cb:1e:5c:44:7e:28:a8:a1:13:ae:82:1b: b5:9b:ad:c9:27:52:4a:7b:57:73:fb:e5:d2:8b:d0: e6:52:2a:0a:75:0a:fb:43:fd:b7:9d:d3:4c:9f:80: 65:06:97:bf:33:ab:a2:21:b5:fa:e9:ef:c0:8e:4c: 52:07:84:22:61:79:02:a8:31:39:91:d1:00:e1:c2: e3:97:27:29:b7:9b:2a:ea:79:c5:d7:75:c8:67:43: 8b:00:6b:3e:4b:0a:2f:83:10:03:9f:ea:3c:c1:c1: a7:1b:5d:2c:6c:0c:de:d3:c2:f8:7d:14:0d:b7:5f: 03:49:45:b7:fc:9c:9f:7d:cb:16:de:f7:2a:f0:df: 04:b7:ca:dc:e9:7e:8b:4e:19:b3:d3:6a:e5:c5:d3: 73:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:66:B1:89:7B:27:9C:CA:AA:40:CE:DB:47:28:12:DE:AC:83:90:A9 X509v3 Authority Key Identifier: keyid:39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.75.0/24 103.26.170.0/23 103.28.162.0/24 103.230.124.0/22 113.11.188.0/22 IPv6: 2001:df0:272::/48 Signature Algorithm: sha256WithRSAEncryption 0b:df:48:43:9f:ea:12:e0:9a:45:31:5b:b7:54:58:5a:a1:cf: ba:3c:a3:44:5b:ee:91:65:4e:43:72:55:1f:63:9f:21:07:61: 92:19:9e:6b:b9:87:42:4e:4f:69:dd:fe:d4:f4:eb:78:69:69: ed:31:31:3e:45:46:e7:29:40:b3:fb:c3:dd:96:c3:28:14:a3: c9:a3:06:a1:1c:4d:46:e3:59:f7:42:2f:b4:34:82:97:1a:b0: ec:88:87:f0:51:47:ab:48:00:5b:db:49:d5:9a:3a:86:62:59: 68:d7:27:a1:43:99:bc:77:fd:dd:b5:8b:f5:b5:39:22:2c:b0: f4:3c:8c:16:32:2a:63:ec:a8:e7:51:98:18:8e:1f:b4:8e:9c: 9e:b5:7f:1c:a1:3d:e1:77:c5:10:4d:56:c0:8e:6d:8e:39:a8: 8a:88:60:bc:df:88:cb:ff:92:28:89:d9:2a:83:76:97:49:c7: f5:ea:a4:d6:50:ee:1d:60:9c:35:63:9a:4d:f4:65:9f:95:61: 3e:4c:dc:0a:a8:fd:9c:e2:11:bf:a7:71:f5:a2:d2:27:f5:66: 0d:b7:ec:9a:3e:ac:7e:a3:6a:33:ec:82:82:fd:71:59:82:d5: 39:c7:e1:03:6d:cf:a9:0f:e1:a4:cd:30:0f:a6:ff:65:7b:af: 96:62:ae:90 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICGAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RkRDRjAxMTAvBgNVBAUTKDM5RDA5QjRBNTM2MDgwODIwNUE5RDY5MTQ3MTlFMEI5 ODlDRjU2MEIwHhcNMjYwMTA4MTcxNDEyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTVmZTVlNC02Zjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu379s96c9c4bFmcP8UXvpXEcmjpVpJ9Sd1CwVQO/cZK8G9BMpIofPAZaKnSo ZlWOoLkqFgrmczxOrSsIbf7fh/IiPoY2tThhh2REAp50VS1Y3fRMXyVdfMVeRlVq zAb1ucHHjzWKEpbcxFXLHlxEfiiooROughu1m63JJ1JKe1dz++XSi9DmUioKdQr7 Q/23ndNMn4BlBpe/M6uiIbX66e/AjkxSB4QiYXkCqDE5kdEA4cLjlycpt5sq6nnF 13XIZ0OLAGs+SwovgxADn+o8wcGnG10sbAze08L4fRQNt18DSUW3/JyffcsW3vcq 8N8Et8rc6X6LThmz02rlxdNz6wIDAQABo4ICvjCCArowHQYDVR0OBBYEFMFmsYl7 J5zKqkDO20coEt6sg5CpMB8GA1UdIwQYMBaAFDnQm0pTYICCBanWkUcZ4LmJz1YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGMC8zMTI3QjAxOENF QUUxMUU3ODk3ODQ4MjVDNEY5QUUwMi9PZENiU2xOZ2dJSUZxZGFSUnhuZ3VZblBW Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kQ2JTbE5nZ0lJRnFkYVJSeG5ndVluUFZncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRDRjAvMzEyN0IwMThDRUFFMTFFNzg5Nzg0ODI1QzRGOUFFMDIvRDhEMzRFOTIx MDA0MTFFRTk4NDkwODdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBABnDUsDBAFnGqoDBABnHKIDBAJn5nwDBAJxC7wwDwQCAAIw CQMHACABDfACcjANBgkqhkiG9w0BAQsFAAOCAQEAC99IQ5/qEuCaRTFbt1RYWqHP ujyjRFvukWVOQ3JVH2OfIQdhkhmea7mHQk5Pad3+1PTreGlp7TExPkVG5ylAs/vD 3ZbDKBSjyaMGoRxNRuNZ90IvtDSClxqw7IiH8FFHq0gAW9tJ1Zo6hmJZaNcnoUOZ vHf93bWL9bU5Iiyw9DyMFjIqY+yo51GYGI4ftI6cnrV/HKE94XfFEE1WwI5tjjmo iohgvN+Iy/+SKInZKoN2l0nH9eqk1lDuHWCcNWOaTfRln5VhPkzcCqj9nOIRv6dx 9aLSJ/VmDbfsmj6sfqNqM+yCgv1xWYLVOcfhA23PqQ/hpM0wD6b/ZXuvlmKukA== -----END CERTIFICATE-----Generated at Thu Feb 19 22:41:09 2026 by rpki-client