$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa File: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (raw, json) Hash identifier: pJ8W3JL1SvT+9bYhgevlA/zqowg96Jc82pj7ld8nZi8= Subject key identifier: C3:58:E9:69:0C:8E:AB:75:68:DD:4C:A1:BF:39:F7:00:10:F3:27:CC Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 090C Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:04:31 +0000 ROA not before: Sun 02 Nov 2025 20:40:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 64053 IP address blocks: 103.198.168.0/22 maxlen: 24 2401:f1c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2316 (0x90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Nov 2 20:40:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4476f-9a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:24:3c:00:6e:75:88:d0:2a:07:eb:5c:6f:71: 7f:d1:0c:54:2e:1e:de:4a:5b:86:8e:23:e5:65:ac: c7:01:4a:43:55:c5:14:9b:4c:97:e9:7d:9d:47:af: 22:d5:ad:5d:f1:82:8a:5e:f7:36:7e:8a:e1:64:8a: 80:a7:2a:5e:b1:71:4f:ed:54:f9:a9:a8:b2:37:ab: c0:9d:01:38:82:96:5b:a3:60:18:85:b5:5a:f4:a1: 81:c7:ac:2c:9f:64:eb:43:68:af:c4:80:4b:72:bc: d2:ec:e8:22:9f:5a:a1:f5:e9:2d:e6:2a:b4:70:09: 7a:c3:03:0b:50:ca:46:02:66:76:23:46:69:9d:44: 36:5f:4a:7a:73:58:50:6a:5e:e0:37:b5:7a:e8:be: 65:10:36:8f:f3:ca:86:51:85:47:a7:ff:6c:72:6a: 8e:53:f7:9c:7e:e0:41:3d:4c:f4:48:c1:e7:ec:f6: 8e:a1:c1:b9:60:4f:62:c6:66:3c:3e:09:ca:f8:e0: 3e:71:8c:e1:62:3e:43:e0:15:6f:34:05:dc:db:df: 02:86:10:0d:96:4e:cf:07:1f:94:16:45:bb:5d:80: 60:40:af:24:c8:06:2e:99:3d:59:37:6a:af:4a:3a: 42:0c:a8:87:21:d8:ea:39:60:63:99:d6:d7:0f:3a: 74:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:58:E9:69:0C:8E:AB:75:68:DD:4C:A1:BF:39:F7:00:10:F3:27:CC X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.168.0/22 IPv6: 2401:f1c0::/32 Signature Algorithm: sha256WithRSAEncryption 04:f5:00:76:e5:e5:0d:dc:38:fc:b3:8d:63:f6:e5:d7:cf:3a: 14:35:d4:01:10:ad:c6:22:32:bb:83:71:78:46:dc:de:af:63: 8e:5b:ed:61:4e:cb:01:39:ef:ec:c5:e6:be:c3:71:90:66:73: ef:ef:0f:1d:57:f1:b7:33:fb:d1:5f:36:23:dd:b1:de:9f:51: 3d:bd:29:56:a5:39:b2:ed:75:5a:fc:21:4d:33:8f:9b:fd:c4: ee:b7:cb:ad:9d:cc:b8:18:94:f7:a9:df:47:8c:a1:76:7d:3f: ca:e0:0d:2f:03:a6:04:34:28:e5:0c:61:3f:6d:fb:5c:2f:d7: 81:02:94:3b:76:a5:cb:3c:33:08:6b:46:c8:9d:f4:02:7d:a8: ba:23:57:4c:54:b9:c3:11:6a:67:57:cd:5a:10:37:ef:69:04: 8a:7e:72:59:53:27:4e:51:87:b6:57:c1:12:5c:50:52:32:82: b2:d4:e9:1a:af:fe:2b:20:1a:2c:7e:90:11:c2:fb:95:61:55: 32:2b:81:02:a2:25:a8:18:74:8f:64:2d:61:ab:16:f2:b2:72: 62:d1:8e:74:68:24:38:61:c1:7f:f9:67:43:42:b3:d9:8d:4e: 85:48:bf:ae:97:28:8d:74:c1:4c:d2:9c:be:87:1a:f8:28:78: 4c:e5:80:bd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUxMTAyMjA0MDA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDc2Zi05YTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryQ8AG51iNAqB+tcb3F/0QxULh7eSluGjiPlZazHAUpDVcUUm0yX6X2dR68i 1a1d8YKKXvc2forhZIqApypesXFP7VT5qaiyN6vAnQE4gpZbo2AYhbVa9KGBx6ws n2TrQ2ivxIBLcrzS7Ogin1qh9ekt5iq0cAl6wwMLUMpGAmZ2I0ZpnUQ2X0p6c1hQ al7gN7V66L5lEDaP88qGUYVHp/9scmqOU/ecfuBBPUz0SMHn7PaOocG5YE9ixmY8 PgnK+OA+cYzhYj5D4BVvNAXc298ChhANlk7PBx+UFkW7XYBgQK8kyAYumT1ZN2qv SjpCDKiHIdjqOWBjmdbXDzp0XwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMNY6WkM jqt1aN1Mob859wAQ8yfMMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OTEvN0M3QjFGNjZDMzVBMTFFQUE4RUNCNjdGQzRGOUFFMDIvNDU2Q0QxMkU1 RjAxMTFFQ0FFNEYwMjg2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ8aoMA0EAgACMAcDBQAkAfHAMA0GCSqGSIb3DQEBCwUAA4IBAQAE 9QB25eUN3Dj8s41j9uXXzzoUNdQBEK3GIjK7g3F4Rtzer2OOW+1hTssBOe/sxea+ w3GQZnPv7w8dV/G3M/vRXzYj3bHen1E9vSlWpTmy7XVa/CFNM4+b/cTut8utncy4 GJT3qd9HjKF2fT/K4A0vA6YENCjlDGE/bftcL9eBApQ7dqXLPDMIa0bInfQCfai6 I1dMVLnDEWpnV81aEDfvaQSKfnJZUydOUYe2V8ESXFBSMoKy1Okar/4rIBosfpAR wvuVYVUyK4ECoiWoGHSPZC1hqxbysnJi0Y50aCQ4YcF/+WdDQrPZjU6FSL+ulyiN dMFM0py+hxr4KHhM5YC9 -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:42 2026 by rpki-client