$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/988741FEDB8111F0B008B5AB60D3641D.roa File: 988741FEDB8111F0B008B5AB60D3641D.roa (raw, json) Hash identifier: rh5kanvG5QXPAMOrNiNLJLVHnbyU12f7aHXUzCF2hMw= Subject key identifier: 29:35:EA:58:5C:BD:3F:8E:5F:83:03:34:5D:60:E1:A4:CD:3F:19:DC Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CA2 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/988741FEDB8111F0B008B5AB60D3641D.roa Signing time: Sun 01 Mar 2026 16:29:31 +0000 ROA not before: Wed 17 Dec 2025 19:56:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134552 IP address blocks: 103.57.120.0/22 maxlen: 22 103.57.120.0/23 maxlen: 23 103.57.120.0/24 maxlen: 24 103.57.121.0/24 maxlen: 24 103.57.122.0/23 maxlen: 23 103.57.122.0/24 maxlen: 24 103.57.123.0/24 maxlen: 24 2404:4680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Dec 17 19:56:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4696b-a3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:60:c7:1b:54:1c:a9:d4:a6:7e:47:aa:e4: a4:a3:3c:01:fb:5a:98:d8:d1:6b:41:1b:72:d7:28: ad:73:2b:a2:3e:99:93:cb:80:00:44:10:de:ff:6e: ea:05:37:27:a1:23:d8:aa:bd:7b:61:7b:9a:2c:fc: a3:25:78:a1:7f:d3:a7:4a:ff:d6:53:49:48:f5:b4: 3a:b9:fc:ac:6e:68:52:99:86:ca:9d:4f:fc:08:4d: bd:28:17:b3:90:70:4d:55:71:96:26:7b:1c:74:6e: cd:e9:59:3a:5e:e0:3c:bc:b9:5c:88:e7:04:8f:fe: 45:bf:36:6c:fd:7c:7b:be:b1:cf:db:57:96:f3:d8: 95:9e:bf:3f:dc:39:5a:61:33:df:60:dd:31:c1:48: 2c:73:92:54:bd:81:ab:b3:7e:e1:fe:5d:19:3d:4f: 70:64:94:b1:ab:4e:fd:9a:1b:0f:7d:85:cf:bf:db: 85:25:40:aa:20:b8:d9:89:b5:a4:27:01:af:1e:5b: da:30:2c:36:95:6a:be:62:46:ff:c9:d5:97:20:8f: 3a:07:45:43:73:c0:e6:e2:37:d4:d1:c8:19:27:f5: 0f:18:6b:77:76:76:5f:d2:be:a0:4c:a2:15:eb:9d: ce:c7:b5:a1:a8:69:04:ba:0b:7a:79:43:2d:3c:e0: cc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:35:EA:58:5C:BD:3F:8E:5F:83:03:34:5D:60:E1:A4:CD:3F:19:DC X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/988741FEDB8111F0B008B5AB60D3641D.roa sbgp-ipAddrBlock: critical IPv4: 103.57.120.0/22 IPv6: 2404:4680::/32 Signature Algorithm: sha256WithRSAEncryption 65:dc:59:1b:cd:ce:c7:0e:46:7f:3e:d2:94:4e:65:ec:d7:9f: 78:ba:ef:62:2c:26:40:63:8d:d1:df:18:50:79:4f:df:79:23: ee:27:3d:fd:21:76:76:11:bf:6b:84:5f:84:92:fe:f0:56:8c: 63:fd:7f:df:a6:1f:59:5b:86:86:3d:4e:d8:bb:1c:11:36:0d: 19:d5:0d:fa:aa:f2:55:7f:94:32:9c:1d:a3:73:25:4f:7e:cc: 54:73:23:64:b0:8f:89:c1:6e:83:55:f7:12:2c:bc:b3:b2:95: 84:a6:89:39:32:29:ff:ce:56:94:6c:b5:d7:b5:05:d7:32:6a: c7:59:15:e6:0e:2e:e1:9c:12:91:77:d6:90:fd:56:e9:42:e3: 3a:d6:d6:ee:5e:89:5b:e2:c7:7a:43:fc:99:0f:d1:93:44:05: e1:01:ac:93:0d:90:0c:8a:79:a2:1b:2f:f9:b3:7f:a4:03:c3: 1c:02:f5:6d:df:27:4d:dd:d3:f1:b1:ee:ae:14:cc:7b:5b:bb: 65:6e:f1:81:bc:55:45:a2:07:96:35:f2:e2:da:8c:29:2c:68: e4:d9:60:58:3c:79:86:21:ed:ea:8b:a1:cb:6e:0c:c1:ac:d9: 73:30:27:94:02:83:bf:0c:74:b1:9e:3a:fc:1f:a3:30:50:0c: f8:cd:25:8d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMjE3MTk1NjA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk2Yi1hM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOxgxxtUHKnUpn5HquSkozwB+1qY2NFrQRty1yitcyuiPpmTy4AARBDe/27q BTcnoSPYqr17YXuaLPyjJXihf9OnSv/WU0lI9bQ6ufysbmhSmYbKnU/8CE29KBez kHBNVXGWJnscdG7N6Vk6XuA8vLlciOcEj/5FvzZs/Xx7vrHP21eW89iVnr8/3Dla YTPfYN0xwUgsc5JUvYGrs37h/l0ZPU9wZJSxq079mhsPfYXPv9uFJUCqILjZibWk JwGvHlvaMCw2lWq+Ykb/ydWXII86B0VDc8Dm4jfU0cgZJ/UPGGt3dnZf0r6gTKIV 653Ox7WhqGkEugt6eUMtPODM5QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFCk16lhc vT+OX4MDNF1g4aTNPxncMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvOTg4NzQxRkVE QjgxMTFGMEIwMDhCNUFCNjBEMzY0MUQucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZzl4MA0EAgACMAcDBQAkBEaAMA0GCSqGSIb3DQEBCwUAA4IBAQBl 3Fkbzc7HDkZ/PtKUTmXs1594uu9iLCZAY43R3xhQeU/feSPuJz39IXZ2Eb9rhF+E kv7wVoxj/X/fph9ZW4aGPU7YuxwRNg0Z1Q36qvJVf5QynB2jcyVPfsxUcyNksI+J wW6DVfcSLLyzspWEpok5Min/zlaUbLXXtQXXMmrHWRXmDi7hnBKRd9aQ/VbpQuM6 1tbuXolb4sd6Q/yZD9GTRAXhAayTDZAMinmiGy/5s3+kA8McAvVt3ydN3dPxse6u FMx7W7tlbvGBvFVFogeWNfLi2owpLGjk2WBYPHmGIe3qi6HLbgzBrNlzMCeUAoO/ DHSxnjr8H6MwUAz4zSWN -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:45 2026 by rpki-client