$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa File: 21997AB0FEBC11E9B0463650C4F9AE02.roa (raw, json) Hash identifier: LxWjZ4LXU2rroDLjNNrREVBwHPXvckW6ycwQZhAcBaA= Subject key identifier: 94:32:CC:1C:67:E1:5C:AB:29:57:F3:3D:7E:21:B7:E7:86:E9:95:EE Certificate issuer: /CN=A91D8F57/serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Certificate serial: 0D02 Authority key identifier: 4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:40:15 +0000 ROA not before: Wed 14 Jan 2026 18:15:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137257 IP address blocks: 103.106.64.0/23 maxlen: 24 2402:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3330 (0xd02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8F57, serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Validity Not Before: Jan 14 18:15:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44fcf-6f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:36:67:62:38:60:64:64:5d:3e:33:9b:60:ce: 7d:8a:a6:4f:a5:96:89:9d:9d:3b:6f:86:8e:c5:a2: e8:f0:50:13:47:fa:24:52:42:f7:96:cd:4a:58:19: 70:2d:9a:5f:5e:3b:fd:6b:7e:ff:d1:26:09:ec:73: bd:06:0f:2e:88:5e:a8:da:83:14:0f:ca:8b:11:91: 14:d0:15:7b:01:45:5a:f3:05:a3:bd:16:34:19:b8: 1e:06:cc:74:c3:8c:0f:17:ce:28:52:16:12:41:58: 49:9f:f2:5b:49:fb:22:59:31:0a:a9:00:b6:ca:c6: 02:db:f5:93:aa:e9:44:9a:a5:b5:4e:ec:40:83:64: a2:49:8e:94:6b:1d:0c:0f:01:4c:80:9c:65:a6:74: af:87:6e:5c:e3:7b:b5:cc:eb:c1:3d:5b:ad:0c:d3: 27:87:a2:b6:f4:12:60:1b:a8:c5:0c:ca:36:41:39: 1f:c6:0d:33:0f:c9:ae:93:2a:e3:44:22:71:69:90: 6d:ee:a6:24:71:79:1a:99:e5:c9:e6:1f:df:85:37: 7d:29:a4:a2:ad:ef:7c:cb:b3:29:e0:a4:47:ec:9c: ec:19:c0:ec:a4:42:ad:bb:6b:ec:3a:85:fe:8e:f7: 5c:22:3c:35:d7:3d:53:df:33:20:6e:de:19:df:ae: a6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:32:CC:1C:67:E1:5C:AB:29:57:F3:3D:7E:21:B7:E7:86:E9:95:EE X509v3 Authority Key Identifier: keyid:4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.64.0/23 IPv6: 2402:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 60:9d:94:a7:01:d5:a2:5a:f5:0b:38:4f:9d:8e:07:e6:3e:fc: 5e:a0:38:98:19:36:ba:bf:8a:e9:fd:c8:f6:a7:97:0d:61:1d: 7c:0a:d8:2a:4f:7c:a2:a5:4d:81:84:d1:67:24:af:27:92:2d: d6:7a:8d:57:51:1f:50:ec:48:ff:5e:34:a7:42:3b:03:30:03: 88:72:4f:f0:c0:fc:82:55:8e:02:5c:91:89:04:5c:7d:8a:2c: 5c:64:b7:8c:18:2d:7f:c1:90:7d:fc:7c:61:e1:1e:b5:f6:ff: 01:bf:14:f0:21:33:07:f8:d3:89:86:b6:df:8f:bf:80:fa:7d: b9:8e:08:ec:6c:60:7c:5f:0a:b4:3a:fc:08:3b:15:f2:29:2d: 6b:e7:18:1c:0d:5e:11:a6:ad:e5:c0:af:07:0c:0d:c2:74:e4: ff:28:9a:cb:ec:4b:c2:0f:12:f6:56:1e:64:c0:28:41:81:e6: cc:d9:55:fa:b4:ac:45:cc:6a:2a:0f:20:4f:5a:20:02:de:99: a4:f4:af:a8:50:dc:87:9b:5a:21:48:74:88:43:88:08:d3:d1: c2:80:94:4d:0f:1d:94:c6:63:a0:ae:c0:24:2e:d2:ed:fc:d4: f1:8b:a0:ba:b4:71:d7:7c:f0:ff:20:71:b5:8d:66:c5:23:d2: e0:bb:99:8c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhGNTcxMTAvBgNVBAUTKDRGRUQzRDM3MjFBNzhBQjIwNDg2Q0RBRjM0QTNBRTY5 MTdEODdDQkUwHhcNMjYwMTE0MTgxNTQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGZjZi02ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDZnYjhgZGRdPjObYM59iqZPpZaJnZ07b4aOxaLo8FATR/okUkL3ls1KWBlw LZpfXjv9a37/0SYJ7HO9Bg8uiF6o2oMUD8qLEZEU0BV7AUVa8wWjvRY0GbgeBsx0 w4wPF84oUhYSQVhJn/JbSfsiWTEKqQC2ysYC2/WTqulEmqW1TuxAg2SiSY6Uax0M DwFMgJxlpnSvh25c43u1zOvBPVutDNMnh6K29BJgG6jFDMo2QTkfxg0zD8mukyrj RCJxaZBt7qYkcXkameXJ5h/fhTd9KaSire98y7Mp4KRH7JzsGcDspEKtu2vsOoX+ jvdcIjw11z1T3zMgbt4Z366mfwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJQyzBxn 4VyrKVfzPX4ht+eG6ZXuMB8GA1UdIwQYMBaAFE/tPTchp4qyBIbNrzSjrmkX2Hy+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEY1Ny80QzU5Rjk2NkZF QkExMUU5OUVEOTgyNENDNEY5QUUwMi9ULTA5TnlHbmlySUVoczJ2TktPdWFSZllm TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtMDlOeUduaXJJRWhzMnZOS091YVJmWWZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhGNTcvNEM1OUY5NjZGRUJBMTFFOTlFRDk4MjRDQzRGOUFFMDIvMjE5OTdBQjBG RUJDMTFFOUIwNDYzNjUwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2pAMA0EAgACMAcDBQAkAjzAMA0GCSqGSIb3DQEBCwUAA4IBAQBg nZSnAdWiWvULOE+djgfmPvxeoDiYGTa6v4rp/cj2p5cNYR18CtgqT3yipU2BhNFn JK8nki3Weo1XUR9Q7Ej/XjSnQjsDMAOIck/wwPyCVY4CXJGJBFx9iixcZLeMGC1/ wZB9/Hxh4R619v8BvxTwITMH+NOJhrbfj7+A+n25jgjsbGB8Xwq0OvwIOxXyKS1r 5xgcDV4Rpq3lwK8HDA3CdOT/KJrL7EvCDxL2Vh5kwChBgebM2VX6tKxFzGoqDyBP WiAC3pmk9K+oUNyHm1ohSHSIQ4gI09HCgJRNDx2UxmOgrsAkLtLt/NTxi6C6tHHX fPD/IHG1jWbFI9Lgu5mM -----END CERTIFICATE-----Generated at Mon Mar 2 09:06:24 2026 by rpki-client