$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa File: CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa (raw, json) Hash identifier: mdg+M75flwwxqlCTezoYkoNV+5Ex1t4tklnkCW7OOKQ= Subject key identifier: E0:2C:A1:03:9A:08:B1:F9:B3:65:19:43:7D:E6:28:C3:42:7B:9C:62 Certificate issuer: /CN=A91BC3FD/serialNumber=27DD8BBB8FB5FACDC19F29D3EC2745D5110D8A9F Certificate serial: 09C0 Authority key identifier: 27:DD:8B:BB:8F:B5:FA:CD:C1:9F:29:D3:EC:27:45:D5:11:0D:8A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:50:22 +0000 ROA not before: Mon 30 Jun 2025 20:36:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140678 IP address blocks: 103.151.174.0/24 maxlen: 24 2001:df3:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.crl rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3FD, serialNumber=27DD8BBB8FB5FACDC19F29D3EC2745D5110D8A9F Validity Not Before: Jun 30 20:36:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a427fe-7035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:03:cd:75:0f:a9:69:4d:18:b9:d6:31:28:a2: 5b:b6:6a:b8:5f:d8:0a:e5:0a:ae:03:7d:12:35:05: 9f:d3:c1:da:82:f5:ff:18:5b:ed:a1:ef:28:62:8a: 65:e3:27:70:d5:f3:54:b0:e7:5e:56:de:3e:23:cd: 59:e3:99:7a:99:82:62:50:2d:b5:f4:8d:83:25:72: 6f:a6:eb:36:f2:9d:cf:fe:43:d3:0a:66:73:77:b3: a0:3c:54:a1:a4:42:74:41:ff:95:1b:6d:d5:7f:3a: 64:58:83:47:d7:46:80:61:f2:f1:7e:cc:58:83:97: 77:ab:80:6d:a4:21:3a:2a:f9:06:44:87:6a:b0:bd: e2:01:04:9a:86:63:ff:99:46:0e:3c:91:b0:44:a1: 76:65:df:a4:bd:73:2a:c5:2f:b8:44:77:a4:9a:e8: ce:77:49:17:69:2e:f3:3d:fe:d7:e0:5d:1f:7f:78: 13:4a:dd:01:0a:50:5a:ca:7e:5f:22:e1:14:51:bd: 2c:b6:83:e3:fa:1e:5a:06:3d:16:b5:03:b9:a9:05: c5:a7:87:28:3f:49:df:b9:ff:1e:b0:a7:be:e5:9b: b4:58:4e:51:73:52:6b:25:bf:de:85:e4:c5:16:ca: 26:45:1c:39:a6:7f:53:f2:57:1b:fe:07:9c:c3:e9: 47:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2C:A1:03:9A:08:B1:F9:B3:65:19:43:7D:E6:28:C3:42:7B:9C:62 X509v3 Authority Key Identifier: keyid:27:DD:8B:BB:8F:B5:FA:CD:C1:9F:29:D3:EC:27:45:D5:11:0D:8A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/J92Lu4-1-s3BnynT7CdF1RENip8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J92Lu4-1-s3BnynT7CdF1RENip8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3FD/A6B3D4789F0E11EA80B75B2CC4F9AE02/CC1DFBAC9F0F11EAA4419D2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.174.0/24 IPv6: 2001:df3:ce80::/48 Signature Algorithm: sha256WithRSAEncryption 