$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/9FD12146ED7211ED8A92041CC4F9AE02.roa File: 9FD12146ED7211ED8A92041CC4F9AE02.roa (raw, json) Hash identifier: twO+avT1bwdOGN+sO1DTxPWxAD5/Gbl/GY9g75HuCDc= Subject key identifier: 8A:46:5B:DE:EC:8F:60:E5:A0:6B:9A:C0:DD:BE:76:DF:11:66:00:C4 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 0223 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/9FD12146ED7211ED8A92041CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:03:38 +0000 ROA not before: Tue 04 Nov 2025 16:33:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133866 IP address blocks: 103.76.44.0/22 maxlen: 22 103.76.44.0/24 maxlen: 24 103.76.45.0/24 maxlen: 24 103.76.46.0/24 maxlen: 24 103.76.47.0/24 maxlen: 24 116.206.88.0/22 maxlen: 22 116.206.88.0/24 maxlen: 24 116.206.89.0/24 maxlen: 24 116.206.90.0/24 maxlen: 24 116.206.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Nov 4 16:33:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48d8a-a80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:78:38:1c:f2:14:ee:13:60:71:27:07:68: 34:ec:52:bf:d0:ab:d6:0d:c7:f1:4b:a4:3b:4d:d7: 0f:bf:4d:2c:88:a2:52:08:fe:02:1b:0c:d6:0b:88: e6:b4:c8:ec:8d:21:af:33:b4:6c:67:ea:66:64:61: 98:5a:2b:4f:63:5b:61:6b:db:8c:7b:51:d4:f3:ea: db:e5:70:13:7c:dc:9d:bf:ab:9d:e2:cc:c0:01:03: c8:49:d4:3f:c4:4c:d1:a4:a0:42:98:2d:01:86:d9: 9c:1b:ac:4a:50:d9:ae:9f:a2:52:27:be:8d:ea:7f: 63:cb:3e:2f:bf:32:4e:7b:ee:4a:46:8a:66:ad:1a: f4:0c:1a:28:8b:0f:a1:b1:e3:2e:ce:31:fd:20:c1: 26:e8:13:cf:3b:b4:30:a4:e5:71:f1:c3:f5:31:57: 33:0c:a6:30:8d:76:87:58:81:ba:ae:5e:d8:a9:bc: 61:4c:34:29:68:f3:cf:5f:ba:73:29:db:5e:19:a2: 8c:45:73:44:cd:82:54:ed:39:24:3c:0d:08:fb:44: 5d:eb:2e:b3:c6:62:f3:de:d0:c3:bd:fd:e2:41:fd: db:b1:03:58:a5:71:3c:3c:02:36:31:b2:47:cd:a2: 9a:a7:61:22:b6:02:d9:9b:47:09:fd:42:b3:e2:13: 07:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:46:5B:DE:EC:8F:60:E5:A0:6B:9A:C0:DD:BE:76:DF:11:66:00:C4 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/9FD12146ED7211ED8A92041CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.76.44.0/22 116.206.88.0/22 Signature Algorithm: sha256WithRSAEncryption 10:82:14:38:95:ae:4b:68:97:b8:c1:d3:cc:00:f9:fa:49:0e: e7:06:91:bb:fa:f0:ab:c9:13:4d:3b:59:fd:c1:5b:ce:24:05: 4d:68:ef:86:a1:16:b1:df:b7:83:35:25:89:8f:42:6b:65:fc: e1:2d:fa:87:bd:d5:89:c8:9a:f6:36:51:6e:5c:1e:ab:cb:c6: 34:fe:7b:b0:3b:4d:9b:36:bb:20:ce:4c:91:7f:82:5b:af:28: 8c:a0:90:a9:b9:65:1e:3a:41:ac:f4:fe:cc:e6:76:ee:34:62: 19:43:d7:19:ea:3f:5c:10:06:f8:ac:14:d0:1c:92:82:7a:ed: f7:32:ff:cb:ce:e8:1e:ac:52:8a:3d:19:98:da:d7:98:21:b4: 1e:80:72:77:e4:1b:d0:b5:fc:cd:0f:a0:8a:6a:95:56:d4:04: 39:cc:82:7b:bf:14:4c:79:6b:2d:fb:d1:9c:8a:17:0a:54:db: 19:14:04:8e:06:64:e1:07:41:49:3a:f0:29:66:4e:62:88:e6: 59:0e:7c:56:13:0b:a7:96:a4:17:49:3e:10:fd:2e:fb:96:1b: bc:ad:40:d7:9b:c9:6e:51:f1:4e:b9:2a:05:b2:7e:cd:02:79: 1a:c2:b9:2a:65:dc:9c:fb:2c:1d:a5:65:40:3c:3e:66:77:7a: 26:dc:97:ef -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUxMTA0MTYzMzUyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQ4YS1hODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcJ4OBzyFO4TYHEnB2g07FK/0KvWDcfxS6Q7TdcPv00siKJSCP4CGwzWC4jm tMjsjSGvM7RsZ+pmZGGYWitPY1tha9uMe1HU8+rb5XATfNydv6ud4szAAQPISdQ/ xEzRpKBCmC0BhtmcG6xKUNmun6JSJ76N6n9jyz4vvzJOe+5KRopmrRr0DBooiw+h seMuzjH9IMEm6BPPO7QwpOVx8cP1MVczDKYwjXaHWIG6rl7YqbxhTDQpaPPPX7pz KdteGaKMRXNEzYJU7TkkPA0I+0Rd6y6zxmLz3tDDvf3iQf3bsQNYpXE8PAI2MbJH zaKap2EitgLZm0cJ/UKz4hMHkQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIpGW97s j2DloGuawN2+dt8RZgDEMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQyRUEvRjUzMzJEN0U4NEMzMTFFNkI5ODIxQTgxQzRGOUFFMDIvOUZEMTIxNDZF RDcyMTFFRDhBOTIwNDFDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ0wsAwQCdM5YMA0GCSqGSIb3DQEBCwUAA4IBAQAQghQ4la5LaJe4 wdPMAPn6SQ7nBpG7+vCryRNNO1n9wVvOJAVNaO+GoRax37eDNSWJj0JrZfzhLfqH vdWJyJr2NlFuXB6ry8Y0/nuwO02bNrsgzkyRf4JbryiMoJCpuWUeOkGs9P7M5nbu NGIZQ9cZ6j9cEAb4rBTQHJKCeu33Mv/LzugerFKKPRmY2teYIbQegHJ35BvQtfzN D6CKapVW1AQ5zIJ7vxRMeWst+9GcihcKVNsZFASOBmThB0FJOvApZk5iiOZZDnxW EwunlqQXST4Q/S77lhu8rUDXm8luUfFOuSoFsn7NAnkawrkqZdyc+ywdpWVAPD5m d3om3Jfv -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:47 2026 by rpki-client