$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa File: 834C938A12C711F09998A234C4F9AE02.roa (raw, json) Hash identifier: eChl8a92efq+FE4CzqO2QKDbRGITZ09cpCTpowDCe5o= Subject key identifier: 71:F9:56:DF:7E:7D:BB:C7:1A:70:27:0D:69:D8:91:22:A6:FC:CB:BC Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0AD2 Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:29:06 +0000 ROA not before: Sun 06 Apr 2025 09:14:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137425 IP address blocks: 103.108.60.0/22 maxlen: 22 103.108.60.0/23 maxlen: 23 103.108.60.0/24 maxlen: 24 103.108.61.0/24 maxlen: 24 103.108.62.0/23 maxlen: 23 103.108.62.0/24 maxlen: 24 103.108.63.0/24 maxlen: 24 2406:ebc0::/32 maxlen: 32 2406:ebc0::/36 maxlen: 36 2406:ebc0:1000::/36 maxlen: 36 2406:ebc0:2000::/36 maxlen: 36 2406:ebc0:3000::/36 maxlen: 36 2406:ebc0:4000::/36 maxlen: 36 2406:ebc0:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2770 (0xad2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Apr 6 09:14:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a406e2-e294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:29:8d:ee:94:a2:1e:95:8f:32:bf:b7:5b:db: c0:a7:db:f6:29:eb:96:73:cc:29:eb:e9:17:ac:b0: f5:b0:e9:a7:1e:b1:2c:55:6e:57:35:ce:23:de:4f: fa:e0:8a:47:89:e0:5f:a3:39:89:88:74:80:37:ea: b2:74:67:a4:ff:b4:43:fb:1c:54:88:4f:47:b5:ca: ac:d5:a7:4a:ee:db:76:54:ec:33:a9:c1:dd:0b:85: c4:00:78:98:3b:4b:b9:dc:95:ca:05:bc:dd:07:05: 25:fb:e6:6b:2a:b7:75:79:79:19:72:ee:ef:2a:3b: 42:97:6d:38:a6:29:40:dd:4e:e0:5b:9f:94:94:27: cd:01:28:72:de:01:0c:71:09:eb:94:34:d8:46:ac: df:cd:f1:dd:90:e0:4c:dc:74:68:98:bc:b3:50:40: 46:cc:a6:79:ee:4d:b3:2a:4f:69:74:56:fb:d4:3b: 53:f1:e3:2b:33:7a:2e:2e:76:94:12:de:a7:da:54: b2:cb:62:0e:3b:ed:95:5d:ad:28:8c:e8:16:13:a7: 0f:58:1f:ca:ee:66:cc:6b:21:0d:68:fb:c6:a2:1f: b2:59:de:a8:67:a2:65:0e:0d:5f:b5:86:55:ee:ca: 96:f0:da:dc:83:f1:9b:22:63:22:a7:d5:bc:98:1b: 1c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:56:DF:7E:7D:BB:C7:1A:70:27:0D:69:D8:91:22:A6:FC:CB:BC X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/834C938A12C711F09998A234C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.108.60.0/22 IPv6: 2406:ebc0::/32 Signature Algorithm: sha256WithRSAEncryption 28:e0:52:05:61:ad:7c:17:b5:22:d3:8a:df:b4:9a:1e:56:63: c4:24:f5:b0:67:31:57:bc:03:cb:c5:41:91:ea:32:1c:9d:b5: 6e:5b:58:be:60:ed:be:05:ef:c1:1f:4c:7d:0b:3f:f6:10:12: 4b:d7:9d:cc:f7:2f:95:f1:d2:89:fb:f5:a0:3f:02:a4:a8:c1: e4:34:bb:9d:41:38:6f:f7:f4:66:3c:73:cf:a7:05:cd:a6:cb: 47:4d:46:71:d6:56:d5:13:bd:00:48:ad:2c:98:f9:ce:e4:c6: 0d:43:27:0f:b1:ba:0a:8e:49:11:d6:57:42:b4:94:e1:83:aa: 8f:8c:05:bd:c0:df:ac:f8:58:25:c1:14:6e:13:b2:fc:39:95: 54:02:6d:5e:1e:a4:85:ab:3a:cb:5d:d8:aa:4e:3b:04:81:ac: 92:8f:9e:90:5e:a2:e8:bb:45:d8:4f:f4:02:09:8b:e0:b5:87: ae:cb:06:ab:a5:71:30:a3:dc:96:aa:3b:f0:0c:87:13:99:b7: cf:da:df:bf:78:d7:5d:12:74:55:dd:c2:df:87:92:be:4b:e4: cd:04:8f:9f:1f:60:42:20:0d:1b:5f:d9:8a:ba:90:69:0d:a7: be:5b:16:4b:21:34:ef:dd:58:9f:9c:c0:3e:b7:7b:fa:d0:60: 09:da:ab:4f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUwNDA2MDkxNDE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZlMi1lMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtymN7pSiHpWPMr+3W9vAp9v2KeuWc8wp6+kXrLD1sOmnHrEsVW5XNc4j3k/6 4IpHieBfozmJiHSAN+qydGek/7RD+xxUiE9Htcqs1adK7tt2VOwzqcHdC4XEAHiY O0u53JXKBbzdBwUl++ZrKrd1eXkZcu7vKjtCl204pilA3U7gW5+UlCfNAShy3gEM cQnrlDTYRqzfzfHdkOBM3HRomLyzUEBGzKZ57k2zKk9pdFb71DtT8eMrM3ouLnaU Et6n2lSyy2IOO+2VXa0ojOgWE6cPWB/K7mbMayENaPvGoh+yWd6oZ6JlDg1ftYZV 7sqW8Nrcg/GbImMip9W8mBsc0wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHH5Vt9+ fbvHGnAnDWnYkSKm/Mu8MB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY2RkMvQUIxRjRFQ0E3MjlBMTFFQUFCQkY5MTQxQzRGOUFFMDIvODM0QzkzOEEx MkM3MTFGMDk5OThBMjM0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2w8MA0EAgACMAcDBQAkBuvAMA0GCSqGSIb3DQEBCwUAA4IBAQAo 4FIFYa18F7Ui04rftJoeVmPEJPWwZzFXvAPLxUGR6jIcnbVuW1i+YO2+Be/BH0x9 Cz/2EBJL153M9y+V8dKJ+/WgPwKkqMHkNLudQThv9/RmPHPPpwXNpstHTUZx1lbV E70ASK0smPnO5MYNQycPsboKjkkR1ldCtJThg6qPjAW9wN+s+FglwRRuE7L8OZVU Am1eHqSFqzrLXdiqTjsEgaySj56QXqLou0XYT/QCCYvgtYeuywarpXEwo9yWqjvw DIcTmbfP2t+/eNddEnRV3cLfh5K+S+TNBI+fH2BCIA0bX9mKupBpDae+WxZLITTv 3VifnMA+t3v60GAJ2qtP -----END CERTIFICATE-----Generated at Mon Mar 2 06:03:43 2026 by rpki-client