$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa File: ADFF1B80076711F1A8EB0774023D8C67.roa (raw, json) Hash identifier: 7k/0PH5nSqAO2g0oYdL/sS5gQW9gOR4413PNtJehi7c= Subject key identifier: 7E:CA:21:DF:F5:E0:1E:E8:3E:A8:12:83:9E:4D:5A:F3:9B:BC:F0:46 Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 1059 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa Signing time: Sun 01 Mar 2026 17:46:06 +0000 ROA not before: Wed 11 Feb 2026 16:38:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1828 IP address blocks: 103.38.152.0/24 maxlen: 24 103.38.153.0/24 maxlen: 24 103.38.154.0/24 maxlen: 24 103.38.155.0/24 maxlen: 24 111.221.57.0/24 maxlen: 24 111.221.58.0/23 maxlen: 24 202.58.136.0/21 maxlen: 21 2401:5dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4185 (0x1059) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Feb 11 16:38:50 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a47b5d-d789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:2e:9d:89:52:7d:eb:14:c7:33:4f:f3:eb: c3:fd:d1:f9:9d:76:e4:44:f9:6c:fa:86:3a:a9:b5: 7a:95:75:30:71:d7:84:e4:58:57:ef:3c:f5:3b:7f: e7:45:90:a3:06:74:13:da:ad:61:61:9e:f0:58:2a: 26:46:b3:ac:c8:06:7e:c4:12:fd:b6:c2:10:c7:df: 09:d0:6d:c8:f5:3c:4f:07:0e:b9:71:91:a5:10:37: 9b:6c:01:8e:e1:52:4f:c0:7c:c2:68:1e:be:8a:97: be:b4:b6:53:03:44:b9:43:16:e9:69:14:3b:13:aa: b6:5d:58:b4:6e:44:96:0b:8d:93:46:3c:f4:96:11: 61:d9:70:15:af:6f:bf:66:74:79:96:ba:c7:e8:09: e2:a4:cd:8c:8d:16:0d:15:6e:c2:95:22:7b:dd:b3: 44:1e:b0:c2:1d:4e:74:73:f4:82:84:25:72:1b:4e: 5d:8a:45:c6:43:9a:71:b6:ac:87:aa:98:8e:e8:87: 36:99:2f:f5:4a:e8:7c:fc:59:7c:34:43:c1:94:da: 4c:71:6e:2c:97:9c:93:b1:93:82:15:2d:e3:8f:56: ae:07:ee:e2:c1:9f:c8:17:c0:17:4a:d9:2e:c5:63: bc:aa:61:84:d3:7b:d1:53:93:f9:6b:04:9f:fc:ba: 15:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:CA:21:DF:F5:E0:1E:E8:3E:A8:12:83:9E:4D:5A:F3:9B:BC:F0:46 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/ADFF1B80076711F1A8EB0774023D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.38.152.0/22 111.221.57.0-111.221.59.255 202.58.136.0/21 IPv6: 2401:5dc0::/32 Signature Algorithm: sha256WithRSAEncryption 06:55:e2:ad:ab:b7:7d:6f:65:b4:af:e7:c9:b2:7d:9d:9e:ec: 03:cd:8d:53:13:83:51:0e:61:8c:50:1d:28:dd:6e:95:7b:49: e9:8a:8b:c0:90:aa:a8:d5:fc:f9:4b:24:d1:46:a3:1b:c6:3f: 1d:29:a4:c7:a7:86:dd:33:76:ae:f5:e6:d9:d3:cf:55:29:84: 0d:3b:41:2c:80:00:a1:62:80:2f:67:1e:5b:fe:ba:4b:bc:92: b8:4d:f5:29:5c:71:3a:63:32:9e:8f:5c:9c:dc:b4:98:39:6a: 45:61:0a:c3:31:a8:c8:1e:3a:0a:35:57:b2:b2:d4:13:86:33: 75:1b:8a:0b:e3:3d:88:80:9c:ba:d7:31:9f:6b:b7:b5:16:91: 99:16:43:1f:71:7f:35:83:2c:56:d6:6c:53:90:2c:b9:39:59: 84:1a:65:cf:53:a8:df:ef:56:1f:3f:f0:7f:b6:62:32:eb:a5: 3e:2a:ab:fc:21:db:a7:38:0a:d3:3c:0b:33:bd:80:c4:56:30: 23:23:41:3d:f0:3e:d5:05:7b:9e:17:75:cc:0a:e0:2c:32:38: 09:3d:ca:5c:f8:61:19:8d:57:f4:ae:8b:90:c0:7d:38:43:95: 2e:8a:63:83:e4:cb:1f:4c:9d:32:b7:12:c6:ab:a8:6a:bd:94: a0:45:16:68 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICEFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjYwMjExMTYzODUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2I1ZC1kNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkYunYlSfesUxzNP8+vD/dH5nXbkRPls+oY6qbV6lXUwcdeE5FhX7zz1O3/n RZCjBnQT2q1hYZ7wWComRrOsyAZ+xBL9tsIQx98J0G3I9TxPBw65cZGlEDebbAGO 4VJPwHzCaB6+ipe+tLZTA0S5QxbpaRQ7E6q2XVi0bkSWC42TRjz0lhFh2XAVr2+/ ZnR5lrrH6AnipM2MjRYNFW7ClSJ73bNEHrDCHU50c/SChCVyG05dikXGQ5pxtqyH qpiO6Ic2mS/1Suh8/Fl8NEPBlNpMcW4sl5yTsZOCFS3jj1auB+7iwZ/IF8AXStku xWO8qmGE03vRU5P5awSf/LoVbwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFH7KId/1 4B7oPqgSg55NWvObvPBGMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFMTYvMTc0ODg1NTA1QkIxMTFFOThCMTAzQjEzQzRGOUFFMDIvQURGRjFCODAw NzY3MTFGMUE4RUIwNzc0MDIzRDhDNjcucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAg BAIAATAaAwQCZyaYMAwDBABv3TkDBAJv3TgDBAPKOogwDQQCAAIwBwMFACQBXcAw DQYJKoZIhvcNAQELBQADggEBAAZV4q2rt31vZbSv58myfZ2e7APNjVMTg1EOYYxQ HSjdbpV7SemKi8CQqqjV/PlLJNFGoxvGPx0ppMenht0zdq715tnTz1UphA07QSyA AKFigC9nHlv+uku8krhN9SlccTpjMp6PXJzctJg5akVhCsMxqMgeOgo1V7Ky1BOG M3UbigvjPYiAnLrXMZ9rt7UWkZkWQx9xfzWDLFbWbFOQLLk5WYQaZc9TqN/vVh8/ 8H+2YjLrpT4qq/wh26c4CtM8CzO9gMRWMCMjQT3wPtUFe54XdcwK4CwyOAk9ylz4 YRmNV/Sui5DAfThDlS6KY4Pkyx9MnTK3EsarqGq9lKBFFmg= -----END CERTIFICATE-----Generated at Mon Mar 2 04:54:00 2026 by rpki-client