$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa File: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (raw, json) Hash identifier: B8m2ePIUCgEMFkUqEdw865bj5KYfUZe6gW5FvbGFIPQ= Subject key identifier: DE:0C:89:54:72:21:D8:B5:3B:67:76:84:B1:89:07:1D:39:7D:37:6D Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 7B Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:04:41 +0000 ROA not before: Wed 04 Feb 2026 21:17:59 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138545 IP address blocks: 103.147.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Feb 4 21:17:59 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48dc9-b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5f:3d:77:c9:13:65:8a:00:75:62:b4:49:bc: 38:d7:ab:e4:86:be:21:5a:88:ee:fc:43:02:96:68: f7:7e:32:33:24:9a:4b:28:ec:b9:71:0c:40:47:09: 26:4f:d8:13:f3:51:74:5d:39:f9:7f:8a:1f:5c:36: 4b:44:7d:08:99:19:cc:58:c7:56:31:a8:ff:10:da: d4:73:ac:3a:53:d8:a6:18:73:84:38:5d:ba:e4:87: b4:71:8f:b6:b0:42:bc:fc:6f:85:23:5d:47:87:28: dd:93:5b:02:6d:48:b9:33:0b:fb:57:89:de:35:63: d0:df:47:c8:d1:22:4a:3c:e1:31:68:00:5b:0d:ed: 08:1f:62:57:c2:40:86:12:d6:10:3f:b4:c9:85:0a: 76:67:14:9d:71:d8:f2:d2:93:5c:24:7d:22:99:26: 43:7e:7e:dd:b9:c4:fd:e4:56:0d:bf:f7:3c:f1:bc: 68:03:de:42:0c:51:f5:bf:c5:c8:6b:ba:25:4d:e9: 87:45:dc:dd:ad:bc:05:ec:02:b7:b6:fe:5e:ab:e7: d3:b6:34:37:91:2c:59:a7:9f:67:c8:6e:06:03:f1: 94:93:68:26:af:e3:00:30:98:18:7f:65:a7:37:7e: cb:4e:5d:65:32:53:3a:84:04:27:53:a9:63:51:3a: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0C:89:54:72:21:D8:B5:3B:67:76:84:B1:89:07:1D:39:7D:37:6D X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.198.0/23 Signature Algorithm: sha256WithRSAEncryption aa:46:5e:cd:26:04:30:4c:2a:b3:9a:f9:89:b9:8f:1a:48:9a: 09:3c:05:c4:d6:7c:a5:de:8a:b9:db:e6:12:e0:e8:f9:d0:69: 8b:f7:21:23:c9:9a:85:7f:c4:c6:a2:71:29:c9:9c:17:2d:27: 52:0e:60:d8:7f:fb:18:d1:ac:7a:13:a0:44:95:d6:ca:fc:98: 6d:b8:e1:3e:b9:6a:eb:0e:0e:de:5a:61:96:52:dc:d1:1c:c2: 9a:98:c7:76:26:ee:c4:44:ad:de:4b:c9:3f:36:f9:7b:2e:7c: 2a:86:4e:00:f5:84:5f:44:45:08:54:27:72:b9:36:4f:8d:0b: 5a:e2:7c:77:b1:15:95:73:70:41:e6:de:4a:17:43:6d:2b:54: 21:b0:fa:b2:8b:b2:d6:36:15:ba:15:58:16:6b:25:98:b9:e5: 6e:74:f6:3c:6a:f7:53:56:39:6e:99:56:70:8a:8d:4a:dd:2b: 92:cc:0d:ad:a0:70:fd:64:c2:3f:13:8e:72:bd:b7:11:96:3c: 20:3b:c4:a9:32:38:b4:3f:8a:9c:b8:db:ac:7a:26:e9:24:56: a0:d8:53:a1:0f:ae:54:47:49:b7:27:9c:1e:c5:1d:1a:ae:6f: df:47:fc:e3:4d:54:6e:86:24:75:d4:4f:33:c7:45:a9:5b:5a: 8b:5b:6f:51 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNjAyMDQyMTE3NTlaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4ZGM5LWI4MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5Xz13yRNligB1YrRJvDjXq+SGviFaiO78QwKWaPd+MjMkmkso7LlxDEBHCSZP 2BPzUXRdOfl/ih9cNktEfQiZGcxYx1YxqP8Q2tRzrDpT2KYYc4Q4Xbrkh7Rxj7aw Qrz8b4UjXUeHKN2TWwJtSLkzC/tXid41Y9DfR8jRIko84TFoAFsN7QgfYlfCQIYS 1hA/tMmFCnZnFJ1x2PLSk1wkfSKZJkN+ft25xP3kVg2/9zzxvGgD3kIMUfW/xchr uiVN6YdF3N2tvAXsAre2/l6r59O2NDeRLFmnn2fIbgYD8ZSTaCav4wAwmBh/Zac3 fstOXWUyUzqEBCdTqWNROnGPAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU3gyJVHIh 2LU7Z3aEsYkHHTl9N20wHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi9DRUZFREFCMjZC M0QxMUYwQTA4MzdEN0ZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnk8YwDQYJKoZIhvcNAQELBQADggEBAKpGXs0mBDBMKrOa+Ym5jxpI mgk8BcTWfKXeirnb5hLg6PnQaYv3ISPJmoV/xMaicSnJnBctJ1IOYNh/+xjRrHoT oESV1sr8mG244T65ausODt5aYZZS3NEcwpqYx3Ym7sRErd5LyT82+XsufCqGTgD1 hF9ERQhUJ3K5Nk+NC1rifHexFZVzcEHm3koXQ20rVCGw+rKLstY2FboVWBZrJZi5 5W509jxq91NWOW6ZVnCKjUrdK5LMDa2gcP1kwj8TjnK9txGWPCA7xKkyOLQ/ipy4 26x6JukkVqDYU6EPrlRHSbcnnB7FHRqub99H/ONNVG6GJHXUTzPHRalbWotbb1E= -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:15 2026 by rpki-client