$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa File: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (raw, json) Hash identifier: Z52mVJSz988Jd9hitOllyu60oqioAYARpSvRGcwNtnE= Subject key identifier: 67:85:35:99:2F:8D:E6:E5:27:BF:76:B2:1F:13:DD:E1:8D:2C:D0:C1 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 028E Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:09:57 +0000 ROA not before: Thu 13 Nov 2025 00:17:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140711 IP address blocks: 103.19.122.0/23 maxlen: 23 103.19.122.0/24 maxlen: 24 103.19.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Nov 13 00:17:45 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42c95-f23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:db:a1:a9:43:96:74:8a:ad:18:3d:cf:0c: 61:34:05:76:03:0f:8e:88:94:fe:ad:a8:e4:28:02: b9:72:4e:28:72:db:48:78:ee:e5:d6:fe:39:dd:e6: 77:0f:6b:a4:d3:b2:8b:9f:c5:46:a8:e5:b4:ac:d8: c9:ad:77:7f:c1:90:37:13:cf:61:41:a1:43:dc:07: f2:96:c7:13:36:99:fa:ac:7f:ab:ec:eb:bd:27:dc: 87:98:da:cc:e8:e0:18:c3:37:22:94:47:6a:a4:9a: cd:82:ac:0c:a3:b5:ca:43:06:bd:24:cf:1a:1e:84: 5f:fa:56:d8:ef:fd:b0:1a:f1:2b:7a:a5:d0:3d:1b: fc:ef:fd:22:74:d8:2c:f7:63:47:98:1c:0f:41:36: 54:f2:14:f5:78:22:3e:76:7e:b2:98:d9:e8:b7:cb: 4d:83:53:74:d9:0c:d5:94:c0:f2:bf:fe:f4:23:26: 13:fd:b6:d8:0e:01:b6:f2:db:0c:ce:1a:14:a1:93: bc:fc:a5:bf:4f:96:e2:fa:7d:42:1f:85:52:9a:b2: ef:20:d3:80:48:ee:97:7d:22:31:6e:01:60:96:23: b0:1e:26:5d:38:c3:34:89:37:2c:41:74:7a:49:ba: 40:25:53:23:d0:91:04:58:5b:c2:11:bf:bc:2c:63: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:85:35:99:2F:8D:E6:E5:27:BF:76:B2:1F:13:DD:E1:8D:2C:D0:C1 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/0CDAA8EEE86611EFA5152A24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.19.122.0/23 Signature Algorithm: sha256WithRSAEncryption 99:cc:d7:18:3b:9f:ad:b6:2a:8b:48:0c:0c:eb:87:8d:39:65: c3:06:1c:d8:3e:c0:c9:f1:f2:8b:fb:36:77:d1:21:af:32:51: 4e:ff:0e:ab:05:31:77:02:6f:36:2b:ab:9a:0a:76:7d:67:36: 7d:3f:44:fd:65:7c:37:14:42:af:27:5b:b3:7b:81:fe:f7:9f: bf:31:fb:84:fb:94:1a:9c:74:e0:42:80:52:6e:c6:cf:05:aa: cc:8b:dc:6c:fd:f3:ca:d2:98:aa:c1:e2:63:f1:bd:57:dc:4f: a1:60:b9:47:ab:ef:0b:f6:06:75:ec:92:23:49:33:fe:bb:1c: 47:54:69:96:ab:24:96:47:2c:6e:03:33:69:7f:3a:2f:a8:b1: e0:a8:08:b3:c6:02:b0:56:b6:fd:b9:28:93:8b:08:58:e0:5b: 59:d4:4c:71:4d:29:7b:82:ea:c5:05:f9:e2:74:84:b8:95:14: 20:f5:5f:66:ba:84:5d:6d:bb:c5:0b:34:fb:62:de:b1:dc:90: fd:56:bc:5a:a5:7d:d9:46:06:2c:07:25:aa:9a:ec:4b:26:b6: b1:20:05:a3:86:8c:07:2c:b4:15:43:03:e9:04:8d:32:c0:4a: 64:07:3e:74:bb:8f:2e:4b:37:64:a1:9a:e5:3a:60:cf:17:bc: 41:92:5b:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjUxMTEzMDAxNzQ1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmM5NS1mMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZPboalDlnSKrRg9zwxhNAV2Aw+OiJT+rajkKAK5ck4octtIeO7l1v453eZ3 D2uk07KLn8VGqOW0rNjJrXd/wZA3E89hQaFD3AfylscTNpn6rH+r7Ou9J9yHmNrM 6OAYwzcilEdqpJrNgqwMo7XKQwa9JM8aHoRf+lbY7/2wGvEreqXQPRv87/0idNgs 92NHmBwPQTZU8hT1eCI+dn6ymNnot8tNg1N02QzVlMDyv/70IyYT/bbYDgG28tsM zhoUoZO8/KW/T5bi+n1CH4VSmrLvINOASO6XfSIxbgFgliOwHiZdOMM0iTcsQXR6 SbpAJVMj0JEEWFvCEb+8LGMrGwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGeFNZkv jeblJ792sh8T3eGNLNDBMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2OUUvMjUyNUM3Qzg0RDI1MTFFREE2REREMjJFQzRGOUFFMDIvMENEQUE4RUVF ODY2MTFFRkE1MTUyQTI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxN6MA0GCSqGSIb3DQEBCwUAA4IBAQCZzNcYO5+ttiqLSAwM64eN OWXDBhzYPsDJ8fKL+zZ30SGvMlFO/w6rBTF3Am82K6uaCnZ9ZzZ9P0T9ZXw3FEKv J1uze4H+95+/MfuE+5QanHTgQoBSbsbPBarMi9xs/fPK0piqweJj8b1X3E+hYLlH q+8L9gZ17JIjSTP+uxxHVGmWqySWRyxuAzNpfzovqLHgqAizxgKwVrb9uSiTiwhY 4FtZ1ExxTSl7gurFBfnidIS4lRQg9V9muoRdbbvFCzT7Yt6x3JD9VrxapX3ZRgYs ByWqmuxLJraxIAWjhowHLLQVQwPpBI0ywEpkBz50u48uSzdkoZrlOmDPF7xBklsa -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:48 2026 by rpki-client