$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa File: B01A5D448A0E11EAA8C40916C4F9AE02.roa (raw, json) Hash identifier: uL14OpfP32+5y3tA0ivSjK4NgQZZVX7Ob3/KlBQRVf0= Subject key identifier: 1E:0D:5A:2E:D1:B4:B8:CA:7B:6E:E5:B1:0D:D3:73:FF:E9:25:BE:E0 Certificate issuer: /CN=A91D83B3/serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Certificate serial: 0A2E Authority key identifier: 5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:02:08 +0000 ROA not before: Sat 08 Nov 2025 19:10:31 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58895 IP address blocks: 103.129.140.0/22 maxlen: 22 103.129.140.0/24 maxlen: 24 103.129.141.0/24 maxlen: 24 103.129.142.0/24 maxlen: 24 103.129.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2606 (0xa2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83B3, serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Validity Not Before: Nov 8 19:10:31 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a446e0-de7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:95:ef:2b:f2:91:04:73:a6:f3:c3:54:96:d4: 8f:76:89:f1:02:2d:96:3a:93:f5:b9:85:6d:d0:3f: b9:b4:b6:0a:fb:fe:19:ad:f0:b1:d7:32:f5:bf:18: 16:55:bc:aa:5d:62:ad:e4:48:9d:ad:6a:a8:32:47: 7e:bb:c9:3f:40:97:cd:8c:86:8d:84:4e:33:5a:6b: 2a:a7:75:53:7a:61:f8:8d:33:49:57:c8:be:ec:33: 40:0d:3b:13:28:cc:3c:89:5f:e2:f1:6b:27:7b:13: b5:1d:fc:45:3a:a6:37:fe:e6:5f:e0:80:73:bf:89: ea:27:e3:b3:44:8d:33:9d:68:2a:e6:80:8a:b6:d0: 3c:7c:a4:26:72:79:c0:1c:6d:79:bb:e7:85:98:e5: 75:80:51:31:6a:1e:4e:22:cf:f4:a3:7d:01:b3:e0: 03:ba:44:67:8e:e2:6a:14:4f:80:ff:29:e0:c4:d6: 15:6d:66:51:25:79:ec:8b:39:5b:4d:ac:6a:11:51: 40:2d:f9:14:97:58:35:0f:9f:a3:2f:c7:5d:83:c1: da:a9:7b:1c:5a:c8:8b:53:54:63:46:b7:0a:ad:5a: c2:6c:ae:a4:2f:1c:19:51:0a:30:53:9d:d6:ed:a3: 87:e8:d3:89:86:30:24:e6:a7:c9:38:08:b3:82:19: b2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0D:5A:2E:D1:B4:B8:CA:7B:6E:E5:B1:0D:D3:73:FF:E9:25:BE:E0 X509v3 Authority Key Identifier: keyid:5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.129.140.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:4b:ad:b4:19:41:c6:05:51:a4:ae:75:37:dc:38:fd:ee:57: 69:d9:df:4b:1f:ff:44:5c:19:9f:ac:69:0f:3f:8f:0a:a8:f2: ae:cd:bf:22:02:84:27:1d:74:3b:81:a9:05:cf:b2:bb:21:ba: 5a:47:7c:2e:6e:b9:28:a8:5f:8e:d1:68:07:30:87:97:ce:03: fc:f4:91:92:7d:d6:36:ae:29:d3:24:83:79:de:ad:4d:58:87: e7:b5:2d:d8:33:f3:cb:b4:cd:45:c9:ae:1f:96:83:db:14:b4: 96:68:40:7d:a8:71:44:d8:e4:04:ea:09:03:f7:ea:34:80:20: 7c:43:e2:96:2a:4e:18:72:9a:0a:c5:c4:d3:44:53:4b:f3:61: 44:e2:97:f6:26:59:28:d4:87:94:7d:d8:a2:f4:88:8c:6f:05: 59:d3:bb:0d:3b:a5:80:21:ef:ae:9d:8f:11:9c:59:5e:7e:dd: a4:7a:3a:21:7a:1b:7c:d3:f5:4a:80:52:4c:72:47:4c:06:56: db:83:83:5d:8b:38:4a:c6:14:94:05:a1:0f:53:fc:df:82:35: 3f:0b:8c:6a:b5:50:a9:d8:59:a1:29:c0:d4:fa:82:91:a8:34: f2:03:1c:52:d0:ce:d6:d1:95:5d:20:e7:ab:6a:af:af:c5:dd: 79:b1:7a:3a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzQjMxMTAvBgNVBAUTKDVFMDU3NDQ2QzQ5NjFFNEQyNkMzN0ZGRUE4QUMzRjdB QUREODNCMzIwHhcNMjUxMTA4MTkxMDMxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDZlMC1kZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5XvK/KRBHOm88NUltSPdonxAi2WOpP1uYVt0D+5tLYK+/4ZrfCx1zL1vxgW VbyqXWKt5EidrWqoMkd+u8k/QJfNjIaNhE4zWmsqp3VTemH4jTNJV8i+7DNADTsT KMw8iV/i8WsnexO1HfxFOqY3/uZf4IBzv4nqJ+OzRI0znWgq5oCKttA8fKQmcnnA HG15u+eFmOV1gFExah5OIs/0o30Bs+ADukRnjuJqFE+A/yngxNYVbWZRJXnsizlb TaxqEVFALfkUl1g1D5+jL8ddg8HaqXscWsiLU1RjRrcKrVrCbK6kLxwZUQowU53W 7aOH6NOJhjAk5qfJOAizghmyJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB4NWi7R tLjKe27lsQ3Tc//pJb7gMB8GA1UdIwQYMBaAFF4FdEbElh5NJsN//qisP3qt2Dsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNCMy9BM0QzRDgyMjhB MEQxMUVBQTUwNTk3MTRDNEY5QUUwMi9YZ1YwUnNTV0hrMG13M18tcUt3X2VxM1lP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hnVjBSc1NXSGswbXczXy1xS3dfZXEzWU96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzQjMvQTNEM0Q4MjI4QTBEMTFFQUE1MDU5NzE0QzRGOUFFMDIvQjAxQTVENDQ4 QTBFMTFFQUE4QzQwOTE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4GMMA0GCSqGSIb3DQEBCwUAA4IBAQBaS620GUHGBVGkrnU33Dj9 7ldp2d9LH/9EXBmfrGkPP48KqPKuzb8iAoQnHXQ7gakFz7K7IbpaR3wubrkoqF+O 0WgHMIeXzgP89JGSfdY2rinTJIN53q1NWIfntS3YM/PLtM1Fya4floPbFLSWaEB9 qHFE2OQE6gkD9+o0gCB8Q+KWKk4YcpoKxcTTRFNL82FE4pf2Jlko1IeUfdii9IiM bwVZ07sNO6WAIe+unY8RnFleft2kejoheht80/VKgFJMckdMBlbbg4NdizhKxhSU BaEPU/zfgjU/C4xqtVCp2FmhKcDU+oKRqDTyAxxS0M7W0ZVdIOeraq+vxd15sXo6 -----END CERTIFICATE-----Generated at Mon Mar 2 15:01:18 2026 by rpki-client