$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa File: 95DDE9D6909A11EF94AF3B26C4F9AE02.roa (raw, json) Hash identifier: Dm9+B/EL1Dfdx6TdXOjf1eL0O0G9uMoL3EQ4RqzUVrg= Subject key identifier: 62:1B:D2:FA:0E:91:AF:C7:FA:6A:6D:47:7D:D9:66:39:52:94:10:34 Certificate issuer: /CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Certificate serial: 1579 Authority key identifier: FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:32:26 +0000 ROA not before: Mon 16 Jun 2025 17:17:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137491 IP address blocks: 103.110.96.0/22 maxlen: 24 2402:8640::/32 maxlen: 32 2402:8640::/48 maxlen: 48 2402:8640:1::/48 maxlen: 48 2402:8640:2::/48 maxlen: 48 2402:8640:3::/48 maxlen: 48 2402:8640:4::/48 maxlen: 48 2402:8640:5::/48 maxlen: 48 2402:8640:6::/48 maxlen: 48 2402:8640:7::/48 maxlen: 48 2402:8640:8::/48 maxlen: 48 2402:8640:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5497 (0x1579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0D9C, serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Validity Not Before: Jun 16 17:17:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a423ca-5a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:07:11:b6:8a:81:1f:ba:eb:ab:fd:83:10: 44:de:4e:9a:86:f9:05:a2:08:e4:0c:20:19:c6:82: b8:42:44:d7:7d:fb:d3:27:67:05:69:8a:8b:8e:a2: b7:3e:2b:19:c8:9c:85:b3:70:1c:51:3f:de:42:05: 44:5f:ce:c7:ee:b8:dc:2d:f6:c0:3d:a5:50:7f:9d: 42:ab:e9:68:74:13:fc:92:78:9d:e7:0f:7a:ef:02: b0:0a:e6:b7:5d:71:33:8f:a5:ba:53:63:a6:14:1d: f4:d8:e8:4e:79:4f:55:85:e2:27:a4:a9:ee:b9:7b: 12:9f:a5:40:8f:f1:97:d4:7a:70:ee:f0:e1:04:ed: 17:0f:10:e9:74:59:24:3c:b7:40:7c:78:d3:bc:c2: 98:f6:26:2f:eb:59:85:89:c1:b5:13:f5:2f:c3:a9: c1:65:23:29:02:9c:38:a8:d2:73:e1:c2:d4:9f:cc: 39:ff:e6:23:59:d6:36:f2:56:4b:e0:9b:91:c0:c4: 71:57:7d:25:39:5b:31:39:fc:ea:49:08:88:a0:59: 15:99:94:17:0e:2a:66:91:0f:48:d8:b1:de:97:69: b0:63:9d:14:42:da:2b:94:e1:f4:39:91:c8:9f:42: 09:33:3c:c6:ea:85:8c:c5:aa:f7:f7:98:63:ec:f7: dc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:1B:D2:FA:0E:91:AF:C7:FA:6A:6D:47:7D:D9:66:39:52:94:10:34 X509v3 Authority Key Identifier: keyid:FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.110.96.0/22 IPv6: 2402:8640::/32 Signature Algorithm: sha256WithRSAEncryption 35:67:34:9c:80:fb:31:48:97:01:8e:28:49:94:9e:c3:6a:7a: 0e:dc:13:5e:e0:0c:25:79:8c:b1:ba:76:cb:bd:9d:bf:12:31: 5f:27:76:fb:2c:58:9f:66:2e:1a:0b:31:72:ac:15:e5:f0:67: d8:c6:08:60:b4:d4:98:6c:24:ff:78:d7:e7:20:67:d5:07:3e: 08:b4:2e:40:20:0c:bc:09:3a:56:c2:0b:4b:72:4b:8f:4e:6c: 5b:5c:7b:9b:0c:ef:b8:a4:2e:3b:9c:59:55:fd:0f:c7:d6:11: d9:32:e7:3e:d5:aa:5c:be:ab:f6:59:07:21:15:f8:7d:e4:42: 79:82:23:37:aa:20:9b:d0:e6:b1:75:2d:d4:ca:cd:61:93:ca: 65:bb:b3:16:11:6f:8b:a7:98:da:f9:a5:47:a7:d8:49:ee:0c: 1a:be:67:4c:fb:06:91:59:d6:61:6d:1f:b3:48:55:97:e9:59: 38:83:df:3a:57:0d:e9:15:43:7c:b6:fb:1d:2a:ee:ec:17:65: 77:da:e7:50:76:ec:29:82:26:dd:30:b8:85:88:e8:d4:d2:fa: 9e:99:0f:23:21:35:ff:46:5b:54:df:71:63:fa:32:72:af:7a: 24:36:e6:b9:28:94:81:d8:a3:ab:f8:e7:38:9f:a1:fd:57:42: d2:a0:91:41 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBEOUMxMTAvBgNVBAUTKEZFM0U5OEM0QzFBNzkxMkI1QTkxNkQxNjMzNDc3OEM0 QUI3QTY1MzAwHhcNMjUwNjE2MTcxNzM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjNjYS01YTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KIHEbaKgR+666v9gxBE3k6ahvkFogjkDCAZxoK4QkTXffvTJ2cFaYqLjqK3 PisZyJyFs3AcUT/eQgVEX87H7rjcLfbAPaVQf51Cq+lodBP8knid5w967wKwCua3 XXEzj6W6U2OmFB302OhOeU9VheInpKnuuXsSn6VAj/GX1Hpw7vDhBO0XDxDpdFkk PLdAfHjTvMKY9iYv61mFicG1E/Uvw6nBZSMpApw4qNJz4cLUn8w5/+YjWdY28lZL 4JuRwMRxV30lOVsxOfzqSQiIoFkVmZQXDipmkQ9I2LHel2mwY50UQtorlOH0OZHI n0IJMzzG6oWMxar395hj7PfcUwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGIb0voO ka/H+mptR33ZZjlSlBA0MB8GA1UdIwQYMBaAFP4+mMTBp5ErWpFtFjNHeMSremUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEQ5Qy85RTI4MzAwNjU3 QTgxMUU4QjRBQzA4NzdDNEY5QUUwMi9fajZZeE1HbmtTdGFrVzBXTTBkNHhLdDZa VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qNll4TUdua1N0YWtXMFdNMGQ0eEt0NlpUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBEOUMvOUUyODMwMDY1N0E4MTFFOEI0QUMwODc3QzRGOUFFMDIvOTVEREU5RDY5 MDlBMTFFRjk0QUYzQjI2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ25gMA0EAgACMAcDBQAkAoZAMA0GCSqGSIb3DQEBCwUAA4IBAQA1 ZzScgPsxSJcBjihJlJ7DanoO3BNe4AwleYyxunbLvZ2/EjFfJ3b7LFifZi4aCzFy rBXl8GfYxghgtNSYbCT/eNfnIGfVBz4ItC5AIAy8CTpWwgtLckuPTmxbXHubDO+4 pC47nFlV/Q/H1hHZMuc+1apcvqv2WQchFfh95EJ5giM3qiCb0OaxdS3Uys1hk8pl u7MWEW+Lp5ja+aVHp9hJ7gwavmdM+waRWdZhbR+zSFWX6Vk4g986Vw3pFUN8tvsd Ku7sF2V32udQduwpgibdMLiFiOjU0vqemQ8jITX/RltU33Fj+jJyr3okNua5KJSB 2KOr+Oc4n6H9V0LSoJFB -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:14 2026 by rpki-client