$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/34492F3A13A011F0B2541067C4F9AE02.roa File: 34492F3A13A011F0B2541067C4F9AE02.roa (raw, json) Hash identifier: O+Nxart/msHPIUG+f5HL+a0YYfI1EPFP2HyqAxZNDXo= Subject key identifier: 24:36:CE:F3:15:0F:FA:D5:8E:63:FC:50:12:7D:0F:DA:68:83:6B:92 Certificate issuer: /CN=A91BCB3A/serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Certificate serial: 0BAF Authority key identifier: EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/34492F3A13A011F0B2541067C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:44:57 +0000 ROA not before: Thu 12 Feb 2026 19:16:27 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140072 IP address blocks: 103.52.28.0/22 maxlen: 24 103.148.22.0/23 maxlen: 23 103.148.22.0/24 maxlen: 24 103.148.23.0/24 maxlen: 24 2405:c840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCB3A, serialNumber=EE5EC37F3D3BC57599F3C73C52226E7EE050BF96 Validity Not Before: Feb 12 19:16:27 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a450e9-60aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ef:00:8b:d3:39:1d:a6:1d:78:a0:96:5e:62: ed:62:81:80:42:2c:00:e3:4b:de:2d:d1:29:50:bb: 8f:f5:df:69:8e:4d:75:f4:62:eb:de:aa:9d:1e:f7: 33:b0:21:bc:ca:21:2e:cb:de:8e:f9:f9:e8:66:90: 8c:5c:a9:ef:e6:e3:92:65:52:d8:26:85:30:eb:eb: 82:9b:0d:13:02:cd:eb:fb:52:7a:01:9a:bf:90:1c: c6:f7:cd:b6:2e:b8:7a:78:dd:89:91:bb:0c:bd:c5: 59:c3:ca:a4:ff:b3:19:7b:d6:78:8c:98:01:23:e0: fb:10:16:d0:42:b8:88:04:f0:96:31:22:be:8b:c9: 15:64:81:ce:5c:3a:58:03:51:6d:f3:11:b4:9a:6c: dd:b3:18:84:72:96:13:e9:78:44:ce:13:52:9a:c9: 30:b1:8b:9b:02:9a:91:9f:45:b9:80:a7:be:6a:cf: 0a:ab:21:5e:a5:5a:38:54:6c:4e:0a:65:e6:a7:07: 6b:95:f9:de:24:08:b8:4e:5e:cb:db:2d:61:3e:c0: f0:4e:d3:5b:3c:f0:3e:69:3c:40:ba:2a:a9:f5:c8: 0a:9f:5d:97:de:0f:30:b3:c1:3f:cd:01:0a:cf:46: 26:83:4d:6f:2e:43:b6:a9:4c:66:cd:cb:6b:d4:d4: a3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:36:CE:F3:15:0F:FA:D5:8E:63:FC:50:12:7D:0F:DA:68:83:6B:92 X509v3 Authority Key Identifier: keyid:EE:5E:C3:7F:3D:3B:C5:75:99:F3:C7:3C:52:22:6E:7E:E0:50:BF:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/7l7Dfz07xXWZ88c8UiJufuBQv5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7l7Dfz07xXWZ88c8UiJufuBQv5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCB3A/9AD6C5B8458411EAA46E7571C4F9AE02/34492F3A13A011F0B2541067C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.52.28.0/22 103.148.22.0/23 IPv6: 2405:c840::/32 Signature