$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa File: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (raw, json) Hash identifier: ez7xnIQP2Ioo5zgea1e7sjsLohhlbtgkdaKlVhizArA= Subject key identifier: 8A:34:AD:1C:90:71:B2:AA:A5:FC:EF:B0:1E:E3:F9:C6:D4:09:5D:76 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 04CD Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:59:24 +0000 ROA not before: Wed 21 May 2025 00:27:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55933 IP address blocks: 103.231.12.0/22 maxlen: 24 202.181.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1229 (0x4cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: May 21 00:27:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40dfc-b2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8a:a1:c9:30:17:b2:12:50:d8:1c:28:aa:79: 13:20:e1:bb:d1:83:d6:29:8e:e9:cb:e8:1f:d3:5d: 3d:96:a3:58:0f:cb:79:03:43:07:3f:03:3a:ab:d2: d1:5f:0f:dd:11:b6:7d:cc:ab:aa:ef:86:91:c1:41: cf:5c:7c:c2:c0:32:43:57:22:10:4d:30:7d:c2:b5: fa:e7:57:35:88:f7:12:c5:bc:e3:96:62:d8:93:e7: aa:14:0a:df:60:74:f8:2d:89:b0:d8:86:d1:61:42: d5:ea:96:3d:c7:fb:59:5c:c6:68:68:b8:f0:d5:c7: 15:98:f8:e7:49:6f:49:5d:9d:e5:b4:c8:3c:e2:30: c3:0c:4e:ca:c5:3b:e3:05:0a:25:28:51:88:5e:23: e0:32:3d:3b:92:d1:74:0f:05:a2:97:8c:94:c2:d2: 32:1e:cd:87:27:fc:5f:83:52:b5:2e:c0:35:47:7d: 0a:e5:f0:f1:94:f7:f7:c1:7c:cb:1e:56:4f:a1:07: ff:d1:d9:84:5a:ed:b4:29:c0:e3:29:24:77:56:0b: b4:4d:36:58:68:e6:58:14:9c:68:bf:e0:2c:63:1b: 5c:9f:f1:9d:05:95:86:75:59:cc:09:70:c1:c6:83: f3:8f:d3:58:96:81:22:5b:d1:3a:fa:63:84:21:43: 80:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:34:AD:1C:90:71:B2:AA:A5:FC:EF:B0:1E:E3:F9:C6:D4:09:5D:76 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.12.0/22 202.181.24.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:7a:17:c3:75:8f:05:8e:20:6a:1a:ac:4c:d2:61:ee:85:3d: 7a:7f:52:8c:e5:f9:88:0b:c7:e6:5a:7c:f9:30:c2:dc:d0:96: b9:aa:52:3c:13:ef:09:42:d5:d8:c5:8a:97:e2:af:29:c2:37: 04:bf:ea:ce:8b:65:69:2b:b4:cf:cc:a7:83:e6:f9:56:83:0a: 8b:13:69:c0:f7:b0:22:f1:5b:53:38:70:89:4a:93:11:2e:b0: 27:d7:f2:41:87:db:4c:a5:d0:e4:a8:b6:5e:37:ab:10:42:9f: 51:0c:2d:48:ea:6c:ce:41:75:78:91:14:41:99:f8:b1:08:69: 31:d0:5b:d1:d8:59:52:de:48:35:4b:8f:ba:55:e2:a3:25:d5: ac:84:6b:a1:fc:3a:a7:21:4a:12:27:34:e5:92:e8:e8:c1:e9: 84:3b:ba:97:a3:fc:74:07:1d:14:36:53:6e:44:b2:41:b5:a1: cd:40:9f:4c:85:21:6f:13:2c:c4:40:49:8f:16:30:6c:4b:15: 34:27:d4:1c:59:7e:1c:10:03:3b:5d:7e:d4:5c:f5:cd:92:ca: 55:33:bc:ca:73:7f:60:57:0c:8b:2b:75:70:22:c3:70:df:0c: f9:23:2a:02:d4:b4:c7:e7:d0:8e:79:99:f9:57:6e:70:bb:35: 9d:bd:d2:83 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUwNTIxMDAyNzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGRmYy1iMmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIqhyTAXshJQ2BwoqnkTIOG70YPWKY7py+gf0109lqNYD8t5A0MHPwM6q9LR Xw/dEbZ9zKuq74aRwUHPXHzCwDJDVyIQTTB9wrX651c1iPcSxbzjlmLYk+eqFArf YHT4LYmw2IbRYULV6pY9x/tZXMZoaLjw1ccVmPjnSW9JXZ3ltMg84jDDDE7KxTvj BQolKFGIXiPgMj07ktF0DwWil4yUwtIyHs2HJ/xfg1K1LsA1R30K5fDxlPf3wXzL HlZPoQf/0dmEWu20KcDjKSR3Vgu0TTZYaOZYFJxov+AsYxtcn/GdBZWGdVnMCXDB xoPzj9NYloEiW9E6+mOEIUOAkwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIo0rRyQ cbKqpfzvsB7j+cbUCV12MB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwMEYvMUFENUFGNzQ1RDkxMTFFQzlBRkI4RDNEQzRGOUFFMDIvOUMyREUxN0E1 RDkzMTFFQ0IyQUJCNjNGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ+cMAwQCyrUYMA0GCSqGSIb3DQEBCwUAA4IBAQA+ehfDdY8FjiBq GqxM0mHuhT16f1KM5fmIC8fmWnz5MMLc0Ja5qlI8E+8JQtXYxYqX4q8pwjcEv+rO i2VpK7TPzKeD5vlWgwqLE2nA97Ai8VtTOHCJSpMRLrAn1/JBh9tMpdDkqLZeN6sQ Qp9RDC1I6mzOQXV4kRRBmfixCGkx0FvR2FlS3kg1S4+6VeKjJdWshGuh/DqnIUoS JzTlkujowemEO7qXo/x0Bx0UNlNuRLJBtaHNQJ9MhSFvEyzEQEmPFjBsSxU0J9Qc WX4cEAM7XX7UXPXNkspVM7zKc39gVwyLK3VwIsNw3wz5IyoC1LTH59COeZn5V25w uzWdvdKD -----END CERTIFICATE-----Generated at Mon Mar 2 03:49:37 2026 by rpki-client