$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/0B3FC58CB0DA11E5A8C8BF13C4F9AE02.roa File: 0B3FC58CB0DA11E5A8C8BF13C4F9AE02.roa (raw, json) Hash identifier: O3BxGtjSoAOdF49b+yAM0jtpp0WQxG4EaYJi9ABC0kc= Subject key identifier: 59:FB:73:D5:A4:C9:25:A1:47:02:1B:8B:78:21:EA:41:DA:9E:B4:B3 Certificate issuer: /CN=A91A3BB1/serialNumber=E83A59B881CE1E5735D1ADDCD8BAE05E53B853D0 Certificate serial: 355A Authority key identifier: E8:3A:59:B8:81:CE:1E:57:35:D1:AD:DC:D8:BA:E0:5E:53:B8:53:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6DpZuIHOHlc10a3c2LrgXlO4U9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/0B3FC58CB0DA11E5A8C8BF13C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:31:09 +0000 ROA not before: Tue 30 Dec 2025 15:11:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 38830 IP address blocks: 103.10.8.0/24 maxlen: 24 203.12.235.0/24 maxlen: 24 2001:df0:218::/48 maxlen: 48 2001:df7:e800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/6DpZuIHOHlc10a3c2LrgXlO4U9A.crl rsync://rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/6DpZuIHOHlc10a3c2LrgXlO4U9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6DpZuIHOHlc10a3c2LrgXlO4U9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3BB1, serialNumber=E83A59B881CE1E5735D1ADDCD8BAE05E53B853D0 Validity Not Before: Dec 30 15:11:53 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44dad-ffe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1d:29:2a:69:52:65:91:af:b2:3d:55:76:c4: a1:56:2b:9b:86:a1:18:e6:04:2c:a4:d5:fb:75:10: 89:1d:c2:7e:02:e0:ff:f3:15:e6:6f:36:5b:0d:21: 52:a6:b7:27:a1:51:e4:95:6e:b8:20:16:0f:f5:69: 57:62:b0:8b:a8:4d:e5:29:7b:39:58:20:13:81:32: 0a:a1:12:77:24:a4:d7:10:08:1d:da:f2:10:83:be: 0e:da:4e:bf:c2:62:49:0e:e0:48:12:19:83:f3:b3: b0:ef:9f:c3:6a:57:f3:1e:be:41:d8:e1:ae:44:b1: 8d:dc:22:b2:07:93:46:c3:19:75:89:6f:f2:da:3e: b7:92:b3:71:19:40:5b:2c:5a:6b:d9:db:1f:81:23: 43:9f:46:0d:ec:f1:37:52:8d:67:bd:16:19:a9:9c: 9f:6f:5a:54:b1:f2:11:91:a9:aa:b5:ef:4c:4e:50: 63:de:4f:91:d1:8c:73:5e:2b:60:ce:75:1d:12:f2: af:f6:ea:0e:56:d4:7e:65:05:23:4c:25:ec:aa:58: ec:52:2a:3d:58:07:fe:65:4d:6d:c4:c6:ff:ee:2c: 16:57:e5:ed:42:2a:87:c5:ce:59:15:06:ac:4c:be: e2:e1:65:b2:8c:ce:ae:fa:24:58:d0:f5:1c:c4:5f: b3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FB:73:D5:A4:C9:25:A1:47:02:1B:8B:78:21:EA:41:DA:9E:B4:B3 X509v3 Authority Key Identifier: keyid:E8:3A:59:B8:81:CE:1E:57:35:D1:AD:DC:D8:BA:E0:5E:53:B8:53:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/6DpZuIHOHlc10a3c2LrgXlO4U9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6DpZuIHOHlc10a3c2LrgXlO4U9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3BB1/EA1B22E01D9611E29806C57F08B02CD2/0B3FC58CB0DA11E5A8C8BF13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.10.8.0/24 