$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa File: B55EC19EAC2B11E996F6E511C4F9AE02.roa (raw, json) Hash identifier: RzqIGI8r+oQW3NlWivzrVB3dYHmPEddV5f3NgyB8w0M= Subject key identifier: A2:27:8C:A0:DD:57:1D:EB:C5:E5:C5:43:50:51:75:C7:42:41:6B:11 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0EAA Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:07:19 +0000 ROA not before: Wed 18 Jun 2025 18:21:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45668 IP address blocks: 103.232.48.0/22 maxlen: 24 110.74.128.0/19 maxlen: 24 110.74.160.0/19 maxlen: 24 2403:bc00::/32 maxlen: 32 2403:bc00:1::/48 maxlen: 48 2403:bc00:adc::/48 maxlen: 48 2403:bc00:7fff::/48 maxlen: 48 2403:bc00:8000::/48 maxlen: 48 2403:bc00:8001::/48 maxlen: 48 2403:bc00:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3754 (0xeaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9, serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Jun 18 18:21:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a43a07-0bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ce:85:34:df:8d:cc:2e:76:fc:e0:40:65:0c: 5b:21:ac:c9:ed:ad:84:2d:03:1a:e3:8e:b3:77:87: 8d:4f:ec:95:b2:49:79:a1:dc:47:b9:b6:c3:93:8a: fe:03:40:27:a0:44:d0:f8:6e:b1:8b:08:39:f8:51: 78:8d:ae:db:d0:44:a9:d6:32:8e:ed:8b:02:a2:27: 20:df:7a:c3:a2:c6:70:1d:61:b3:38:19:79:a4:f8: 50:30:db:d0:80:cc:dd:13:db:66:34:7a:ef:0f:36: c1:7b:f8:24:29:9b:15:76:e3:2d:65:34:9b:dc:30: b2:15:ae:a7:79:ce:12:8b:1a:db:03:a3:fb:f3:6e: 65:63:21:a1:c8:83:33:8a:f2:89:7c:0a:9f:a7:97: 4b:bc:d0:ec:8f:3f:39:3d:9d:30:79:fe:37:17:6c: 90:b5:e0:2b:7b:72:db:f9:dd:e2:18:0f:20:da:2b: 4b:62:2e:91:0f:4f:8f:8a:c8:2a:da:4b:2c:89:66: 3d:21:fe:25:4f:4d:64:c4:cf:8c:0a:89:b8:4b:04: 82:90:21:40:5b:a1:a7:fc:5e:42:fa:f2:f9:8e:f2: c9:15:5d:18:00:ac:1d:74:d8:7d:dd:64:8f:21:38: 2f:83:e4:50:f3:75:3f:05:56:f9:5c:0b:4b:a3:de: 1b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:27:8C:A0:DD:57:1D:EB:C5:E5:C5:43:50:51:75:C7:42:41:6B:11 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.232.48.0/22 110.74.128.0/18 IPv6: 2403:bc00::/32 Signature Algorithm: sha256WithRSAEncryption c7:55:71:d7:3b:00:66:84:45:49:90:fd:c5:b7:aa:fe:f5:2d: ac:4c:41:84:a3:40:3a:15:09:51:a2:77:d0:1d:57:a4:42:51: df:98:61:73:4e:6a:6a:1c:ca:83:f7:dc:74:c6:97:2f:ac:62: e4:ea:2f:58:a8:43:56:9c:7b:89:25:05:17:2f:21:aa:4f:2c: 2c:e9:7a:99:4c:c9:93:e1:cd:41:05:9a:71:49:08:a0:d6:6e: a2:0b:75:9f:e0:42:24:65:b1:3e:42:a6:55:f3:75:9d:0d:54: 75:95:a8:0f:45:29:8e:d2:19:37:04:44:07:85:a5:9b:2e:76: 0d:a9:61:a2:00:38:44:4a:05:c2:df:cc:09:3a:40:46:05:83: 5a:c8:56:c2:ed:d2:c3:d0:ca:0a:95:18:5a:ec:dc:fb:0d:39: c0:ea:7a:12:d1:61:05:75:db:f9:f5:0b:b3:7a:e7:20:a7:d2: 9b:86:ba:e2:b2:e5:89:cf:b4:9e:c2:1c:f0:06:ac:bb:57:27: 10:57:85:24:81:37:6e:dd:49:58:d5:65:53:7f:b0:3a:1d:e7: 5c:e6:1a:f7:b8:82:4f:6f:42:f7:eb:06:e1:b8:e5:b2:6d:58: ae:6c:19:7b:e7:30:6b:f5:1b:47:cc:bd:47:a2:c2:82:86:3b: da:f8:fe:d8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjUwNjE4MTgyMTA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2EwNy0wYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c6FNN+NzC52/OBAZQxbIazJ7a2ELQMa446zd4eNT+yVskl5odxHubbDk4r+ A0AnoETQ+G6xiwg5+FF4ja7b0ESp1jKO7YsCoicg33rDosZwHWGzOBl5pPhQMNvQ gMzdE9tmNHrvDzbBe/gkKZsVduMtZTSb3DCyFa6nec4SixrbA6P7825lYyGhyIMz ivKJfAqfp5dLvNDsjz85PZ0wef43F2yQteAre3Lb+d3iGA8g2itLYi6RD0+Pisgq 2kssiWY9If4lT01kxM+MCom4SwSCkCFAW6Gn/F5C+vL5jvLJFV0YAKwddNh93WSP ITgvg+RQ83U/BVb5XAtLo94brwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKInjKDd Vx3rxeXFQ1BRdcdCQWsRMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU3QzkvQzM1OUU3NUVBQzE5MTFFOTgzRjJGQzYyQzRGOUFFMDIvQjU1RUMxOUVB QzJCMTFFOTk2RjZFNTExQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ+gwAwQGbkqAMA0EAgACMAcDBQAkA7wAMA0GCSqGSIb3DQEBCwUA A4IBAQDHVXHXOwBmhEVJkP3Ft6r+9S2sTEGEo0A6FQlRonfQHVekQlHfmGFzTmpq HMqD99x0xpcvrGLk6i9YqENWnHuJJQUXLyGqTyws6XqZTMmT4c1BBZpxSQig1m6i C3Wf4EIkZbE+QqZV83WdDVR1lagPRSmO0hk3BEQHhaWbLnYNqWGiADhESgXC38wJ OkBGBYNayFbC7dLD0MoKlRha7Nz7DTnA6noS0WEFddv59Quzeucgp9KbhrrisuWJ z7SewhzwBqy7VycQV4UkgTdu3UlY1WVTf7A6Hedc5hr3uIJPb0L36wbhuOWybViu bBl75zBr9RtHzL1HosKChjva+P7Y -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:48 2026 by rpki-client