$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/44B3B572011611EA972FFC57C4F9AE02.roa File: 44B3B572011611EA972FFC57C4F9AE02.roa (raw, json) Hash identifier: 3w1ZCU5DBe8qob2yfo+1JFPIsMpuEFgSBiA3mSkvjmQ= Subject key identifier: 65:BA:E2:01:E8:07:F6:C7:56:28:68:6E:42:94:79:74:FE:2B:D7:F3 Certificate issuer: /CN=A91DE8C5/serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Certificate serial: 0CF7 Authority key identifier: EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/44B3B572011611EA972FFC57C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:35:23 +0000 ROA not before: Sat 04 Oct 2025 18:18:03 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132829 IP address blocks: 103.123.28.0/24 maxlen: 24 103.123.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3319 (0xcf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8C5, serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Validity Not Before: Oct 4 18:18:03 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45cba-4fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7c:b7:1a:62:45:8b:0a:a5:64:b3:f7:42:8c: 67:34:fd:35:96:a7:1f:53:f0:d3:83:6d:d1:8e:96: ac:f3:6e:1e:d2:e2:ba:ed:cc:f3:47:5b:b9:4b:d8: 04:1d:78:4b:77:44:7e:9e:9f:28:90:e0:0a:83:31: a7:0f:33:dc:4c:cb:dd:98:a7:65:30:bd:be:f1:80: 78:de:4f:0b:87:0d:9f:8b:2a:f4:82:ad:fb:0f:73: 1f:20:e9:e8:bb:b2:81:37:84:8d:41:0d:55:60:e6: 4e:51:c8:1d:a3:ba:52:be:b3:20:22:cb:d7:62:02: c0:33:4c:10:1a:9f:15:7f:45:37:ba:b6:69:c7:1c: 27:15:4b:c7:29:a8:b6:b4:60:b8:81:be:87:2d:d8: 22:05:b5:b5:69:7b:ed:c2:d5:2a:76:32:ee:ba:97: d5:4c:61:4f:aa:62:45:2d:bf:3c:63:1e:91:e9:71: 92:09:56:d7:22:d8:1e:cb:6e:f0:ca:1c:99:e9:4e: 41:a0:48:84:4f:13:96:5a:23:9d:d4:fb:15:43:9a: 4c:33:b2:cf:2d:28:f7:62:b4:13:c5:1d:7a:cb:1b: d0:a7:6e:4c:6a:e3:01:52:11:5e:f9:60:94:bb:7a: ea:c3:28:50:69:22:73:da:eb:c2:15:19:73:49:82: 16:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BA:E2:01:E8:07:F6:C7:56:28:68:6E:42:94:79:74:FE:2B:D7:F3 X509v3 Authority Key Identifier: keyid:EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/44B3B572011611EA972FFC57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.123.28.0/23 Signature Algorithm: sha256WithRSAEncryption 18:39:91:8c:94:b4:f5:a7:26:0d:fe:bf:69:2f:4e:f9:cf:65: 43:e9:44:0a:87:e1:49:53:4f:85:f5:57:89:9a:ae:1c:27:0a: fc:3e:53:90:8e:b5:b6:c2:f7:54:e3:40:53:83:be:ac:50:6e: 97:66:52:68:e1:2c:ab:8a:39:5e:b8:15:db:39:38:9a:e3:9f: 9e:28:6d:2c:df:e0:5d:1c:ca:be:8c:cc:b5:60:19:2b:e8:61: 1e:a7:d4:86:d1:0b:5d:e5:70:2a:eb:92:5f:d2:8b:62:f2:d2: ae:9a:a0:77:1f:81:b3:73:2d:90:54:3d:9c:0b:e2:91:d4:e3: bd:bd:95:b6:3c:d4:d9:a3:d1:8e:5f:f7:a2:a2:38:e5:72:c4: ba:ad:f5:bf:29:57:60:f7:6e:d3:63:88:c1:43:ab:c8:a0:38: f6:01:bd:30:a5:00:31:79:65:78:35:31:6a:74:3a:e6:66:22: c5:31:c9:fb:9b:fb:60:d9:03:34:57:2e:87:46:b3:e5:a1:ea: 68:6a:8a:b7:7f:6a:e4:26:12:4c:12:1d:ae:30:3e:17:1b:88: 49:8a:9e:18:86:7f:f9:55:30:55:d3:dd:c9:15:ed:a1:d6:22: 6d:90:52:ea:91:5a:82:29:12:e1:f6:cd:f6:49:7c:3c:c4:76: f3:d9:ec:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QzUxMTAvBgNVBAUTKEVGOTVDQkQ1OTgzNTI2NDBENDJCMEFBQzYwMDA0MTA2 NUI0REM0NDIwHhcNMjUxMDA0MTgxODAzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWNiYS00ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13y3GmJFiwqlZLP3QoxnNP01lqcfU/DTg23Rjpas824e0uK67czzR1u5S9gE HXhLd0R+np8okOAKgzGnDzPcTMvdmKdlML2+8YB43k8Lhw2fiyr0gq37D3MfIOno u7KBN4SNQQ1VYOZOUcgdo7pSvrMgIsvXYgLAM0wQGp8Vf0U3urZpxxwnFUvHKai2 tGC4gb6HLdgiBbW1aXvtwtUqdjLuupfVTGFPqmJFLb88Yx6R6XGSCVbXItgey27w yhyZ6U5BoEiETxOWWiOd1PsVQ5pMM7LPLSj3YrQTxR16yxvQp25MauMBUhFe+WCU u3rqwyhQaSJz2uvCFRlzSYIWjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGW64gHo B/bHVihobkKUeXT+K9fzMB8GA1UdIwQYMBaAFO+Vy9WYNSZA1CsKrGAAQQZbTcRC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThDNS8wNTJDODRGQzAx MTUxMUVBQTk4QTYyNTVDNEY5QUUwMi83NVhMMVpnMUprRFVLd3FzWUFCQkJsdE54 RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1WEwxWmcxSmtEVUt3cXNZQUJCQmx0TnhFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QzUvMDUyQzg0RkMwMTE1MTFFQUE5OEE2MjU1QzRGOUFFMDIvNDRCM0I1NzIw MTE2MTFFQTk3MkZGQzU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3scMA0GCSqGSIb3DQEBCwUAA4IBAQAYOZGMlLT1pyYN/r9pL075 z2VD6UQKh+FJU0+F9VeJmq4cJwr8PlOQjrW2wvdU40BTg76sUG6XZlJo4Syrijle uBXbOTia45+eKG0s3+BdHMq+jMy1YBkr6GEep9SG0Qtd5XAq65Jf0oti8tKumqB3 H4Gzcy2QVD2cC+KR1OO9vZW2PNTZo9GOX/eiojjlcsS6rfW/KVdg927TY4jBQ6vI oDj2Ab0wpQAxeWV4NTFqdDrmZiLFMcn7m/tg2QM0Vy6HRrPloepoaoq3f2rkJhJM Eh2uMD4XG4hJip4Yhn/5VTBV093JFe2h1iJtkFLqkVqCKRLh9s32SXw8xHbz2ezy -----END CERTIFICATE-----Generated at Mon Mar 2 10:24:38 2026 by rpki-client