$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/8EFF79AA9C9B11F09188945AC4F9AE02.roa File: 8EFF79AA9C9B11F09188945AC4F9AE02.roa (raw, json) Hash identifier: y1FzXgu+VN9W9oo7CEalqkJg+YDBiOMJWj1I/8+i1h0= Subject key identifier: 5B:AA:5F:B4:41:ED:1C:DC:32:9D:23:0B:6A:94:2D:2B:EF:BF:38:B2 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 0719 Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/8EFF79AA9C9B11F09188945AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:34 +0000 ROA not before: Wed 22 Oct 2025 23:42:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 401984 IP address blocks: 103.99.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1817 (0x719) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Oct 22 23:42:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48156-3ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6f:60:7a:d6:41:d4:39:b2:aa:3b:76:55:e6: 7d:5d:e2:5b:ac:76:ec:f2:72:e5:a4:10:04:93:3e: 36:a4:17:69:80:cd:1f:cb:01:e3:4e:ba:4b:48:8a: 13:06:ab:2e:c7:fb:49:16:3f:89:56:23:d3:8b:a3: 68:39:ce:d8:90:ea:d9:f2:90:97:ad:60:b8:e2:f4: 68:5f:d6:95:c0:1c:b8:f4:1e:66:86:1f:4a:b7:5a: ef:e0:cf:c9:70:d8:1e:e1:fd:17:62:55:8d:9d:f3: 1a:74:d6:cc:d3:8b:a4:63:3f:6c:ff:c6:6b:0f:ed: a1:f2:4e:20:d4:36:39:22:a5:95:1e:9b:f1:17:1d: 69:2d:13:49:19:05:33:79:9e:68:a0:e6:2a:67:b1: 9c:66:d6:3d:7a:79:fb:0a:70:07:8c:8b:0e:1e:4b: 3a:f2:6f:9e:f7:c7:89:d6:b3:69:3a:a1:51:da:19: 05:18:14:4d:c8:1b:53:b5:cd:5e:0a:c1:66:fd:28: 63:2a:8c:f3:c2:9b:d1:09:5c:96:37:db:52:de:4b: e3:6b:0b:86:fc:b9:13:88:83:93:a8:c5:53:1a:99: 48:50:b5:80:18:ca:60:e9:03:86:78:4d:de:c7:15: 80:53:df:4c:d8:d8:dd:a8:eb:f5:49:91:8d:74:35: 4e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AA:5F:B4:41:ED:1C:DC:32:9D:23:0B:6A:94:2D:2B:EF:BF:38:B2 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/8EFF79AA9C9B11F09188945AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:80:ac:f8:5c:36:72:09:f0:2f:ee:19:a4:df:b7:f0:8e:8e: c3:57:12:9d:e7:7d:26:b2:ea:ba:a0:f6:a8:3a:73:52:3b:cb: 98:59:76:9f:5f:e1:2a:de:ea:27:2d:72:e4:d3:ac:a4:cc:fd: 0c:0c:bb:8e:16:dd:4d:e2:41:2d:f9:cd:81:d0:3f:6c:b9:d2: b9:f9:90:8b:aa:b7:72:b7:54:c4:f1:6a:69:70:b8:02:5b:3b: 08:7e:92:11:5c:6a:91:00:2e:39:75:cd:a0:b5:64:90:23:3c: 22:67:c9:c5:3e:29:18:c8:a4:bd:26:a7:3c:0b:49:0a:d3:d7: 4f:f1:72:8b:27:1e:c9:f3:25:df:b5:c3:42:01:8b:1c:a7:fb: c6:82:d6:69:80:02:78:31:7c:31:9b:30:f4:4f:28:d3:ac:32: 54:39:57:35:63:4d:3a:5c:55:e8:04:ca:2b:3a:a6:b5:c5:8e: 3b:2b:9f:fc:88:d2:74:f1:44:53:a7:87:78:0f:e0:63:31:8b: 6a:45:08:9b:1e:34:f0:07:28:5e:d1:27:29:fe:22:e9:b2:98: 1a:ac:da:11:16:c0:2f:e1:c5:20:3f:16:d0:c0:b3:52:34:7b: 5e:70:81:85:5a:e7:52:44:e7:b8:80:6c:c7:09:eb:3f:28:d8: 45:0e:92:21 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjUxMDIyMjM0MjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE1Ni0zZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjm9getZB1Dmyqjt2VeZ9XeJbrHbs8nLlpBAEkz42pBdpgM0fywHjTrpLSIoT Bqsux/tJFj+JViPTi6NoOc7YkOrZ8pCXrWC44vRoX9aVwBy49B5mhh9Kt1rv4M/J cNge4f0XYlWNnfMadNbM04ukYz9s/8ZrD+2h8k4g1DY5IqWVHpvxFx1pLRNJGQUz eZ5ooOYqZ7GcZtY9enn7CnAHjIsOHks68m+e98eJ1rNpOqFR2hkFGBRNyBtTtc1e CsFm/ShjKozzwpvRCVyWN9tS3kvjawuG/LkTiIOTqMVTGplIULWAGMpg6QOGeE3e xxWAU99M2NjdqOv1SZGNdDVOjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFuqX7RB 7RzcMp0jC2qULSvvvziyMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvOEVGRjc5QUE5 QzlCMTFGMDkxODg5NDVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2M8MA0GCSqGSIb3DQEBCwUAA4IBAQBagKz4XDZyCfAv7hmk37fw jo7DVxKd530msuq6oPaoOnNSO8uYWXafX+Eq3uonLXLk06ykzP0MDLuOFt1N4kEt +c2B0D9sudK5+ZCLqrdyt1TE8WppcLgCWzsIfpIRXGqRAC45dc2gtWSQIzwiZ8nF PikYyKS9Jqc8C0kK09dP8XKLJx7J8yXftcNCAYscp/vGgtZpgAJ4MXwxmzD0TyjT rDJUOVc1Y006XFXoBMorOqa1xY47K5/8iNJ08URTp4d4D+BjMYtqRQibHjTwByhe 0Scp/iLpspgarNoRFsAv4cUgPxbQwLNSNHtecIGFWudSROe4gGzHCes/KNhFDpIh -----END CERTIFICATE-----Generated at Mon Mar 2 05:49:16 2026 by rpki-client