$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa File: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (raw, json) Hash identifier: wuo3+/J92e0XRghScABBMmbBwhV17Ld0r153W6gufCo= Subject key identifier: 63:9D:16:C4:D5:F1:20:96:23:93:77:39:0C:31:7B:9C:00:28:3E:57 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 01AE Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:39:50 +0000 ROA not before: Wed 29 Jan 2025 03:56:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150714 IP address blocks: 103.66.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:46:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1, serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Jan 29 03:56:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3df36-0f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:33:e0:c7:4d:9e:51:71:5a:af:18:16:c4: 07:5d:2c:1a:cf:59:34:56:34:c3:d4:4e:f5:fb:89: 36:cd:e3:26:83:65:f8:b6:fe:67:b8:e4:5e:25:8c: 94:1b:a7:d1:03:00:4b:44:0b:90:83:0b:15:20:75: f2:92:7d:f1:8f:fd:b8:d7:8f:22:a9:33:fb:b2:c1: 1f:d6:02:46:a0:2b:01:44:fc:44:eb:9d:20:44:1f: 17:5a:6d:27:c1:c8:48:ac:86:b8:f6:b3:4a:9c:b0: dc:78:b7:95:04:0f:da:ff:77:d3:5d:e2:d1:c4:af: ea:dc:5b:11:f3:d1:e4:e2:de:69:d1:a6:85:af:02: f1:3a:4a:1a:f1:4e:ee:b3:73:fc:e2:f1:94:48:84: 45:b5:26:37:8b:79:6a:99:00:0e:16:c4:83:c4:c6: 01:48:4a:9d:73:0b:b5:2c:ad:88:dc:b0:64:09:38: b3:78:18:82:33:a9:ea:b5:44:c9:e6:87:24:f8:6b: da:e8:34:06:d5:47:9e:5b:3d:3e:66:5f:30:7d:f7: 9e:d2:b2:bb:80:cb:8a:af:a8:96:c6:ea:e8:97:bd: ba:eb:55:c4:a3:6f:94:7b:d9:cf:29:77:19:9b:6e: 4a:fa:77:55:1e:c8:a9:9b:13:6a:33:52:53:41:78: 28:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9D:16:C4:D5:F1:20:96:23:93:77:39:0C:31:7B:9C:00:28:3E:57 X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.140.0/23 Signature Algorithm: sha256WithRSAEncryption 56:00:4c:64:37:fc:78:57:51:45:c7:ac:cb:46:d2:ce:0b:c2: be:4f:3a:dc:7d:af:16:d6:6d:79:17:67:3c:a2:61:1c:13:92: 42:da:78:33:f1:d2:8e:f6:d3:8d:fc:f6:2e:29:72:58:24:74: a9:fa:23:ce:66:bc:e0:fc:6b:af:f4:20:f4:f7:ab:23:83:7e: 01:d9:e8:c7:a0:9b:34:10:a5:80:2b:58:72:9a:98:0d:15:b6: 56:39:f2:88:9a:7b:d0:5b:24:83:e1:7c:f1:c3:d7:7d:a4:90: 90:9e:68:8a:11:75:81:4f:6b:12:f1:15:81:b7:e8:6f:87:46: 88:a1:3e:40:30:39:9d:75:58:50:6e:68:8c:51:ad:ac:de:06: c0:39:7d:87:e6:3d:17:d5:61:1a:00:a5:f1:57:ca:9d:e3:19: f5:30:5b:2b:f6:1e:1a:c0:f2:f1:9f:b6:04:b0:25:a2:5b:f1: 35:63:55:2a:3e:4d:cc:0c:1e:77:22:34:43:52:15:82:2d:0d: 75:04:8c:ef:56:80:81:aa:97:5f:43:8e:83:72:51:c1:20:fc: dc:d3:00:1a:e9:96:ea:cf:4d:bd:e0:0d:33:a8:84:38:72:20: 83:1f:04:a6:a8:8f:82:37:ad:14:40:fe:41:85:95:40:41:eb: 7a:45:41:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RjExMTAvBgNVBAUTKDFBN0IzRUNGNDQ2MzNFMUVBMjRDOTA2MTdBRDM5NzQ1 NUU3NEU2QjIwHhcNMjUwMTI5MDM1NjU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGYzNi0wZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr8z4MdNnlFxWq8YFsQHXSwaz1k0VjTD1E71+4k2zeMmg2X4tv5nuOReJYyU G6fRAwBLRAuQgwsVIHXykn3xj/24148iqTP7ssEf1gJGoCsBRPxE650gRB8XWm0n wchIrIa49rNKnLDceLeVBA/a/3fTXeLRxK/q3FsR89Hk4t5p0aaFrwLxOkoa8U7u s3P84vGUSIRFtSY3i3lqmQAOFsSDxMYBSEqdcwu1LK2I3LBkCTizeBiCM6nqtUTJ 5ock+Gva6DQG1UeeWz0+Zl8wffee0rK7gMuKr6iWxurol72661XEo2+Ue9nPKXcZ m25K+ndVHsipmxNqM1JTQXgoYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGOdFsTV 8SCWI5N3OQwxe5wAKD5XMB8GA1UdIwQYMBaAFBp7Ps9EYz4eokyQYXrTl0VedOay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlGMS9FRTY5NUZFNjg3 NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi9HbnMtejBSalBoNmlUSkJoZXRPWFJWNTA1 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RjEvRUU2OTVGRTY4NzVEMTFFRThGNDg5OTEzQzRGOUFFMDIvMzk4QjRFRUU4 NzVFMTFFRUJDQUIyNTE0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ0KMMA0GCSqGSIb3DQEBCwUAA4IBAQBWAExkN/x4V1FFx6zLRtLO C8K+Tzrcfa8W1m15F2c8omEcE5JC2ngz8dKO9tON/PYuKXJYJHSp+iPOZrzg/Guv 9CD096sjg34B2ejHoJs0EKWAK1hympgNFbZWOfKImnvQWySD4Xzxw9d9pJCQnmiK EXWBT2sS8RWBt+hvh0aIoT5AMDmddVhQbmiMUa2s3gbAOX2H5j0X1WEaAKXxV8qd 4xn1MFsr9h4awPLxn7YEsCWiW/E1Y1UqPk3MDB53IjRDUhWCLQ11BIzvVoCBqpdf Q46DclHBIPzc0wAa6Zbqz0294A0zqIQ4ciCDHwSmqI+CN60UQP5BhZVAQet6RUFs -----END CERTIFICATE-----Generated at Mon Mar 2 05:36:35 2026 by rpki-client