$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/98DC875C050111EA9BDD372BC4F9AE02.roa File: 98DC875C050111EA9BDD372BC4F9AE02.roa (raw, json) Hash identifier: YHhtbTx3DFi9+kl85V+ijdhzu/uN/CR3C5x9c+CBrX0= Subject key identifier: E6:B4:08:A7:EB:AE:D7:C7:53:38:2C:30:57:26:F2:B1:BF:C2:AF:A7 Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0CE2 Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/98DC875C050111EA9BDD372BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:35:35 +0000 ROA not before: Sun 28 Sep 2025 18:49:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136813 IP address blocks: 103.97.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4, serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Sep 28 18:49:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45cc7-0f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:fb:f6:eb:d1:8f:31:65:50:14:5d:63:2c: d5:9e:be:8b:f7:9e:92:b8:d6:fb:b2:76:6d:ef:6d: 32:f0:6d:c3:62:2c:fb:7e:fd:13:5f:9e:14:2f:99: c8:07:1b:ff:60:4c:cb:a8:87:1f:ed:aa:25:15:61: 6b:72:52:65:46:e6:3f:25:5d:33:4d:74:1d:cc:58: 2b:04:7a:b1:04:cc:44:dd:a1:c9:31:62:b4:0e:9d: 4a:2b:93:ab:a8:39:3e:5d:c4:8b:72:1d:13:28:f2: ee:1a:84:5a:f2:a7:bc:3a:1c:38:da:17:aa:14:f4: 15:d8:cf:77:84:f5:cb:e1:32:f8:d4:0c:b8:a9:79: bc:16:b6:0d:0f:c0:a2:8c:7f:43:08:c5:dd:15:5f: d6:fd:fc:ab:86:df:a8:19:24:ea:67:1c:d8:13:13: 63:f2:bb:7c:cf:1b:91:66:26:f7:47:b0:7c:5f:d6: 58:98:ae:fb:6b:4e:66:ac:a3:eb:2f:0d:c1:bc:0d: 26:6c:bc:6b:3b:14:49:38:0a:d2:fb:48:2c:b3:f2: ca:fb:0a:c7:c3:99:e8:28:4e:99:fe:aa:07:3e:77: 02:e8:04:39:87:b5:c4:10:45:25:b1:1d:ed:d8:5b: c9:49:e4:60:9a:84:b0:0f:26:5f:76:ed:e3:a8:9d: 1d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B4:08:A7:EB:AE:D7:C7:53:38:2C:30:57:26:F2:B1:BF:C2:AF:A7 X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/98DC875C050111EA9BDD372BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:e0:cf:06:05:c0:0f:c7:fe:63:23:01:3b:cd:2b:df:ba:be: e8:6f:ec:b5:fe:b2:e5:e6:d6:b1:2a:a9:96:ad:b2:19:40:09: 8e:6c:78:2e:0e:55:d6:ef:f9:e2:28:b7:98:5c:d1:99:17:08: 49:02:a9:08:6d:34:04:2d:1e:d2:05:ad:3a:cc:cc:91:5d:f4: 47:95:24:ad:08:3f:21:9e:7a:4f:09:e8:b3:22:22:a2:8a:e6: e3:02:86:24:16:8e:0e:87:82:73:52:09:98:c6:76:81:76:ff: 61:b6:c1:2f:1e:65:b9:c8:b8:6d:25:ff:2e:94:c2:5c:fb:d3: d1:d3:0f:45:ce:41:0e:8a:28:cd:25:4b:e0:f0:13:6a:0c:5e: d0:a0:cb:57:3d:a0:6e:1d:b3:34:75:ac:ea:b2:63:41:7b:1b: 2b:78:f0:57:b2:5b:b1:36:36:5e:3e:3c:c3:79:97:d6:6f:83: 4c:aa:d2:9c:6f:50:52:5d:59:c5:68:6f:e0:06:15:57:34:93: 3a:78:3a:16:24:cf:29:3a:5d:e0:66:16:8b:f5:8f:8d:7d:6f: 87:a7:28:04:eb:8a:5c:12:5d:d3:01:1c:07:29:84:25:14:f5: 44:b0:cd:a7:4f:77:08:61:fa:15:5e:b0:31:f6:1d:bc:96:4a: 97:bb:3d:f0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjUwOTI4MTg0OTA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWNjNy0wZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMj79uvRjzFlUBRdYyzVnr6L956SuNb7snZt720y8G3DYiz7fv0TX54UL5nI Bxv/YEzLqIcf7aolFWFrclJlRuY/JV0zTXQdzFgrBHqxBMxE3aHJMWK0Dp1KK5Or qDk+XcSLch0TKPLuGoRa8qe8Ohw42heqFPQV2M93hPXL4TL41Ay4qXm8FrYND8Ci jH9DCMXdFV/W/fyrht+oGSTqZxzYExNj8rt8zxuRZib3R7B8X9ZYmK77a05mrKPr Lw3BvA0mbLxrOxRJOArS+0gss/LK+wrHw5noKE6Z/qoHPncC6AQ5h7XEEEUlsR3t 2FvJSeRgmoSwDyZfdu3jqJ0dHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOa0CKfr rtfHUzgsMFcm8rG/wq+nMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2QzQvQTNCQUQ4RTIwNEZGMTFFQTkzRUU5QTIzQzRGOUFFMDIvOThEQzg3NUMw NTAxMTFFQTlCREQzNzJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2F4MA0GCSqGSIb3DQEBCwUAA4IBAQBO4M8GBcAPx/5jIwE7zSvf ur7ob+y1/rLl5taxKqmWrbIZQAmObHguDlXW7/niKLeYXNGZFwhJAqkIbTQELR7S Ba06zMyRXfRHlSStCD8hnnpPCeizIiKiiubjAoYkFo4Oh4JzUgmYxnaBdv9htsEv HmW5yLhtJf8ulMJc+9PR0w9FzkEOiijNJUvg8BNqDF7QoMtXPaBuHbM0dazqsmNB exsrePBXsluxNjZePjzDeZfWb4NMqtKcb1BSXVnFaG/gBhVXNJM6eDoWJM8pOl3g ZhaL9Y+NfW+HpygE64pcEl3TARwHKYQlFPVEsM2nT3cIYfoVXrAx9h28lkqXuz3w -----END CERTIFICATE-----Generated at Mon Mar 2 12:01:33 2026 by rpki-client