$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa File: F3529CDCAE1511EE92D99E46C4F9AE02.roa (raw, json) Hash identifier: /Luy/+jPgTFAJ0u6yblGkfclRN3VgeWuxtxYFg+WKb8= Subject key identifier: DD:6A:43:9D:41:1E:26:D7:BF:64:EA:04:C5:E9:BA:6B:D2:93:0E:94 Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0CEA Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:41:07 +0000 ROA not before: Wed 14 Jan 2026 18:16:06 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17471 IP address blocks: 103.7.112.0/22 maxlen: 24 122.99.96.0/21 maxlen: 24 202.125.64.0/20 maxlen: 24 203.83.160.0/19 maxlen: 24 203.191.32.0/23 maxlen: 24 2407:f040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Jan 14 18:16:06 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45003-5ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ca:c9:e4:ba:c1:ca:47:19:c1:26:98:b0:58: 01:f4:0b:78:80:01:5e:8c:ba:6d:14:fc:a6:0f:c0: 22:c7:8c:94:3f:1a:b8:cf:a7:79:68:8a:f5:c9:c3: b1:5f:33:0e:f5:4e:c7:cd:72:e1:09:68:68:cd:d1: 50:81:37:9d:1c:53:ff:c0:41:50:86:73:4b:6e:c5: d9:62:b3:83:ae:a4:dd:a7:0c:57:50:05:9c:c8:f8: a5:10:eb:f3:bf:cf:8f:c8:ea:7d:41:7b:d1:1a:80: c5:f4:56:f2:bd:f1:52:ff:94:e3:d4:f3:21:6a:c8: 02:db:7a:38:5e:a6:ea:00:e2:c7:b2:2f:12:37:63: ae:70:1c:2c:0b:ee:a5:1a:10:dc:dd:3d:47:3a:fa: c3:4f:7f:a6:ac:54:6c:e2:41:18:dd:03:8a:8e:a3: b8:f1:0b:03:bc:48:99:b6:8c:21:22:4a:fc:eb:9d: 0c:a4:d8:43:a9:a6:0c:da:7b:a4:95:79:7e:eb:bb: 02:54:66:0e:af:f5:14:a2:9c:e5:ab:7b:dc:64:73: d8:a3:c9:e9:75:96:69:5d:99:7a:6c:d8:df:ea:2e: 7b:68:b9:b9:f5:56:75:88:68:17:c9:02:a1:39:20: fe:22:3b:59:9b:c1:7f:b0:07:7b:2b:79:e7:e0:80: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6A:43:9D:41:1E:26:D7:BF:64:EA:04:C5:E9:BA:6B:D2:93:0E:94 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.7.112.0/22 122.99.96.0/21 202.125.64.0/20 203.83.160.0/19 203.191.32.0/23 IPv6: 2407:f040::/32 Signature Algorithm: sha256WithRSAEncryption a0:d9:e6:7f:9e:ea:85:59:7d:54:6e:10:0a:1b:92:ae:b2:3e: 87:35:8a:0c:33:ee:ce:51:e1:2d:e5:48:79:26:0a:c5:ba:f3: 34:c8:bb:cb:22:31:30:66:26:e5:30:da:ae:84:62:60:f0:50: d9:65:15:a0:d3:76:11:fb:4f:53:e8:35:6d:42:24:97:ec:0c: 59:ab:e7:5a:6b:ed:13:bc:b2:32:a6:07:cc:81:64:2a:cc:2a: fe:01:42:42:42:08:0d:2e:17:a7:b7:54:6c:b5:92:2e:cf:81: 66:64:a3:8f:a1:c5:e6:6f:53:89:99:59:9d:36:30:fd:56:d6: 7a:d6:49:a8:3e:a0:8d:ee:ca:40:75:fb:c1:06:19:2a:e9:64: 11:b4:ae:da:43:2c:77:de:04:bb:e3:1a:0d:63:1d:33:7a:de: 06:14:c6:0e:54:2c:60:5f:08:14:48:73:2b:0b:7a:7e:9b:9d: 76:80:ef:14:bf:22:4b:81:c0:7b:1a:a9:17:2d:6d:0b:01:b1: 86:64:c7:97:9d:7f:cd:fe:26:5c:32:6f:47:51:a1:1e:e7:5f: eb:b8:ef:35:22:fc:be:54:72:44:31:03:81:41:4d:35:5f:92: c9:39:b6:6b:d9:61:5f:ff:4e:64:23:60:de:ad:4c:e1:39:a5: c3:34:e7:59 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjYwMTE0MTgxNjA2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTAwMy01Y2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5crJ5LrBykcZwSaYsFgB9At4gAFejLptFPymD8Aix4yUPxq4z6d5aIr1ycOx XzMO9U7HzXLhCWhozdFQgTedHFP/wEFQhnNLbsXZYrODrqTdpwxXUAWcyPilEOvz v8+PyOp9QXvRGoDF9FbyvfFS/5Tj1PMhasgC23o4XqbqAOLHsi8SN2OucBwsC+6l GhDc3T1HOvrDT3+mrFRs4kEY3QOKjqO48QsDvEiZtowhIkr8650MpNhDqaYM2nuk lXl+67sCVGYOr/UUopzlq3vcZHPYo8npdZZpXZl6bNjf6i57aLm59VZ1iGgXyQKh OSD+IjtZm8F/sAd7K3nn4IAZdwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFN1qQ51B HibXv2TqBMXpumvSkw6UMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzNDUvRUM3OENEREEwNTM4MTFFQUI1ODk3NjY4QzRGOUFFMDIvRjM1MjlDRENB RTE1MTFFRTkyRDk5RTQ2QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZwdwAwQDemNgAwQEyn1AAwQFy1OgAwQBy78gMA0EAgACMAcDBQAk B/BAMA0GCSqGSIb3DQEBCwUAA4IBAQCg2eZ/nuqFWX1UbhAKG5Kusj6HNYoMM+7O UeEt5Uh5JgrFuvM0yLvLIjEwZiblMNquhGJg8FDZZRWg03YR+09T6DVtQiSX7AxZ q+daa+0TvLIypgfMgWQqzCr+AUJCQggNLhent1RstZIuz4FmZKOPocXmb1OJmVmd NjD9VtZ61kmoPqCN7spAdfvBBhkq6WQRtK7aQyx33gS74xoNYx0zet4GFMYOVCxg XwgUSHMrC3p+m512gO8UvyJLgcB7GqkXLW0LAbGGZMeXnX/N/iZcMm9HUaEe51/r uO81Ivy+VHJEMQOBQU01X5LJObZr2WFf/05kI2DerUzhOaXDNOdZ -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:34 2026 by rpki-client