$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa File: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (raw, json) Hash identifier: p96Pk01HnxFF2EIL/xWnzPT9gE4H/ULfnQINm3EmY2M= Subject key identifier: B3:E7:2B:52:6E:96:94:F0:78:5B:66:F2:26:B4:58:68:11:5B:A1:CE Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 132B Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:33:54 +0000 ROA not before: Tue 02 Sep 2025 17:36:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45766 IP address blocks: 103.121.8.0/22 maxlen: 22 103.121.8.0/23 maxlen: 23 103.121.8.0/24 maxlen: 24 103.121.9.0/24 maxlen: 24 103.121.10.0/23 maxlen: 23 103.121.10.0/24 maxlen: 24 103.121.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4907 (0x132b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7, serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Sep 2 17:36:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42422-d3b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b5:6d:9a:a0:55:4b:35:53:40:5e:9d:83:66: 28:9f:53:e6:d8:05:84:63:96:b2:e7:c7:f6:3d:49: 2a:7e:72:45:0c:64:7e:c5:ba:2c:49:61:77:f9:c7: 9d:df:97:77:c8:f8:3c:9b:8b:c1:6a:a0:54:01:96: 7b:27:5c:6a:d6:94:16:8d:65:52:be:50:75:47:60: 52:69:3f:2f:c8:27:11:1f:39:e2:e6:9d:a6:5b:8a: 86:a7:8e:7e:25:88:2e:f7:8b:e4:32:50:59:e6:bf: ec:94:f9:07:fc:90:61:d7:61:9a:3f:45:e6:1a:d0: 05:f9:73:36:88:7b:50:fc:3c:d0:f7:97:3d:40:70: 88:46:2e:33:eb:02:bb:99:d4:53:47:41:f6:63:ef: 96:1f:5f:f1:d9:4d:e7:3b:d6:cb:2f:38:a3:09:1b: 23:cf:58:1b:aa:bd:c6:25:61:05:48:19:8f:99:10: 49:53:d7:79:88:8c:f4:6a:a4:bb:54:7e:54:33:dd: 49:a4:ff:3d:8a:4c:57:3c:e7:88:73:84:0e:4b:0c: 19:31:e9:3b:b1:c7:76:5b:bd:31:e7:a8:40:c5:d8: f7:99:ff:49:c7:3f:86:11:84:8a:ea:01:17:b9:6c: 2b:1f:ad:c7:f1:29:7a:4f:9e:c6:d2:f9:7c:b2:35: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E7:2B:52:6E:96:94:F0:78:5B:66:F2:26:B4:58:68:11:5B:A1:CE X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.8.0/22 Signature Algorithm: sha256WithRSAEncryption 99:0f:75:70:3a:0c:77:a4:25:c6:3b:c2:24:e4:67:8b:63:d9: 6c:86:79:39:54:00:08:1c:6b:f2:3e:a9:a5:16:85:20:c4:25: 05:4d:37:5d:d0:57:c6:a6:31:87:46:20:7e:92:67:52:b9:e7: 5e:54:02:e3:28:32:93:6b:12:5a:37:6c:17:31:44:ad:fe:19: 9b:d2:09:a7:f1:89:c8:8a:66:1a:ab:5c:78:bd:95:3e:04:b2: 61:61:52:10:7f:f8:7d:7b:aa:ba:a0:3c:2b:b0:ff:b7:fd:da: 87:6b:54:3d:e0:5d:1a:fe:17:d3:4f:55:5e:a7:c1:e9:46:77: 40:62:26:60:69:67:38:d7:db:04:49:f2:8e:cc:2b:d5:84:0c: 3a:a8:78:14:67:b5:b6:fb:a1:d5:a2:96:4b:48:9e:a6:db:ee: b5:ae:23:17:df:51:35:b9:e4:bb:10:80:47:47:b2:1f:ae:5f: 9d:3d:bb:ca:f2:75:17:e1:ad:fd:31:ad:87:bc:81:3b:4c:03: c2:df:68:69:6f:2c:b3:40:4e:41:da:ec:46:87:aa:ab:0e:8c: 39:34:58:e4:4e:b9:98:90:24:d0:35:08:33:20:4e:fb:2d:da: 79:f8:5d:50:9c:5c:31:1d:04:31:0e:12:e8:09:b4:6d:7c:14: 86:6c:1c:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjUwOTAyMTczNjM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjQyMi1kM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LVtmqBVSzVTQF6dg2Yon1Pm2AWEY5ay58f2PUkqfnJFDGR+xbosSWF3+ced 35d3yPg8m4vBaqBUAZZ7J1xq1pQWjWVSvlB1R2BSaT8vyCcRHzni5p2mW4qGp45+ JYgu94vkMlBZ5r/slPkH/JBh12GaP0XmGtAF+XM2iHtQ/DzQ95c9QHCIRi4z6wK7 mdRTR0H2Y++WH1/x2U3nO9bLLzijCRsjz1gbqr3GJWEFSBmPmRBJU9d5iIz0aqS7 VH5UM91JpP89ikxXPOeIc4QOSwwZMek7scd2W70x56hAxdj3mf9Jxz+GEYSK6gEX uWwrH63H8Sl6T57G0vl8sjXzXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLPnK1Ju lpTweFtm8ia0WGgRW6HOMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE2QzcvQzg1NkQ2QzRDNkM2MTFFODgyQTQxMjYwQzRGOUFFMDIvMENBRjAxQTZD NkM4MTFFOEFFQ0Q2MTY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3kIMA0GCSqGSIb3DQEBCwUAA4IBAQCZD3VwOgx3pCXGO8Ik5GeL Y9lshnk5VAAIHGvyPqmlFoUgxCUFTTdd0FfGpjGHRiB+kmdSuedeVALjKDKTaxJa N2wXMUSt/hmb0gmn8YnIimYaq1x4vZU+BLJhYVIQf/h9e6q6oDwrsP+3/dqHa1Q9 4F0a/hfTT1Vep8HpRndAYiZgaWc419sESfKOzCvVhAw6qHgUZ7W2+6HVopZLSJ6m 2+61riMX31E1ueS7EIBHR7Ifrl+dPbvK8nUX4a39Ma2HvIE7TAPC32hpbyyzQE5B 2uxGh6qrDow5NFjkTrmYkCTQNQgzIE77Ldp5+F1QnFwxHQQxDhLoCbRtfBSGbByT -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:53 2026 by rpki-client