$ rpki-client -vvf rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa File: 86F9CBCC2AB711EF996EC819C4F9AE02.roa (raw, json) Hash identifier: Ug9ILiDXqWcLa6yuD4ODzV/AkZeAMrnjdmuMuL/P0OM= Subject key identifier: ED:45:BC:3E:7A:F3:3F:10:B3:DA:C0:62:FD:1D:68:C3:06:D0:98:0E Certificate issuer: /CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Certificate serial: 0152 Authority key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:11:09 +0000 ROA not before: Wed 21 May 2025 05:16:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149299 IP address blocks: 103.25.10.0/23 maxlen: 23 103.25.10.0/24 maxlen: 24 103.25.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 04:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A02D8, serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Validity Not Before: May 21 05:16:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58c6d-9ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3d:6b:ec:f9:03:7b:77:42:73:da:ae:48:0b: ab:1e:42:61:26:99:c5:6a:f7:10:9c:01:82:87:c3: ee:60:86:21:93:9c:d0:66:6f:f2:38:19:13:ed:5c: 9d:8f:1d:d1:07:31:ac:ce:a5:9d:b4:0b:f0:6d:cb: f5:86:66:c2:69:fe:a9:9f:0b:10:eb:99:79:a9:7f: 49:aa:b7:54:8c:8d:46:2f:23:71:33:e4:84:0f:1a: e7:7c:d3:e4:44:6c:35:01:e6:96:2f:e7:d1:3a:21: 68:bc:03:5e:1c:80:71:02:64:a3:fb:7d:c7:46:46: 6a:00:11:b9:70:37:72:d0:b0:9d:54:82:a0:d5:69: c1:c6:70:cc:9f:21:a3:e8:51:af:69:fa:fc:bf:ba: fe:00:0f:41:0c:42:87:65:37:a8:a8:e9:c6:88:69: 3b:4f:99:5c:74:e2:49:59:91:da:65:53:9d:26:4f: f8:d2:77:29:ca:9e:4b:77:39:6c:1f:63:1b:fc:f5: 9e:96:35:5a:80:e4:a0:e2:b1:93:51:94:27:18:f9: 34:f1:78:94:10:2a:be:fa:91:db:09:3f:5d:56:ff: b5:b5:ea:3b:53:9a:40:fa:e0:ab:e6:a8:ff:35:d0: 4e:4c:59:16:61:3d:7d:3b:91:d5:5a:2c:8b:83:4e: a3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:45:BC:3E:7A:F3:3F:10:B3:DA:C0:62:FD:1D:68:C3:06:D0:98:0E X509v3 Authority Key Identifier: keyid:ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.25.10.0/23 Signature Algorithm: sha256WithRSAEncryption 80:70:e2:96:48:2d:f2:ff:f0:98:ae:49:99:72:d6:24:a2:82: da:b5:be:7f:fc:ad:68:d8:b0:52:5b:03:d2:ac:c9:dd:d2:e3: 7c:83:e2:b4:ae:52:03:53:6b:c7:65:88:65:b6:87:4a:cd:7b: 0a:26:8e:73:22:c4:25:b7:1a:c4:43:ad:40:97:3c:32:5d:0e: 84:0a:97:fa:f3:34:5b:dc:97:60:db:c8:dc:39:4f:ed:2d:26: d9:cd:fd:0b:5a:1e:92:32:ca:02:64:55:0f:69:dc:8c:a3:85: c0:62:c6:fc:0a:d2:cc:8a:57:74:f0:41:df:01:d0:ff:85:f8: 5a:d7:b0:7e:1b:0c:15:0c:9a:9b:75:01:8f:ec:ed:b3:bb:f1: c0:e1:e8:5a:e0:31:85:ec:7c:48:d7:96:b0:49:f5:03:26:3a: ed:8c:f3:9a:63:e2:be:23:fc:62:5f:b2:71:f5:92:ee:67:81: 20:8b:fe:fa:50:52:50:f8:30:ca:8e:9a:67:65:06:6e:f1:c1: 27:f0:a2:ca:87:c2:7b:18:e6:03:48:cc:d4:9e:23:5b:5f:18: ad:a2:ef:b3:7c:c3:c6:08:49:1a:9a:10:88:eb:fc:94:b8:43: 06:92:e3:84:2c:ac:16:90:df:93:1a:af:ef:0e:a3:e3:13:a7: ce:90:4e:9e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyRDgxMTAvBgNVBAUTKEVEOUIwRTYwODVBMjVERjI2NzQ5RkYyNzU4MUE0RThC QzdDMTg2Q0MwHhcNMjUwNTIxMDUxNjUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGM2ZC05ZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnT1r7PkDe3dCc9quSAurHkJhJpnFavcQnAGCh8PuYIYhk5zQZm/yOBkT7Vyd jx3RBzGszqWdtAvwbcv1hmbCaf6pnwsQ65l5qX9JqrdUjI1GLyNxM+SEDxrnfNPk RGw1AeaWL+fROiFovANeHIBxAmSj+33HRkZqABG5cDdy0LCdVIKg1WnBxnDMnyGj 6FGvafr8v7r+AA9BDEKHZTeoqOnGiGk7T5lcdOJJWZHaZVOdJk/40ncpyp5Ldzls H2Mb/PWeljVagOSg4rGTUZQnGPk08XiUECq++pHbCT9dVv+1teo7U5pA+uCr5qj/ NdBOTFkWYT19O5HVWiyLg06jhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO1FvD56 8z8Qs9rAYv0daMMG0JgOMB8GA1UdIwQYMBaAFO2bDmCFol3yZ0n/J1gaTovHwYbM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDJEOC9FMDkyNDhFQTJB QjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhmSm5TZjhuV0JwT2k4ZkJo c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdac09ZSVdpWGZKblNmOG5XQnBPaThmQmhzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAyRDgvRTA5MjQ4RUEyQUI2MTFFRkIzMzlGRDgxQzRGOUFFMDIvODZGOUNCQ0My QUI3MTFFRjk5NkVDODE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxkKMA0GCSqGSIb3DQEBCwUAA4IBAQCAcOKWSC3y//CYrkmZctYk ooLatb5//K1o2LBSWwPSrMnd0uN8g+K0rlIDU2vHZYhltodKzXsKJo5zIsQltxrE Q61AlzwyXQ6ECpf68zRb3Jdg28jcOU/tLSbZzf0LWh6SMsoCZFUPadyMo4XAYsb8 CtLMild08EHfAdD/hfha17B+GwwVDJqbdQGP7O2zu/HA4eha4DGF7HxI15awSfUD JjrtjPOaY+K+I/xiX7Jx9ZLuZ4Egi/76UFJQ+DDKjppnZQZu8cEn8KLKh8J7GOYD SMzUniNbXxitou+zfMPGCEkamhCI6/yUuEMGkuOELKwWkN+TGq/vDqPjE6fOkE6e -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:23 2026 by rpki-client