$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa File: C0FD1FF0AA7111F0B4546269C4F9AE02.roa (raw, json) Hash identifier: ny6KgtWAxAxsP09sSmBzSKP9/SUXwkqR5HeRZHk3STU= Subject key identifier: 46:B4:0F:FB:9B:70:4F:1F:9D:01:EB:71:BC:17:E8:1D:00:A7:28:94 Certificate issuer: /CN=A91C4401/serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Certificate serial: 48 Authority key identifier: A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:57 +0000 ROA not before: Thu 16 Oct 2025 09:23:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139138 IP address blocks: 103.121.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4401, serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Validity Not Before: Oct 16 09:23:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3d8ad-cc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:78:f1:7b:03:39:4d:d8:5a:d3:cf:6a:bf:10: a8:13:fc:58:cb:75:77:77:cd:2a:c3:d6:c2:28:04: bc:b8:5d:61:a1:57:53:ac:c4:19:9a:03:f6:43:ed: 86:ef:ef:24:9f:90:2b:ad:6d:35:c5:25:39:89:91: 20:25:21:66:21:fc:a9:9f:78:b8:8b:72:39:a2:32: 87:3b:83:2d:08:9d:b6:29:76:e8:ba:ef:1c:e3:6f: 6c:5c:8b:e9:9d:db:ef:21:d8:c3:1e:ff:cf:7a:53: 44:85:5e:cb:f4:ce:e3:e8:a1:1d:3c:df:02:fd:90: f0:0e:18:fa:ba:19:5e:c7:67:90:c9:9d:4a:cd:2c: 99:1f:dc:73:fd:8c:d4:07:81:b2:45:b2:0b:37:9c: 11:1d:d9:2b:58:54:36:cc:46:c3:18:b1:33:01:5b: 5b:5b:47:98:6a:87:a1:a3:75:85:7e:dc:18:e9:dd: f5:14:d2:8f:85:66:59:21:38:15:10:30:ae:a4:3c: ea:17:5e:8e:62:3e:fc:83:74:5e:f1:9b:a2:9e:55: f3:88:e1:ad:54:00:c0:84:39:47:30:31:1b:7d:51: b9:2a:8f:81:31:6f:44:e2:8f:e4:47:60:3b:e0:65: 7e:9e:cc:66:75:35:c0:5c:6c:85:2e:86:e3:49:2f: 3f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B4:0F:FB:9B:70:4F:1F:9D:01:EB:71:BC:17:E8:1D:00:A7:28:94 X509v3 Authority Key Identifier: keyid:A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.250.0/24 Signature Algorithm: sha256WithRSAEncryption 07:e6:28:24:d7:11:e1:c7:58:1a:2d:eb:a4:ff:9e:2a:5e:6a: 24:47:04:45:ac:b6:83:de:93:08:44:70:66:8a:a6:ac:5c:ac: 34:cd:72:a7:2d:51:81:2b:45:f4:0b:8a:23:8b:31:f2:68:52: 49:b1:00:ca:7f:e1:09:08:e8:5d:3e:ff:23:dc:04:cb:03:98: df:3a:4f:24:1e:ef:30:6d:97:88:9a:66:aa:b3:f0:1c:8a:16: f6:40:f8:cd:b3:fc:33:62:7c:08:e5:ba:6e:62:5f:39:ed:c1: d0:0e:5a:1a:fa:98:3e:e7:30:fa:06:15:21:cf:52:04:bd:a8: 21:9a:06:ec:1f:15:15:a0:78:76:c8:3d:b1:13:48:d7:43:27: fb:53:44:42:b9:61:5f:f5:e1:6f:e5:13:42:fe:b1:0d:f6:06: b9:c6:3a:69:36:75:40:7b:6c:da:3a:23:99:95:a3:31:97:76: 97:c9:88:ce:32:ae:6e:d2:f2:36:27:42:6a:00:e7:0e:61:ce: bc:79:8c:6a:ee:61:39:31:97:a0:04:8a:5d:a9:41:80:87:77: 5b:83:83:88:a7:99:6c:f7:b5:26:e0:5d:c1:b2:14:1d:8a:cd: 2c:ae:9c:24:d7:af:43:3f:81:0a:4d:62:1f:82:46:96:3e:49: 2b:93:05:e4 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDQwMTExMC8GA1UEBRMoQTM5OUExMkM0OEMwMEU0MjYxRDI4RTBDNTdGRDRFM0U0 NzBEMkVCNzAeFw0yNTEwMTYwOTIzMTlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOGFkLWNjMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEePF7AzlN2FrTz2q/EKgT/FjLdXd3zSrD1sIoBLy4XWGhV1OsxBmaA/ZD7Ybv 7ySfkCutbTXFJTmJkSAlIWYh/KmfeLiLcjmiMoc7gy0InbYpdui67xzjb2xci+md 2+8h2MMe/896U0SFXsv0zuPooR083wL9kPAOGPq6GV7HZ5DJnUrNLJkf3HP9jNQH gbJFsgs3nBEd2StYVDbMRsMYsTMBW1tbR5hqh6GjdYV+3Bjp3fUU0o+FZlkhOBUQ MK6kPOoXXo5iPvyDdF7xm6KeVfOI4a1UAMCEOUcwMRt9Ubkqj4Exb0Tij+RHYDvg ZX6ezGZ1NcBcbIUuhuNJLz+/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQURrQP+5tw Tx+dAetxvBfoHQCnKJQwHwYDVR0jBBgwFoAUo5mhLEjADkJh0o4MV/1OPkcNLrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0NDAxLzFCODgyMTYwQUE3 MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtKaDBvNE1WXzFPUGtjTkxy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVtaExFakFEa0poMG80TVZfMU9Qa2NOTHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDQwMS8xQjg4MjE2MEFBNzAxMUYwQjQyOEU2NjNDNEY5QUUwMi9DMEZEMUZGMEFB NzExMUYwQjQ1NDYyNjlDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnefowDQYJKoZIhvcNAQELBQADggEBAAfmKCTXEeHHWBot66T/nipe aiRHBEWstoPekwhEcGaKpqxcrDTNcqctUYErRfQLiiOLMfJoUkmxAMp/4QkI6F0+ /yPcBMsDmN86TyQe7zBtl4iaZqqz8ByKFvZA+M2z/DNifAjlum5iXzntwdAOWhr6 mD7nMPoGFSHPUgS9qCGaBuwfFRWgeHbIPbETSNdDJ/tTREK5YV/14W/lE0L+sQ32 BrnGOmk2dUB7bNo6I5mVozGXdpfJiM4yrm7S8jYnQmoA5w5hzrx5jGruYTkxl6AE il2pQYCHd1uDg4inmWz3tSbgXcGyFB2KzSyunCTXr0M/gQpNYh+CRpY+SSuTBeQ= -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:27 2026 by rpki-client