$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa File: B3F0AAB8587211EAA4D4870FC4F9AE02.roa (raw, json) Hash identifier: aXpgZXW8Cnbr8t1kmvAwuXjiQ6a1hBE+IDI1VsUVDFk= Subject key identifier: F5:BF:40:C7:8F:61:85:0C:9E:EC:30:C5:65:0A:C0:33:44:81:2C:8B Certificate issuer: /CN=A91D6210/serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Certificate serial: 0B2E Authority key identifier: 8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:27:36 +0000 ROA not before: Mon 26 May 2025 19:53:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136515 IP address blocks: 103.91.140.0/22 maxlen: 22 103.91.140.0/24 maxlen: 24 103.91.141.0/24 maxlen: 24 103.91.142.0/24 maxlen: 24 103.91.143.0/24 maxlen: 24 123.253.48.0/22 maxlen: 22 123.253.48.0/24 maxlen: 24 123.253.49.0/24 maxlen: 24 123.253.50.0/24 maxlen: 24 123.253.51.0/24 maxlen: 24 2401:740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6210, serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Validity Not Before: May 26 19:53:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40687-70e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:88:82:a4:7d:66:5f:0e:be:73:c0:c8:f5:bb: 9a:18:74:c1:ba:ad:e1:3e:f7:96:1b:77:40:47:05: 02:a4:c3:f4:8c:3e:a4:56:e5:22:fa:fe:ad:19:6d: 67:70:e4:18:a4:d9:e7:3a:7f:38:d1:af:80:b7:56: 69:36:4c:f8:81:4f:18:eb:f6:ae:29:13:23:cb:9e: 47:b6:e1:de:ad:1e:7d:37:47:13:5b:14:9c:67:33: 5a:6a:3f:55:d7:28:39:f2:aa:67:09:ad:0f:9a:ea: b8:4f:a6:1f:cc:b0:04:64:9f:e0:48:6d:e6:c1:a2: 77:01:0c:86:e4:6f:24:e4:b8:46:3b:1e:03:87:13: 51:2a:b0:df:ea:91:14:e5:63:be:36:57:40:e3:07: 8c:bf:22:fd:01:9a:a1:d8:c7:e7:13:4e:a5:89:af: 21:12:56:f9:86:61:9e:b7:8e:bd:55:ff:c9:d9:02: 1e:4c:9f:49:30:98:a0:0c:9a:cc:17:3e:ab:dc:f9: 91:4e:9b:11:c6:88:b7:9e:82:a9:98:d2:9f:7e:ff: 46:ce:69:85:81:6e:73:2f:59:f0:a3:dd:64:06:38: 10:ef:7e:14:8f:c8:6e:d8:87:a7:58:62:a8:71:93: 46:a7:bf:da:9b:97:a4:06:25:f2:60:0c:6c:b0:0a: e8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BF:40:C7:8F:61:85:0C:9E:EC:30:C5:65:0A:C0:33:44:81:2C:8B X509v3 Authority Key Identifier: keyid:8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.140.0/22 123.253.48.0/22 IPv6: 2401:740::/32 Signature Algorithm: sha256WithRSAEncryption 16:c4:1e:13:e1:68:9f:69:e8:64:77:11:7e:56:4e:6f:75:1a: 3d:c2:f0:44:f9:f7:58:31:28:83:46:63:65:cc:b7:6d:61:8b: cc:b7:b6:2d:91:63:f3:2c:b9:ac:26:48:c3:d7:bd:17:58:13: 2e:ec:86:ce:0f:e4:b8:d8:c3:e8:d7:ab:7d:a4:e2:73:cc:ec: a3:45:0e:d2:38:f1:12:20:0b:a4:e3:d6:88:84:21:80:b1:2f: 33:a0:2d:24:db:bd:a7:a0:74:b3:4c:f4:43:e9:4d:3e:13:cd: ce:f4:c5:17:01:67:e7:9e:0c:e7:ba:8f:61:b9:d5:b2:ba:f0: f9:ea:2c:34:a8:3f:88:3a:e2:b1:8c:bf:2b:a5:15:f7:4d:53: b6:07:10:7d:a1:a1:75:80:d1:ca:cb:83:45:e5:25:2c:00:33: 70:a0:67:66:b5:2b:e0:ce:28:7f:36:08:09:f0:ef:55:f0:70: 33:52:81:fa:46:9b:aa:54:3e:64:f4:7c:28:ef:e9:ef:3f:38: 90:23:2f:99:89:22:16:7d:b3:6f:2c:0c:df:12:c6:9a:29:a2: b4:7d:ae:8c:eb:c4:33:dd:0e:86:95:c3:65:8c:6a:44:a6:0d: 95:75:3e:ea:41:e9:7e:6c:bb:8a:27:46:43:22:c5:fe:1b:ab: 5c:db:35:53 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYyMTAxMTAvBgNVBAUTKDhENDhBMEVFNTdFNjY0NzA5MEMyNEIzRDI1RkU1RkNB NkZBODA0RTEwHhcNMjUwNTI2MTk1MzM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDY4Ny03MGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYiCpH1mXw6+c8DI9buaGHTBuq3hPveWG3dARwUCpMP0jD6kVuUi+v6tGW1n cOQYpNnnOn840a+At1ZpNkz4gU8Y6/auKRMjy55HtuHerR59N0cTWxScZzNaaj9V 1yg58qpnCa0Pmuq4T6YfzLAEZJ/gSG3mwaJ3AQyG5G8k5LhGOx4DhxNRKrDf6pEU 5WO+NldA4weMvyL9AZqh2MfnE06lia8hElb5hmGet469Vf/J2QIeTJ9JMJigDJrM Fz6r3PmRTpsRxoi3noKpmNKffv9GzmmFgW5zL1nwo91kBjgQ734Uj8hu2IenWGKo cZNGp7/am5ekBiXyYAxssArobwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPW/QMeP YYUMnuwwxWUKwDNEgSyLMB8GA1UdIwQYMBaAFI1IoO5X5mRwkMJLPSX+X8pvqATh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjIxMC84OTA5MEY0NDU4 NzExMUVBQjM3RTA5MERDNEY5QUUwMi9qVWlnN2xmbVpIQ1F3a3M5SmY1ZnltLW9C T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVaWc3bGZtWkhDUXdrczlKZjVmeW0tb0JPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYyMTAvODkwOTBGNDQ1ODcxMTFFQUIzN0UwOTBEQzRGOUFFMDIvQjNGMEFBQjg1 ODcyMTFFQUE0RDQ4NzBGQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1uMAwQCe/0wMA0EAgACMAcDBQAkAQdAMA0GCSqGSIb3DQEBCwUA A4IBAQAWxB4T4WifaehkdxF+Vk5vdRo9wvBE+fdYMSiDRmNlzLdtYYvMt7YtkWPz LLmsJkjD170XWBMu7IbOD+S42MPo16t9pOJzzOyjRQ7SOPESIAuk49aIhCGAsS8z oC0k272noHSzTPRD6U0+E83O9MUXAWfnngznuo9hudWyuvD56iw0qD+IOuKxjL8r pRX3TVO2BxB9oaF1gNHKy4NF5SUsADNwoGdmtSvgzih/NggJ8O9V8HAzUoH6Rpuq VD5k9Hwo7+nvPziQIy+ZiSIWfbNvLAzfEsaaKaK0fa6M68Qz3Q6GlcNljGpEpg2V dT7qQel+bLuKJ0ZDIsX+G6tc2zVT -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:55 2026 by rpki-client