$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/C56AF018E98B11F0A24D3E834F6F56BC.roa File: C56AF018E98B11F0A24D3E834F6F56BC.roa (raw, json) Hash identifier: MIF4G38mLftqnqeE9T0qy+6BeKMKul+rB3EiPJaG4sA= Subject key identifier: 71:B7:5A:19:EB:62:6F:E1:1B:A8:04:E8:20:A4:22:08:75:C8:61:7E Certificate issuer: /CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Certificate serial: 07C7 Authority key identifier: 9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/C56AF018E98B11F0A24D3E834F6F56BC.roa Signing time: Sun 01 Mar 2026 19:10:20 +0000 ROA not before: Sun 04 Jan 2026 16:38:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138023 IP address blocks: 103.137.109.0/24 maxlen: 24 2001:df6:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Validity Not Before: Jan 4 16:38:17 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48f1c-7dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:b3:60:61:3f:e2:7f:bc:99:a3:73:62:48:d0: 2b:80:60:f4:95:22:2d:7a:b3:ae:67:5d:f8:cd:3f: e3:99:7b:1b:08:33:dd:4f:06:52:46:fb:f8:0e:c9: b3:ee:6a:96:b7:e4:42:e2:ef:67:ba:b6:59:d8:c3: 8d:7a:b2:e1:69:e8:a9:3c:18:06:d0:e1:ad:8a:76: cf:fe:94:4e:af:d7:4d:3b:87:1a:cf:eb:f5:da:6b: d9:ef:ff:10:4f:e5:65:95:9c:2d:53:38:81:fc:61: d2:04:98:bd:fd:d8:20:3a:b9:b1:9d:44:95:3e:bb: 8f:85:14:7e:d1:34:4d:5d:f2:fb:4e:7f:3c:06:d9: b4:38:d3:3f:05:7d:4e:fa:d7:64:b6:8e:53:b7:05: 05:95:8b:de:f4:ee:bc:78:2d:6b:af:57:57:fb:84: 3b:fe:58:b5:40:35:97:d5:77:d7:55:24:47:38:d2: 5f:4a:d3:04:c5:c9:e7:34:9a:b2:52:d4:42:42:a4: 96:a5:ea:3d:3b:20:55:80:f3:3f:35:dc:2d:8d:a1: 2b:5b:0f:ad:43:ac:dc:e4:29:07:01:38:58:53:7d: db:1d:fe:5d:09:e0:cb:9b:fe:93:01:97:6c:bb:d7: 4b:97:67:f8:e7:b2:7a:98:42:b0:0f:a3:08:99:48: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B7:5A:19:EB:62:6F:E1:1B:A8:04:E8:20:A4:22:08:75:C8:61:7E X509v3 Authority Key Identifier: keyid:9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/C56AF018E98B11F0A24D3E834F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.137.109.0/24 IPv6: 2001:df6:700::/48 Signature Algorithm: sha256WithRSAEncryption df:48:60:34:0e:61:82:bf:af:56:7b:3e:0a:43:45:6c:14:14: 8a:27:c6:c0:54:05:06:04:7c:70:b6:00:a8:07:48:7a:11:ca: 17:ba:42:d9:87:41:f6:70:3c:e4:27:73:a6:75:77:e1:6d:79: fa:a2:7f:3d:f7:30:29:dd:96:73:f0:40:b8:33:7d:20:8c:d1: 58:4f:04:5c:dc:d3:b9:4d:41:70:8a:4c:0a:3e:fa:fe:f4:9b: c4:dd:cc:ae:db:4b:f4:bb:5e:43:bb:48:9a:a2:bb:04:87:b9: 01:46:20:de:11:da:27:bb:43:48:2b:d4:13:da:f3:21:8b:4f: c2:04:85:e4:0c:92:85:dd:98:42:d7:7e:98:81:d6:47:ed:26: 91:0c:a7:8d:dc:95:16:f5:84:05:99:22:62:8a:62:c6:4f:4a: 55:86:09:53:b4:6c:84:19:98:00:cd:8c:45:db:16:b9:1f:aa: ec:49:19:4b:e1:91:bf:46:e5:c9:21:63:51:8e:79:9d:e5:0f: 60:7b:66:d5:76:59:e8:d5:77:38:ce:c3:0b:52:9e:d3:29:2a: db:7c:ed:79:0f:e2:24:8f:b7:61:67:54:ad:6b:57:60:c9:a9: a9:b9:10:f5:eb:3b:c4:eb:21:43:ff:0d:fc:b1:ba:e8:d5:2e: fe:89:b2:1b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDlDNEZGRTY1REVBMzUyMzNEMzlFODcwMjIzODU2NTU3 NERFRDQ2NkUwHhcNMjYwMTA0MTYzODE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYxYy03ZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhbNgYT/if7yZo3NiSNArgGD0lSIterOuZ134zT/jmXsbCDPdTwZSRvv4Dsmz 7mqWt+RC4u9nurZZ2MONerLhaeipPBgG0OGtinbP/pROr9dNO4caz+v12mvZ7/8Q T+VllZwtUziB/GHSBJi9/dggOrmxnUSVPruPhRR+0TRNXfL7Tn88Btm0ONM/BX1O +tdkto5TtwUFlYve9O68eC1rr1dX+4Q7/li1QDWX1XfXVSRHONJfStMExcnnNJqy UtRCQqSWpeo9OyBVgPM/NdwtjaErWw+tQ6zc5CkHAThYU33bHf5dCeDLm/6TAZds u9dLl2f457J6mEKwD6MImUgixwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHG3Whnr Ym/hG6gE6CCkIgh1yGF+MB8GA1UdIwQYMBaAFJxP/mXeo1Iz056HAiOFZVdN7UZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9uRV8tWmQ2alVqUFRub2NDSTRWbFYwM3RS bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25FXy1aZDZqVWpQVG5vY0NJNFZsVjAzdFJtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNEUvNTVFOTc5NUFBOTRGMTFFOEFBMEM5MDBFQzRGOUFFMDIvQzU2QUYwMThF OThCMTFGMEEyNEQzRTgzNEY2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ4ltMA8EAgACMAkDBwAgAQ32BwAwDQYJKoZIhvcNAQELBQADggEB AN9IYDQOYYK/r1Z7PgpDRWwUFIonxsBUBQYEfHC2AKgHSHoRyhe6QtmHQfZwPOQn c6Z1d+Ftefqifz33MCndlnPwQLgzfSCM0VhPBFzc07lNQXCKTAo++v70m8TdzK7b S/S7XkO7SJqiuwSHuQFGIN4R2ie7Q0gr1BPa8yGLT8IEheQMkoXdmELXfpiB1kft JpEMp43clRb1hAWZImKKYsZPSlWGCVO0bIQZmADNjEXbFrkfquxJGUvhkb9G5ckh Y1GOeZ3lD2B7ZtV2WejVdzjOwwtSntMpKtt87XkP4iSPt2FnVK1rV2DJqam5EPXr O8TrIUP/DfyxuujVLv6Jshs= -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:12 2026 by rpki-client