$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/1ED3BAF898A011ED9D31B05CC4F9AE02.roa File: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (raw, json) Hash identifier: 94M44dsN95Cfdn+68CbMlhuF5n5qBQCEV7YwA9S7Ln8= Subject key identifier: C1:3C:8A:33:07:D6:15:14:53:D1:44:4C:21:2B:46:07:93:05:3B:CE Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 0254 Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/1ED3BAF898A011ED9D31B05CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:08:45 +0000 ROA not before: Wed 17 Dec 2025 02:21:45 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 150445 IP address blocks: 103.76.116.0/23 maxlen: 23 2400:d360::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: Dec 17 02:21:45 2025 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a4102d-0360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e7:e5:a1:e3:2f:1c:47:d7:bc:18:e6:d7:30: c5:b5:38:2a:53:c7:01:47:0e:a1:91:45:b4:d9:3b: 96:16:53:be:f7:43:74:1f:bc:32:b7:1e:af:6e:40: 8d:1c:28:12:77:53:70:09:a2:8f:f6:95:16:0d:c5: 23:8e:5a:04:25:0b:d8:9d:61:36:53:19:53:4d:47: a8:00:cf:31:00:3f:c5:2a:b8:49:7d:80:2c:07:86: 96:ee:c0:8c:8a:7e:5b:38:35:df:47:e5:89:05:79: 93:84:99:71:7f:d6:48:92:7a:20:e3:49:e4:8b:16: d8:8f:75:49:2c:b6:68:2f:b6:0c:c9:2a:97:3b:20: a5:4b:85:88:bb:f4:7b:6d:8e:d1:86:0a:b1:07:e3: 20:70:1d:02:4d:44:a4:e0:c7:15:ae:23:b5:f3:24: 2e:88:f5:4f:44:50:79:ca:84:68:c4:a1:02:b0:b2: 52:95:7c:d8:5d:d7:80:be:75:83:ea:c6:9a:02:a4: 07:70:b0:3a:88:63:d7:fc:ad:cd:37:0b:ae:b4:8b: b8:4d:ea:ba:27:ce:8e:2d:8a:cb:09:be:79:03:85: 8f:c7:84:1c:1c:78:93:e4:b8:08:a0:82:ed:e0:20: 24:14:92:62:33:d7:dd:52:64:96:d4:4d:95:cc:6b: b1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:3C:8A:33:07:D6:15:14:53:D1:44:4C:21:2B:46:07:93:05:3B:CE X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/1ED3BAF898A011ED9D31B05CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.76.116.0/23 IPv6: 2400:d360::/32 Signature Algorithm: sha256WithRSAEncryption a3:19:6e:a3:53:90:67:f8:d3:74:f4:b3:a3:22:c8:fc:30:7c: d8:c7:97:5b:05:0e:55:3b:ac:39:7c:3e:d0:89:3f:17:2f:08: 82:1d:ba:0d:7e:cb:c5:9d:54:5b:91:05:46:0e:da:56:3d:16: e8:06:9c:9e:fb:da:69:3f:e6:14:15:19:84:f5:d3:d4:c1:47: 12:ab:da:b6:69:bb:df:48:08:15:a8:95:aa:6a:ca:ce:dc:92: d5:10:9c:b9:76:d6:18:6f:f0:8d:15:63:50:5b:77:d6:96:e6: e7:8e:5b:9b:4c:85:00:4d:27:87:b8:55:cf:ab:2c:71:b3:c3: 5e:c3:a8:1c:2f:1d:4b:30:3d:2e:77:dd:43:ff:c2:52:0e:40: 8a:db:58:5f:df:a1:d3:ed:6b:ef:1f:ac:5f:58:e3:df:78:fd: ea:86:e8:b1:91:9b:71:87:33:b8:70:ed:50:c0:01:26:8d:9c: aa:d7:ac:90:b9:8e:6f:24:67:42:ca:1b:69:28:87:e3:66:52: 6d:c4:db:69:18:d7:2e:47:ab:8f:bc:e4:d1:59:47:dd:1e:24: 10:03:c7:d5:fc:5f:df:c0:39:df:96:ad:f8:fa:bc:06:0e:c9: 04:79:63:66:67:95:44:56:45:f8:f9:76:2a:b7:89:cf:0d:68: 9d:f9:45:bf -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUxMjE3MDIyMTQ1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTAyZC0wMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+floeMvHEfXvBjm1zDFtTgqU8cBRw6hkUW02TuWFlO+90N0H7wytx6vbkCN HCgSd1NwCaKP9pUWDcUjjloEJQvYnWE2UxlTTUeoAM8xAD/FKrhJfYAsB4aW7sCM in5bODXfR+WJBXmThJlxf9ZIknog40nkixbYj3VJLLZoL7YMySqXOyClS4WIu/R7 bY7RhgqxB+MgcB0CTUSk4McVriO18yQuiPVPRFB5yoRoxKECsLJSlXzYXdeAvnWD 6saaAqQHcLA6iGPX/K3NNwuutIu4Teq6J86OLYrLCb55A4WPx4QcHHiT5LgIoILt 4CAkFJJiM9fdUmSW1E2VzGuxzwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFME8ijMH 1hUUU9FETCErRgeTBTvOMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4RDcvQjY3RjMwMUE5ODlEMTFFREI0RTMwRjVDQzRGOUFFMDIvMUVEM0JBRjg5 OEEwMTFFRDlEMzFCMDVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ0x0MA0EAgACMAcDBQAkANNgMA0GCSqGSIb3DQEBCwUAA4IBAQCj GW6jU5Bn+NN09LOjIsj8MHzYx5dbBQ5VO6w5fD7QiT8XLwiCHboNfsvFnVRbkQVG DtpWPRboBpye+9ppP+YUFRmE9dPUwUcSq9q2abvfSAgVqJWqasrO3JLVEJy5dtYY b/CNFWNQW3fWlubnjlubTIUATSeHuFXPqyxxs8New6gcLx1LMD0ud91D/8JSDkCK 21hf36HT7WvvH6xfWOPfeP3qhuixkZtxhzO4cO1QwAEmjZyq16yQuY5vJGdCyhtp KIfjZlJtxNtpGNcuR6uPvOTRWUfdHiQQA8fV/F/fwDnflq34+rwGDskEeWNmZ5VE VkX4+XYqt4nPDWid+UW/ -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:31 2026 by rpki-client