$ rpki-client -vvf rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/8BF305A2F44711F0849EF3E6616F56BC.roa File: 8BF305A2F44711F0849EF3E6616F56BC.roa (raw, json) Hash identifier: 8FXTDQ3pdrB9lI0tc6cwlsOBLuq+7Ubnrq4d6bTJfQo= Subject key identifier: 6A:7A:2C:06:D3:38:FA:18:FC:AD:84:F5:19:F2:EE:63:8C:71:B5:15 Certificate issuer: /CN=A91871C2/serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Certificate serial: 0813 Authority key identifier: A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/8BF305A2F44711F0849EF3E6616F56BC.roa Signing time: Sun 01 Mar 2026 18:13:04 +0000 ROA not before: Mon 02 Feb 2026 21:18:42 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138474 IP address blocks: 103.126.148.0/22 maxlen: 22 103.126.148.0/23 maxlen: 23 103.126.149.0/24 maxlen: 24 103.126.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91871C2, serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Validity Not Before: Feb 2 21:18:42 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a481b0-f269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:64:bc:e0:8f:f9:73:58:19:50:bb:f1:7a: 58:f5:3d:59:ac:f7:ee:4c:bf:0b:91:2b:24:89:a9: d4:78:6a:05:73:58:a4:ad:6f:5e:73:81:52:bf:94: a5:d0:70:bd:ce:da:4c:9d:0e:c6:c9:37:c5:a6:32: c3:a8:c6:c0:aa:7e:02:63:7c:7d:f2:51:f6:6c:58: 2d:76:39:1d:15:94:56:71:b2:28:50:37:fd:b6:3d: 2a:d7:25:84:91:7e:ba:1e:3f:eb:7b:20:dd:c4:35: a3:fa:0a:ab:d1:38:ff:a0:d2:b8:71:f1:5a:a2:6e: ed:43:1a:4d:fb:6c:e3:32:e6:0c:89:61:66:18:a7: 81:ce:a8:18:e6:37:5b:86:43:bd:b3:1d:ed:ba:f9: 95:cc:e1:89:c5:01:75:c4:4c:0b:fb:f2:6c:da:1e: 87:2f:dd:64:84:81:8b:73:a4:c1:a2:6b:4b:0a:55: ff:39:5d:52:e3:d1:7d:a4:d3:36:08:36:b3:5b:b4: 31:2f:9e:dc:e2:82:80:22:0b:a3:65:e1:11:8e:cc: 86:dd:01:82:49:ae:22:2f:7b:9e:9d:44:2a:2e:5f: 33:fe:b3:82:5d:bc:f8:30:26:b6:3d:5c:b8:8c:af: cb:ae:a7:e3:61:b1:2a:c7:88:b6:40:42:f1:d2:d0: 23:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7A:2C:06:D3:38:FA:18:FC:AD:84:F5:19:F2:EE:63:8C:71:B5:15 X509v3 Authority Key Identifier: keyid:A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/8BF305A2F44711F0849EF3E6616F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.126.148.0/22 Signature Algorithm: sha256WithRSAEncryption 55:cf:60:b7:28:5e:79:84:dc:8c:1a:04:49:25:68:08:53:6f: ef:59:c8:92:2d:ec:f3:7b:0e:02:f5:8b:b8:70:84:e0:1b:2a: 19:15:1b:f3:33:cc:c7:5a:37:49:f6:e9:74:d6:7c:c2:e1:b1: ef:f2:a4:22:e9:1c:af:4d:d3:71:67:14:a7:b3:12:49:3f:c2: 03:0f:3f:b2:29:80:cd:62:ae:9e:44:68:45:ad:a3:c5:d4:36: 67:09:a4:ab:08:ee:83:cd:46:ea:b4:e1:2d:48:19:80:47:5b: 3d:ec:b5:a1:3e:95:82:4b:e3:3c:59:6e:5d:01:12:89:1c:7f: d5:7f:0f:c4:09:84:fc:08:5a:a8:c5:18:84:96:91:63:4b:f5: 76:d2:3a:b2:09:8e:00:c2:17:8b:89:85:9f:fd:8d:86:ef:6f: 8d:b3:bb:97:75:d7:c2:b8:d6:5e:0c:43:e7:8c:7b:86:ac:b2: 97:c0:98:4b:d3:7d:3d:36:e0:38:c0:51:0e:17:7a:36:8a:15: 45:f5:d1:8c:63:dd:ec:a5:48:94:85:99:a0:96:b8:5d:d4:39: b0:be:37:21:c3:30:02:f2:06:47:94:73:d2:e0:45:43:c0:39: a8:06:9e:d4:d4:f8:28:1a:6d:85:56:d0:69:86:08:8d:84:17: 6d:5e:6f:fc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxQzIxMTAvBgNVBAUTKEE5RUFCQzI0NjUxMTZFRDExRDZDOENEQUUyMDExMjM3 Q0YxRjU5REYwHhcNMjYwMjAyMjExODQyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODFiMC1mMjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyRkvOCP+XNYGVC78XpY9T1ZrPfuTL8LkSskianUeGoFc1ikrW9ec4FSv5Sl 0HC9ztpMnQ7GyTfFpjLDqMbAqn4CY3x98lH2bFgtdjkdFZRWcbIoUDf9tj0q1yWE kX66Hj/reyDdxDWj+gqr0Tj/oNK4cfFaom7tQxpN+2zjMuYMiWFmGKeBzqgY5jdb hkO9sx3tuvmVzOGJxQF1xEwL+/Js2h6HL91khIGLc6TBomtLClX/OV1S49F9pNM2 CDazW7QxL57c4oKAIgujZeERjsyG3QGCSa4iL3uenUQqLl8z/rOCXbz4MCa2PVy4 jK/LrqfjYbEqx4i2QELx0tAjzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGp6LAbT OPoY/K2E9Rny7mOMcbUVMB8GA1UdIwQYMBaAFKnqvCRlEW7RHWyM2uIBEjfPH1nf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzFDMi9ERTYxNjY2ODU1 QTkxMUVCOTlBRkRBNURDNEY5QUUwMi9xZXE4SkdVUmJ0RWRiSXphNGdFU044OGZX ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlcThKR1VSYnRFZGJJemE0Z0VTTjg4ZldkOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcxQzIvREU2MTY2Njg1NUE5MTFFQjk5QUZEQTVEQzRGOUFFMDIvOEJGMzA1QTJG NDQ3MTFGMDg0OUVGM0U2NjE2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ36UMA0GCSqGSIb3DQEBCwUAA4IBAQBVz2C3KF55hNyMGgRJJWgI U2/vWciSLezzew4C9Yu4cITgGyoZFRvzM8zHWjdJ9ul01nzC4bHv8qQi6RyvTdNx ZxSnsxJJP8IDDz+yKYDNYq6eRGhFraPF1DZnCaSrCO6DzUbqtOEtSBmAR1s97LWh PpWCS+M8WW5dARKJHH/Vfw/ECYT8CFqoxRiElpFjS/V20jqyCY4AwheLiYWf/Y2G 72+Ns7uXddfCuNZeDEPnjHuGrLKXwJhL0309NuA4wFEOF3o2ihVF9dGMY93spUiU hZmglrhd1DmwvjchwzAC8gZHlHPS4EVDwDmoBp7U1PgoGm2FVtBphgiNhBdtXm/8 -----END CERTIFICATE-----Generated at Thu Mar 26 17:31:12 2026 by rpki-client