$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/9F9FD574758811EA93AADD3FC4F9AE02.roa File: 9F9FD574758811EA93AADD3FC4F9AE02.roa (raw, json) Hash identifier: pKr8yU46bzkgepRuOhx0qrjQP+ajOBOvuvImXMjNl5M= Subject key identifier: C7:D0:71:0A:96:D6:FA:81:A6:30:F1:17:C5:F6:96:A3:34:05:2E:04 Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0BC0 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/9F9FD574758811EA93AADD3FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:57:57 +0000 ROA not before: Thu 14 Aug 2025 19:59:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135312 IP address blocks: 103.116.180.0/22 maxlen: 22 103.116.180.0/23 maxlen: 23 103.116.182.0/23 maxlen: 24 2402:fec0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3008 (0xbc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Aug 14 19:59:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a445e5-fe28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:e5:79:83:ba:0f:d5:60:b3:63:e0:00:12: 9d:e0:c9:18:0a:ac:56:90:9b:2c:87:b9:de:72:e0: 13:df:44:94:71:4c:7a:28:a4:7e:e6:62:55:0f:be: c6:f5:0e:6e:54:23:ba:e8:2e:d3:20:8e:07:d4:fb: a8:fe:9e:9a:34:64:e3:ae:d5:52:39:d0:cc:83:c5: 54:5f:ad:c1:65:c1:71:26:8e:49:3a:c2:61:27:88: 48:83:f4:2e:bc:92:25:bd:04:ee:e2:88:c3:6c:88: ac:8c:4d:ba:74:b2:d3:63:50:99:dc:a2:35:a0:25: dc:fc:8f:08:a0:03:73:89:aa:a2:4d:4d:a5:83:7e: 43:00:9a:d7:77:ab:85:1d:fb:fa:01:12:38:05:f0: dd:b4:76:a0:b8:4a:51:3a:6d:c4:63:ed:01:7b:fa: f6:ad:5a:77:c5:d5:5d:8a:af:05:c9:09:63:0d:fd: a0:ca:cf:95:2f:2b:28:a2:53:53:f8:db:90:ec:bb: dc:5b:6c:3e:0f:01:f6:ce:e3:98:a5:fb:6b:06:ee: 90:88:5a:a8:b0:03:5f:91:4e:3c:7c:fa:1a:6a:ab: fc:69:74:ba:9f:37:19:c2:13:62:40:c2:9a:f8:50: a0:e6:d0:bf:8a:10:18:aa:5e:a3:b3:b8:9a:29:f3: 6f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D0:71:0A:96:D6:FA:81:A6:30:F1:17:C5:F6:96:A3:34:05:2E:04 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/9F9FD574758811EA93AADD3FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.180.0/22 IPv6: 2402:fec0::/32 Signature Algorithm: sha256WithRSAEncryption b5:de:a6:c3:19:78:14:08:df:b6:22:92:e3:bd:19:9e:cd:e2: 8a:ef:ec:a8:a5:c0:eb:32:f5:82:3c:72:6e:00:75:e2:6f:0e: 91:12:ca:ff:50:fc:6d:d3:d2:34:fe:f6:c0:58:8a:77:ee:9f: b0:e3:91:02:30:da:c1:e9:b2:e3:77:06:ce:ce:5b:92:a5:0f: 7f:5b:9e:2a:84:db:c8:31:85:7a:33:ac:be:90:dd:fb:e9:90: b5:6f:5b:c7:34:7f:9d:cb:07:a6:6b:04:fc:a4:be:8f:41:81: b5:38:6e:47:ee:c8:bf:2b:d8:88:4a:b4:fb:fd:87:02:d5:72: 0b:4a:9f:d5:0d:4f:c2:52:e7:7d:39:18:36:ea:fc:89:aa:f2: 6c:b9:f9:4c:50:26:e1:72:30:7b:8a:e1:f3:50:8a:df:b7:37: e4:d5:b8:9a:35:2f:e2:8c:da:a8:49:77:ea:c9:58:f5:70:3b: a5:5e:ce:5a:a0:41:6f:ed:8c:de:86:5f:59:96:b2:5e:2e:82: df:c5:9a:5c:22:59:d2:1d:fa:b1:f1:9b:b2:43:4a:2a:2e:c7: 31:8e:b8:d7:6d:6b:d3:e4:86:c7:11:94:20:01:28:66:19:81: b4:82:04:dc:17:ec:3b:26:03:cd:3a:5b:e4:f3:36:af:29:15: d0:2d:62:16 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwODE0MTk1OTE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDVlNS1mZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6jleYO6D9Vgs2PgABKd4MkYCqxWkJssh7necuAT30SUcUx6KKR+5mJVD77G 9Q5uVCO66C7TII4H1Puo/p6aNGTjrtVSOdDMg8VUX63BZcFxJo5JOsJhJ4hIg/Qu vJIlvQTu4ojDbIisjE26dLLTY1CZ3KI1oCXc/I8IoANziaqiTU2lg35DAJrXd6uF Hfv6ARI4BfDdtHaguEpROm3EY+0Be/r2rVp3xdVdiq8FyQljDf2gys+VLysoolNT +NuQ7LvcW2w+DwH2zuOYpftrBu6QiFqosANfkU48fPoaaqv8aXS6nzcZwhNiQMKa +FCg5tC/ihAYql6js7iaKfNvRQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMfQcQqW 1vqBpjDxF8X2lqM0BS4EMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE3MUMvRTdFRjA4MzYzRTE1MTFFQUIzNzFBNTQxQzRGOUFFMDIvOUY5RkQ1NzQ3 NTg4MTFFQTkzQUFERDNGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3S0MA0EAgACMAcDBQAkAv7AMA0GCSqGSIb3DQEBCwUAA4IBAQC1 3qbDGXgUCN+2IpLjvRmezeKK7+yopcDrMvWCPHJuAHXibw6REsr/UPxt09I0/vbA WIp37p+w45ECMNrB6bLjdwbOzluSpQ9/W54qhNvIMYV6M6y+kN376ZC1b1vHNH+d ywemawT8pL6PQYG1OG5H7si/K9iISrT7/YcC1XILSp/VDU/CUud9ORg26vyJqvJs uflMUCbhcjB7iuHzUIrftzfk1biaNS/ijNqoSXfqyVj1cDulXs5aoEFv7Yzehl9Z lrJeLoLfxZpcIlnSHfqx8ZuyQ0oqLscxjrjXbWvT5IbHEZQgAShmGYG0ggTcF+w7 JgPNOlvk8zavKRXQLWIW -----END CERTIFICATE-----Generated at Mon Mar 2 09:09:53 2026 by rpki-client