$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa File: 09F041C675FB11EAB470A130C4F9AE02.roa (raw, json) Hash identifier: B4PjSBYjorfWxo1YSpPxhGaOBSD9dJ0o8/kl1/H4JCI= Subject key identifier: 70:1C:85:20:F4:57:98:DA:A0:43:36:5B:51:E0:83:C5:59:42:58:12 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 126F Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:26:19 +0000 ROA not before: Tue 14 Oct 2025 18:16:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.21.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4719 (0x126f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 14 18:16:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a468aa-276a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:53:e3:8a:4f:04:8d:25:d5:8f:0d:a6:62:c9: b1:8d:30:0b:d7:cd:fe:c5:1a:1a:db:d5:37:1b:80: 49:f8:c8:9d:4b:f2:c7:34:50:3b:62:20:a7:dc:4e: ea:cd:ec:be:99:ec:56:6a:54:91:a6:ae:a8:93:92: a6:c4:07:87:7f:4c:1c:6a:b8:52:8a:bd:de:e9:3e: 12:22:7e:d7:2d:f8:cd:e9:10:f5:f8:14:9a:f3:5a: 82:25:19:c4:0c:b5:bc:45:ec:4b:74:da:d8:67:23: 84:95:0a:f0:ad:05:95:7f:49:46:2f:f3:40:59:b5: b8:e4:8b:61:98:96:e5:c7:d5:39:a4:65:c2:c4:14: 80:8e:46:17:f4:27:a9:71:15:de:3d:c3:b3:25:d5: ad:c2:20:8d:0f:d3:00:ff:25:d4:84:00:dd:45:7d: ad:cc:32:b7:a2:7f:66:3e:77:58:26:53:c0:2f:2c: 7f:be:bd:89:f2:69:a4:36:9e:c6:aa:6a:a2:e3:31: f8:9f:1d:c5:14:aa:52:22:5c:7b:03:f2:ff:ae:96: c7:e7:ac:43:e8:95:18:1b:b6:4f:69:75:5b:fa:3a: 70:c9:45:02:c4:dd:84:45:4b:d7:b1:2c:94:07:89: 72:da:45:62:99:f7:11:4f:9e:c6:0c:3a:b1:0c:67: d2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1C:85:20:F4:57:98:DA:A0:43:36:5B:51:E0:83:C5:59:42:58:12 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.244.0/23 Signature Algorithm: sha256WithRSAEncryption 45:80:8e:59:42:62:d8:40:12:44:52:a5:1a:70:7b:f8:c8:db: bc:c9:7f:dc:33:07:2c:28:8c:90:b3:77:de:ec:6a:9a:3b:7a: f6:7b:f1:ce:52:a4:2c:bf:ad:7a:75:fb:48:c7:a7:4e:6c:9f: d6:7b:61:ea:bf:9a:59:4a:81:52:bb:b0:6c:81:00:31:ca:12: 7d:3d:62:f6:7b:62:64:a5:aa:a4:3d:f5:1c:98:d9:ee:70:0a: 08:39:d5:ff:c8:eb:85:c1:54:fa:3d:4a:8d:e1:18:90:c5:f2: 99:f2:c1:23:35:93:f1:c3:25:96:00:15:3e:ba:09:49:ac:62: 80:1c:96:8c:00:9e:21:98:99:f3:fa:a8:ae:18:93:63:80:d1: c1:a3:90:5a:43:07:b3:ed:8f:54:f6:8d:b0:76:56:af:17:c1: 49:b4:75:d6:01:26:17:3a:11:c9:82:3f:67:42:85:96:0f:c9: 4e:de:09:d1:f6:df:d1:f6:45:aa:f2:34:19:ea:8c:5b:d5:df: 35:4b:e1:98:5c:cf:cc:85:7e:49:dd:87:69:59:d9:7f:fa:e3: d8:8a:2b:ac:de:d5:52:be:a1:9c:4e:d7:8f:22:df:8e:08:81: 8a:25:df:63:0d:10:f6:6b:fe:23:29:d2:df:37:af:d3:95:17: 53:a1:9a:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE0MTgxNjE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhhYS0yNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1Pjik8EjSXVjw2mYsmxjTAL183+xRoa29U3G4BJ+MidS/LHNFA7YiCn3E7q zey+mexWalSRpq6ok5KmxAeHf0wcarhSir3e6T4SIn7XLfjN6RD1+BSa81qCJRnE DLW8RexLdNrYZyOElQrwrQWVf0lGL/NAWbW45IthmJblx9U5pGXCxBSAjkYX9Cep cRXePcOzJdWtwiCND9MA/yXUhADdRX2tzDK3on9mPndYJlPALyx/vr2J8mmkNp7G qmqi4zH4nx3FFKpSIlx7A/L/rpbH56xD6JUYG7ZPaXVb+jpwyUUCxN2ERUvXsSyU B4ly2kVimfcRT57GDDqxDGfS/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHAchSD0 V5jaoEM2W1Hgg8VZQlgSMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvMDlGMDQxQzY3 NUZCMTFFQUI0NzBBMTMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxX0MA0GCSqGSIb3DQEBCwUAA4IBAQBFgI5ZQmLYQBJEUqUacHv4 yNu8yX/cMwcsKIyQs3fe7GqaO3r2e/HOUqQsv616dftIx6dObJ/We2Hqv5pZSoFS u7BsgQAxyhJ9PWL2e2JkpaqkPfUcmNnucAoIOdX/yOuFwVT6PUqN4RiQxfKZ8sEj NZPxwyWWABU+uglJrGKAHJaMAJ4hmJnz+qiuGJNjgNHBo5BaQwez7Y9U9o2wdlav F8FJtHXWASYXOhHJgj9nQoWWD8lO3gnR9t/R9kWq8jQZ6oxb1d81S+GYXM/MhX5J 3YdpWdl/+uPYiius3tVSvqGcTtePIt+OCIGKJd9jDRD2a/4jKdLfN6/TlRdToZov -----END CERTIFICATE-----Generated at Thu Mar 26 01:57:30 2026 by rpki-client