$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa File: 3E6CF84C883311EE8822D90BC4F9AE02.roa (raw, json) Hash identifier: 21MbeL2c4YLwBExJY7PKPByiCkIBI9z7opJchOT4zUE= Subject key identifier: 97:AD:4D:FC:06:2F:71:DC:EA:5D:06:01:5B:54:D5:B2:F8:86:F8:71 Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: 01C1 Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:04:59 +0000 ROA not before: Wed 07 Jan 2026 03:22:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137085 IP address blocks: 103.106.20.0/24 maxlen: 24 103.106.21.0/24 maxlen: 24 103.106.22.0/24 maxlen: 24 103.106.23.0/24 maxlen: 24 2402:37c0::/48 maxlen: 48 2402:37c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832, serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Validity Not Before: Jan 7 03:22:17 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4397b-516c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:2a:42:c9:0a:d6:00:67:42:ea:ff:de:83: 4d:26:0e:cb:60:7a:90:73:e5:ce:e8:f9:1d:47:87: 51:60:d9:03:b4:b8:f6:5a:79:c6:d8:af:fb:ba:07: 34:e3:1f:6d:d0:fb:2a:26:05:3d:a5:07:8d:ae:97: 0c:c8:aa:c0:f4:2f:a8:eb:46:8e:a6:aa:d2:b6:c4: 8f:85:c0:a7:c9:77:27:34:b1:5c:c5:fb:35:f5:72: 63:67:b1:a8:87:12:59:23:a7:1e:ad:6d:23:1f:1e: 0b:19:2b:1a:35:38:a9:c6:f2:5c:21:64:6d:ee:7c: 41:60:39:5d:c0:06:f1:88:7b:41:dd:f7:b6:e7:31: d3:c9:5b:31:27:4d:7d:de:a1:b4:e0:16:10:55:02: c2:45:67:b3:7e:cd:d9:8a:c0:5d:e9:f1:35:c6:8d: 4b:75:15:b3:f4:50:32:e9:c9:f4:86:eb:68:67:55: f3:a8:48:86:d0:91:96:23:d7:cd:5b:bf:34:84:f5: 5e:84:29:53:9d:98:07:b1:15:b8:f2:0c:4a:45:1b: 46:1c:14:8e:23:ac:73:65:5d:c6:42:a3:ad:af:99: 1e:26:49:cf:26:84:c2:ba:de:80:90:c8:89:ce:fd: 55:60:16:58:93:ce:c4:17:86:e8:12:47:15:8b:3a: b4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AD:4D:FC:06:2F:71:DC:EA:5D:06:01:5B:54:D5:B2:F8:86:F8:71 X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.20.0/22 IPv6: 2402:37c0::/47 Signature Algorithm: sha256WithRSAEncryption bb:d0:60:2d:95:48:ae:8d:ca:f1:c0:5f:70:bf:90:3d:0c:2b: 7f:e2:2c:2d:a6:0b:b5:0a:0e:d7:53:bf:ca:ac:e8:ae:5b:27: 84:b4:ba:82:9b:a5:ea:c7:b0:89:f9:09:24:30:59:65:5e:ae: 6d:7a:4e:bd:d1:3d:d9:ed:98:3a:95:b9:b6:ff:40:68:33:08: 35:83:d2:b9:7c:94:90:a9:c8:a2:ee:85:8c:b8:1c:b8:ea:be: 24:38:28:aa:85:c0:98:48:a9:cb:0c:70:51:b4:84:fd:61:e0: cc:00:07:02:55:b0:ab:56:d1:0d:7d:dc:66:43:c1:94:ad:ab: 44:70:0f:2a:92:d7:fb:63:21:64:85:51:ed:ec:f4:e1:a3:46: c9:e1:dd:16:37:e0:79:09:e9:97:34:c5:00:5e:a8:ca:4c:9e: 82:d2:85:26:64:fc:78:b7:8a:62:05:6c:d8:40:2c:b8:85:9b: 0b:cc:76:0c:b7:b5:f1:53:4f:3e:5b:1f:6a:4e:35:19:80:2f: 3a:fc:29:2f:ed:4c:23:e5:45:32:6e:b1:0d:c9:24:81:f3:dc: 8e:14:2d:bd:7c:90:f7:02:bd:9e:51:22:52:5b:18:26:fc:4f: 68:81:fb:c7:94:e5:e3:cd:cf:c6:b2:0d:d6:e8:be:45:98:29: 9d:2a:88:07 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU4MzIxMTAvBgNVBAUTKDc1RDFDN0EzMzMwM0RBOERDNjQyMkFFMzUxNzAzRjJB NTI4REYzQkUwHhcNMjYwMTA3MDMyMjE3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzk3Yi01MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh8qQskK1gBnQur/3oNNJg7LYHqQc+XO6PkdR4dRYNkDtLj2WnnG2K/7ugc0 4x9t0PsqJgU9pQeNrpcMyKrA9C+o60aOpqrStsSPhcCnyXcnNLFcxfs19XJjZ7Go hxJZI6cerW0jHx4LGSsaNTipxvJcIWRt7nxBYDldwAbxiHtB3fe25zHTyVsxJ019 3qG04BYQVQLCRWezfs3ZisBd6fE1xo1LdRWz9FAy6cn0hutoZ1XzqEiG0JGWI9fN W780hPVehClTnZgHsRW48gxKRRtGHBSOI6xzZV3GQqOtr5keJknPJoTCut6AkMiJ zv1VYBZYk87EF4boEkcVizq0lQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJetTfwG L3Hc6l0GAVtU1bL4hvhxMB8GA1UdIwQYMBaAFHXRx6MzA9qNxkIq41FwPypSjfO+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTgzMi82RDYwRjlEODg3 OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJvM0dRaXJqVVhBX0tsS044 NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU4MzIvNkQ2MEY5RDg4Nzk3MTFFRTlGM0VENDRGQzRGOUFFMDIvM0U2Q0Y4NEM4 ODMzMTFFRTg4MjJEOTBCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ2oUMA8EAgACMAkDBwEkAjfAAAAwDQYJKoZIhvcNAQELBQADggEB ALvQYC2VSK6NyvHAX3C/kD0MK3/iLC2mC7UKDtdTv8qs6K5bJ4S0uoKbperHsIn5 CSQwWWVerm16Tr3RPdntmDqVubb/QGgzCDWD0rl8lJCpyKLuhYy4HLjqviQ4KKqF wJhIqcsMcFG0hP1h4MwABwJVsKtW0Q193GZDwZStq0RwDyqS1/tjIWSFUe3s9OGj Rsnh3RY34HkJ6Zc0xQBeqMpMnoLShSZk/Hi3imIFbNhALLiFmwvMdgy3tfFTTz5b H2pONRmALzr8KS/tTCPlRTJusQ3JJIHz3I4ULb18kPcCvZ5RIlJbGCb8T2iB+8eU 5ePNz8ayDdbovkWYKZ0qiAc= -----END CERTIFICATE-----Generated at Mon Mar 2 03:59:20 2026 by rpki-client