203.12.235.0/24 IPv6: 2001:df0:218::/48 2001:df7:e800::/48 Signature Algorithm: sha256WithRSAEncryption 02:e7:85:d6:0f:97:de:fa:3d:13:e6:6e:8d:a9:6c:b4:46:b7: 33:34:ff:5c:4c:54:9e:ed:59:f5:63:40:15:dd:92:17:dd:8f: 17:d3:12:dc:d2:d0:59:c6:1d:e6:e0:75:cd:18:c2:50:ab:c0: a9:fd:8d:2b:5b:9f:64:10:fc:5f:4f:1f:85:57:7e:26:b3:d8: 09:b4:54:a4:2c:14:31:67:98:27:7d:0a:1e:57:c8:87:85:05: ab:26:59:8b:d4:90:e6:c8:9c:33:ef:d8:f1:35:bf:11:1d:ca: 71:b8:cb:78:85:09:6a:af:a7:5f:c6:bf:63:3e:13:96:1f:12: f4:7e:9e:90:10:84:b6:44:04:e8:51:9a:0a:d9:89:58:73:16: be:2b:22:1f:ef:a0:47:21:12:c0:60:6c:eb:4e:19:e9:4e:6c: 1a:9d:43:29:0b:91:e1:f0:45:d4:88:6b:d9:65:71:ec:a1:7a: 82:28:47:f8:44:2c:c8:8d:ae:64:0e:06:37:cf:e0:52:95:f2: 16:b6:89:cc:e1:06:e8:0e:f7:97:73:03:e6:98:81:b8:c5:a0: 75:92:c3:6b:d7:dc:bb:84:93:65:01:0d:90:10:a1:97:50:fe: 63:01:77:c5:c0:6f:c3:16:0f:ba:ac:23:47:7e:03:7e:18:07: 8f:4a:78:97 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNCQjExMTAvBgNVBAUTKEU4M0E1OUI4ODFDRTFFNTczNUQxQUREQ0Q4QkFFMDVF NTNCODUzRDAwHhcNMjUxMjMwMTUxMTUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGRhZC1mZmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7x0pKmlSZZGvsj1VdsShViubhqEY5gQspNX7dRCJHcJ+AuD/8xXmbzZbDSFS prcnoVHklW64IBYP9WlXYrCLqE3lKXs5WCATgTIKoRJ3JKTXEAgd2vIQg74O2k6/ wmJJDuBIEhmD87Ow75/DalfzHr5B2OGuRLGN3CKyB5NGwxl1iW/y2j63krNxGUBb LFpr2dsfgSNDn0YN7PE3Uo1nvRYZqZyfb1pUsfIRkamqte9MTlBj3k+R0YxzXitg znUdEvKv9uoOVtR+ZQUjTCXsqljsUio9WAf+ZU1txMb/7iwWV+XtQiqHxc5ZFQas TL7i4WWyjM6u+iRY0PUcxF+z2wIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFFn7c9Wk ySWhRwIbi3gh6kHanrSzMB8GA1UdIwQYMBaAFOg6WbiBzh5XNdGt3Ni64F5TuFPQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0JCMS9FQTFCMjJFMDFE OTYxMUUyOTgwNkM1N0YwOEIwMkNEMi82RHBadUlIT0hsYzEwYTNjMkxyZ1hsTzRV OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZEcFp1SUhPSGxjMTBhM2MyTHJnWGxPNFU5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNCQjEvRUExQjIyRTAxRDk2MTFFMjk4MDZDNTdGMDhCMDJDRDIvMEIzRkM1OENC MERBMTFFNUE4QzhCRjEzQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAS BAIAATAMAwQAZwoIAwQAywzrMBgEAgACMBIDBwAgAQ3wAhgDBwAgAQ336AAwDQYJ KoZIhvcNAQELBQADggEBAALnhdYPl976PRPmbo2pbLRGtzM0/1xMVJ7tWfVjQBXd khfdjxfTEtzS0FnGHebgdc0YwlCrwKn9jStbn2QQ/F9PH4VXfiaz2Am0VKQsFDFn mCd9Ch5XyIeFBasmWYvUkObInDPv2PE1vxEdynG4y3iFCWqvp1/Gv2M+E5YfEvR+ npAQhLZEBOhRmgrZiVhzFr4rIh/voEchEsBgbOtOGelObBqdQykLkeHwRdSIa9ll ceyheoIoR/hELMiNrmQOBjfP4FKV8ha2iczhBugO95dzA+aYgbjFoHWSw2vX3LuE k2UBDZAQoZdQ/mMBd8XAb8MWD7qsI0d+A34YB49KeJc= -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:56 2026 by rpki-client