$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/5C5BA8365D6A11F081971E0DC4F9AE02.roa File: 5C5BA8365D6A11F081971E0DC4F9AE02.roa (raw, json) Hash identifier: eWfUJPT7rysoE+A/RHO5+fOl7+nF6IKYz9m7pfmsc24= Subject key identifier: 0E:F4:56:88:9B:42:A4:14:2B:E6:1E:B9:B6:51:54:82:7D:AE:D3:1F Certificate issuer: /CN=A91DEDC1/serialNumber=98242181A7554A28E78C1AE8A73BE279452CCBF4 Certificate serial: 7D Authority key identifier: 98:24:21:81:A7:55:4A:28:E7:8C:1A:E8:A7:3B:E2:79:45:2C:CB:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mCQhgadVSijnjBropzvieUUsy_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/5C5BA8365D6A11F081971E0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:10:08 +0000 ROA not before: Thu 10 Jul 2025 11:00:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6984 IP address blocks: 103.22.236.0/22 maxlen: 22 103.22.236.0/23 maxlen: 23 103.22.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/mCQhgadVSijnjBropzvieUUsy_Q.crl rsync://rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/mCQhgadVSijnjBropzvieUUsy_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mCQhgadVSijnjBropzvieUUsy_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEDC1, serialNumber=98242181A7554A28E78C1AE8A73BE279452CCBF4 Validity Not Before: Jul 10 11:00:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e650-c9fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ac:49:4f:b9:9d:7b:99:0a:a2:f0:68:67:aa: e3:01:a3:b8:4e:da:a6:c0:71:e5:5f:b5:08:80:bc: 77:3b:b3:3c:23:78:3a:30:c2:22:5b:da:bc:2e:fd: 3a:85:79:1d:10:33:8e:d9:f4:da:d0:36:2e:b1:e7: ff:8b:a4:93:d2:7c:35:cf:51:eb:06:40:c5:6f:07: c3:ab:26:86:6b:6e:71:c8:e1:d5:e1:e8:ed:c3:9b: 3b:59:f9:84:67:db:41:b0:5f:7c:f9:8a:0f:fe:0b: a5:22:a6:2a:68:6f:3c:72:f7:4e:be:a7:78:62:ed: e0:e1:f7:5d:76:ca:f8:f4:e3:8b:8e:69:22:27:d3: bd:e3:f4:4e:a6:fa:83:77:90:26:ac:6c:1c:92:0f: 49:e5:de:83:5e:54:d8:fb:c1:0b:3b:f1:3f:9f:98: 14:a5:25:b8:ed:07:67:67:d3:c2:2b:28:e4:0f:6a: 35:4d:cf:23:6d:6d:5e:b3:4b:32:b1:9a:73:d3:90: 5a:1d:31:40:4d:b7:73:b9:03:ce:cc:22:5c:de:a7: 0d:ea:81:b9:d8:66:29:95:d4:dc:ac:36:80:88:ab: c7:90:22:b0:3c:40:f2:94:81:ea:35:f1:f2:d1:c3: 32:27:3f:32:c7:9d:56:55:19:a9:aa:e3:3d:c9:4d: 5a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F4:56:88:9B:42:A4:14:2B:E6:1E:B9:B6:51:54:82:7D:AE:D3:1F X509v3 Authority Key Identifier: keyid:98:24:21:81:A7:55:4A:28:E7:8C:1A:E8:A7:3B:E2:79:45:2C:CB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/mCQhgadVSijnjBropzvieUUsy_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mCQhgadVSijnjBropzvieUUsy_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDC1/FD112B765D6911F0911D720CC4F9AE02/5C5BA8365D6A11F081971E0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.22.236.0/22 