$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa File: DF3CAFC44D9E11F0B1307858C4F9AE02.roa (raw, json) Hash identifier: +acs6cDfXRcUtwRZJW2mfAQSN9xt4ZIb9KF9+TPjR6U= Subject key identifier: AD:8C:D4:C8:C2:8C:13:26:FF:AF:74:58:67:2B:FF:45:ED:78:0D:6E Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 0836 Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:56:26 +0000 ROA not before: Fri 20 Jun 2025 06:21:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.212.68.0/24 maxlen: 24 103.212.69.0/24 maxlen: 24 103.212.70.0/24 maxlen: 24 103.212.71.0/24 maxlen: 24 139.5.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312, serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Validity Not Before: Jun 20 06:21:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4296a-3ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9a:2a:09:0e:b1:99:d3:36:93:7a:79:0e:94: e5:ee:09:0c:8a:a1:9b:3f:d4:a3:42:dc:8c:5c:e5: 02:23:79:fc:06:5d:69:90:63:ce:30:38:bf:0a:e7: af:f9:c0:be:05:e1:f9:ec:11:26:75:8d:9a:4b:0d: c1:9a:7f:7f:ae:bf:fe:fb:a2:09:c8:8e:81:e9:7c: 27:c7:79:32:d4:c2:01:33:71:21:bc:c2:88:0c:97: e0:01:8b:56:e3:50:b5:8d:d0:fa:9a:7a:42:4a:f8: 16:b8:ff:a9:2f:11:8b:78:70:7d:29:32:74:5d:15: 82:93:f1:8e:b9:6a:7e:36:af:97:4d:20:fc:9a:4e: e3:4e:b6:ed:41:f5:c5:2f:af:27:e9:cf:c2:b8:fb: e3:bf:01:bc:1b:9e:ee:f3:3c:20:96:d8:22:b4:f8: 31:5d:13:a5:c3:b2:f1:32:5e:8c:da:f6:a8:f0:f5: af:db:6d:c3:c4:d0:21:27:26:8c:74:dc:dc:1d:2b: b7:fa:32:12:ae:79:69:a3:6b:2d:d8:93:00:58:a8: 15:79:94:c0:cf:43:e6:bd:f0:06:e7:52:48:40:f7: 7c:a3:68:b7:7a:72:fa:53:4a:b8:5a:97:f9:06:d1: 67:3c:8b:fb:9b:0c:dc:59:f3:7f:cc:46:8f:11:2e: 29:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8C:D4:C8:C2:8C:13:26:FF:AF:74:58:67:2B:FF:45:ED:78:0D:6E X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/DF3CAFC44D9E11F0B1307858C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.68.0/22 139.5.177.0/24 Signature Algorithm: sha256WithRSAEncryption 66:3a:c6:74:ee:54:df:82:3f:6a:80:cc:55:09:c3:c9:da:ba: 09:79:4c:d6:66:30:b5:0b:0b:aa:4c:29:e1:0e:5c:c1:82:28: 3b:11:44:5d:38:4b:15:ac:1a:5b:6e:bf:a0:34:ec:1c:57:a6: eb:bc:35:c0:62:25:be:88:c1:23:9c:f2:4d:b9:9c:14:43:c1: 85:7a:57:80:9d:e8:96:e1:41:e3:6a:a5:3a:89:5a:de:6a:6f: b2:5a:1a:37:c1:ea:29:41:8c:61:3b:5c:ef:50:cf:05:99:7b: 7e:71:67:62:6d:17:c1:0f:46:c2:e2:dc:0a:33:95:d8:72:22: 34:1f:e5:4d:42:bc:ff:75:c5:74:92:e6:f0:74:f5:ee:6c:ee: 7b:98:45:de:6e:1e:f2:f7:b1:87:82:01:bf:47:01:40:1b:68: 61:93:db:0b:8c:2d:9e:17:1c:9a:d0:23:f2:39:f5:a2:69:33: 8b:18:91:93:6d:fd:a2:79:ee:92:76:b3:9f:df:a0:3e:94:cf: 75:66:81:a9:8d:bd:33:ef:39:2f:e9:45:7f:f4:09:ae:16:d3: f8:78:59:86:29:33:01:54:57:1e:4c:99:6c:fe:42:5d:34:ff: fe:3a:99:b8:a6:7e:03:ad:fa:0b:23:b4:4a:99:14:75:96:bd: cc:8f:0c:04 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjUwNjIwMDYyMTU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjk2YS0zYmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZoqCQ6xmdM2k3p5DpTl7gkMiqGbP9SjQtyMXOUCI3n8Bl1pkGPOMDi/Cuev +cC+BeH57BEmdY2aSw3Bmn9/rr/++6IJyI6B6Xwnx3ky1MIBM3EhvMKIDJfgAYtW 41C1jdD6mnpCSvgWuP+pLxGLeHB9KTJ0XRWCk/GOuWp+Nq+XTSD8mk7jTrbtQfXF L68n6c/CuPvjvwG8G57u8zwgltgitPgxXROlw7LxMl6M2vao8PWv223DxNAhJyaM dNzcHSu3+jISrnlpo2st2JMAWKgVeZTAz0PmvfAG51JIQPd8o2i3enL6U0q4Wpf5 BtFnPIv7mwzcWfN/zEaPES4piQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFK2M1MjC jBMm/690WGcr/0XteA1uMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMTIvQUE5MkI5NzgwQzI5MTFFQjk1NDBERDYxQzRGOUFFMDIvREYzQ0FGQzQ0 RDlFMTFGMEIxMzA3ODU4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9REAwQAiwWxMA0GCSqGSIb3DQEBCwUAA4IBAQBmOsZ07lTfgj9q gMxVCcPJ2roJeUzWZjC1CwuqTCnhDlzBgig7EURdOEsVrBpbbr+gNOwcV6brvDXA YiW+iMEjnPJNuZwUQ8GFeleAneiW4UHjaqU6iVream+yWho3weopQYxhO1zvUM8F mXt+cWdibRfBD0bC4twKM5XYciI0H+VNQrz/dcV0kubwdPXubO57mEXebh7y97GH ggG/RwFAG2hhk9sLjC2eFxya0CPyOfWiaTOLGJGTbf2iee6SdrOf36A+lM91ZoGp jb0z7zkv6UV/9AmuFtP4eFmGKTMBVFceTJls/kJdNP/+Opm4pn4DrfoLI7RKmRR1 lr3MjwwE -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:37 2026 by rpki-client