$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/998461D4D14E11EEBD6E0D11C4F9AE02.roa File: 998461D4D14E11EEBD6E0D11C4F9AE02.roa (raw, json) Hash identifier: 4q0CRvK7cBuNbIl5NhxnFGQFPdtxllu37atqP2x76PI= Subject key identifier: FB:37:D6:CA:CF:50:F3:46:3F:11:61:E0:1B:E0:68:90:8B:B7:32:15 Certificate issuer: /CN=A91B7292/serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4 Certificate serial: 0192 Authority key identifier: C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/998461D4D14E11EEBD6E0D11C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:10:10 +0000 ROA not before: Fri 09 Jan 2026 04:22:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38325 IP address blocks: 123.108.120.0/21 maxlen: 21 123.108.120.0/22 maxlen: 22 123.108.121.0/24 maxlen: 24 123.108.122.0/24 maxlen: 24 123.108.123.0/24 maxlen: 24 123.108.124.0/22 maxlen: 22 123.108.124.0/24 maxlen: 24 123.108.125.0/24 maxlen: 24 123.108.126.0/24 maxlen: 24 123.108.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7292, serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4 Validity Not Before: Jan 9 04:22:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a456d2-ae3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:28:01:46:70:d4:26:12:7f:1e:1e:ce:21:fb: ce:f0:44:8f:e4:e3:d7:5c:b0:27:ba:be:fa:a8:15: 89:2e:ae:df:bf:64:99:f1:ed:66:b1:3b:96:17:0a: db:0b:52:5e:8f:1f:22:39:61:74:f5:71:ca:46:ca: 1e:41:4b:73:e3:d6:a2:94:59:55:93:f1:3f:e8:33: 24:48:61:f9:09:73:2f:4f:fe:43:9d:aa:bd:b1:5b: 7d:82:e3:01:c7:e2:29:cc:e3:28:c4:f2:6f:a4:2e: 32:a3:a9:e8:c1:59:a4:c6:09:14:d6:aa:eb:59:10: 12:53:59:06:ea:fa:d3:d5:49:73:c8:9a:1e:d2:8f: f3:e9:8d:e4:40:80:fe:46:d3:35:3a:68:0d:c9:a3: 55:48:b1:96:bd:b8:2c:05:b4:1a:84:04:a9:bd:8c: 8e:b3:51:ce:14:49:4a:5f:3d:67:d3:68:16:0c:37: 54:96:0a:da:a6:ec:14:59:44:6d:b7:17:d9:ec:03: 44:c8:91:f6:b3:6d:a1:e5:24:c3:1c:8c:38:45:8c: 58:53:6c:83:be:03:fb:01:bf:d0:41:ac:53:92:15: 2d:4a:b6:ff:07:9d:88:8c:ae:b9:b1:72:31:41:db: d8:bf:98:02:f6:8b:4f:b1:05:42:67:ac:a5:10:86: ac:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:37:D6:CA:CF:50:F3:46:3F:11:61:E0:1B:E0:68:90:8B:B7:32:15 X509v3 Authority Key Identifier: keyid:C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/998461D4D14E11EEBD6E0D11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.108.120.0/21 Signature Algorithm: sha256WithRSAEncryption 71:9a:1e:3b:54:0f:ce:22:49:bf:22:02:8c:67:b9:71:14:87: 78:5e:57:69:9e:33:78:4e:22:49:cd:1c:83:76:43:f1:bd:3b: e7:da:67:9d:49:33:2f:f6:b6:1f:95:52:2d:c8:1b:41:5c:59: 50:88:0d:39:13:f3:f2:eb:92:aa:d9:b3:1f:f8:29:a3:62:5d: 59:ad:c7:be:a6:d9:65:c3:ad:b2:72:d5:50:12:b1:95:52:e8: 88:90:04:9d:84:72:36:2b:02:9c:a5:02:d7:f2:b1:46:5b:e8: b1:c6:21:16:c5:dc:d7:6d:5f:17:09:78:95:58:d5:7c:3c:ba: ad:54:a0:bb:93:c8:2b:c1:e7:5c:4b:20:2f:91:98:42:56:10: 3d:76:db:16:9e:45:d6:d2:56:9f:4e:f6:4c:a6:36:bd:8f:f2: ae:d4:6d:d7:03:a5:d8:f0:8f:fe:c1:2a:12:a4:20:a9:b6:45: cf:cd:8c:85:5d:a6:00:c2:e4:78:20:ae:ad:9d:2f:4f:9c:88: ec:90:30:ad:f5:c0:2d:73:c2:a8:12:a3:2e:d5:64:94:d7:b6: 4c:9a:09:49:89:4f:e8:be:84:10:23:37:c7:f6:73:59:03:2b: ff:48:5c:85:36:1e:86:7f:e1:7a:90:0e:ff:9f:8e:68:d6:c9: f5:88:8b:1d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyOTIxMTAvBgNVBAUTKEMyRkM2NDQ4NTY0RUM2NTI2QjkxQjJGRTIzQjRGRDU4 MzQyRDIwRjQwHhcNMjYwMTA5MDQyMjUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTZkMi1hZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCgBRnDUJhJ/Hh7OIfvO8ESP5OPXXLAnur76qBWJLq7fv2SZ8e1msTuWFwrb C1Jejx8iOWF09XHKRsoeQUtz49ailFlVk/E/6DMkSGH5CXMvT/5Dnaq9sVt9guMB x+IpzOMoxPJvpC4yo6nowVmkxgkU1qrrWRASU1kG6vrT1UlzyJoe0o/z6Y3kQID+ RtM1OmgNyaNVSLGWvbgsBbQahASpvYyOs1HOFElKXz1n02gWDDdUlgrapuwUWURt txfZ7ANEyJH2s22h5STDHIw4RYxYU2yDvgP7Ab/QQaxTkhUtSrb/B52IjK65sXIx QdvYv5gC9otPsQVCZ6ylEIashwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPs31srP UPNGPxFh4BvgaJCLtzIVMB8GA1UdIwQYMBaAFML8ZEhWTsZSa5Gy/iO0/Vg0LSD0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI5Mi8wM0I4OEFEQUQx NEExMUVFOTlERTJCNTJDNEY5QUUwMi93dnhrU0ZaT3hsSnJrYkwtSTdUOVdEUXRJ UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2eGtTRlpPeGxKcmtiTC1JN1Q5V0RRdElQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjcyOTIvMDNCODhBREFEMTRBMTFFRTk5REUyQjUyQzRGOUFFMDIvOTk4NDYxRDRE MTRFMTFFRUJENkUwRDExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDe2x4MA0GCSqGSIb3DQEBCwUAA4IBAQBxmh47VA/OIkm/IgKMZ7lx FId4XldpnjN4TiJJzRyDdkPxvTvn2medSTMv9rYflVItyBtBXFlQiA05E/Py65Kq 2bMf+CmjYl1Zrce+ptllw62yctVQErGVUuiIkASdhHI2KwKcpQLX8rFGW+ixxiEW xdzXbV8XCXiVWNV8PLqtVKC7k8grwedcSyAvkZhCVhA9dtsWnkXW0lafTvZMpja9 j/Ku1G3XA6XY8I/+wSoSpCCptkXPzYyFXaYAwuR4IK6tnS9PnIjskDCt9cAtc8Ko EqMu1WSU17ZMmglJiU/ovoQQIzfH9nNZAyv/SFyFNh6Gf+F6kA7/n45o1sn1iIsd -----END CERTIFICATE-----Generated at Mon Mar 2 13:23:44 2026 by rpki-client