$ rpki-client -vvf rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa File: AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa (raw, json) Hash identifier: L89wc7yfxvApawHRBwOAH/lKcyL6r3r7VvXNehOFIZ8= Subject key identifier: 0C:3D:53:A8:DD:DA:0B:5E:EE:EB:38:5D:6E:CC:FE:12:69:D3:70:B6 Certificate issuer: /CN=A91886CC/serialNumber=D1E299F9E82C937CB2B2A69061E817341F8508F5 Certificate serial: 0224 Authority key identifier: D1:E2:99:F9:E8:2C:93:7C:B2:B2:A6:90:61:E8:17:34:1F:85:08:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:18:29 +0000 ROA not before: Tue 30 Sep 2025 17:34:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151064 IP address blocks: 103.234.12.0/24 maxlen: 24 2401:c6a0::/32 maxlen: 32 2401:c6a0:a000::/36 maxlen: 36 2401:c6a0:b000::/36 maxlen: 36 2401:c6a0:c000::/36 maxlen: 36 2401:c6a0:d000::/36 maxlen: 36 2401:c6a0:e000::/36 maxlen: 36 2401:c6a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.crl rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886CC, serialNumber=D1E299F9E82C937CB2B2A69061E817341F8508F5 Validity Not Before: Sep 30 17:34:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a458c5-bfb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:10:88:89:af:e6:03:cd:81:ff:33:fb:39:ee: 1d:af:5c:9e:b5:c2:f1:b2:c9:d1:26:80:49:a8:5f: bf:63:20:3e:0d:02:a7:67:b4:5b:7e:02:53:7c:b5: 58:27:53:b2:5d:b4:ec:1f:d2:ad:1a:74:72:92:03: d1:eb:88:d4:a8:4f:f5:5e:fb:58:98:5d:3b:cf:06: 02:cc:f5:82:ad:94:2b:6f:1b:82:1a:e5:12:79:b1: 0e:64:c7:df:34:28:50:fd:77:10:6b:47:64:f2:e6: 9c:4f:38:de:2b:f4:ba:a4:af:f9:63:37:e1:2d:67: fb:63:05:c9:1a:70:e4:07:a7:ad:05:09:8d:fd:ce: 52:b7:77:7e:9c:d5:2f:bc:39:7b:a8:f7:51:18:77: 0c:c3:62:a1:ee:02:31:d3:76:81:e8:f9:3d:cc:bc: 91:41:e5:d0:7c:52:e2:bb:25:a0:a0:18:ce:34:03: e2:66:ba:d8:a8:e4:01:05:56:2d:3f:dc:71:12:0d: 7b:16:88:30:99:41:c6:ea:e6:80:46:f6:11:a5:b9: a7:94:3f:a6:d3:9a:91:31:9b:7c:61:60:fa:fb:ad: 2f:51:df:e7:50:ce:09:60:a3:31:f7:ed:7e:f8:f1: 8b:c4:a0:d2:5b:19:9f:f1:5e:fc:fd:15:56:b4:1a: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3D:53:A8:DD:DA:0B:5E:EE:EB:38:5D:6E:CC:FE:12:69:D3:70:B6 X509v3 Authority Key Identifier: keyid:D1:E2:99:F9:E8:2C:93:7C:B2:B2:A6:90:61:E8:17:34:1F:85:08:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.12.0/24 IPv6: 2401:c6a0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:7c:58:80:8d:0c:3d:9d:5d:03:e6:81:c2:c6:e0:1b:63:bc: 