$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa File: 99DF3B20183A11EBB9F78E80C4F9AE02.roa (raw, json) Hash identifier: IQn111u6z6qLHojmECWDC2x1tW//DdSaFa0X28b5D0o= Subject key identifier: 7E:5C:2D:37:EB:42:D3:A0:53:FB:F4:68:02:08:CD:2E:79:EF:63:5D Certificate issuer: /CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Certificate serial: 0838 Authority key identifier: BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:29:28 +0000 ROA not before: Fri 20 Feb 2026 21:18:20 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 19905 IP address blocks: 103.225.112.0/24 maxlen: 24 103.225.113.0/24 maxlen: 24 103.225.114.0/24 maxlen: 24 103.225.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2779, serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Validity Not Before: Feb 20 21:18:20 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a57498-f06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f5:de:51:be:06:cc:40:64:5d:f3:64:3a:86: 45:c7:df:26:2c:77:fe:b4:75:f5:8a:bd:94:47:0f: 80:47:0f:de:3c:e7:ff:47:69:c2:be:e6:da:ad:60: 09:07:ea:47:e6:0c:90:84:9b:2f:f9:67:52:1e:96: 81:05:09:28:65:b5:fd:03:0a:54:60:23:03:5b:4e: b4:2a:46:53:ec:4a:a3:e5:98:60:a0:f2:2f:46:9e: eb:81:33:20:82:3f:70:73:3c:77:c7:3a:f2:fb:a7: a9:55:1b:5d:56:89:25:c0:ec:e6:52:1f:02:51:b4: 8f:68:da:71:8f:81:92:c2:16:0d:cd:10:86:46:8e: 02:18:8a:79:d2:7b:a2:b6:46:2a:63:63:d6:40:8e: 16:80:77:ba:4c:be:79:82:be:0a:b5:41:b2:b5:79: 53:6d:24:5f:5f:67:96:44:ae:b6:ac:45:63:2d:94: d3:19:99:1c:8d:6d:98:b4:81:f2:d8:3d:33:cc:61: 3e:5a:b7:54:39:f5:c2:2b:bf:71:90:de:ab:3e:c4: fb:5f:a8:ba:e4:df:8b:6d:24:04:54:3e:23:0a:7d: c5:ba:32:19:d4:9b:79:75:7c:3b:2e:e5:df:3d:42: 93:eb:ae:8c:38:6a:4e:d3:fc:2d:f6:3c:6a:0c:06: d5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5C:2D:37:EB:42:D3:A0:53:FB:F4:68:02:08:CD:2E:79:EF:63:5D X509v3 Authority Key Identifier: keyid:BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.225.112.0/22 Signature Algorithm: sha256WithRSAEncryption b1:80:62:6b:09:c6:30:2d:01:28:f5:a2:2b:6d:83:54:22:3d: d5:e5:77:a0:3d:4b:37:09:49:22:6a:32:f6:d6:e3:f8:84:4b: c0:c3:a5:44:f9:06:8a:88:5e:7d:dc:9c:5b:a4:44:29:8f:fe: b4:92:32:b6:64:ae:5e:a8:b5:43:5d:43:87:c1:0d:06:24:96: 00:7d:e8:24:f7:a7:08:5f:5d:57:1f:9d:20:be:94:f6:94:98: c4:29:bc:10:36:2b:19:ed:d3:1a:a1:b1:bd:e7:cd:ff:5f:ab: 6a:bd:0a:fe:cc:e2:e9:ab:f0:e8:a4:c7:77:c5:4b:27:9b:d4: 9a:4e:eb:bc:56:e2:b1:e1:6e:c9:5c:a4:53:61:87:d0:75:71: 1b:86:69:1d:e4:82:97:8c:55:22:8a:65:ba:36:6a:c4:8e:61: 2a:2a:2a:94:62:de:8f:26:7b:07:47:d5:17:34:c1:68:48:cc: 17:91:f3:0f:14:29:c3:e5:13:87:3d:08:79:a2:80:d4:1c:28: bc:ff:46:5c:c9:2b:ce:f4:f5:80:5e:71:7f:5e:9c:de:15:2f: 51:b5:26:c7:a3:d8:9f:6b:d6:89:0d:f8:d4:2c:0e:da:80:93: 4b:4a:33:89:ef:9f:5a:24:73:98:0a:dc:67:f9:8d:72:72:76: 41:2c:5e:24 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3NzkxMTAvBgNVBAUTKEJCMDNCOEQyNDQ3RUY4MTNBMzdBOTU4Nzc2NkEwMUY3 MzU5REQ3NDAwHhcNMjYwMjIwMjExODIwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ5OC1mMDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfXeUb4GzEBkXfNkOoZFx98mLHf+tHX1ir2URw+ARw/ePOf/R2nCvubarWAJ B+pH5gyQhJsv+WdSHpaBBQkoZbX9AwpUYCMDW060KkZT7Eqj5ZhgoPIvRp7rgTMg gj9wczx3xzry+6epVRtdVoklwOzmUh8CUbSPaNpxj4GSwhYNzRCGRo4CGIp50nui tkYqY2PWQI4WgHe6TL55gr4KtUGytXlTbSRfX2eWRK62rEVjLZTTGZkcjW2YtIHy 2D0zzGE+WrdUOfXCK79xkN6rPsT7X6i65N+LbSQEVD4jCn3FujIZ1Jt5dXw7LuXf PUKT666MOGpO0/wt9jxqDAbVKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH5cLTfr QtOgU/v0aAIIzS5572NdMB8GA1UdIwQYMBaAFLsDuNJEfvgTo3qVh3ZqAfc1nddA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjc3OS84OTAyNDk5NDE4 MzcxMUVCODA2NEIwN0FDNEY5QUUwMi91d080MGtSLS1CT2plcFdIZG1vQjl6V2Qx MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3TzQwa1ItLUJPamVwV0hkbW9COXpXZDEwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI3NzkvODkwMjQ5OTQxODM3MTFFQjgwNjRCMDdBQzRGOUFFMDIvOTlERjNCMjAx ODNBMTFFQkI5Rjc4RTgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+FwMA0GCSqGSIb3DQEBCwUAA4IBAQCxgGJrCcYwLQEo9aIrbYNU Ij3V5XegPUs3CUkiajL21uP4hEvAw6VE+QaKiF593JxbpEQpj/60kjK2ZK5eqLVD XUOHwQ0GJJYAfegk96cIX11XH50gvpT2lJjEKbwQNisZ7dMaobG9583/X6tqvQr+ zOLpq/DopMd3xUsnm9SaTuu8VuKx4W7JXKRTYYfQdXEbhmkd5IKXjFUiimW6NmrE jmEqKiqUYt6PJnsHR9UXNMFoSMwXkfMPFCnD5ROHPQh5ooDUHCi8/0ZcySvO9PWA XnF/XpzeFS9RtSbHo9ifa9aJDfjULA7agJNLSjOJ759aJHOYCtxn+Y1ycnZBLF4k -----END CERTIFICATE-----Generated at Mon Mar 2 19:50:15 2026 by rpki-client