$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa File: 1333404E5A0D11EF8810E217C4F9AE02.roa (raw, json) Hash identifier: 4mVa0DqBaCflYNU9bhCT5eYUo2wiGhZvFPJW9PpsrbY= Subject key identifier: 60:68:D5:50:06:1F:C5:89:BF:6C:61:50:9C:A9:4F:D0:B6:92:07:A0 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 0232 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:18:42 +0000 ROA not before: Sat 07 Feb 2026 02:22:22 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 136993 IP address blocks: 103.69.132.0/22 maxlen: 24 103.69.152.0/22 maxlen: 24 103.206.188.0/22 maxlen: 23 116.66.176.0/24 maxlen: 24 116.66.177.0/24 maxlen: 24 116.66.178.0/24 maxlen: 24 116.66.179.0/24 maxlen: 24 137.59.100.0/22 maxlen: 23 180.149.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Feb 7 02:22:22 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a458d2-26ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:61:f3:a8:69:44:0a:7f:c8:4c:ca:f6:bb:1a: 31:3a:55:0a:1b:86:51:ef:16:37:9e:ec:b7:da:60: 9a:b1:0b:f6:00:e2:7f:50:2e:7f:15:87:f3:da:f9: b1:d5:4d:84:52:e7:77:aa:8c:7a:a3:0c:93:01:16: 78:d4:8a:bb:af:7f:ff:b0:ad:7f:ee:18:2a:62:d5: 4f:8b:74:0a:0d:f6:d1:95:c7:51:55:24:9f:26:8d: 13:95:33:b1:36:6b:31:a9:d0:3d:35:0a:5d:86:fd: 98:32:8e:05:14:b6:31:f9:3e:ba:39:b0:6a:29:58: 12:6f:78:af:58:aa:5c:82:79:fc:43:0e:5a:ec:cf: aa:1d:a5:95:7c:74:74:65:68:13:84:5b:02:d6:86: 86:d3:1c:8b:4c:52:27:a9:07:81:f0:1c:ac:c1:ac: 0a:93:ce:4f:75:df:66:57:1f:92:d0:7a:65:71:81: b8:19:2c:a5:11:c4:66:98:31:d3:e2:11:dd:94:98: 8d:68:58:16:b3:74:4d:8b:f4:b1:82:47:cd:75:5f: 4d:5e:da:7a:c3:b4:93:0c:d8:b1:96:ad:e4:b3:b8: 06:cb:a7:28:21:1d:54:5e:b8:27:10:4d:07:e9:d6: dc:5c:d2:90:a2:76:3a:28:4c:e6:a6:25:40:f9:7b: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:68:D5:50:06:1F:C5:89:BF:6C:61:50:9C:A9:4F:D0:B6:92:07:A0 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.69.132.0/22 103.69.152.0/22 103.206.188.0/22 116.66.176.0/22 137.59.100.0/22 180.149.236.0/22 Signature Algorithm: sha256WithRSAEncryption ce:5a:7d:13:e4:49:76:1d:a1:d4:91:cb:b3:fd:0a:f6:f7:22: 56:c1:11:9d:79:de:8d:19:9f:6d:b8:d6:ed:bd:16:89:58:24: 39:f9:00:5d:c5:fc:64:6f:fc:13:84:b9:32:6a:5e:87:65:af: a2:67:6f:53:2f:38:84:45:60:10:d1:b3:25:3b:40:fb:ed:ad: a4:ba:82:02:ee:e8:71:ed:7c:f4:ce:6e:f4:41:f9:a2:3e:fb: 76:04:bb:33:5c:1d:72:8f:9f:bb:88:d2:3c:f2:87:c9:67:57: 38:91:06:f1:6e:19:93:19:07:07:af:bd:fc:90:de:b9:c8:ed: 5c:aa:d0:44:f0:c0:cc:dd:64:a0:7e:1e:f2:13:ac:0d:f3:2a: 88:d6:d1:b7:20:82:b1:9d:f6:14:51:39:57:c4:d4:62:32:0b: f3:f9:79:e7:a8:66:52:29:99:fe:60:57:1f:87:6a:81:06:e9: 15:0a:29:70:32:7e:63:01:32:72:46:b4:10:c9:ed:87:df:35: 40:9d:33:85:38:91:3c:3d:f7:49:1e:29:7b:0b:11:99:88:96: f6:ed:4a:5c:78:62:34:61:98:fb:5b:49:fa:0e:05:0f:0a:b1: ff:aa:f9:d4:4a:0b:64:f7:93:2a:29:e4:41:e2:d9:b9:cd:a0: c4:2e:ea:eb -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjYwMjA3MDIyMjIyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NThkMi0yNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmHzqGlECn/ITMr2uxoxOlUKG4ZR7xY3nuy32mCasQv2AOJ/UC5/FYfz2vmx 1U2EUud3qox6owyTARZ41Iq7r3//sK1/7hgqYtVPi3QKDfbRlcdRVSSfJo0TlTOx NmsxqdA9NQpdhv2YMo4FFLYx+T66ObBqKVgSb3ivWKpcgnn8Qw5a7M+qHaWVfHR0 ZWgThFsC1oaG0xyLTFInqQeB8ByswawKk85Pdd9mVx+S0HplcYG4GSylEcRmmDHT 4hHdlJiNaFgWs3RNi/SxgkfNdV9NXtp6w7STDNixlq3ks7gGy6coIR1UXrgnEE0H 6dbcXNKQonY6KEzmpiVA+XvVBQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFGBo1VAG H8WJv2xhUJypT9C2kgegMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMTMzMzQwNEU1 QTBEMTFFRjg4MTBFMjE3QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQCZ0WEAwQCZ0WYAwQCZ868AwQCdEKwAwQCiTtkAwQCtJXsMA0GCSqG SIb3DQEBCwUAA4IBAQDOWn0T5El2HaHUkcuz/Qr29yJWwRGded6NGZ9tuNbtvRaJ WCQ5+QBdxfxkb/wThLkyal6HZa+iZ29TLziERWAQ0bMlO0D77a2kuoIC7uhx7Xz0 zm70QfmiPvt2BLszXB1yj5+7iNI88ofJZ1c4kQbxbhmTGQcHr738kN65yO1cqtBE 8MDM3WSgfh7yE6wN8yqI1tG3IIKxnfYUUTlXxNRiMgvz+XnnqGZSKZn+YFcfh2qB BukVCilwMn5jATJyRrQQye2H3zVAnTOFOJE8PfdJHil7CxGZiJb27UpceGI0YZj7 W0n6DgUPCrH/qvnUSgtk95MqKeRB4tm5zaDELurr -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:26 2026 by rpki-client