$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CF6A89D86B3D11F0A0837D7FC4F9AE02.roa File: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (raw, json) Hash identifier: w4kX8b17fTC2s9BhESajxJlKj2QyQzvAORehV2EbPSs= Subject key identifier: 38:2E:D5:F5:3C:E3:60:BB:6A:39:61:16:18:18:56:E0:42:DC:82:A2 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 7C Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CF6A89D86B3D11F0A0837D7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:04:42 +0000 ROA not before: Wed 04 Feb 2026 21:18:00 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 64271 IP address blocks: 103.147.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Feb 4 21:18:00 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48dca-29d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:22:41:09:d4:e2:ed:bd:59:dc:df:d2:4c:49: 0d:79:b0:d5:30:01:0d:c0:92:85:cb:bd:0f:99:52: 09:45:58:07:e8:07:1f:fe:1e:01:25:7d:c5:8a:3c: e3:e6:98:3e:06:30:47:44:ed:61:8f:37:8e:db:ec: 13:00:3a:12:e6:22:7e:d6:73:d8:0b:03:11:12:a1: 7b:4f:b9:ed:6c:4c:35:e8:e3:a8:95:cb:8d:50:4e: 62:d1:d6:35:6b:fb:72:67:85:17:df:85:ca:47:f2: f7:62:f7:7b:3e:12:87:20:e7:8d:90:77:fa:7d:ff: 8b:26:20:89:aa:74:e4:3a:df:4d:f8:90:ad:01:52: ec:e6:94:16:3e:0f:ef:6d:b0:c2:91:88:d6:2d:5f: c8:b5:ef:d5:99:8e:51:a6:97:6c:8e:32:0d:b0:c7: 4c:21:25:ed:ed:9e:d5:fb:73:3c:f0:52:00:aa:b3: ac:55:f0:01:00:2f:f3:ec:77:d6:03:e4:82:c3:08: a5:39:55:75:48:11:20:d6:ab:f2:8d:a1:bb:c9:53: 7d:2b:f7:4b:b8:df:cf:ca:1d:80:64:cf:00:8e:aa: 4c:83:9b:09:f1:1c:e4:7f:42:3b:ea:3c:a4:7d:cd: e9:0e:bb:d4:05:d9:5b:61:a6:c1:18:d0:e3:90:b8: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2E:D5:F5:3C:E3:60:BB:6A:39:61:16:18:18:56:E0:42:DC:82:A2 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/CF6A89D86B3D11F0A0837D7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.198.0/23 Signature Algorithm: sha256WithRSAEncryption 52:6b:86:db:ae:e8:84:45:84:ca:aa:d2:35:1b:81:a6:ed:68: 66:e4:73:27:14:43:26:37:36:78:93:86:9a:05:ba:e1:55:69: f8:67:c5:da:ee:7e:28:2a:c1:b3:86:e4:90:07:7c:aa:75:0c: a8:72:fe:f5:7b:d8:be:06:4a:08:61:64:97:33:b9:50:d9:45: ef:97:64:43:6b:72:15:87:6c:47:bb:19:fa:e5:33:6c:62:c5: 62:f7:e4:cf:19:41:35:c1:71:91:42:c1:62:13:d7:c5:03:3f: 9a:d9:b0:8d:91:e2:aa:8a:46:79:db:a6:aa:6d:db:81:4f:00: 5d:c7:34:a6:f4:69:bd:28:d2:ad:19:d0:de:d2:04:31:22:dc: c0:25:d3:87:d1:10:9f:e1:50:de:31:38:34:f0:41:48:af:51: 93:6c:c5:79:14:6b:ae:f6:3f:68:1c:14:f1:3f:35:e0:a6:c1: 03:80:96:11:04:2a:bc:5e:11:d4:e7:22:54:7c:33:a3:25:79: ef:65:f7:cf:8e:a6:83:2c:ac:b4:6f:d6:3b:f1:b7:74:92:36: a2:ab:45:53:57:4a:dd:8d:e9:3f:d9:f7:d1:d6:87:db:a8:b5: e3:a8:c6:16:aa:1b:d3:95:d8:84:83:84:2e:85:3b:df:69:8e: db:a7:6b:08 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNjAyMDQyMTE4MDBaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4ZGNhLTI5ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZIkEJ1OLtvVnc39JMSQ15sNUwAQ3AkoXLvQ+ZUglFWAfoBx/+HgElfcWKPOPm mD4GMEdE7WGPN47b7BMAOhLmIn7Wc9gLAxESoXtPue1sTDXo46iVy41QTmLR1jVr +3JnhRffhcpH8vdi93s+Eocg542Qd/p9/4smIImqdOQ63034kK0BUuzmlBY+D+9t sMKRiNYtX8i179WZjlGml2yOMg2wx0whJe3tntX7czzwUgCqs6xV8AEAL/Psd9YD 5ILDCKU5VXVIESDWq/KNobvJU30r90u438/KHYBkzwCOqkyDmwnxHOR/QjvqPKR9 zekOu9QF2VthpsEY0OOQuKx9AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUOC7V9Tzj YLtqOWEWGBhW4ELcgqIwHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUY1QS8wODk4QjIzQTExQkExMUVCQkMxQTU4NENDNEY5QUUwMi9DRjZBODlEODZC M0QxMUYwQTA4MzdEN0ZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnk8YwDQYJKoZIhvcNAQELBQADggEBAFJrhtuu6IRFhMqq0jUbgabt aGbkcycUQyY3NniThpoFuuFVafhnxdrufigqwbOG5JAHfKp1DKhy/vV72L4GSghh ZJczuVDZRe+XZENrchWHbEe7GfrlM2xixWL35M8ZQTXBcZFCwWIT18UDP5rZsI2R 4qqKRnnbpqpt24FPAF3HNKb0ab0o0q0Z0N7SBDEi3MAl04fREJ/hUN4xODTwQUiv UZNsxXkUa672P2gcFPE/NeCmwQOAlhEEKrxeEdTnIlR8M6Mlee9l98+OpoMsrLRv 1jvxt3SSNqKrRVNXSt2N6T/Z99HWh9uoteOoxhaqG9OV2ISDhC6FO99pjtunawg= -----END CERTIFICATE-----Generated at Thu Mar 26 13:52:05 2026 by rpki-client