$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa File: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (raw, json) Hash identifier: unK4fP/mkr9XKljBtil4C9237fSyrnmBB7OSNRMBDDM= Subject key identifier: 52:72:69:12:D4:DD:22:A7:A5:35:BE:DE:2A:B8:EA:19:5E:C7:C2:C1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 0733 Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:11:35 +0000 ROA not before: Sat 27 Sep 2025 18:30:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142006 IP address blocks: 103.164.86.0/24 maxlen: 24 103.164.87.0/24 maxlen: 24 2001:df6:4280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Sep 27 18:30:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a51c07-dbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2d:fa:4d:b8:cd:9a:5f:48:3a:e2:40:30:9c: 2a:89:20:32:45:30:05:66:fc:c0:0b:9e:d3:62:aa: c4:46:1f:e0:f4:8e:cc:b9:60:a5:a5:41:ac:90:16: c8:3c:96:ec:01:24:bb:b6:bd:30:31:90:bd:df:56: 81:b8:56:24:1b:d6:3b:47:54:1c:63:3a:60:e7:7f: 79:45:7e:a6:f1:e1:a8:01:25:3b:46:30:84:f5:33: ef:3c:e0:fc:37:e0:89:bf:61:81:b6:b1:68:ef:18: bd:3b:ff:a4:07:6b:28:4c:81:9d:2c:39:80:e5:fd: 52:2f:98:e8:aa:2b:bd:dd:d1:7c:81:a3:27:1b:6a: d3:81:f3:02:62:5b:07:67:cf:5f:ec:cd:ae:8a:67: b3:91:10:0a:f2:88:68:9f:7c:e9:1b:62:90:c7:c4: 64:38:c1:6c:12:82:59:2f:15:c2:77:f8:4f:b2:d6: 3a:76:88:54:19:fa:d7:53:57:91:40:fc:05:8d:7a: 45:df:d3:6b:ad:e4:0d:fc:9f:ef:54:6a:57:e7:b2: 16:3a:4c:ab:6a:dc:de:14:ab:10:15:12:cc:ed:eb: 90:f9:e5:7a:64:08:90:87:57:e2:12:07:6e:3c:59: dd:aa:3b:c8:14:8a:f9:16:dd:ce:ac:26:78:7d:c5: c9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:72:69:12:D4:DD:22:A7:A5:35:BE:DE:2A:B8:EA:19:5E:C7:C2:C1 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.86.0/23 IPv6: 2001:df6:4280::/48 Signature Algorithm: sha256WithRSAEncryption 6c:f9:9d:9d:f2:63:fa:6f:34:63:4e:cb:6d:bf:d1:4d:ad:55: 28:d8:02:7c:53:7b:ff:65:02:89:c7:61:2e:08:67:3b:8a:2b: 24:e5:c1:8c:b6:d5:e3:69:80:61:2e:8f:02:b2:03:27:d5:68: 0f:c3:0d:96:66:ce:84:ef:e7:90:42:15:be:15:77:b6:a7:e9: 89:92:c6:99:5a:b1:07:49:ea:71:c1:7e:5e:2e:c4:7d:77:2b: 05:62:02:78:39:21:b6:db:ae:38:de:45:a8:5b:2b:f8:14:1c: 3f:66:6f:9a:cb:82:57:e1:41:5b:33:31:78:0a:05:7a:78:cc: 12:6d:9c:7e:43:3f:66:28:36:9d:ed:1d:b3:fd:88:92:b9:49: db:d3:7d:48:76:6b:d8:02:d1:0f:1c:e0:66:ea:a9:d0:4f:e3: 45:78:59:cf:68:cc:65:3e:30:48:3a:6e:47:5a:55:cc:64:75: 28:09:01:84:31:56:84:35:b1:47:16:57:d4:2e:d5:f7:ed:46: f8:85:b0:1e:60:d8:12:a7:13:6a:3b:d8:3e:7f:fb:f1:e8:c7: b9:21:3a:89:4d:12:f1:62:46:2d:37:ca:a4:65:21:bb:b9:9f: ec:75:67:b1:f9:a4:e2:b0:21:c4:5b:d7:6a:dd:9c:b9:4b:94: 56:85:55:63 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUwOTI3MTgzMDU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWMwNy1kYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy36TbjNml9IOuJAMJwqiSAyRTAFZvzAC57TYqrERh/g9I7MuWClpUGskBbI PJbsASS7tr0wMZC931aBuFYkG9Y7R1QcYzpg5395RX6m8eGoASU7RjCE9TPvPOD8 N+CJv2GBtrFo7xi9O/+kB2soTIGdLDmA5f1SL5joqiu93dF8gaMnG2rTgfMCYlsH Z89f7M2uimezkRAK8ohon3zpG2KQx8RkOMFsEoJZLxXCd/hPstY6dohUGfrXU1eR QPwFjXpF39NrreQN/J/vVGpX57IWOkyratzeFKsQFRLM7euQ+eV6ZAiQh1fiEgdu PFndqjvIFIr5Ft3OrCZ4fcXJnQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFJyaRLU 3SKnpTW+3iq46hlex8LBMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjExRDQvQTlGNDk2NTI4NkNEMTFFQkE0QUZGNjA5QzRGOUFFMDIvMUM5REE1MkU5 QkQwMTFGMEFFMkQ3ODY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6RWMA8EAgACMAkDBwAgAQ32QoAwDQYJKoZIhvcNAQELBQADggEB AGz5nZ3yY/pvNGNOy22/0U2tVSjYAnxTe/9lAonHYS4IZzuKKyTlwYy21eNpgGEu jwKyAyfVaA/DDZZmzoTv55BCFb4Vd7an6YmSxplasQdJ6nHBfl4uxH13KwViAng5 IbbbrjjeRahbK/gUHD9mb5rLglfhQVszMXgKBXp4zBJtnH5DP2YoNp3tHbP9iJK5 SdvTfUh2a9gC0Q8c4GbqqdBP40V4Wc9ozGU+MEg6bkdaVcxkdSgJAYQxVoQ1sUcW V9Qu1fftRviFsB5g2BKnE2o72D5/+/Hox7khOolNEvFiRi03yqRlIbu5n+x1Z7H5 pOKwIcRb12rdnLlLlFaFVWM= -----END CERTIFICATE-----Generated at Thu Mar 26 07:12:38 2026 by rpki-client