$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa File: 3520A4C0DDA711EBA436967CC4F9AE02.roa (raw, json) Hash identifier: gRqr1TxMcWyouqIJvPZ2zUykQgxKgDciNhA7C3LFHPQ= Subject key identifier: 07:E1:C2:34:BA:30:12:19:ED:E1:78:1D:3D:DE:49:B8:90:FF:D9:37 Certificate issuer: /CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Certificate serial: 06D5 Authority key identifier: 7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:14:29 +0000 ROA not before: Mon 14 Apr 2025 22:33:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141731 IP address blocks: 103.162.228.0/23 maxlen: 24 2001:df6:180::/48 maxlen: 56 2001:df6:180:fffe::/64 maxlen: 64 2001:df6:180:ffff::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EF2, serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Validity Not Before: Apr 14 22:33:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a449c5-25ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:af:e7:fa:a3:5a:b6:87:08:f3:a6:8e:2d: 78:45:9f:6a:2a:00:93:dd:02:df:48:f6:90:84:ce: 85:7b:d8:e9:38:bf:21:88:fe:ad:bf:b0:3b:4c:0b: 62:f5:fd:19:76:3c:61:74:58:ef:1c:b6:b1:f2:1b: e4:da:1e:49:12:39:cc:9c:7d:69:12:83:31:ec:92: 64:44:d8:e6:5f:45:9b:7b:33:37:b1:89:c0:7c:2a: 62:d4:6f:ea:28:db:71:e3:65:3a:71:e7:0b:38:b8: 64:b9:36:d1:cb:29:6e:6e:38:2b:56:c1:fc:09:1b: 03:ee:6b:22:3d:ad:67:6d:9c:40:9c:3a:8e:7a:8a: 68:18:d1:e4:dc:6d:6c:e2:ba:26:d5:3d:87:88:10: dc:46:40:49:db:42:3f:44:93:ab:07:0d:6e:e7:d4: ea:7b:2c:49:f7:67:d2:69:13:f3:e2:ac:ce:3f:af: 1b:c8:1e:03:7e:de:6d:3f:80:ee:d7:51:2b:d4:11: e8:91:69:0c:21:cc:93:6d:c6:e8:c6:01:c8:0f:7a: 49:d7:29:0a:39:7f:49:d6:21:7f:5c:48:86:1d:39: a2:2d:a9:35:60:1c:5f:42:fe:dd:79:0e:e5:96:df: 05:ca:89:16:d9:d8:40:d0:83:a8:cf:28:b0:ee:be: 82:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E1:C2:34:BA:30:12:19:ED:E1:78:1D:3D:DE:49:B8:90:FF:D9:37 X509v3 Authority Key Identifier: keyid:7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.162.228.0/23 IPv6: 2001:df6:180::/48 Signature Algorithm: sha256WithRSAEncryption b3:c0:7f:ff:b3:0b:b3:d4:04:ed:d0:f3:a7:91:29:bc:33:66: 01:9a:5b:18:16:62:01:a0:50:c2:a8:6c:7c:02:a3:6d:d6:bf: 83:df:49:f2:df:40:b2:3f:38:63:db:e5:ab:14:7e:d6:d6:b9: e1:f7:29:9a:80:00:5c:18:81:53:55:37:cd:ca:0b:01:71:b5: 76:17:2c:5e:bc:ce:b2:ba:01:b5:9a:09:9d:f6:ce:11:31:11: fa:9a:2e:7e:31:53:c6:7e:ee:2f:7e:f1:46:8a:cd:a3:12:b9: e3:ba:ae:b3:75:73:8f:8f:dd:00:d5:9e:08:a9:ea:f7:26:85: ba:3a:a7:10:15:3e:9c:d3:e2:ab:8a:ce:c1:20:50:e3:7f:3a: 1e:b0:01:6b:5a:47:54:f8:78:20:e4:fb:e3:11:ad:5c:ed:c5: 27:44:6b:de:f2:b2:9a:30:f1:1e:c6:ed:47:7f:9a:5b:43:50: 9c:da:c1:8c:e3:08:58:0b:0d:43:28:9b:71:bf:dd:17:a4:ea: 3b:6d:8f:c4:2e:dd:57:1d:c9:f6:ce:f8:86:e8:15:78:a6:66: 54:a2:61:e9:68:e4:0c:10:3c:6c:3d:d5:2c:32:eb:73:38:9d: bd:40:31:73:22:1b:90:ca:da:e5:86:31:79:e5:37:33:47:ab: 44:6b:06:2b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRjIxMTAvBgNVBAUTKDdCRjE4MENFQUM0NzZEQkQxODM5MjkxMEZBMjJEQUEx RUY1QkE2RDUwHhcNMjUwNDE0MjIzMzI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDljNS0yNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQ2v5/qjWraHCPOmji14RZ9qKgCT3QLfSPaQhM6Fe9jpOL8hiP6tv7A7TAti 9f0ZdjxhdFjvHLax8hvk2h5JEjnMnH1pEoMx7JJkRNjmX0WbezM3sYnAfCpi1G/q KNtx42U6cecLOLhkuTbRyylubjgrVsH8CRsD7msiPa1nbZxAnDqOeopoGNHk3G1s 4rom1T2HiBDcRkBJ20I/RJOrBw1u59TqeyxJ92fSaRPz4qzOP68byB4Dft5tP4Du 11Er1BHokWkMIcyTbcboxgHID3pJ1ykKOX9J1iF/XEiGHTmiLak1YBxfQv7deQ7l lt8FyokW2dhA0IOozyiw7r6CBwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAfhwjS6 MBIZ7eF4HT3eSbiQ/9k3MB8GA1UdIwQYMBaAFHvxgM6sR229GDkpEPoi2qHvW6bV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVGMi9EQTQ3RTU2MDk0 NDgxMUVCQTVBRTM2MDlDNEY5QUUwMi9lX0dBenF4SGJiMFlPU2tRLWlMYW9lOWJw dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VfR0F6cXhIYmIwWU9Ta1EtaUxhb2U5YnB0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRjIvREE0N0U1NjA5NDQ4MTFFQkE1QUUzNjA5QzRGOUFFMDIvMzUyMEE0QzBE REE3MTFFQkE0MzY5NjdDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6LkMA8EAgACMAkDBwAgAQ32AYAwDQYJKoZIhvcNAQELBQADggEB ALPAf/+zC7PUBO3Q86eRKbwzZgGaWxgWYgGgUMKobHwCo23Wv4PfSfLfQLI/OGPb 5asUftbWueH3KZqAAFwYgVNVN83KCwFxtXYXLF68zrK6AbWaCZ32zhExEfqaLn4x U8Z+7i9+8UaKzaMSueO6rrN1c4+P3QDVngip6vcmhbo6pxAVPpzT4quKzsEgUON/ Oh6wAWtaR1T4eCDk++MRrVztxSdEa97yspow8R7G7Ud/mltDUJzawYzjCFgLDUMo m3G/3Rek6jttj8Qu3VcdyfbO+IboFXimZlSiYelo5AwQPGw91Swy63M4nb1AMXMi G5DK2uWGMXnlNzNHq0RrBis= -----END CERTIFICATE-----Generated at Mon Mar 2 10:54:55 2026 by rpki-client