$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/AFD61B9C36A311F08A82A258C4F9AE02.roa File: AFD61B9C36A311F08A82A258C4F9AE02.roa (raw, json) Hash identifier: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA= Subject key identifier: DA:B3:15:F9:8F:E1:3E:CB:31:96:EC:C4:2B:CA:A8:69:03:3B:73:45 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: 98 Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/AFD61B9C36A311F08A82A258C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:08:52 +0000 ROA not before: Thu 17 Jul 2025 08:14:35 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137965 IP address blocks: 103.118.120.0/24 maxlen: 24 2001:df5:cb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Jul 17 08:14:35 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a3f414-8fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d8:b2:91:aa:ab:18:2d:5c:92:75:bc:8a:2b: 0f:bd:7e:3b:86:d8:4b:71:ae:24:38:89:4d:5a:27: 67:7f:02:89:ce:95:0b:ff:8a:47:40:bd:1a:e8:b1: 39:1d:28:e4:d6:d2:6a:61:87:0d:15:71:31:6f:87: 2f:40:51:a1:7f:74:9a:f4:37:1e:38:d6:5a:45:cb: 31:4e:55:65:53:09:c4:62:9d:61:c8:2d:86:9b:06: 20:f4:ce:ae:46:06:a6:19:95:59:2b:61:69:97:1a: 71:c9:90:19:6f:f0:41:d8:f1:9d:9d:f2:97:76:aa: ae:0d:89:7a:31:83:44:d8:62:ee:5f:86:b0:aa:9c: b8:b8:30:4a:b4:37:aa:fb:dc:ed:c7:d5:9a:f4:d5: ef:15:53:cc:fb:91:2e:ef:ef:e9:5b:4a:3f:c4:06: 49:48:e0:eb:f5:fd:37:4e:12:d5:82:66:f8:37:a7: 26:e0:ab:4a:c5:3b:3b:06:d6:50:9e:e8:72:4d:7d: cd:da:3b:95:c1:e8:5c:36:3a:b1:a9:75:6d:12:e5: 1f:e8:7c:a8:28:de:c2:96:fc:c3:1a:b7:18:40:76: dd:31:2c:41:f9:0b:61:84:d1:cd:11:3e:14:13:e7: eb:89:b4:55:8a:77:c6:a4:eb:c3:c5:c6:59:4d:a4: 61:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B3:15:F9:8F:E1:3E:CB:31:96:EC:C4:2B:CA:A8:69:03:3B:73:45 X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/AFD61B9C36A311F08A82A258C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.118.120.0/24 IPv6: 2001:df5:cb00::/48 Signature Algorithm: sha256WithRSAEncryption 4f:27:ff:5a:05:12:7c:1d:45:41:a2:22:a5:37:1a:91:63:a3: 7d:65:90:ee:3a:6e:04:c8:9e:7b:45:39:c3:38:39:cb:98:2d: 48:a3:2b:7d:c8:d9:82:72:5e:18:71:e1:c1:bc:1e:0e:f8:12: bc:8f:62:97:a0:2d:a3:a5:f4:13:e3:cc:f6:5b:b5:1b:20:38: 71:87:50:39:0f:ce:22:0f:d3:f4:1f:4b:79:f5:fc:b4:04:35: e1:17:3a:82:d2:9c:de:ae:ed:e3:0c:e6:37:3c:d4:61:84:8f: 93:c7:e6:13:e0:39:58:54:a1:5e:13:53:d3:ac:98:83:79:5f: 77:9c:7f:22:d2:f2:06:be:71:4b:3a:42:a3:8c:56:f2:64:6f: 18:8d:01:a8:e3:f8:1d:50:41:56:ea:eb:e8:f1:be:40:79:df: 3f:ad:2a:ed:d7:06:4d:f8:db:b7:8d:9b:7a:9c:43:8b:f3:fd: c1:97:9f:8a:6c:9e:29:03:4f:4c:2a:d1:e5:09:d2:2f:92:b2: e2:c0:5e:f1:2d:92:80:5b:b2:9b:dc:2e:e7:2e:2a:67:d2:b8: b6:f1:46:fc:49:26:53:28:3f:c7:c6:0b:44:39:9e:62:ee:58: 7b:4d:30:c6:59:ac:95:a1:50:2f:e2:84:88:4a:e4:8f:64:20: be:bd:36:93 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjUwNzE3MDgxNDM1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQxNC04ZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldiykaqrGC1cknW8iisPvX47hthLca4kOIlNWidnfwKJzpUL/4pHQL0a6LE5 HSjk1tJqYYcNFXExb4cvQFGhf3Sa9DceONZaRcsxTlVlUwnEYp1hyC2GmwYg9M6u RgamGZVZK2FplxpxyZAZb/BB2PGdnfKXdqquDYl6MYNE2GLuX4awqpy4uDBKtDeq +9ztx9Wa9NXvFVPM+5Eu7+/pW0o/xAZJSODr9f03ThLVgmb4N6cm4KtKxTs7BtZQ nuhyTX3N2juVwehcNjqxqXVtEuUf6HyoKN7ClvzDGrcYQHbdMSxB+QthhNHNET4U E+fribRVinfGpOvDxcZZTaRhOQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNqzFfmP 4T7LMZbsxCvKqGkDO3NFMB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IzRkUvMkE1Njg3ODIzNkEyMTFGMDg5N0I0QjNDQzRGOUFFMDIvQUZENjFCOUMz NkEzMTFGMDhBODJBMjU4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ3Z4MA8EAgACMAkDBwAgAQ31ywAwDQYJKoZIhvcNAQELBQADggEB AE8n/1oFEnwdRUGiIqU3GpFjo31lkO46bgTInntFOcM4OcuYLUijK33I2YJyXhhx 4cG8Hg74EryPYpegLaOl9BPjzPZbtRsgOHGHUDkPziIP0/QfS3n1/LQENeEXOoLS nN6u7eMM5jc81GGEj5PH5hPgOVhUoV4TU9OsmIN5X3ecfyLS8ga+cUs6QqOMVvJk bxiNAajj+B1QQVbq6+jxvkB53z+tKu3XBk3427eNm3qcQ4vz/cGXn4psnikDT0wq 0eUJ0i+SsuLAXvEtkoBbspvcLucuKmfSuLbxRvxJJlMoP8fGC0Q5nmLuWHtNMMZZ rJWhUC/ihIhK5I9kIL69NpM= -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:50 2026 by rpki-client