$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa File: 96A539C2278211EF902D8D85C4F9AE02.roa (raw, json) Hash identifier: zRt+bc55ZEJWia3T4UZGB0Xb9CQvFixH45VBiBP4lDs= Subject key identifier: C3:09:E3:CD:23:89:73:80:63:93:8D:21:83:A0:61:76:F2:DC:62:48 Certificate issuer: /CN=A91BC269/serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF Certificate serial: 0410 Authority key identifier: 30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:43:16 +0000 ROA not before: Wed 22 Oct 2025 04:16:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9876 IP address blocks: 103.8.140.0/22 maxlen: 23 103.15.126.0/23 maxlen: 23 163.47.236.0/22 maxlen: 23 202.56.32.0/20 maxlen: 20 202.56.32.0/22 maxlen: 22 202.56.36.0/22 maxlen: 22 202.56.40.0/22 maxlen: 22 202.56.44.0/22 maxlen: 22 202.56.48.0/21 maxlen: 22 202.137.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.crl rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1040 (0x410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC269, serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF Validity Not Before: Oct 22 04:16:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a204-ae5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7f:ef:0e:6e:04:15:4b:2c:eb:8b:7c:38:de: 59:34:e2:b4:e6:f9:f7:a1:04:bf:31:4b:65:25:13: 7a:fa:02:4d:25:4d:38:13:5d:74:e7:8a:95:c2:dc: e3:d7:b0:5b:94:23:8e:57:c0:a2:99:a8:fa:74:99: fd:ab:0e:a1:ce:15:39:6a:86:92:8c:9d:8f:96:94: d9:fc:31:9e:65:41:44:30:4f:ae:ec:4f:12:92:a1: 9c:89:e1:7b:5c:4a:b4:83:62:e0:74:e5:35:ab:b7: 5b:e5:0c:f1:45:01:33:2b:56:43:5d:91:0e:29:bb: bb:4d:32:35:ed:26:85:98:ed:f2:96:79:13:a0:d3: ac:62:53:20:09:37:1d:55:f0:e0:6c:f4:51:ad:9b: 34:45:b5:34:2c:e4:29:0a:46:c4:ca:46:7c:47:21: f2:fa:21:6a:37:94:50:3a:b6:6d:f0:6e:19:2e:1a: 7a:58:19:0a:38:25:93:92:c8:21:e8:75:07:03:4f: fe:a9:e7:3e:5d:ab:7d:a8:26:20:70:04:39:7c:66: 12:23:d6:a3:b8:ec:bf:20:15:ce:3f:a0:f2:f9:f8: 29:3e:2e:27:f4:35:e3:12:04:58:36:5d:dc:3d:08: b9:12:24:01:1d:f1:b0:98:f7:d9:ec:13:96:21:df: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:09:E3:CD:23:89:73:80:63:93:8D:21:83:A0:61:76:F2:DC:62:48 X509v3 Authority Key Identifier: keyid:30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.140.0/22 103.15.126.0/23 163.47.236.0/22 202.56.32.0-202.56.55.255 202.137.240.0/21 Signature Algorithm: sha256WithRSAEncryption 53:7c:b6:3d:72:a1:a5:d4:13:5d:1d:19:3d:41:0e:c5:c9:b0: b4:97:be:27:0a:5c:9c:41:54:a6:fb:ec:4f:f8:ab:e5:eb:4c: 65:0e:a9:7f:28:4b:02:20:d2:02:ea:67:db:14:87:d8:e8:3d: eb:64:6f:4c:8a:d8:0f:3b:48:1d:2b:06:61:7b:26:99:7f:1f: 29:95:af:4f:a1:ff:58:09:ea:b6:c9:89:c5:d7:77:bd:68:77: fd:df:d5:53:d9:58:df:5b:cd:50:85:95:c4:c1:59:6c:d3:65: af:49:6d:25:c9:2c:07:37:ea:86:4c:2b:af:05:d8:f9:2d:35: 1e:d0:a1:05:d9:65:68:09:9c:68:a4:a2:e5:9e:8c:da:48:1c: 7e:42:ea:e2:14:8d:f8:a2:74:0e:1e:40:29:af:30:a6:95:bc: 59:4d:c9:58:02:38:08:9b:76:ea:d6:80:ae:3b:b0:88:50:a7: f4:53:d3:30:a2:e6:c3:d2:96:a1:80:8d:dc:5f:24:81:c2:1f: 7d:3e:41:28:d3:d9:aa:30:b5:1e:24:0e:86:16:a5:e3:21:71: 38:51:cd:50:95:1b:84:23:d6:e0:59:86:b1:49:b7:6d:fb:b5: 9b:32:15:8a:29:e7:4e:6c:a4:44:df:fa:f9:ae:a2:76:f4:69: 30:b9:4e:99 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICBBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyNjkxMTAvBgNVBAUTKDMwRTIwNjFGN0MyMEJEODQzQkVFNTM3MkMxMzIxQzM1 RkJCMUQzRUYwHhcNMjUxMDIyMDQxNjA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTIwNC1hZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArn/vDm4EFUss64t8ON5ZNOK05vn3oQS/MUtlJRN6+gJNJU04E11054qVwtzj 17BblCOOV8Cimaj6dJn9qw6hzhU5aoaSjJ2PlpTZ/DGeZUFEME+u7E8SkqGcieF7 XEq0g2LgdOU1q7db5QzxRQEzK1ZDXZEOKbu7TTI17SaFmO3ylnkToNOsYlMgCTcd VfDgbPRRrZs0RbU0LOQpCkbEykZ8RyHy+iFqN5RQOrZt8G4ZLhp6WBkKOCWTksgh 6HUHA0/+qec+Xat9qCYgcAQ5fGYSI9ajuOy/IBXOP6Dy+fgpPi4n9DXjEgRYNl3c PQi5EiQBHfGwmPfZ7BOWId959wIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFMMJ480j iXOAY5ONIYOgYXby3GJIMB8GA1UdIwQYMBaAFDDiBh98IL2EO+5TcsEyHDX7sdPv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CQTY3NkUzMENG RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9NT0lHSDN3Z3ZZUTc3bE55d1RJY05mdXgw LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSUdIM3dndllRNzdsTnl3VEljTmZ1eDAtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyNjkvQkE2NzZFMzBDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvOTZBNTM5QzIy NzgyMTFFRjkwMkQ4RDg1QzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQCZwiMAwQBZw9+AwQCoy/sMAwDBAXKOCADBAPKODADBAPKifAwDQYJ KoZIhvcNAQELBQADggEBAFN8tj1yoaXUE10dGT1BDsXJsLSXvicKXJxBVKb77E/4 q+XrTGUOqX8oSwIg0gLqZ9sUh9joPetkb0yK2A87SB0rBmF7Jpl/HymVr0+h/1gJ 6rbJicXXd71od/3f1VPZWN9bzVCFlcTBWWzTZa9JbSXJLAc36oZMK68F2PktNR7Q oQXZZWgJnGikouWejNpIHH5C6uIUjfiidA4eQCmvMKaVvFlNyVgCOAibdurWgK47 sIhQp/RT0zCi5sPSlqGAjdxfJIHCH30+QSjT2aowtR4kDoYWpeMhcThRzVCVG4Qj 1uBZhrFJt237tZsyFYop505spETf+vmuonb0aTC5Tpk= -----END CERTIFICATE-----Generated at Mon Mar 2 20:57:07 2026 by rpki-client