$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/0C3EAFF6F84111EC926CBF53C4F9AE02.roa File: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (raw, json) Hash identifier: /ULmSnSTdH0/f1q4tjs1akmKQxqjyakkSOX6RXEjmGs= Subject key identifier: 46:26:40:BC:08:17:E6:67:67:BD:73:8A:8C:A1:F6:46:3A:78:DD:67 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0685 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/0C3EAFF6F84111EC926CBF53C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:35:22 +0000 ROA not before: Wed 22 Oct 2025 23:42:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134676 IP address blocks: 103.195.204.0/23 maxlen: 23 103.195.204.0/24 maxlen: 24 103.195.205.0/24 maxlen: 24 2404:e3c0::/32 maxlen: 32 2404:e3c0::/48 maxlen: 48 2404:e3c0:1::/48 maxlen: 48 2404:e3c0:2::/48 maxlen: 48 2404:e3c0:3::/48 maxlen: 48 2404:e3c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Oct 22 23:42:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4328a-de69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e1:58:a2:ff:35:9c:83:f6:5e:72:45:60:cc: b2:ca:71:e0:7d:a7:61:49:00:e3:b5:8e:e6:26:f9: af:65:04:ea:67:15:05:4c:16:4f:0f:c2:4a:45:32: 09:8a:a6:95:b3:50:35:e7:73:8c:28:85:0c:02:d3: a0:e5:53:78:d4:22:06:55:b4:e8:8c:ca:4b:dc:64: 51:f6:20:2a:e7:99:c0:ee:e3:09:78:5e:48:71:c2: 5b:d0:fe:a3:ed:3e:17:5b:cf:06:43:bc:39:f5:8a: 4e:8f:be:79:bc:b3:76:60:8a:5a:a7:3e:58:de:35: 2e:05:d1:8b:f1:15:69:b5:9c:28:a2:8c:4b:22:58: 9b:d5:3d:65:8f:1c:9e:c8:f3:a6:5c:0f:34:10:0a: 1f:f8:70:06:e7:82:c7:fb:f3:e2:a6:9d:81:db:3e: e4:cd:60:8b:87:67:2a:3b:1c:f1:a7:19:b3:57:ca: 6d:25:6c:de:83:75:1d:4d:50:91:ed:86:61:f4:0e: fa:2f:b1:b3:29:83:48:09:34:c3:69:d9:81:e7:f6: d9:bd:a3:19:b4:57:40:40:7a:b8:13:c7:26:4b:c6: 46:1c:9c:8f:62:b2:b9:b7:ee:24:14:fd:39:38:b0: 1e:c9:b7:06:79:de:32:1f:fc:4b:ca:7a:da:3e:36: 54:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:26:40:BC:08:17:E6:67:67:BD:73:8A:8C:A1:F6:46:3A:78:DD:67 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/0C3EAFF6F84111EC926CBF53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.195.204.0/23 IPv6: 2404:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 92:97:a3:bc:44:4a:43:93:41:3f:7b:b7:1b:f5:3e:12:79:e6: 6c:f9:ae:75:46:73:ba:e4:6b:53:9f:ca:55:18:ce:18:9c:9c: 0f:70:23:9b:13:2d:ea:f5:75:b5:77:ad:0b:40:2b:62:8d:0a: 8d:cc:47:9c:52:06:87:9b:d1:a3:7b:c7:40:51:88:e7:e1:43: 0b:3d:f1:7b:ea:b0:28:1d:a2:4c:33:cd:5e:5b:df:24:80:00: e9:41:ce:c6:cb:5e:af:c6:b1:39:7b:42:8b:6b:89:98:00:65: bc:b6:08:8b:b4:10:0b:05:e9:d2:79:84:7f:6a:23:89:ad:82: 5d:43:3d:91:87:37:59:33:9b:c4:4d:6b:b9:97:01:99:84:96: 54:dc:37:0f:d9:26:9b:36:64:17:4e:ef:07:d8:19:ba:6f:70: 94:d0:2a:22:99:f4:11:19:24:4f:0d:30:b1:88:e2:06:47:2d: 1c:35:dd:7f:97:5e:20:09:50:e7:7e:da:49:d2:fb:6b:77:07: 82:f7:0b:a3:52:62:a3:15:08:46:1d:01:46:c8:96:b2:99:38: 8f:69:fa:3f:84:5b:32:41:95:0b:9f:35:a9:d2:28:d4:24:26: 81:11:e9:17:24:8a:8d:eb:b6:94:76:e9:a2:67:7c:84:40:31: 02:b9:06:08 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMDIyMjM0MjM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzI4YS1kZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+FYov81nIP2XnJFYMyyynHgfadhSQDjtY7mJvmvZQTqZxUFTBZPD8JKRTIJ iqaVs1A153OMKIUMAtOg5VN41CIGVbTojMpL3GRR9iAq55nA7uMJeF5IccJb0P6j 7T4XW88GQ7w59YpOj755vLN2YIpapz5Y3jUuBdGL8RVptZwoooxLIlib1T1ljxye yPOmXA80EAof+HAG54LH+/Pipp2B2z7kzWCLh2cqOxzxpxmzV8ptJWzeg3UdTVCR 7YZh9A76L7GzKYNICTTDadmB5/bZvaMZtFdAQHq4E8cmS8ZGHJyPYrK5t+4kFP05 OLAeybcGed4yH/xLynraPjZUSQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEYmQLwI F+ZnZ71zioyh9kY6eN1nMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCRTEvRTQ2RkY0OTBBRTJCMTFFQjk1NjI3RjgyQzRGOUFFMDIvMEMzRUFGRjZG ODQxMTFFQzkyNkNCRjUzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ8PMMA0EAgACMAcDBQAkBOPAMA0GCSqGSIb3DQEBCwUAA4IBAQCS l6O8REpDk0E/e7cb9T4SeeZs+a51RnO65GtTn8pVGM4YnJwPcCObEy3q9XW1d60L QCtijQqNzEecUgaHm9Gje8dAUYjn4UMLPfF76rAoHaJMM81eW98kgADpQc7Gy16v xrE5e0KLa4mYAGW8tgiLtBALBenSeYR/aiOJrYJdQz2RhzdZM5vETWu5lwGZhJZU 3DcP2SabNmQXTu8H2Bm6b3CU0CoimfQRGSRPDTCxiOIGRy0cNd1/l14gCVDnftpJ 0vtrdweC9wujUmKjFQhGHQFGyJaymTiPafo/hFsyQZULnzWp0ijUJCaBEekXJIqN 67aUdumiZ3yEQDECuQYI -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:50 2026 by rpki-client