22:2a:5e:7c:37:ed:02:9a:cf:a5:b9:0e:09:fa:8d:40:1f:80: d8:3e:92:ab:77:ae:f1:da:ae:2d:31:63:7e:0b:a8:f6:70:45: 61:e7:e2:bd:c0:af:3b:9e:94:19:a9:15:1c:85:20:b9:bf:79: a1:a7:11:f0:f4:00:5f:25:b4:9c:1a:6c:73:bd:0f:0a:58:19: 98:4b:94:6d:6b:3e:e1:64:d8:8c:8b:ed:10:93:45:9c:b5:ea: a5:f1:71:86:76:0a:cb:f2:08:57:30:02:d7:69:6e:a3:18:1b: 35:0f:65:d1:97:1e:02:1b:0f:5f:e0:f3:a0:0d:18:b1:38:d4: b1:b9:ef:8d:55:08:43:cc:ca:86:ce:8d:d8:41:70:59:02:0b: b9:96:95:d4:45:0d:33:66:86:9f:7a:d3:08:c1:0b:4f:f8:77: b7:36:f2:5e:65:25:7c:8f:9d:00:1e:4f:77:30:5b:5f:e9:98: 1c:17:d8:03:67:63:09:b9:0a:79:af:c2:41:d7:b7:71:e7:e4: 77:68:41:12:e0:3f:5e:88:34:7f:48:a0:0e:3b:99:42:99:e9: 55:90:86:53:9e:66:dc:6a:e4:9e:b9:b0:4e:22:47:e6:fc:40: d2:5f:73:32:01:65:7e:69:76:34:5b:68:f6:7e:44:ff:d3:8b: ec:b6:6a:28 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMzRkQxMTAvBgNVBAUTKDI3REQ4QkJCOEZCNUZBQ0RDMTlGMjlEM0VDMjc0NUQ1 MTEwRDhBOUYwHhcNMjUwNjMwMjAzNjMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjdmZS03MDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAPNdQ+paU0YudYxKKJbtmq4X9gK5QquA30SNQWf08HagvX/GFvtoe8oYopl 4ydw1fNUsOdeVt4+I81Z45l6mYJiUC219I2DJXJvpus28p3P/kPTCmZzd7OgPFSh pEJ0Qf+VG23VfzpkWINH10aAYfLxfsxYg5d3q4BtpCE6KvkGRIdqsL3iAQSahmP/ mUYOPJGwRKF2Zd+kvXMqxS+4RHekmujOd0kXaS7zPf7X4F0ff3gTSt0BClBayn5f IuEUUb0stoPj+h5aBj0WtQO5qQXFp4coP0nfuf8esKe+5Zu0WE5Rc1JrJb/eheTF FsomRRw5pn9T8lcb/gecw+lHAwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOAsoQOa CLH5s2UZQ33mKMNCe5xiMB8GA1UdIwQYMBaAFCfdi7uPtfrNwZ8p0+wnRdURDYqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzNGRC9BNkIzRDQ3ODlG MEUxMUVBODBCNzVCMkNDNEY5QUUwMi9KOTJMdTQtMS1zM0JueW5UN0NkRjFSRU5p cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o5Mkx1NC0xLXMzQm55blQ3Q2RGMVJFTmlwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMzRkQvQTZCM0Q0Nzg5RjBFMTFFQTgwQjc1QjJDQzRGOUFFMDIvQ0MxREZCQUM5 RjBGMTFFQUE0NDE5RDJEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5euMA8EAgACMAkDBwAgAQ3zzoAwDQYJKoZIhvcNAQELBQADggEB ACIqXnw37QKaz6W5Dgn6jUAfgNg+kqt3rvHari0xY34LqPZwRWHn4r3ArzuelBmp FRyFILm/eaGnEfD0AF8ltJwabHO9DwpYGZhLlG1rPuFk2IyL7RCTRZy16qXxcYZ2 CsvyCFcwAtdpbqMYGzUPZdGXHgIbD1/g86ANGLE41LG5741VCEPMyobOjdhBcFkC C7mWldRFDTNmhp960wjBC0/4d7c28l5lJXyPnQAeT3cwW1/pmBwX2ANnYwm5Cnmv wkHXt3Hn5HdoQRLgP16INH9IoA47mUKZ6VWQhlOeZtxq5J65sE4iR+b8QNJfczIB ZX5pdjRbaPZ+RP/Ti+y2aig= -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:53 2026 by rpki-client