$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa File: 9954B962F02D11EFBA26B94FC4F9AE02.roa (raw, json) Hash identifier: iVqpihrvbtGEhOH9xeRRmKHZKJ6A9LPs9WQo35Kevsw= Subject key identifier: A7:8F:C5:3D:12:A9:F9:A0:3D:28:30:8A:B6:0D:63:11:5A:5F:3B:B7 Certificate issuer: /CN=A91CEBCA/serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Certificate serial: 3550 Authority key identifier: FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:05:57 +0000 ROA not before: Tue 11 Nov 2025 07:25:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 147040 IP address blocks: 103.35.136.0/22 maxlen: 24 202.87.100.0/22 maxlen: 24 202.87.112.0/22 maxlen: 24 202.87.116.0/22 maxlen: 24 202.87.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13648 (0x3550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCA, serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Validity Not Before: Nov 11 07:25:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e15-ceb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a7:e0:18:c9:55:55:2c:cd:87:f1:37:df:5a: e4:6f:79:1c:d3:51:16:bd:1f:73:7c:35:aa:cc:1a: 9a:45:11:7a:b9:75:1e:7f:e3:08:6c:2b:b4:3b:3a: 49:dc:a0:69:a2:2e:b6:31:75:0f:3c:43:49:dc:e2: e4:4f:ee:ec:c6:d4:6c:b1:48:64:40:55:07:62:dc: 08:3e:72:f2:ac:cb:4e:3b:0d:06:a3:f4:58:d3:80: 35:9c:a6:01:e6:52:e4:3b:8a:6b:2f:0c:c6:53:82: 15:16:2d:f6:12:19:4f:76:55:45:31:1f:00:17:d9: dc:12:07:b5:f5:ac:05:8d:b1:e7:1a:56:2f:00:37: 8a:8f:ca:7c:a6:0f:42:df:f2:ae:a1:e6:3b:a2:3e: ac:8d:3f:ba:b7:cd:0c:ed:bb:bd:7f:6c:73:bb:74: d5:fc:39:48:79:26:0b:5e:5d:c4:5b:4e:01:18:6e: 5b:b0:73:ae:cd:f3:54:07:13:e6:22:f4:d2:47:3d: 72:16:eb:66:a5:5a:7d:96:dc:ff:a2:84:93:35:c6: 45:89:7d:31:6d:5b:f0:ac:4c:b9:2f:79:68:66:91: 43:f2:46:73:97:cc:54:6b:bb:d5:50:4b:8b:51:1f: 02:52:a9:fe:61:89:08:f6:ce:1c:bf:59:df:a4:9e: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8F:C5:3D:12:A9:F9:A0:3D:28:30:8A:B6:0D:63:11:5A:5F:3B:B7 X509v3 Authority Key Identifier: keyid:FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.35.136.0/22 202.87.100.0/22 202.87.112.0-202.87.123.255 Signature Algorithm: sha256WithRSAEncryption 5f:c7:b5:fd:fa:85:3e:d0:57:35:1e:d8:74:34:6f:2a:e1:09: 0e:b9:f6:ba:b6:74:09:b5:81:27:e7:95:d1:59:83:e5:ff:ec: d7:e7:16:96:72:6b:1f:5e:b8:98:87:63:9f:9d:ef:c5:15:c1: c5:91:99:3f:0f:b0:8c:72:32:63:3f:27:17:99:22:28:0a:5c: b8:88:a9:49:00:dd:2e:8c:cf:61:2c:1b:e7:65:9a:1e:5f:4e: 1c:c7:82:e0:54:93:b3:f4:93:12:57:bc:53:e5:7d:53:40:5f: eb:94:51:69:fb:9e:60:e1:5f:04:c9:3f:99:0b:95:6c:c1:61: 0f:51:8d:de:8e:80:df:93:96:dc:ea:1c:b3:87:ae:1c:35:37: bf:b6:d3:fa:28:82:72:15:6c:52:81:ff:0e:9e:80:2c:24:8c: d3:62:d8:91:37:ec:05:ce:8e:3a:7c:16:1b:41:03:5c:1c:a7: d2:91:a0:58:fa:79:4b:14:51:eb:e7:35:d9:67:3f:5a:7f:f4: c5:c1:8c:4e:d0:be:21:e4:cb:f7:ec:97:e9:76:b6:5c:62:76: 0f:60:56:9e:8f:52:04:dd:6f:f0:47:84:f1:54:59:98:a0:3a: 7c:0c:ee:5b:02:29:9f:93:9f:91:c9:58:cf:1a:0b:04:14:0e: e0:84:65:9e -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICNVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0ExMTAvBgNVBAUTKEZFODI2RUU5QkMxMkRBQUQzQjE5NzQ3MUIwNDEzRjFF QjIwODI2MzUwHhcNMjUxMTExMDcyNTExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGUxNS1jZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76fgGMlVVSzNh/E331rkb3kc01EWvR9zfDWqzBqaRRF6uXUef+MIbCu0OzpJ 3KBpoi62MXUPPENJ3OLkT+7sxtRssUhkQFUHYtwIPnLyrMtOOw0Go/RY04A1nKYB 5lLkO4prLwzGU4IVFi32EhlPdlVFMR8AF9ncEge19awFjbHnGlYvADeKj8p8pg9C 3/KuoeY7oj6sjT+6t80M7bu9f2xzu3TV/DlIeSYLXl3EW04BGG5bsHOuzfNUBxPm IvTSRz1yFutmpVp9ltz/ooSTNcZFiX0xbVvwrEy5L3loZpFD8kZzl8xUa7vVUEuL UR8CUqn+YYkI9s4cv1nfpJ6UgQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFKePxT0S qfmgPSgwirYNYxFaXzu3MB8GA1UdIwQYMBaAFP6Cbum8EtqtOxl0cbBBPx6yCCY1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQS9CNTg4QjRBNjFE ODgxMUUyOENBRThGRTEwOEIwMkNEMi9fb0p1NmJ3UzJxMDdHWFJ4c0VFX0hySUlK alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19vSnU2YndTMnEwN0dYUnhzRUVfSHJJSUpqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQ0EvQjU4OEI0QTYxRDg4MTFFMjhDQUU4RkUxMDhCMDJDRDIvOTk1NEI5NjJG MDJEMTFFRkJBMjZCOTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQCZyOIAwQCyldkMAwDBATKV3ADBALKV3gwDQYJKoZIhvcNAQELBQAD ggEBAF/Htf36hT7QVzUe2HQ0byrhCQ659rq2dAm1gSfnldFZg+X/7NfnFpZyax9e uJiHY5+d78UVwcWRmT8PsIxyMmM/JxeZIigKXLiIqUkA3S6Mz2EsG+dlmh5fThzH guBUk7P0kxJXvFPlfVNAX+uUUWn7nmDhXwTJP5kLlWzBYQ9Rjd6OgN+TltzqHLOH rhw1N7+20/oognIVbFKB/w6egCwkjNNi2JE37AXOjjp8FhtBA1wcp9KRoFj6eUsU UevnNdlnP1p/9MXBjE7QviHky/fsl+l2tlxidg9gVp6PUgTdb/BHhPFUWZigOnwM 7lsCKZ+Tn5HJWM8aCwQUDuCEZZ4= -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:41 2026 by rpki-client