$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/DC83478EEB0311ED875DD72EC4F9AE02.roa File: DC83478EEB0311ED875DD72EC4F9AE02.roa (raw, json) Hash identifier: ZgmeeVqm3Wnlajga6cIlcqeVmJlA7Tq6XrbJ7SjwrkM= Subject key identifier: A9:CD:43:55:EF:17:A7:34:5D:B0:92:F6:C6:F2:94:97:30:4A:57:27 Certificate issuer: /CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Certificate serial: 1118 Authority key identifier: 3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/DC83478EEB0311ED875DD72EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:16:35 +0000 ROA not before: Fri 02 May 2025 17:56:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137271 IP address blocks: 103.209.4.0/23 maxlen: 23 103.209.4.0/24 maxlen: 24 103.209.5.0/24 maxlen: 24 2406:bf00:1::/48 maxlen: 48 2406:bf00:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4376 (0x1118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF285, serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Validity Not Before: May 2 17:56:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42e22-9504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ba:d2:57:bc:f6:5b:91:63:77:64:d1:f8:61: 09:dd:ff:9c:49:bb:5a:21:9b:75:21:13:69:84:54: 08:18:77:14:1e:df:33:95:15:a7:3d:a8:88:0f:bc: c8:ad:3c:b5:ee:13:26:47:9a:b6:0d:95:ed:dd:ea: 03:d8:0c:f9:9e:bd:5b:db:19:e5:7b:ee:3c:21:20: 13:37:86:13:f1:b0:c1:42:7f:3a:1b:50:e5:a2:fc: 67:9e:b8:e4:d4:1d:a6:17:75:03:69:9e:af:1a:59: 50:d9:5a:e3:f5:cb:22:0a:8f:d6:91:0b:00:f9:92: a7:59:be:f4:bb:77:1c:f1:1d:9a:48:0f:cc:b6:64: 1a:d4:58:0e:0b:53:99:a0:ee:8f:2a:b5:52:5d:fc: fd:12:09:6a:90:0a:6b:e7:dd:ac:f5:11:7e:9a:4d: fc:7e:93:82:1e:3d:14:40:60:2e:0b:23:f5:d4:33: 77:f7:86:a5:0f:cc:ff:67:50:5e:1b:c8:bf:36:08: 12:e3:08:20:9f:79:6d:6f:b2:27:66:f2:d0:fe:6a: e6:4f:46:a6:8c:e0:46:97:18:54:dc:fc:b8:0e:69: a4:d8:10:da:46:9f:9a:08:70:a3:bc:22:2d:7a:42: 60:f8:05:71:eb:8b:ce:49:4e:da:bb:e0:f5:1a:bd: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CD:43:55:EF:17:A7:34:5D:B0:92:F6:C6:F2:94:97:30:4A:57:27 X509v3 Authority Key Identifier: keyid:3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/DC83478EEB0311ED875DD72EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.209.4.0/23 IPv6: 2406:bf00:1::-2406:bf00:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c3:51:ae:93:7e:7e:87:4b:87:ec:bb:91:f8:99:42:0c:b5:ef: 16:09:ab:c5:55:bb:59:63:b5:fb:7e:e4:e0:8c:7b:2e:b6:1f: 9b:27:6e:11:e9:f2:8d:4a:29:7f:9e:ac:20:53:2f:0f:de:1d: 0a:6f:2b:e1:f0:94:bc:7c:0d:fd:e1:27:80:c3:60:56:74:ff: 17:0c:6f:dc:5e:fa:a5:98:6b:c7:da:ac:44:94:2d:ba:98:bf: 0a:23:22:c8:b2:0b:24:0d:e4:b3:fe:0e:58:28:b3:2d:fc:54: 07:f9:42:6e:75:32:42:ec:25:e6:e9:3d:be:86:28:a5:e6:5a: 26:6b:1c:70:fb:36:5b:f4:88:3e:42:a0:dd:d0:25:fb:98:b8: bb:ba:47:e1:49:58:05:a2:5f:f8:86:9a:88:a9:39:a7:b5:5a: 95:51:5c:11:1f:af:b0:fe:cb:82:d1:03:ce:78:80:65:e4:d5: ba:b4:62:ac:44:95:ee:13:d2:f0:21:cb:6e:82:c0:c5:3c:74: a2:dc:a2:a1:87:7d:91:b2:a8:20:ed:18:6c:dc:b6:09:1e:3c: 82:40:0a:fa:cc:53:f4:7e:55:57:fc:ae:75:d9:94:e1:e5:b1: 26:89:05:5b:aa:11:fb:e3:a1:ca:a7:74:37:ad:81:fa:ee:3f: a0:98:cf:65 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICERgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyODUxMTAvBgNVBAUTKDNFMjlDRTZGNkE3REI5NEI2RDA5MTMzQjczRkVENTJE REVFMTJEQUIwHhcNMjUwNTAyMTc1NjM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmUyMi05NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurrSV7z2W5Fjd2TR+GEJ3f+cSbtaIZt1IRNphFQIGHcUHt8zlRWnPaiID7zI rTy17hMmR5q2DZXt3eoD2Az5nr1b2xnle+48ISATN4YT8bDBQn86G1Dlovxnnrjk 1B2mF3UDaZ6vGllQ2Vrj9csiCo/WkQsA+ZKnWb70u3cc8R2aSA/MtmQa1FgOC1OZ oO6PKrVSXfz9EglqkApr592s9RF+mk38fpOCHj0UQGAuCyP11DN394alD8z/Z1Be G8i/NggS4wggn3ltb7InZvLQ/mrmT0amjOBGlxhU3Py4Dmmk2BDaRp+aCHCjvCIt ekJg+AVx64vOSU7au+D1Gr0CHQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFKnNQ1Xv F6c0XbCS9sbylJcwSlcnMB8GA1UdIwQYMBaAFD4pzm9qfblLbQkTO3P+1S3e4S2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI4NS9GRDY0RjBCODM0 MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVVdHRDUk03Y183VkxkN2hM YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bpbk9iMnA5dVV0dENSTTdjXzdWTGQ3aExhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyODUvRkQ2NEYwQjgzNDBDMTFFOTk2NkM1QTc2QzRGOUFFMDIvREM4MzQ3OEVF QjAzMTFFRDg3NURENzJFQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAM BAIAATAGAwQBZ9EEMBoEAgACMBQwEgMHACQGvwAAAQMHACQGvwAAAjANBgkqhkiG 9w0BAQsFAAOCAQEAw1Guk35+h0uH7LuR+JlCDLXvFgmrxVW7WWO1+37k4Ix7LrYf myduEenyjUopf56sIFMvD94dCm8r4fCUvHwN/eEngMNgVnT/Fwxv3F76pZhrx9qs RJQtupi/CiMiyLILJA3ks/4OWCizLfxUB/lCbnUyQuwl5uk9voYopeZaJmsccPs2 W/SIPkKg3dAl+5i4u7pH4UlYBaJf+IaaiKk5p7ValVFcER+vsP7LgtEDzniAZeTV urRirESV7hPS8CHLboLAxTx0otyioYd9kbKoIO0YbNy2CR48gkAK+sxT9H5VV/yu ddmU4eWxJokFW6oR++Ohyqd0N62B+u4/oJjPZQ== -----END CERTIFICATE-----Generated at Mon Mar 2 17:54:53 2026 by rpki-client