Algorithm: sha256WithRSAEncryption 8a:8d:9b:5f:16:33:a0:5b:07:de:a0:4f:ce:35:70:ab:e4:16: 5c:6a:da:80:89:b5:10:b5:db:64:bb:95:c4:b2:c1:64:ae:d1: cc:05:65:74:0c:af:58:07:f9:b3:0b:b4:51:6b:ae:80:35:bf: 7e:92:1b:44:58:f8:a1:55:99:f7:c4:d3:0f:e7:08:f1:ac:5c: 20:8c:66:03:36:e4:26:15:86:18:2e:e8:1e:27:11:df:c5:cb: 12:51:3d:e9:5c:50:b1:15:cf:26:02:fa:6e:7c:88:4a:c8:3b: ab:4a:4a:51:d6:b5:4c:76:b2:9b:a6:96:d5:a8:95:fb:d2:1f: 8c:18:10:fd:a0:10:d2:82:62:2d:ee:a8:e7:60:26:43:ff:93: 42:dc:95:17:81:4f:0e:24:f6:8c:a0:bd:5a:c2:b8:d8:df:60: d7:1b:d7:ae:7e:73:41:7b:ad:08:d5:a1:7f:fd:b8:60:0b:b1: cd:af:4f:87:9d:68:d1:9d:53:7e:8c:05:a6:4b:d2:44:02:29: cd:36:6b:fa:56:04:f7:13:37:cc:de:1d:7f:88:ea:bb:6f:c1: 77:7b:e2:0d:ae:6b:d3:d1:53:f0:e1:11:08:15:a8:6f:f8:1a: 14:68:a4:be:82:0b:ae:da:c8:93:b8:34:8c:4a:16:0b:ea:b7: 3a:a8:77:fc -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNCM0ExMTAvBgNVBAUTKEVFNUVDMzdGM0QzQkM1NzU5OUYzQzczQzUyMjI2RTdF RTA1MEJGOTYwHhcNMjYwMjEyMTkxNjI3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTBlOS02MGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+8Ai9M5HaYdeKCWXmLtYoGAQiwA40veLdEpULuP9d9pjk119GLr3qqdHvcz sCG8yiEuy96O+fnoZpCMXKnv5uOSZVLYJoUw6+uCmw0TAs3r+1J6AZq/kBzG9822 Lrh6eN2JkbsMvcVZw8qk/7MZe9Z4jJgBI+D7EBbQQriIBPCWMSK+i8kVZIHOXDpY A1Ft8xG0mmzdsxiEcpYT6XhEzhNSmskwsYubApqRn0W5gKe+as8KqyFepVo4VGxO CmXmpwdrlfneJAi4Tl7L2y1hPsDwTtNbPPA+aTxAuiqp9cgKn12X3g8ws8E/zQEK z0Ymg01vLkO2qUxmzctr1NSjewIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFCQ2zvMV D/rVjmP8UBJ9D9pog2uSMB8GA1UdIwQYMBaAFO5ew389O8V1mfPHPFIibn7gUL+W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0IzQS85QUQ2QzVCODQ1 ODQxMUVBQTQ2RTc1NzFDNEY5QUUwMi83bDdEZnowN3hYV1o4OGM4VWlKdWZ1QlF2 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsN0RmejA3eFhXWjg4YzhVaUp1ZnVCUXY1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkNCM0EvOUFENkM1Qjg0NTg0MTFFQUE0NkU3NTcxQzRGOUFFMDIvMzQ0OTJGM0Ex M0EwMTFGMEIyNTQxMDY3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZzQcAwQBZ5QWMA0EAgACMAcDBQAkBchAMA0GCSqGSIb3DQEBCwUA A4IBAQCKjZtfFjOgWwfeoE/ONXCr5BZcatqAibUQtdtku5XEssFkrtHMBWV0DK9Y B/mzC7RRa66ANb9+khtEWPihVZn3xNMP5wjxrFwgjGYDNuQmFYYYLugeJxHfxcsS UT3pXFCxFc8mAvpufIhKyDurSkpR1rVMdrKbppbVqJX70h+MGBD9oBDSgmIt7qjn YCZD/5NC3JUXgU8OJPaMoL1awrjY32DXG9eufnNBe60I1aF//bhgC7HNr0+HnWjR nVN+jAWmS9JEAinNNmv6VgT3EzfM3h1/iOq7b8F3e+INrmvT0VPw4REIFahv+BoU aKS+gguu2siTuDSMShYL6rc6qHf8 -----END CERTIFICATE-----Generated at Mon Mar 2 10:00:44 2026 by rpki-client