$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa File: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (raw, json) Hash identifier: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM= Subject key identifier: 4B:AB:5B:AC:76:C3:F2:A0:59:91:6B:22:87:73:83:8F:53:1A:14:81 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3580 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:04 +0000 ROA not before: Mon 24 Nov 2025 00:22:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38077 IP address blocks: 103.112.36.0/22 maxlen: 24 180.189.160.0/20 maxlen: 24 2405:1f00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:11:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13696 (0x3580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Nov 24 00:22:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48138-d48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b2:0e:b4:37:65:b7:c9:77:a3:55:6b:02:02: 5b:67:72:7b:22:1c:f5:5e:a8:ed:1d:46:6b:32:57: ce:29:77:b9:9e:71:4e:52:c1:94:03:75:5b:f7:cf: f5:36:97:32:8d:30:a7:c2:88:b6:01:5b:75:e4:07: f5:f2:fc:13:55:c2:fe:d3:68:1b:83:a1:9c:3a:41: dc:3c:88:58:ce:93:b8:1c:17:4b:92:25:d0:2b:c0: 6e:8a:72:9c:e4:ce:de:1d:17:a2:a3:33:1d:78:5e: ce:e3:8b:f1:e5:99:33:64:50:0b:f0:ba:70:0f:77: 1d:b1:71:1e:76:0d:9d:ac:18:e7:8b:57:52:38:1f: 37:7b:2e:08:94:39:52:97:92:a1:53:ef:28:fd:33: 11:42:72:67:a1:f9:55:ee:56:7c:7b:8e:51:cf:f9: db:7e:87:2c:19:3d:52:b0:39:28:5d:a6:70:8e:ea: 16:32:a0:3e:26:b0:51:b5:00:14:95:27:bc:d4:93: 3c:0f:92:48:88:20:55:15:e6:39:64:be:b4:4d:97: 6d:e0:7a:d6:0d:9d:99:b2:a9:a9:69:81:59:dc:e1: 90:bd:eb:08:ef:70:fc:62:44:99:23:29:5d:0e:37: 23:41:f0:b0:1b:a5:b9:f5:60:da:db:fc:8c:df:b9: 46:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AB:5B:AC:76:C3:F2:A0:59:91:6B:22:87:73:83:8F:53:1A:14:81 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/97F461E0C8CB11F0BFB08139C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.112.36.0/22 180.189.160.0/20 IPv6: 2405:1f00::/32 Signature Algorithm: sha256WithRSAEncryption 61:61:70:6b:88:68:ea:2c:a1:9c:a8:50:34:c6:4f:a6:65:55: 21:5b:be:03:24:d8:07:61:48:78:a5:a4:54:e8:f8:6e:a0:3f: be:73:d2:7b:88:97:ee:dd:6b:72:89:25:d0:bb:d5:5e:18:9a: db:e8:fc:42:93:e6:ca:34:bb:4f:48:3e:fa:5c:f8:49:70:0a: 12:6c:ca:31:ab:0c:16:ed:ea:cb:23:99:a7:e1:2f:90:1d:4e: 14:22:f1:f6:33:1d:c8:2a:9d:7b:b3:0c:7c:72:f0:6f:b3:e8: c5:75:a1:f1:c7:e6:a9:fe:a6:ff:df:76:67:bf:63:a0:03:36: fe:50:d1:e8:b5:89:94:28:9c:45:ed:cb:a1:c9:a9:22:3b:88: c7:94:f5:20:a9:95:88:da:ec:4f:5d:84:07:e2:98:f1:a0:08: eb:57:d6:d9:d3:4d:60:70:cc:65:59:0c:ea:01:15:b9:19:99: 6b:81:5e:13:d3:83:49:85:42:2a:2f:66:02:01:82:a6:8a:e4: ea:91:72:d9:d5:bb:19:aa:08:c2:6b:a0:34:7f:d0:f2:db:b0: db:e9:f2:11:8b:ca:69:70:6d:94:48:62:0c:02:7b:00:f0:97: dc:83:57:16:bf:4c:2b:3c:f4:0a:bb:85:dd:1f:a5:27:53:f0: 92:55:05:9b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICNYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjUxMTI0MDAyMjAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODEzOC1kNDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7IOtDdlt8l3o1VrAgJbZ3J7Ihz1XqjtHUZrMlfOKXe5nnFOUsGUA3Vb98/1 NpcyjTCnwoi2AVt15Af18vwTVcL+02gbg6GcOkHcPIhYzpO4HBdLkiXQK8BuinKc 5M7eHReiozMdeF7O44vx5ZkzZFAL8LpwD3cdsXEedg2drBjni1dSOB83ey4IlDlS l5KhU+8o/TMRQnJnoflV7lZ8e45Rz/nbfocsGT1SsDkoXaZwjuoWMqA+JrBRtQAU lSe81JM8D5JIiCBVFeY5ZL60TZdt4HrWDZ2ZsqmpaYFZ3OGQvesI73D8YkSZIyld DjcjQfCwG6W59WDa2/yM37lGkwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEurW6x2 w/KgWZFrIodzg49TGhSBMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThEMjIvMjUyNjk3OTgxRDkyMTFFMkI2MThDQUY0MDhCMDJDRDIvOTdGNDYxRTBD OENCMTFGMEJGQjA4MTM5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ3AkAwQEtL2gMA0EAgACMAcDBQAkBR8AMA0GCSqGSIb3DQEBCwUA A4IBAQBhYXBriGjqLKGcqFA0xk+mZVUhW74DJNgHYUh4paRU6PhuoD++c9J7iJfu 3WtyiSXQu9VeGJrb6PxCk+bKNLtPSD76XPhJcAoSbMoxqwwW7erLI5mn4S+QHU4U IvH2Mx3IKp17swx8cvBvs+jFdaHxx+ap/qb/33Znv2OgAzb+UNHotYmUKJxF7cuh yakiO4jHlPUgqZWI2uxPXYQH4pjxoAjrV9bZ001gcMxlWQzqARW5GZlrgV4T04NJ hUIqL2YCAYKmiuTqkXLZ1bsZqgjCa6A0f9Dy27Db6fIRi8ppcG2USGIMAnsA8Jfc g1cWv0wrPPQKu4XdH6UnU/CSVQWb -----END CERTIFICATE-----Generated at Mon Mar 2 11:11:51 2026 by rpki-client