$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa File: 16E990CA6B0411ED849E0957C4F9AE02.roa (raw, json) Hash identifier: 5Y3Gh8SZNPXmXnI9agUdsXUTOgsdD8G7cfIibLyVAxY= Subject key identifier: E8:30:05:FF:44:5C:DF:A9:E4:CD:FC:DB:F2:F7:84:52:71:E3:B7:99 Certificate issuer: /CN=A91FD4A1/serialNumber=1196CDDFDA3EBDC5ADA8FFC5BCB384912147D544 Certificate serial: 026C Authority key identifier: 11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:44:31 +0000 ROA not before: Sat 29 Nov 2025 00:27:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134228 IP address blocks: 103.156.166.0/23 maxlen: 23 103.156.166.0/24 maxlen: 24 103.156.167.0/24 maxlen: 24 2001:df1:9140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.crl rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4A1, serialNumber=1196CDDFDA3EBDC5ADA8FFC5BCB384912147D544 Validity Not Before: Nov 29 00:27:54 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5862f-451e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:81:ce:28:27:1a:67:b8:13:e9:c3:74:4a:04: 0a:27:2d:9f:e4:a7:7b:ce:1e:0d:07:fd:6c:58:84: 71:6d:91:0e:12:d3:46:d2:cd:b6:b0:2b:57:ad:dd: c3:3f:2e:37:eb:96:b4:e6:30:bf:3f:f1:95:ee:bd: d1:15:f1:a9:28:85:03:13:93:ab:cd:b8:ea:18:ee: 8e:1f:bb:dc:8f:e5:cf:b3:73:a9:36:6d:63:c8:39: 8e:ef:9a:61:c2:96:e1:09:5c:1f:a6:c4:5e:4f:fb: fa:d1:aa:c8:6f:df:d5:ca:90:19:20:29:c3:e9:ff: e2:fb:b9:16:f0:16:4b:ee:6e:94:37:fa:68:c8:86: 34:26:ff:72:a6:d8:03:ee:61:7d:82:ea:c9:15:32: 55:7c:e2:e7:a0:94:8a:b2:dd:03:57:6c:ea:fd:26: 33:ee:70:fb:b1:59:84:60:3e:8b:c6:7a:10:5e:ab: c5:1c:ff:dc:bd:e7:e6:1f:41:40:67:1b:93:15:77: 67:a9:6a:74:a5:25:2c:f2:94:01:53:35:cc:fe:49: c4:46:8b:c7:b1:4d:b7:49:90:55:ad:cb:30:e6:83: 04:fe:19:4c:fd:58:75:0d:9a:04:30:4b:06:7e:a6: 0c:40:d1:1a:e4:0b:39:3e:74:02:51:d0:bd:76:b6: b8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:30:05:FF:44:5C:DF:A9:E4:CD:FC:DB:F2:F7:84:52:71:E3:B7:99 X509v3 Authority Key Identifier: keyid:11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/16E990CA6B0411ED849E0957C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.166.0/23 IPv6: 2001:df1:9140::/48 Signature Algorithm: sha256WithRSAEncryption 23:89:d9:50:c2:99:6f:39:cb:a1:bc:93:93:1f:ac:6a:28:a0: 25:a6:d4:97:93:41:e7:b6:de:3b:68:e8:e7:ef:06:23:0c:01: 7a:df:b7:76:00:45:0c:1f:1d:ac:8e:9d:57:68:36:a2:d4:85: ba:f6:33:07:3f:3a:ff:26:3c:ab:a9:93:51:82:9c:5f:b4:c2: 7c:ed:c3:fa:36:e7:c5:fc:e6:77:5f:c5:71:9b:e1:17:e4:d9: 98:a3:06:8b:8c:cc:b0:b4:9a:29:57:72:25:93:e6:5b:0f:4c: dc:91:e4:3e:a2:67:98:28:98:b8:07:b2:15:8a:c2:07:8b:c8: 69:fb:b6:60:4d:4b:69:24:ce:54:3e:a5:b7:da:bd:20:7f:ff: 52:58:97:4f:3c:8b:60:df:5d:60:f0:4d:6f:42:59:7a:17:b2: 92:fa:ac:52:80:94:fd:19:82:3c:54:e0:81:e5:54:1e:c9:62: db:af:61:27:ab:bd:c5:39:31:be:da:5a:53:54:46:cb:b7:69: 18:a3:6b:f3:ea:71:85:8e:31:12:98:de:a3:f7:35:b5:64:0c: ae:bd:0b:10:c0:e1:d1:2e:fa:d6:45:62:be:94:17:5d:87:f4: 8c:1a:be:e0:87:e5:b9:82:57:0a:71:d4:3d:6d:43:a2:85:a7: 40:2f:01:ae -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0QTExMTAvBgNVBAUTKDExOTZDRERGREEzRUJEQzVBREE4RkZDNUJDQjM4NDkx MjE0N0Q1NDQwHhcNMjUxMTI5MDAyNzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODYyZi00NTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjoHOKCcaZ7gT6cN0SgQKJy2f5Kd7zh4NB/1sWIRxbZEOEtNG0s22sCtXrd3D Py4365a05jC/P/GV7r3RFfGpKIUDE5OrzbjqGO6OH7vcj+XPs3OpNm1jyDmO75ph wpbhCVwfpsReT/v60arIb9/VypAZICnD6f/i+7kW8BZL7m6UN/poyIY0Jv9yptgD 7mF9gurJFTJVfOLnoJSKst0DV2zq/SYz7nD7sVmEYD6LxnoQXqvFHP/cvefmH0FA ZxuTFXdnqWp0pSUs8pQBUzXM/knERovHsU23SZBVrcsw5oME/hlM/Vh1DZoEMEsG fqYMQNEa5As5PnQCUdC9dra4bQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOgwBf9E XN+p5M382/L3hFJx47eZMB8GA1UdIwQYMBaAFBGWzd/aPr3Fraj/xbyzhJEhR9VE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDRBMS82MkI0MjNCQTZC MDExMUVEOUEzMEYxNTVDNEY5QUUwMi9FWmJOMzlvLXZjV3RxUF9GdkxPRWtTRkgx VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VaYk4zOW8tdmNXdHFQX0Z2TE9Fa1NGSDFVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ0QTEvNjJCNDIzQkE2QjAxMTFFRDlBMzBGMTU1QzRGOUFFMDIvMTZFOTkwQ0E2 QjA0MTFFRDg0OUUwOTU3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5ymMA8EAgACMAkDBwAgAQ3xkUAwDQYJKoZIhvcNAQELBQADggEB ACOJ2VDCmW85y6G8k5MfrGoooCWm1JeTQee23jto6OfvBiMMAXrft3YARQwfHayO nVdoNqLUhbr2Mwc/Ov8mPKupk1GCnF+0wnztw/o258X85ndfxXGb4Rfk2ZijBouM zLC0milXciWT5lsPTNyR5D6iZ5gomLgHshWKwgeLyGn7tmBNS2kkzlQ+pbfavSB/ /1JYl088i2DfXWDwTW9CWXoXspL6rFKAlP0ZgjxU4IHlVB7JYtuvYServcU5Mb7a WlNURsu3aRija/PqcYWOMRKY3qP3NbVkDK69CxDA4dEu+tZFYr6UF12H9IwavuCH 5bmCVwpx1D1tQ6KFp0AvAa4= -----END CERTIFICATE-----Generated at Thu Mar 26 11:59:52 2026 by rpki-client