$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/AAA33A7A74B011EF85E1C348C4F9AE02.roa File: AAA33A7A74B011EF85E1C348C4F9AE02.roa (raw, json) Hash identifier: FW4g/QhH4gL1hdaSiCtFk1K0xDP8/LV5Fbh+qpfxD0o= Subject key identifier: C7:E2:4B:C7:BE:9C:C0:38:41:C6:E6:C2:08:2D:80:0C:E4:8F:45:C7 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: 0117 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/AAA33A7A74B011EF85E1C348C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:56 +0000 ROA not before: Fri 03 Oct 2025 06:33:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132300 IP address blocks: 103.74.252.0/22 maxlen: 22 103.74.252.0/24 maxlen: 24 103.74.253.0/24 maxlen: 24 103.74.254.0/24 maxlen: 24 103.74.255.0/24 maxlen: 24 202.94.168.0/22 maxlen: 22 202.94.168.0/24 maxlen: 24 202.94.169.0/24 maxlen: 24 202.94.170.0/24 maxlen: 24 202.94.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Oct 3 06:33:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58d4f-3533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:28:ab:d1:1c:7b:b8:74:8a:47:61:b7:21:0d: 8b:7a:ae:b4:56:76:d6:91:3f:87:1f:1e:b6:10:50: 70:1c:70:a9:c3:0d:48:6a:f5:ed:56:5a:01:b1:c2: 14:92:b8:f5:c9:5a:10:8d:25:a0:df:d3:1d:d0:e1: a1:50:b3:3a:d4:76:41:1a:6f:1a:0f:5e:29:34:5b: 2f:b6:06:1a:df:d4:93:a9:12:4f:06:59:68:ac:86: 08:4d:12:30:ce:b8:c1:43:35:eb:9f:a1:3c:79:11: 46:05:b7:66:8f:a1:9f:1f:8b:25:33:b2:12:1e:da: 70:49:cf:51:95:5c:d8:b6:ae:c3:85:37:c3:e0:e9: 75:ec:eb:c6:ee:9e:f3:c0:c2:77:02:c0:d4:75:b0: 54:f4:b4:86:41:87:2d:b4:6b:ad:14:19:63:22:c4: 57:f2:00:c3:48:6d:af:d8:51:24:32:db:be:3f:9c: e5:39:2a:bd:8b:45:7f:6a:7f:74:27:6e:31:e1:49: 72:f6:18:31:67:a0:a8:d0:16:f8:d0:9c:38:eb:0b: 2d:8e:59:92:cd:b7:50:73:f6:fc:44:8e:48:ed:19: fb:ce:30:4a:8f:fc:53:65:6f:90:cb:fe:df:da:f7: 9f:08:bc:66:ed:77:fd:2c:f3:4b:83:e0:1f:69:40: 89:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E2:4B:C7:BE:9C:C0:38:41:C6:E6:C2:08:2D:80:0C:E4:8F:45:C7 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/AAA33A7A74B011EF85E1C348C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.74.252.0/22 202.94.168.0/22 Signature Algorithm: sha256WithRSAEncryption 81:50:4c:ca:2d:5c:0a:c6:e7:33:40:be:cf:fc:88:5f:f6:db: 14:62:09:59:a9:0f:40:8d:3c:a8:22:dd:70:de:da:3f:79:6c: 62:6e:3f:49:c6:ae:63:a6:40:88:85:10:34:7c:95:e3:48:b9: 91:36:9a:aa:71:62:a6:94:50:14:0b:29:c4:ee:2d:cf:7b:0a: b8:e0:a7:7e:54:f6:7f:f0:b2:56:cd:8e:c1:f4:66:22:0a:9c: 23:d6:00:b7:50:df:8f:2e:d9:36:36:c0:dd:7f:60:eb:cd:ac: 65:ca:08:44:01:a7:30:6d:70:bf:00:82:ff:16:cd:40:34:28: 56:ef:27:78:86:25:65:44:67:46:f2:41:6e:32:84:c8:5b:83: 77:33:97:a9:c1:41:41:f3:87:35:17:55:c1:24:f2:bb:d4:4b: 1a:24:30:47:c1:b8:ae:8e:18:bd:17:75:f1:4c:a3:d3:4a:18: 8a:29:ca:a9:29:9c:8d:45:05:f8:07:14:b4:8b:02:3d:bb:19: 52:3b:89:17:f2:dc:8b:74:b9:f2:59:f2:ee:c6:a3:65:e3:61: 1e:b2:b9:3c:62:f5:49:bb:b6:7c:4b:a3:ba:18:9f:25:8b:b4: 48:d3:9a:f7:c7:6a:81:01:ea:d6:8b:32:93:ad:1a:42:05:a1: 50:54:23:48 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjUxMDAzMDYzMzAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQ0Zi0zNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iir0Rx7uHSKR2G3IQ2Leq60VnbWkT+HHx62EFBwHHCpww1IavXtVloBscIU krj1yVoQjSWg39Md0OGhULM61HZBGm8aD14pNFsvtgYa39STqRJPBllorIYITRIw zrjBQzXrn6E8eRFGBbdmj6GfH4slM7ISHtpwSc9RlVzYtq7DhTfD4Ol17OvG7p7z wMJ3AsDUdbBU9LSGQYcttGutFBljIsRX8gDDSG2v2FEkMtu+P5zlOSq9i0V/an90 J24x4Uly9hgxZ6Co0Bb40Jw46wstjlmSzbdQc/b8RI5I7Rn7zjBKj/xTZW+Qy/7f 2vefCLxm7Xf9LPNLg+AfaUCJ0wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMfiS8e+ nMA4QcbmwggtgAzkj0XHMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdEMTQvQ0RCM0I5QUE3NEFGMTFFRjkxQTY2MTQ2QzRGOUFFMDIvQUFBMzNBN0E3 NEIwMTFFRjg1RTFDMzQ4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ0r8AwQCyl6oMA0GCSqGSIb3DQEBCwUAA4IBAQCBUEzKLVwKxucz QL7P/Ihf9tsUYglZqQ9AjTyoIt1w3to/eWxibj9Jxq5jpkCIhRA0fJXjSLmRNpqq cWKmlFAUCynE7i3Pewq44Kd+VPZ/8LJWzY7B9GYiCpwj1gC3UN+PLtk2NsDdf2Dr zaxlyghEAacwbXC/AIL/Fs1ANChW7yd4hiVlRGdG8kFuMoTIW4N3M5epwUFB84c1 F1XBJPK71EsaJDBHwbiujhi9F3XxTKPTShiKKcqpKZyNRQX4BxS0iwI9uxlSO4kX 8tyLdLnyWfLuxqNl42Eesrk8YvVJu7Z8S6O6GJ8li7RI05r3x2qBAerWizKTrRpC BaFQVCNI -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:53 2026 by rpki-client