$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa File: 0BFA0C9C927E11EEA47AD74FC4F9AE02.roa (raw, json) Hash identifier: NkFkxkOiqlXqHj2ZsxeLdI/sqTYxi3Y/LDVm73PK/X8= Subject key identifier: 92:8A:DE:44:1C:E8:7E:7B:FF:15:AC:84:37:22:7B:EE:CF:AA:AF:EF Certificate issuer: /CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Certificate serial: 050F Authority key identifier: E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:24 +0000 ROA not before: Thu 20 Nov 2025 22:45:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146990 IP address blocks: 103.172.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1295 (0x50f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF35B, serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Validity Not Before: Nov 20 22:45:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46e4f-ad3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:b7:b6:92:14:2a:6b:5e:fb:00:d9:8d:d1: 69:72:b5:f7:1b:61:af:ba:0d:5f:b0:64:35:a1:a2: 39:7c:a8:41:76:a5:41:c4:57:1a:bc:57:89:51:a4: ce:a1:31:21:b8:e1:3c:72:19:35:68:a7:92:24:f0: 8d:fc:20:01:e7:f9:3d:40:89:89:be:61:8e:a9:00: cd:d2:bd:2e:b7:3f:35:e1:b9:36:9e:58:4d:b4:aa: cd:ba:a7:9e:cd:77:76:a5:67:f6:e9:16:d3:d1:42: 50:9a:d1:0b:10:0f:5c:54:69:69:04:ad:a6:a2:ba: c1:f5:6a:f9:f4:b3:2e:42:ba:e0:42:d5:84:da:59: 4c:e2:94:96:a5:7a:c2:51:44:eb:2a:d1:f0:c2:16: 1e:56:15:52:47:17:a7:04:01:c4:80:13:e8:21:9a: cd:b8:0d:94:3e:8e:67:ea:f4:ed:07:1e:a5:38:52: f4:b3:d0:92:bd:af:22:c0:ba:2a:2b:1f:07:9f:0e: 26:ef:9e:07:ce:b1:29:ab:53:31:e2:70:8f:d6:b6: 1c:de:71:ed:2d:81:73:ff:c9:90:e5:e6:c7:13:a4: 74:50:e2:da:63:44:4e:53:16:0e:da:d2:4f:4b:38: 51:04:9e:4d:17:1a:ec:54:09:3e:29:80:c7:93:c9: 72:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:8A:DE:44:1C:E8:7E:7B:FF:15:AC:84:37:22:7B:EE:CF:AA:AF:EF X509v3 Authority Key Identifier: keyid:E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.138.0/24 Signature Algorithm: sha256WithRSAEncryption bf:ac:1a:a6:14:4b:d2:94:79:18:e4:83:97:1d:cb:ee:5b:bc: d4:a5:2d:80:eb:aa:8f:61:0a:ad:ff:a1:13:d3:de:4f:ca:75: 65:b1:03:8b:0e:83:e5:c3:b4:15:14:e9:25:34:ea:63:08:77: 58:8e:f8:0b:5b:aa:14:a9:76:9b:ce:9d:69:9b:b5:45:98:80: 24:ed:ec:e2:f9:42:b8:d7:ad:f7:3d:48:02:20:52:97:bc:24: ab:b9:2a:1e:5d:87:ea:16:3f:17:de:92:07:b7:2b:b1:03:1d: 2b:2c:49:cb:c8:31:e7:5c:e6:21:6e:de:1c:e1:ba:1e:5f:3f: b5:03:ae:d4:bb:d7:c7:33:82:0a:e1:b3:62:9a:5a:2f:b0:6f: 39:15:75:44:d5:2d:91:17:08:c8:df:e5:9e:e0:3c:6b:34:3b: 75:a6:0e:18:07:13:4d:71:b0:ed:80:40:65:c2:30:a0:a3:be: 12:38:7e:1d:37:da:72:6f:bf:7b:6e:db:bf:58:13:b0:37:28: 0a:91:9a:ee:27:05:a7:ca:ae:e9:38:1d:c7:a7:a9:ce:14:77: 1b:9a:f1:a3:b9:1b:c5:e9:83:f3:58:87:d1:80:fd:18:e2:9d: 1e:4a:b9:40:84:03:7c:64:b0:70:57:ac:b4:6e:f4:5b:55:af: ad:cb:f4:00 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYzNUIxMTAvBgNVBAUTKEU0MDcyMEJBMjkzQkFGMjVCQzBBMTc3OEM2NUNGMEQy RTBGMzUxNjAwHhcNMjUxMTIwMjI0NTQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU0Zi1hZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cy3tpIUKmte+wDZjdFpcrX3G2Gvug1fsGQ1oaI5fKhBdqVBxFcavFeJUaTO oTEhuOE8chk1aKeSJPCN/CAB5/k9QImJvmGOqQDN0r0utz814bk2nlhNtKrNuqee zXd2pWf26RbT0UJQmtELEA9cVGlpBK2morrB9Wr59LMuQrrgQtWE2llM4pSWpXrC UUTrKtHwwhYeVhVSRxenBAHEgBPoIZrNuA2UPo5n6vTtBx6lOFL0s9CSva8iwLoq Kx8Hnw4m754HzrEpq1Mx4nCP1rYc3nHtLYFz/8mQ5ebHE6R0UOLaY0ROUxYO2tJP SzhRBJ5NFxrsVAk+KYDHk8ly6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJKK3kQc 6H57/xWshDcie+7Pqq/vMB8GA1UdIwQYMBaAFOQHILopO68lvAoXeMZc8NLg81Fg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjM1Qi9FMDEwMTU4QTU2 NEUxMUVDODU4ODU5MTRDNEY5QUUwMi81QWNndWlrN3J5VzhDaGQ0eGx6dzB1RHpV V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVBY2d1aWs3cnlXOENoZDR4bHp3MHVEelVXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYzNUIvRTAxMDE1OEE1NjRFMTFFQzg1ODg1OTE0QzRGOUFFMDIvMEJGQTBDOUM5 MjdFMTFFRUE0N0FENzRGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6yKMA0GCSqGSIb3DQEBCwUAA4IBAQC/rBqmFEvSlHkY5IOXHcvu W7zUpS2A66qPYQqt/6ET095PynVlsQOLDoPlw7QVFOklNOpjCHdYjvgLW6oUqXab zp1pm7VFmIAk7ezi+UK41633PUgCIFKXvCSruSoeXYfqFj8X3pIHtyuxAx0rLEnL yDHnXOYhbt4c4boeXz+1A67Uu9fHM4IK4bNimlovsG85FXVE1S2RFwjI3+We4Dxr NDt1pg4YBxNNcbDtgEBlwjCgo74SOH4dN9pyb797btu/WBOwNygKkZruJwWnyq7p OB3Hp6nOFHcbmvGjuRvF6YPzWIfRgP0Y4p0eSrlAhAN8ZLBwV6y0bvRbVa+ty/QA -----END CERTIFICATE-----Generated at Thu Mar 26 18:49:23 2026 by rpki-client