74:55:de:1d:b4:c7:97:a1:65:07:03:9e:a9:5d:ce:99:62:43: 31:69:cf:4e:12:5a:a3:a4:38:c8:bf:5e:ea:f6:cb:b5:cd:54: cd:58:23:05:7e:d7:ad:b7:32:7f:8a:7c:4a:14:7f:fe:6a:73: d3:90:d7:50:ad:56:67:d6:35:46:58:bb:f2:c2:de:68:04:28: de:c1:2d:47:be:9f:dd:ff:62:4c:f7:2e:28:8d:1c:a9:ca:e1: 11:f0:66:fb:49:27:ef:e5:c7:e1:c4:dd:1e:46:d0:95:ef:24: 87:1b:58:2e:bc:dc:73:82:5d:d2:7d:f7:6c:52:3d:b4:cf:03: c5:f3:b9:c0:d7:45:55:c9:c5:45:cf:cc:0f:a3:60:6d:96:22: 8e:2f:5f:55:59:f3:0b:c8:13:5d:83:aa:5b:21:d9:47:72:0b: 50:58:c6:2f:53:74:e0:bb:a3:68:fc:f7:92:14:37:29:bf:68: ff:3a:7c:56:d5:a9:db:84:b8:b9:25:91:51:97:be:03:83:15: 47:7e:b8:58:6a:e9:76:0e:fd:a3:3e:bf:77:3c:da:b9:c3:db: d1:5c:03:37:d8:5b:fc:c4:c2:37:44:f2:86:e5:f6:1d:fc:03: 08:9c:50:51 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2Q0MxMTAvBgNVBAUTKEQxRTI5OUY5RTgyQzkzN0NCMkIyQTY5MDYxRTgxNzM0 MUY4NTA4RjUwHhcNMjUwOTMwMTczNDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NThjNS1iZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphCIia/mA82B/zP7Oe4dr1yetcLxssnRJoBJqF+/YyA+DQKnZ7RbfgJTfLVY J1OyXbTsH9KtGnRykgPR64jUqE/1XvtYmF07zwYCzPWCrZQrbxuCGuUSebEOZMff NChQ/XcQa0dk8uacTzjeK/S6pK/5YzfhLWf7YwXJGnDkB6etBQmN/c5St3d+nNUv vDl7qPdRGHcMw2Kh7gIx03aB6Pk9zLyRQeXQfFLiuyWgoBjONAPiZrrYqOQBBVYt P9xxEg17FogwmUHG6uaARvYRpbmnlD+m05qRMZt8YWD6+60vUd/nUM4JYKMx9+1+ +PGLxKDSWxmf8V78/RVWtBpa1QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAw9U6jd 2gte7us4XW7M/hJp03C2MB8GA1UdIwQYMBaAFNHimfnoLJN8srKmkGHoFzQfhQj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZDQy80RUE2QzYxOEU4 QkQxMUVEOEI4OTI1MjJDNEY5QUUwMi8wZUtaLWVnc2szeXlzcWFRWWVnWE5CLUZD UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlS1otZWdzazN5eXNxYVFZZWdYTkItRkNQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2Q0MvNEVBNkM2MThFOEJEMTFFRDhCODkyNTIyQzRGOUFFMDIvQUQ5QzFERUU5 RTIzMTFGMEEzNUQ3RDFGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ+oMMA0EAgACMAcDBQAkAcagMA0GCSqGSIb3DQEBCwUAA4IBAQAd fFiAjQw9nV0D5oHCxuAbY7x0Vd4dtMeXoWUHA56pXc6ZYkMxac9OElqjpDjIv17q 9su1zVTNWCMFftettzJ/inxKFH/+anPTkNdQrVZn1jVGWLvywt5oBCjewS1Hvp/d /2JM9y4ojRypyuER8Gb7SSfv5cfhxN0eRtCV7ySHG1guvNxzgl3SffdsUj20zwPF 87nA10VVycVFz8wPo2BtliKOL19VWfMLyBNdg6pbIdlHcgtQWMYvU3Tgu6No/PeS FDcpv2j/OnxW1anbhLi5JZFRl74DgxVHfrhYaul2Dv2jPr93PNq5w9vRXAM32Fv8 xMI3RPKG5fYd/AMInFBR -----END CERTIFICATE-----Generated at Sat Mar 28 14:50:55 2026 by rpki-client