$ rpki-client -vvf rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/869CBF5E91DC11EAA5FD4A1CC4F9AE02.roa File: 869CBF5E91DC11EAA5FD4A1CC4F9AE02.roa (raw, json) Hash identifier: cDOd12lHJvxwUolrfTe3odnYbC9rB4VadWNGF5sIPUI= Subject key identifier: 93:3C:27:25:66:C6:66:DB:D3:74:7E:21:FE:8C:1E:32:CB:B0:29:FD Certificate issuer: /CN=A91251EF/serialNumber=FCC504DA4B398C66DDBF2C392B7519CC90C1A109 Certificate serial: 0A0F Authority key identifier: FC:C5:04:DA:4B:39:8C:66:DD:BF:2C:39:2B:75:19:CC:90:C1:A1:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_MUE2ks5jGbdvyw5K3UZzJDBoQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/869CBF5E91DC11EAA5FD4A1CC4F9AE02.roa Signing time: Mon 16 Mar 2026 20:26:01 +0000 ROA not before: Mon 16 Mar 2026 20:26:01 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140215 IP address blocks: 103.148.176.0/23 maxlen: 24 2001:df2:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/_MUE2ks5jGbdvyw5K3UZzJDBoQk.crl rsync://rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/_MUE2ks5jGbdvyw5K3UZzJDBoQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_MUE2ks5jGbdvyw5K3UZzJDBoQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91251EF, serialNumber=FCC504DA4B398C66DDBF2C392B7519CC90C1A109 Validity Not Before: Mar 16 20:26:01 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b86759-0d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:26:ef:b5:75:43:87:e6:8b:a7:50:0c:f3:d1: 93:a7:06:f2:b4:cb:f7:75:f0:5b:4a:26:fb:0b:91: fe:0b:08:bf:03:45:56:eb:4b:11:4d:21:7e:70:22: 3e:3d:6d:bc:86:04:62:93:5e:25:46:67:13:b9:95: 16:56:58:aa:ce:bc:cd:4f:1c:ca:3c:ba:5a:f1:24: 7f:d2:9e:99:1c:db:6a:b8:11:e5:7e:d5:d7:81:a9: ab:a9:b3:24:ef:18:89:bd:8a:b7:c7:9a:ba:99:45: 1a:eb:29:8d:78:17:81:36:c1:0f:c6:ff:c9:77:c5: 12:5e:bf:c6:b6:4f:84:8b:a0:cd:9c:02:5f:bb:71: d2:df:b0:57:55:69:0e:02:96:ea:9c:a1:ef:ba:17: 4f:73:68:5e:d6:47:6e:67:1f:d2:af:04:52:ea:2d: b0:af:dc:e5:f2:18:37:20:46:a6:c4:8e:60:5d:4b: 77:f4:5b:dc:b9:c8:5e:cf:cd:c9:dd:ab:e0:a1:4f: b0:96:f3:ef:8b:7e:24:e1:2b:1f:ed:3e:9b:31:7e: a6:5e:d1:9b:3b:e5:f0:01:e7:3a:33:97:08:d6:47: a5:8a:02:60:96:5d:43:5d:a5:89:b6:78:fb:de:08: 46:29:e7:6b:64:49:6f:f4:01:10:d1:27:d9:bf:81: c5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3C:27:25:66:C6:66:DB:D3:74:7E:21:FE:8C:1E:32:CB:B0:29:FD X509v3 Authority Key Identifier: keyid:FC:C5:04:DA:4B:39:8C:66:DD:BF:2C:39:2B:75:19:CC:90:C1:A1:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/_MUE2ks5jGbdvyw5K3UZzJDBoQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_MUE2ks5jGbdvyw5K3UZzJDBoQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91251EF/2E94874E91DA11EA84CC0515C4F9AE02/869CBF5E91DC11EAA5FD4A1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.176.0/23 