Signature Algorithm: sha256WithRSAEncryption 02:51:26:57:c1:81:2b:da:13:86:12:6d:34:77:90:61:43:72: 3c:b6:26:c5:1a:38:20:be:00:c8:3f:27:e8:dd:91:77:65:c1: 0f:d9:8b:bc:45:21:cc:5a:b2:7e:fb:7d:76:16:03:ce:66:9b: 5e:51:72:cc:58:e9:ac:1d:ed:8b:79:18:e8:79:ac:18:5a:b9: 8e:fa:ff:b2:e7:7b:26:47:ee:42:65:82:02:e7:ec:b6:3d:33: ea:a4:54:43:7f:af:3c:bf:b7:f4:89:10:c2:14:ed:7f:b0:94: 24:20:8e:4a:96:47:81:00:57:6d:92:46:e8:6d:d6:79:a7:57: aa:f6:76:47:51:7f:5b:5e:42:84:96:6b:cc:81:5e:35:43:f6: c6:de:d0:20:95:98:9c:22:f6:dc:db:07:e8:a7:f0:4a:68:54: e3:1f:a5:e4:8d:33:d9:dc:0e:40:af:61:c6:82:8f:0c:1b:9c: 9d:31:2c:2c:96:33:ed:ac:e8:74:1a:85:fe:b4:07:85:fb:3a: 99:8e:9f:cf:e1:c0:3a:9f:9e:e1:6f:9f:5c:96:ea:f6:6f:24: 79:ee:49:a9:2e:d2:73:43:4b:29:30:3f:3d:14:42:83:77:ba: ca:cb:5a:ad:f6:5e:a7:99:5a:7b:a4:44:c1:dc:f3:02:7b:6c: 29:d8:ed:ef -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RURDMTExMC8GA1UEBRMoOTgyNDIxODFBNzU1NEEyOEU3OEMxQUU4QTczQkUyNzk0 NTJDQ0JGNDAeFw0yNTA3MTAxMTAwNThaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNlNjUwLWM5ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlrElPuZ17mQqi8GhnquMBo7hO2qbAceVftQiAvHc7szwjeDowwiJb2rwu/TqF eR0QM47Z9NrQNi6x5/+LpJPSfDXPUesGQMVvB8OrJoZrbnHI4dXh6O3DmztZ+YRn 20GwX3z5ig/+C6Uipipobzxy906+p3hi7eDh9112yvj044uOaSIn073j9E6m+oN3 kCasbBySD0nl3oNeVNj7wQs78T+fmBSlJbjtB2dn08IrKOQPajVNzyNtbV6zSzKx mnPTkFodMUBNt3O5A87MIlzepw3qgbnYZimV1NysNoCIq8eQIrA8QPKUgeo18fLR wzInPzLHnVZVGamq4z3JTVrrAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUDvRWiJtC pBQr5h65tlFUgn2u0x8wHwYDVR0jBBgwFoAUmCQhgadVSijnjBropzvieUUsy/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFREMxL0ZEMTEyQjc2NUQ2 OTExRjA5MTFENzIwQ0M0RjlBRTAyL21DUWhnYWRWU2lqbmpCcm9wenZpZVVVc3lf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUNRaGdhZFZTaWpuakJyb3B6dmllVVVzeV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RURDMS9GRDExMkI3NjVENjkxMUYwOTExRDcyMENDNEY5QUUwMi81QzVCQTgzNjVE NkExMUYwODE5NzFFMERDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJnFuwwDQYJKoZIhvcNAQELBQADggEBAAJRJlfBgSvaE4YSbTR3kGFD cjy2JsUaOCC+AMg/J+jdkXdlwQ/Zi7xFIcxasn77fXYWA85mm15RcsxY6awd7Yt5 GOh5rBhauY76/7LneyZH7kJlggLn7LY9M+qkVEN/rzy/t/SJEMIU7X+wlCQgjkqW R4EAV22SRuht1nmnV6r2dkdRf1teQoSWa8yBXjVD9sbe0CCVmJwi9tzbB+in8Epo VOMfpeSNM9ncDkCvYcaCjwwbnJ0xLCyWM+2s6HQahf60B4X7OpmOn8/hwDqfnuFv n1yW6vZvJHnuSaku0nNDSykwPz0UQoN3usrLWq32XqeZWnukRMHc8wJ7bCnY7e8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:44 2026 by rpki-client