$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/56F161A6E4E911EEBC24E249C4F9AE02.roa File: 56F161A6E4E911EEBC24E249C4F9AE02.roa (raw, json) Hash identifier: z/b7i8bugbJfMnPzMbcPCKt6lu9pPtbu5hUl0vugU0w= Subject key identifier: 02:7E:F9:B5:3D:B5:19:01:E0:8F:BF:AD:08:5D:ED:BE:87:4C:3C:00 Certificate issuer: /CN=A91C1DB8/serialNumber=C319AF7BB4F981611AD00C32F8A357DE6353DC36 Certificate serial: 1445 Authority key identifier: C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxmve7T5gWEa0Awy-KNX3mNT3DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/56F161A6E4E911EEBC24E249C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:15:09 +0000 ROA not before: Tue 10 Feb 2026 17:14:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 10204 IP address blocks: 103.229.32.0/22 maxlen: 24 203.115.192.0/18 maxlen: 18 203.115.192.0/19 maxlen: 24 203.115.224.0/19 maxlen: 23 203.115.224.0/20 maxlen: 24 203.115.240.0/23 maxlen: 24 203.115.242.0/24 maxlen: 24 203.115.244.0/22 maxlen: 24 203.115.248.0/21 maxlen: 24 2001:c18::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxmve7T5gWEa0Awy-KNX3mNT3DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5189 (0x1445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=C319AF7BB4F981611AD00C32F8A357DE6353DC36 Validity Not Before: Feb 10 17:14:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4822d-5b6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a0:56:b0:65:80:ba:e6:58:e3:aa:05:b0:c0: 34:b8:fc:10:3d:34:af:eb:0a:28:b1:4e:2b:29:9a: 39:14:92:cb:94:33:5a:08:d5:92:86:e3:6c:77:a4: 93:50:7f:72:09:24:1f:72:4e:97:91:1e:cb:51:9c: 42:5b:18:5e:c0:f0:4c:eb:d5:c0:3e:26:de:d5:e2: 36:7d:6d:9d:ef:a6:07:38:b5:cd:42:e2:d6:3a:93: 21:90:26:26:71:09:a8:9a:8c:f5:3e:88:ff:d3:66: d3:b4:84:e7:73:f9:9a:0e:78:43:13:66:96:95:51: 63:6f:e7:09:b5:47:f4:9d:fa:eb:0c:82:2d:8d:d4: 0b:2e:38:06:e4:2e:09:0a:db:1d:93:7e:c5:f8:9f: 1c:05:8d:ea:fd:77:b4:71:48:60:e7:6f:55:31:58: fc:52:45:9a:29:6c:7c:14:82:f0:33:f7:16:46:a5: 3b:c0:13:f6:1e:29:b0:a7:8c:41:d6:47:8f:b1:02: 6c:fb:bd:65:da:c7:05:54:d0:a5:55:48:06:b9:ec: 0f:33:33:f9:a2:c5:aa:93:a7:5e:14:51:8b:e2:82: c2:23:c8:c2:bc:3e:47:44:5c:d9:41:f0:4a:5d:e2: e9:ad:ed:ce:96:49:0d:5c:4a:5d:86:92:5d:4f:c4: c6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7E:F9:B5:3D:B5:19:01:E0:8F:BF:AD:08:5D:ED:BE:87:4C:3C:00 X509v3 Authority Key Identifier: keyid:C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxmve7T5gWEa0Awy-KNX3mNT3DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/56F161A6E4E911EEBC24E249C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.32.0/22 