IPv6: 2001:df2:e080::/48 Signature Algorithm: sha256WithRSAEncryption 24:e2:04:69:bf:74:df:fb:35:66:81:c0:64:8c:ba:c1:d4:77: b8:69:69:80:43:f6:ea:fb:96:98:f2:e5:37:01:1d:a8:c3:18: 0b:c2:18:f5:ed:9e:1e:b3:bd:c6:0f:e6:03:3d:cc:56:64:36: 60:af:4e:0f:db:84:ca:e6:97:21:56:1b:e3:c5:6e:a6:ec:65: 30:e5:18:97:6f:5f:a9:cc:a9:2e:41:0d:e9:05:b0:3c:e2:1b: 9a:25:4a:a6:64:e5:96:da:cc:e3:cd:5a:cb:f3:0a:57:e4:47: 5c:48:df:81:ef:25:b0:8a:c6:3d:75:51:a4:ca:de:d7:52:4b: 8e:ab:8e:13:f8:d6:b8:92:98:1e:4c:fc:a6:d6:0c:af:6a:6f: 17:aa:7a:aa:b9:b8:35:df:f6:70:0c:af:6a:ac:cd:c4:0a:a1: bd:f2:da:f3:07:28:5e:62:96:55:56:f2:3b:07:16:39:2c:ad: b6:b0:c1:1c:df:43:b0:62:a9:f9:cc:1a:a6:03:6d:20:13:ec: 98:22:00:cd:4b:d7:e3:d3:0e:b0:35:03:61:33:35:4a:cc:86: d0:7b:ed:84:aa:05:51:bb:99:3d:e0:73:7e:f3:b6:d2:38:9b: 27:4e:99:3e:17:52:65:04:e3:10:cf:d8:76:2b:67:2e:4e:3f: e1:d5:73:4e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxRUYxMTAvBgNVBAUTKEZDQzUwNERBNEIzOThDNjZEREJGMkMzOTJCNzUxOUND OTBDMUExMDkwHhcNMjYwMzE2MjAyNjAxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4Njc1OS0wZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkCbvtXVDh+aLp1AM89GTpwbytMv3dfBbSib7C5H+Cwi/A0VW60sRTSF+cCI+ PW28hgRik14lRmcTuZUWVliqzrzNTxzKPLpa8SR/0p6ZHNtquBHlftXXgamrqbMk 7xiJvYq3x5q6mUUa6ymNeBeBNsEPxv/Jd8USXr/Gtk+Ei6DNnAJfu3HS37BXVWkO ApbqnKHvuhdPc2he1kduZx/SrwRS6i2wr9zl8hg3IEamxI5gXUt39Fvcuchez83J 3avgoU+wlvPvi34k4Ssf7T6bMX6mXtGbO+XwAec6M5cI1keligJgll1DXaWJtnj7 3ghGKedrZElv9AEQ0SfZv4HFGwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJM8JyVm xmbb03R+If6MHjLLsCn9MB8GA1UdIwQYMBaAFPzFBNpLOYxm3b8sOSt1GcyQwaEJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTFFRi8yRTk0ODc0RTkx REExMUVBODRDQzA1MTVDNEY5QUUwMi9fTVVFMmtzNWpHYmR2eXc1SzNVWnpKREJv UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19NVUUya3M1akdiZHZ5dzVLM1VaekpEQm9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUxRUYvMkU5NDg3NEU5MURBMTFFQTg0Q0MwNTE1QzRGOUFFMDIvODY5Q0JGNUU5 MURDMTFFQUE1RkQ0QTFDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5SwMA8EAgACMAkDBwAgAQ3y4IAwDQYJKoZIhvcNAQELBQADggEB ACTiBGm/dN/7NWaBwGSMusHUd7hpaYBD9ur7lpjy5TcBHajDGAvCGPXtnh6zvcYP 5gM9zFZkNmCvTg/bhMrmlyFWG+PFbqbsZTDlGJdvX6nMqS5BDekFsDziG5olSqZk 5ZbazOPNWsvzClfkR1xI34HvJbCKxj11UaTK3tdSS46rjhP41riSmB5M/KbWDK9q bxeqeqq5uDXf9nAMr2qszcQKob3y2vMHKF5illVW8jsHFjksrbawwRzfQ7BiqfnM GqYDbSAT7JgiAM1L1+PTDrA1A2EzNUrMhtB77YSqBVG7mT3gc37zttI4mydOmT4X UmUE4xDP2HYrZy5OP+HVc04= -----END CERTIFICATE-----Generated at Thu Mar 26 18:55:37 2026 by rpki-client