$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/55D95690A13811F0BF53567FC4F9AE02.roa File: 55D95690A13811F0BF53567FC4F9AE02.roa (raw, json) Hash identifier: cP2UtQYt9tf5d70dpMhTcvHuru1oQc7Oe7m5QldjiH4= Subject key identifier: 38:0B:CA:4F:C0:A7:70:17:17:D3:9F:4D:4B:BD:8E:91:BD:60:01:4C Certificate issuer: /CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Certificate serial: 2397 Authority key identifier: 1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/55D95690A13811F0BF53567FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:34:50 +0000 ROA not before: Fri 30 Jan 2026 16:13:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 13335 IP address blocks: 103.241.212.0/22 maxlen: 24 202.165.124.0/24 maxlen: 24 202.165.125.0/24 maxlen: 24 202.165.126.0/24 maxlen: 24 202.165.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9111 (0x2397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2663, serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Validity Not Before: Jan 30 16:13:25 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486ca-c8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:dd:65:76:90:08:11:13:5b:36:e5:b6:a9:55: 04:0d:bb:61:92:e7:6c:04:35:ef:ee:c6:af:e7:78: 2a:0d:81:ed:ec:ee:ba:b1:6e:da:95:29:3b:4a:5f: 71:b8:1f:98:f7:67:ee:8f:4d:11:8b:7e:69:0e:b1: fb:93:f6:dd:ab:fd:73:aa:6c:4d:27:ac:f7:ea:6e: cc:d4:55:a5:73:27:92:bc:14:c0:53:99:de:70:b6: 62:d1:a8:30:f5:f7:fe:3f:61:f2:ac:27:87:7f:ff: 5e:9c:dc:f5:c1:02:ab:6f:d8:7b:be:2a:cf:4d:22: ec:e5:fa:7e:34:02:c9:e1:bd:45:1b:e9:82:fe:a4: a8:93:9b:ea:05:f7:94:1b:8e:f2:44:eb:85:47:bc: a3:61:6f:41:de:d1:c4:f1:b7:20:f8:7c:76:a7:76: b6:6d:03:92:6f:78:ee:12:a7:7e:94:9b:d0:fc:42: a1:b6:76:8d:81:6f:f0:c4:0e:f9:2c:d4:0f:55:b6: f9:72:09:f8:45:1f:f5:21:10:19:aa:fd:a3:00:b3: a7:e1:d1:64:55:a7:ab:6e:0d:18:8e:5a:89:c3:e7: f2:e0:be:e9:72:73:d3:66:3d:ad:04:70:83:6b:22: 6d:a2:b7:15:10:1c:93:79:a9:7c:f5:6e:84:2e:c2: e3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0B:CA:4F:C0:A7:70:17:17:D3:9F:4D:4B:BD:8E:91:BD:60:01:4C X509v3 Authority Key Identifier: keyid:1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/55D95690A13811F0BF53567FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.241.212.0/22 202.165.124.0/22 Signature Algorithm: sha256WithRSAEncryption 36:03:e0:7f:3f:46:64:06:dd:47:cd:4a:81:74:cb:b1:1a:ab: ad:cd:31:93:e6:1e:47:76:9f:df:b1:da:5c:ef:4e:0f:af:9c: 05:5a:69:ca:19:9c:c9:4e:ab:f1:5d:8b:9f:72:4b:e6:68:ea: 8c:c6:a0:5c:b5:3a:af:09:c6:0e:10:64:3a:25:66:82:09:dd: 66:9c:a5:26:95:cc:c0:0c:db:24:4c:79:af:06:50:96:28:33: 12:8a:8c:5a:fe:64:c3:d9:4b:ef:a7:34:2a:fe:69:3a:62:f6: c2:3b:24:78:95:52:8e:69:e0:ca:f5:bf:0c:d3:35:ec:18:0f: ce:0c:1c:33:82:22:38:58:c8:ae:78:b9:92:29:4c:c7:a9:8d: 34:9e:97:78:20:9a:f9:93:cd:71:bc:1e:a5:24:23:36:7b:4e: c5:f3:fb:0e:41:4f:87:79:9b:3f:46:06:2f:61:1e:a7:f3:6b: e2:6b:6b:a3:a0:ea:e9:84:6b:a2:85:e6:8b:81:bf:48:d9:5b: e8:a6:e7:bb:ad:0b:c7:48:e4:71:44:7b:21:3f:07:84:66:f1: 04:5d:98:ce:d3:7b:16:3a:e5:a1:4a:5e:3c:7d:98:43:ed:89: ef:79:dc:4d:24:7d:7b:76:9b:d4:2b:7b:aa:ee:d4:af:f5:a8: 60:07:0e:ae -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICI5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NjMxMTAvBgNVBAUTKDFBOTdDMkY0NzExRjdCQzgwMkUyNjhBQzY2RjExMDg2 MkJFNTc4ODgwHhcNMjYwMTMwMTYxMzI1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZjYS1jOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmd1ldpAIERNbNuW2qVUEDbthkudsBDXv7sav53gqDYHt7O66sW7alSk7Sl9x uB+Y92fuj00Ri35pDrH7k/bdq/1zqmxNJ6z36m7M1FWlcyeSvBTAU5necLZi0agw 9ff+P2HyrCeHf/9enNz1wQKrb9h7virPTSLs5fp+NALJ4b1FG+mC/qSok5vqBfeU G47yROuFR7yjYW9B3tHE8bcg+Hx2p3a2bQOSb3juEqd+lJvQ/EKhtnaNgW/wxA75 LNQPVbb5cgn4RR/1IRAZqv2jALOn4dFkVaerbg0YjlqJw+fy4L7pcnPTZj2tBHCD ayJtorcVEByTeal89W6ELsLjKQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDgLyk/A p3AXF9OfTUu9jpG9YAFMMB8GA1UdIwQYMBaAFBqXwvRxH3vIAuJorGbxEIYr5XiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY2My9COEFFRjEzOEE5 NEMxMUU1ODI5MUNBNjdDNEY5QUUwMi9HcGZDOUhFZmU4Z0M0bWlzWnZFUWhpdmxl SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwZkM5SEVmZThnQzRtaXNadkVRaGl2bGVJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NjMvQjhBRUYxMzhBOTRDMTFFNTgyOTFDQTY3QzRGOUFFMDIvNTVEOTU2OTBB MTM4MTFGMEJGNTM1NjdGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/HUAwQCyqV8MA0GCSqGSIb3DQEBCwUAA4IBAQA2A+B/P0ZkBt1H zUqBdMuxGqutzTGT5h5Hdp/fsdpc704Pr5wFWmnKGZzJTqvxXYufckvmaOqMxqBc tTqvCcYOEGQ6JWaCCd1mnKUmlczADNskTHmvBlCWKDMSioxa/mTD2UvvpzQq/mk6 YvbCOyR4lVKOaeDK9b8M0zXsGA/ODBwzgiI4WMiueLmSKUzHqY00npd4IJr5k81x vB6lJCM2e07F8/sOQU+HeZs/RgYvYR6n82via2ujoOrphGuiheaLgb9I2Vvopue7 rQvHSORxRHshPweEZvEEXZjO03sWOuWhSl48fZhD7YnvedxNJH17dpvUK3uq7tSv 9ahgBw6u -----END CERTIFICATE-----Generated at Mon Mar 2 11:44:47 2026 by rpki-client