$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa File: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (raw, json) Hash identifier: 4+Ac/qmp1PMvnSJouQnIg3+M0ch95gCYSQtb1scOlcY= Subject key identifier: F3:A3:FE:E2:6F:EE:F9:3F:6A:57:B3:99:13:CA:2E:47:FD:C5:FD:71 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D82 Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:39:34 +0000 ROA not before: Mon 22 Dec 2025 18:15:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24496 IP address blocks: 103.236.194.0/23 maxlen: 24 202.180.216.0/21 maxlen: 24 2407:3680::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Dec 22 18:15:01 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44fa6-3f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:01:b8:b4:b8:af:59:7e:16:17:45:39:7b:59: 43:82:90:9c:ba:26:b9:f9:28:2f:8a:2d:14:08:60: e5:8c:b9:d7:ff:62:19:0b:fd:11:6a:14:a0:24:3c: f5:db:e0:32:07:79:25:7b:af:bd:38:d3:c2:65:d0: 12:8e:1e:f8:7a:cc:99:a4:bb:1c:a5:dd:ad:2f:8c: d8:0c:e2:be:21:4b:35:20:38:d0:f4:bf:65:d4:c4: 3a:6e:2f:5f:96:4a:77:6b:94:ee:ae:5d:ed:f4:19: f0:2c:02:b5:ee:a6:b9:17:92:3d:cc:6b:64:05:c5: 64:9f:ce:84:1a:31:d8:6d:c0:97:d9:f5:43:25:a1: 17:f5:6c:62:16:70:62:26:2c:f9:ba:73:e3:74:8d: de:77:94:7b:cb:29:42:c2:a3:ce:ab:ae:e3:8f:5f: 90:ab:36:60:51:8f:81:4e:e8:e8:81:b2:1c:15:0c: 52:16:05:0a:0a:9e:90:67:04:70:f2:68:3c:84:ec: fc:7a:0b:91:c5:11:91:63:7f:cd:21:ce:80:89:ca: 34:b4:15:c0:68:d6:1c:d4:ad:b0:c5:ed:fa:d4:3a: 85:a6:38:d5:f2:b1:6e:f2:03:0e:5d:88:7c:69:24: 37:a7:a7:21:73:6a:9e:c5:a2:99:90:77:ef:7e:93: b1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A3:FE:E2:6F:EE:F9:3F:6A:57:B3:99:13:CA:2E:47:FD:C5:FD:71 X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/5A395E26E2DB11EB8608EA87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.236.194.0/23 202.180.216.0/21 IPv6: 2407:3680::/32 Signature Algorithm: sha256WithRSAEncryption 4c:b6:9a:0b:e8:12:76:d5:02:3d:f7:b8:07:c6:91:37:b1:1a: a5:48:65:81:36:f4:28:7e:68:21:41:17:24:20:ed:e3:90:a0: d8:ba:8c:00:c3:72:26:2b:62:ca:bb:2b:6d:19:45:25:3a:8c: 6b:e1:6c:e0:93:d5:bb:80:4d:29:f2:dd:7c:d0:f7:f1:57:9d: 65:ee:aa:88:6b:06:a1:0a:0c:11:67:06:8b:fc:5c:a0:b2:fb: 92:b6:95:aa:97:34:04:b3:ba:eb:a5:84:ea:20:e6:bb:bd:6d: ab:eb:ff:da:29:f2:5c:8a:d5:2b:db:8c:08:c2:b5:d1:cf:b1: c7:42:38:84:b5:b7:e8:9f:ab:72:a9:69:4f:a2:76:f8:da:c7: 21:db:34:f5:02:04:28:81:d0:fd:15:87:5a:85:06:53:63:26: a7:80:34:5b:c1:61:13:f4:30:a9:34:7d:5f:7f:61:0a:ed:64: 34:56:97:2e:77:86:3f:f0:cc:a4:50:c2:3b:d9:dc:3a:b8:d1: c9:47:b5:65:2b:eb:1c:ef:bd:05:43:6f:10:ff:d3:c6:2b:a6: de:59:bb:87:04:4b:0a:c9:8c:c9:f0:0c:00:c5:e8:0f:dd:cd: 7c:03:a6:16:dc:df:f7:4a:01:76:d2:62:c6:00:cf:19:23:03: c7:d0:29:b8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUxMjIyMTgxNTAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGZhNi0zZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wG4tLivWX4WF0U5e1lDgpCcuia5+Sgvii0UCGDljLnX/2IZC/0RahSgJDz1 2+AyB3kle6+9ONPCZdASjh74esyZpLscpd2tL4zYDOK+IUs1IDjQ9L9l1MQ6bi9f lkp3a5Turl3t9BnwLAK17qa5F5I9zGtkBcVkn86EGjHYbcCX2fVDJaEX9WxiFnBi Jiz5unPjdI3ed5R7yylCwqPOq67jj1+QqzZgUY+BTujogbIcFQxSFgUKCp6QZwRw 8mg8hOz8eguRxRGRY3/NIc6Aico0tBXAaNYc1K2wxe361DqFpjjV8rFu8gMOXYh8 aSQ3p6chc2qexaKZkHfvfpOxuQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPOj/uJv 7vk/alezmRPKLkf9xf1xMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1NjEvODZDMzA0ODJFNzM0MTFFOTlEOEVBRjQ3QzRGOUFFMDIvNUEzOTVFMjZF MkRCMTFFQjg2MDhFQTg3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ+zCAwQDyrTYMA0EAgACMAcDBQAkBzaAMA0GCSqGSIb3DQEBCwUA A4IBAQBMtpoL6BJ21QI997gHxpE3sRqlSGWBNvQofmghQRckIO3jkKDYuowAw3Im K2LKuyttGUUlOoxr4Wzgk9W7gE0p8t180PfxV51l7qqIawahCgwRZwaL/FygsvuS tpWqlzQEs7rrpYTqIOa7vW2r6//aKfJcitUr24wIwrXRz7HHQjiEtbfon6tyqWlP onb42sch2zT1AgQogdD9FYdahQZTYyangDRbwWET9DCpNH1ff2EK7WQ0Vpcud4Y/ 8MykUMI72dw6uNHJR7VlK+sc770FQ28Q/9PGK6beWbuHBEsKyYzJ8AwAxegP3c18 A6YW3N/3SgF20mLGAM8ZIwPH0Cm4 -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:34 2026 by rpki-client