$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa File: C5AFD098167311F0916F5435C4F9AE02.roa (raw, json) Hash identifier: WF4BdfrjlUEbgLanwPar/SCOH9ZwGY05ZV/+90DJ4oY= Subject key identifier: B6:A7:01:06:F5:75:9E:29:8F:27:48:9D:28:66:C7:5D:31:B3:08:56 Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: 022C Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:31:49 +0000 ROA not before: Tue 03 Jun 2025 04:01:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17828 IP address blocks: 103.20.76.0/22 maxlen: 22 202.58.128.0/22 maxlen: 22 202.165.192.0/20 maxlen: 24 2001:c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA, serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Validity Not Before: Jun 3 04:01:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3eb65-5b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:ac:d3:8c:51:33:a8:73:7e:63:1d:6d:ca: c6:71:b7:6f:8c:f6:b9:3d:cf:fc:8c:a3:7c:d4:da: 37:28:37:4d:c1:f9:a1:b0:4d:84:59:e7:f5:7d:ce: 8c:39:47:16:d3:03:29:cf:03:ca:a6:ad:91:2b:70: bd:0f:03:8d:7d:f4:6c:7b:0b:86:20:78:ff:dd:a2: 73:94:0d:5b:d9:e8:94:f2:37:35:3d:b7:fa:4f:08: ff:4b:78:fb:1b:fe:f8:c0:69:3e:91:8f:4c:52:85: 4d:c1:e5:59:af:89:27:a2:5e:d3:46:e0:3a:1e:6a: 10:86:bd:9e:02:e7:0b:0e:87:95:b3:4d:1f:62:65: c8:37:14:87:b9:3c:b7:8b:4a:68:ff:43:1d:6f:41: 26:9d:5d:5f:de:3f:be:bb:e7:00:11:cd:41:7c:2d: 80:a5:9a:40:e7:11:71:9f:84:ae:dd:c0:56:e7:e0: b8:95:15:6f:ad:bd:cc:9c:4d:55:f1:40:2f:32:3a: 5e:d8:97:39:47:05:91:ee:0f:8e:4a:ac:c5:47:71: e8:e2:6e:35:79:95:36:c1:57:fd:b9:cb:3b:43:b7: f0:40:a2:c1:a9:43:2a:91:53:cc:85:77:a6:6c:c7: d9:59:dc:f5:d7:ae:fd:35:7c:07:63:37:56:71:ed: 23:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A7:01:06:F5:75:9E:29:8F:27:48:9D:28:66:C7:5D:31:B3:08:56 X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/C5AFD098167311F0916F5435C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.20.76.0/22 202.58.128.0/22 202.165.192.0/20 IPv6: 2001:c60::/32 Signature Algorithm: sha256WithRSAEncryption 32:c9:58:e6:4a:2a:dd:7b:a4:56:37:b5:05:66:f1:e1:19:96: 33:b5:b0:8e:e3:66:2d:b5:f9:e2:f2:57:78:47:10:92:9c:0b: e4:6a:ee:46:8e:a1:49:3f:c6:b3:fa:d2:ea:f5:ad:ac:90:c8: 36:ca:55:93:b1:07:0a:2d:38:4f:69:61:30:57:70:dd:27:d7: f4:d4:90:8f:eb:96:c3:17:04:d7:0b:70:33:d5:b5:6b:9c:bc: 93:ca:af:e3:b1:f1:1c:de:e9:db:37:31:9e:1d:6a:c9:4a:b5: bd:b1:8c:fc:cf:ef:e0:2a:01:db:c1:8e:75:cc:75:b4:e5:96: 8c:65:81:48:be:3c:a2:8f:b0:9f:6c:3b:85:16:98:9c:d2:15: 46:df:0c:70:3a:75:d9:a0:bc:ba:b9:31:26:da:7e:72:1b:e7: fe:6a:b7:66:a6:73:dc:4e:fa:27:51:f7:d5:41:f7:ed:35:d5: d9:4a:7e:65:69:b6:fa:8c:1e:ed:4b:70:93:c1:6e:7d:75:1d: 73:39:11:f6:a7:51:ab:bc:39:1f:0c:cc:e9:8c:e1:c6:bd:83: 62:f5:d2:df:0c:dc:f8:8e:a6:5f:b7:d5:c7:c5:49:d8:72:f0: 50:9f:f4:ff:e2:e4:0a:d8:c3:98:43:44:22:3c:87:e3:2a:c8: 66:cb:79:f6 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjUwNjAzMDQwMTI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWI2NS01YjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07is04xRM6hzfmMdbcrGcbdvjPa5Pc/8jKN81No3KDdNwfmhsE2EWef1fc6M OUcW0wMpzwPKpq2RK3C9DwONffRsewuGIHj/3aJzlA1b2eiU8jc1Pbf6Twj/S3j7 G/74wGk+kY9MUoVNweVZr4knol7TRuA6HmoQhr2eAucLDoeVs00fYmXINxSHuTy3 i0po/0Mdb0EmnV1f3j++u+cAEc1BfC2ApZpA5xFxn4Su3cBW5+C4lRVvrb3MnE1V 8UAvMjpe2Jc5RwWR7g+OSqzFR3Ho4m41eZU2wVf9ucs7Q7fwQKLBqUMqkVPMhXem bMfZWdz11679NXwHYzdWce0jwQIDAQABo4ICezCCAncwHQYDVR0OBBYEFLanAQb1 dZ4pjydInShmx10xswhWMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEwQUEvODJCQkI1NTIwMDNEMTFFRTk2MDhGMTQ3QzRGOUFFMDIvQzVBRkQwOTgx NjczMTFGMDkxNkY1NDM1QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZxRMAwQCyjqAAwQEyqXAMA0EAgACMAcDBQAgAQxgMA0GCSqGSIb3 DQEBCwUAA4IBAQAyyVjmSirde6RWN7UFZvHhGZYztbCO42Yttfni8ld4RxCSnAvk au5GjqFJP8az+tLq9a2skMg2ylWTsQcKLThPaWEwV3DdJ9f01JCP65bDFwTXC3Az 1bVrnLyTyq/jsfEc3unbNzGeHWrJSrW9sYz8z+/gKgHbwY51zHW05ZaMZYFIvjyi j7CfbDuFFpic0hVG3wxwOnXZoLy6uTEm2n5yG+f+ardmpnPcTvonUffVQfftNdXZ Sn5labb6jB7tS3CTwW59dR1zORH2p1GrvDkfDMzpjOHGvYNi9dLfDNz4jqZft9XH xUnYcvBQn/T/4uQK2MOYQ0QiPIfjKshmy3n2 -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:09 2026 by rpki-client