$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa File: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (raw, json) Hash identifier: Q2tDi7aDCqJfPbKlsvpv/Im3EMBA1tZp/jy9biarem0= Subject key identifier: 35:3D:42:48:80:EB:64:97:7D:26:C8:8B:AD:C6:71:4F:A3:64:0C:03 Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 08B3 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:33:10 +0000 ROA not before: Wed 28 Jan 2026 20:17:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132435 IP address blocks: 103.21.44.0/22 maxlen: 22 103.21.44.0/24 maxlen: 24 103.21.45.0/24 maxlen: 24 103.21.46.0/24 maxlen: 24 103.21.47.0/24 maxlen: 24 2406:8b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750, serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Jan 28 20:17:37 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46a46-ea85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:31:bb:cd:26:78:eb:2e:4b:db:42:c1:4d:e0: 32:35:4a:23:b8:15:d4:9f:db:73:c6:3e:cd:28:83: c1:5a:2e:73:91:9d:99:14:9e:19:c8:9a:fc:02:0c: 96:cc:7c:04:f0:f3:47:1b:87:d4:1d:ba:3a:c9:0f: 2b:ff:f6:0c:13:e9:48:6c:af:c0:1e:60:90:c3:00: a0:ca:f2:33:6b:86:90:cf:e9:aa:da:20:e2:fe:7d: 8e:4d:a3:d3:6c:00:bd:a3:dc:31:b4:98:c0:d7:67: 3a:aa:3f:a0:41:bd:03:7e:fc:04:19:fc:1a:48:b2: db:a9:a1:0a:97:c8:ba:a5:c6:b1:67:a9:3e:18:d6: cd:0a:56:a2:e5:50:32:dc:5e:ec:c4:35:c7:e2:46: 2a:6b:52:eb:7d:2a:1f:4d:bc:68:c0:fa:c7:4d:bf: 48:9e:6a:77:db:72:02:9a:71:2f:fc:43:b6:01:07: ec:36:f7:ea:1f:c5:5d:ca:94:b3:0b:39:79:9e:80: f6:b3:12:7a:94:3a:6f:ee:9d:cc:6d:64:25:de:9e: bf:bf:20:b4:86:34:2c:91:fe:21:90:d9:12:af:04: 07:da:cf:94:cd:ac:c6:8b:29:52:49:5b:15:93:42: fc:f3:94:b9:4b:89:b1:82:eb:4e:b4:04:14:d1:60: e3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3D:42:48:80:EB:64:97:7D:26:C8:8B:AD:C6:71:4F:A3:64:0C:03 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.44.0/22 IPv6: 2406:8b00::/32 Signature Algorithm: sha256WithRSAEncryption 21:25:24:11:99:6d:d5:da:31:3d:27:81:ef:ff:10:cc:72:9c: ac:76:b0:23:6b:08:39:24:b0:44:8b:00:ba:32:a5:06:83:dd: af:b2:9c:dc:88:57:2d:b2:a0:ad:6b:76:0d:fa:42:0c:9e:95: 14:c3:51:96:9b:2a:f5:2d:75:4f:ed:bc:66:69:2f:5e:9d:5b: 72:56:38:aa:da:2b:25:9a:8a:21:10:7c:4d:7d:58:a9:db:2a: d3:fa:54:57:a3:79:15:36:9e:60:41:24:e2:6a:98:21:37:2e: 1a:c8:4e:4e:5d:7c:84:9c:01:d8:17:6b:28:6a:01:f1:5e:05: d8:7c:a9:a8:94:df:8d:ef:b2:ef:5f:c7:6e:25:cd:06:1c:7a: f2:25:79:cf:1f:61:52:ae:c8:46:d4:28:7b:13:45:57:96:6c: 49:cb:78:47:6e:30:22:88:75:88:5b:2f:3b:6d:3e:63:0f:c6: 06:5f:32:9c:4c:34:78:75:32:88:fa:24:44:e3:f3:5b:04:df: e1:c6:36:3d:0b:6f:ee:18:71:fe:64:19:29:b3:06:16:f0:15: 10:92:0e:2d:88:a0:0b:f2:06:97:81:c2:6a:f0:04:d9:fa:46: a9:c2:9d:0c:f4:88:d7:a4:29:ac:d8:6d:06:0a:45:01:3a:40: c2:3e:88:6e -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjYwMTI4MjAxNzM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE0Ni1lYTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jG7zSZ46y5L20LBTeAyNUojuBXUn9tzxj7NKIPBWi5zkZ2ZFJ4ZyJr8AgyW zHwE8PNHG4fUHbo6yQ8r//YME+lIbK/AHmCQwwCgyvIza4aQz+mq2iDi/n2OTaPT bAC9o9wxtJjA12c6qj+gQb0DfvwEGfwaSLLbqaEKl8i6pcaxZ6k+GNbNClai5VAy 3F7sxDXH4kYqa1LrfSofTbxowPrHTb9Inmp323ICmnEv/EO2AQfsNvfqH8VdypSz Czl5noD2sxJ6lDpv7p3MbWQl3p6/vyC0hjQskf4hkNkSrwQH2s+UzazGiylSSVsV k0L885S5S4mxgutOtAQU0WDjMwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDU9QkiA 62SXfSbIi63GcU+jZAwDMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQ3NTAvOTBENUVDNUFEQUJEMTFFQThGQzYyMzg3QzRGOUFFMDIvREExQTk4QzRE QUJFMTFFQUIxMkE1MjA5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZxUsMA0EAgACMAcDBQAkBosAMA0GCSqGSIb3DQEBCwUAA4IBAQAh JSQRmW3V2jE9J4Hv/xDMcpysdrAjawg5JLBEiwC6MqUGg92vspzciFctsqCta3YN +kIMnpUUw1GWmyr1LXVP7bxmaS9enVtyVjiq2islmoohEHxNfVip2yrT+lRXo3kV Np5gQSTiapghNy4ayE5OXXyEnAHYF2soagHxXgXYfKmolN+N77LvX8duJc0GHHry JXnPH2FSrshG1Ch7E0VXlmxJy3hHbjAiiHWIWy87bT5jD8YGXzKcTDR4dTKI+iRE 4/NbBN/hxjY9C2/uGHH+ZBkpswYW8BUQkg4tiKAL8gaXgcJq8ATZ+kapwp0M9IjX pCms2G0GCkUBOkDCPohu -----END CERTIFICATE-----Generated at Mon Mar 2 05:36:41 2026 by rpki-client