203.115.192.0/18 IPv6: 2001:c18::/32 Signature Algorithm: sha256WithRSAEncryption 26:7a:8e:92:9e:e9:bb:00:c9:67:a9:19:eb:c7:95:e9:97:d5: d4:82:b1:46:22:66:82:db:dd:81:42:6c:f1:fc:f9:df:59:70: cf:98:ba:90:23:20:c7:57:16:cd:8e:b0:50:31:80:cf:75:0e: a3:66:fc:e4:92:bc:44:22:fb:5d:21:ee:c4:5f:70:4d:98:d9: f6:bd:18:a8:20:a4:64:6c:19:fc:1d:21:36:fb:e2:24:20:92: d5:94:ea:3c:8d:1a:76:1a:dc:17:8a:19:1d:fe:83:c4:37:b4: c5:85:8c:fb:73:15:8e:ac:55:8f:76:33:cc:67:c5:c5:c3:00: e4:c1:6f:ad:87:89:bc:52:38:0f:dd:0c:e9:73:0f:08:07:56: 81:e4:c1:cc:fc:d8:14:a4:ba:18:ac:0e:b1:8c:83:b6:01:c6: af:dd:bb:3e:74:41:42:16:9e:41:5f:a9:ac:89:20:0c:0d:c0: 4d:87:48:0e:3a:d4:b9:d6:8c:94:01:a4:e4:ed:1b:bd:5d:a8: e4:69:4a:d2:d8:78:23:7c:06:d5:2f:b3:a9:01:f7:c2:99:61: 50:42:19:b7:14:d0:84:ba:93:77:27:70:b9:ab:f9:fa:df:46: a4:69:f8:04:10:69:db:52:78:c9:4a:0a:92:2e:41:f5:4c:f2: 4d:14:6d:a8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEMzMTlBRjdCQjRGOTgxNjExQUQwMEMzMkY4QTM1N0RF NjM1M0RDMzYwHhcNMjYwMjEwMTcxNDQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIyZC01YjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6BWsGWAuuZY46oFsMA0uPwQPTSv6woosU4rKZo5FJLLlDNaCNWShuNsd6ST UH9yCSQfck6XkR7LUZxCWxhewPBM69XAPibe1eI2fW2d76YHOLXNQuLWOpMhkCYm cQmomoz1Poj/02bTtITnc/maDnhDE2aWlVFjb+cJtUf0nfrrDIItjdQLLjgG5C4J Ctsdk37F+J8cBY3q/Xe0cUhg529VMVj8UkWaKWx8FILwM/cWRqU7wBP2Himwp4xB 1kePsQJs+71l2scFVNClVUgGuewPMzP5osWqk6deFFGL4oLCI8jCvD5HRFzZQfBK XeLpre3OlkkNXEpdhpJdT8TG6QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAJ++bU9 tRkB4I+/rQhd7b6HTDwAMB8GA1UdIwQYMBaAFMMZr3u0+YFhGtAMMvijV95jU9w2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8xNkNCQzA1NEEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi93eG12ZTdUNWdXRWEwQXd5LUtOWDNtTlQz RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d4bXZlN1Q1Z1dFYTBBd3ktS05YM21OVDNEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFEQjgvMTZDQkMwNTRBMTFFMTFFODlFNjM2NzEwQzRGOUFFMDIvNTZGMTYxQTZF NEU5MTFFRUJDMjRFMjQ5QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ+UgAwQGy3PAMA0EAgACMAcDBQAgAQwYMA0GCSqGSIb3DQEBCwUA A4IBAQAmeo6Snum7AMlnqRnrx5Xpl9XUgrFGImaC292BQmzx/PnfWXDPmLqQIyDH VxbNjrBQMYDPdQ6jZvzkkrxEIvtdIe7EX3BNmNn2vRioIKRkbBn8HSE2++IkIJLV lOo8jRp2GtwXihkd/oPEN7TFhYz7cxWOrFWPdjPMZ8XFwwDkwW+th4m8UjgP3Qzp cw8IB1aB5MHM/NgUpLoYrA6xjIO2Acav3bs+dEFCFp5BX6msiSAMDcBNh0gOOtS5 1oyUAaTk7Ru9XajkaUrS2HgjfAbVL7OpAffCmWFQQhm3FNCEupN3J3C5q/n630ak afgEEGnbUnjJSgqSLkH1TPJNFG2o -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:31 2026 by rpki-client