$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa File: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (raw, json) Hash identifier: 7c5oSwVWti2WjgDXYCqZOoEG7KRtb2mj0zrvzawuV6Q= Subject key identifier: 11:88:49:64:B5:74:0B:7F:12:78:5A:2B:CC:54:DC:4D:67:7C:EC:96 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 070C Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:43:50 +0000 ROA not before: Tue 08 Apr 2025 22:32:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137455 IP address blocks: 103.2.240.0/22 maxlen: 24 103.74.200.0/23 maxlen: 23 103.74.202.0/23 maxlen: 23 103.109.112.0/22 maxlen: 24 2402:78c0:1000::/36 maxlen: 36 2402:78c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1804 (0x70c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC, serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Apr 8 22:32:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fc46-ba5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:62:fb:ea:f8:bf:b9:fa:8f:75:4b:cf:6e: 0f:67:48:35:74:63:a9:f4:af:3d:ee:2f:05:69:57: 8b:00:ed:e2:1d:3f:92:07:55:84:e8:00:d5:ec:36: ff:a3:40:21:ae:30:a9:7e:1a:e2:69:59:5e:fb:9c: 69:15:d8:e5:fc:ed:a8:e0:db:1a:94:3e:10:1d:b4: 05:8c:82:be:e2:3e:fa:99:50:11:3d:16:57:fb:c0: eb:34:48:b6:a7:29:d2:96:bb:e4:4d:4f:dd:b9:62: c2:0d:02:d4:4f:a9:5c:41:ba:4c:12:21:60:b1:3a: 9b:eb:bb:01:36:03:21:34:9c:90:ed:18:03:0b:69: f4:5d:ce:ba:2a:72:a6:80:1f:17:04:9a:25:ec:53: f8:80:b6:94:b8:2a:b8:bd:c1:67:88:ba:4f:d7:8a: 6f:0a:89:05:56:59:ee:92:d5:73:30:3f:48:d6:e4: 27:c0:49:7d:e1:28:90:0b:0e:23:69:23:12:8f:09: 8b:b4:50:11:43:d1:0f:97:94:aa:07:12:73:29:75: 5d:f4:70:9f:51:ea:2e:df:23:55:ae:57:0f:32:a9: 4b:f8:a7:fc:55:d1:6d:77:11:ce:d1:46:09:9f:89: 1d:cc:cb:2a:b3:71:4f:af:4f:4a:02:86:1a:a6:27: d5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:88:49:64:B5:74:0B:7F:12:78:5A:2B:CC:54:DC:4D:67:7C:EC:96 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.2.240.0/22 103.74.200.0/22 103.109.112.0/22 IPv6: 2402:78c0:1000::-2402:78c0:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 32:77:b7:54:85:aa:fd:2a:5c:2e:dd:fe:31:d4:2d:0d:25:d5: 98:84:cf:29:c7:01:51:c5:5e:44:53:7e:0e:f5:2e:4e:a6:19: ae:ab:12:e8:50:f8:89:20:f8:7c:8b:7f:57:fa:87:42:dd:88: 74:de:71:fd:31:54:6f:a9:08:22:ae:4f:b8:4d:ce:d3:f8:23: f9:9f:96:da:0f:f9:f8:f0:b3:3b:c2:cf:45:1f:c0:dd:7f:0d: b6:a3:d8:48:95:c3:c8:e8:79:87:b8:69:d2:79:c3:b1:3f:8b: 45:42:60:71:78:ba:d5:cf:80:e5:e7:d1:20:30:8c:11:ce:a6: b4:e3:16:02:19:4d:fa:b9:00:f6:6b:4c:7f:32:5f:d0:cc:78: f3:5f:fd:24:a9:50:e5:ff:85:ae:8c:86:62:91:0c:f4:e8:b4: 19:d3:cb:02:2d:2e:42:5d:21:3c:ef:03:9a:12:d3:ca:44:32: 1d:f2:9e:15:6d:38:83:59:28:5f:55:c6:d4:ac:9a:58:62:e7: 9c:c4:9e:30:56:55:12:05:77:ef:98:c1:88:63:5d:10:8d:c5: 74:e5:7a:3b:15:35:13:a9:32:42:cc:a2:23:aa:0a:e3:2c:f6: 6a:c3:20:5c:bf:5b:6f:d3:04:2a:0f:17:4c:47:93:df:59:bd: fa:41:2f:1a -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICBwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjUwNDA4MjIzMjU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmM0Ni1iYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXFi++r4v7n6j3VLz24PZ0g1dGOp9K897i8FaVeLAO3iHT+SB1WE6ADV7Db/ o0AhrjCpfhriaVle+5xpFdjl/O2o4NsalD4QHbQFjIK+4j76mVARPRZX+8DrNEi2 pynSlrvkTU/duWLCDQLUT6lcQbpMEiFgsTqb67sBNgMhNJyQ7RgDC2n0Xc66KnKm gB8XBJol7FP4gLaUuCq4vcFniLpP14pvCokFVlnuktVzMD9I1uQnwEl94SiQCw4j aSMSjwmLtFARQ9EPl5SqBxJzKXVd9HCfUeou3yNVrlcPMqlL+Kf8VdFtdxHO0UYJ n4kdzMsqs3FPr09KAoYapifVwQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFBGISWS1 dAt/EnhaK8xU3E1nfOyWMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvNDk3MjA5OTY4MTQ1MTFFQkIyREQ1RDRCQzRGOUFFMDIvMDA4MUYzRDZG MjIxMTFFRThFRUMwNzBFQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQCZwLwAwQCZ0rIAwQCZ21wMBgEAgACMBIwEAMGBCQCeMAQAwYEJAJ4 wCAwDQYJKoZIhvcNAQELBQADggEBADJ3t1SFqv0qXC7d/jHULQ0l1ZiEzynHAVHF XkRTfg71Lk6mGa6rEuhQ+Ikg+HyLf1f6h0LdiHTecf0xVG+pCCKuT7hNztP4I/mf ltoP+fjwszvCz0UfwN1/Dbaj2EiVw8joeYe4adJ5w7E/i0VCYHF4utXPgOXn0SAw jBHOprTjFgIZTfq5APZrTH8yX9DMePNf/SSpUOX/ha6MhmKRDPTotBnTywItLkJd ITzvA5oS08pEMh3ynhVtOINZKF9VxtSsmlhi55zEnjBWVRIFd++YwYhjXRCNxXTl ejsVNROpMkLMoiOqCuMs9mrDIFy/W2/TBCoPF0xHk99ZvfpBLxo= -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:40 2026 by rpki-client