$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa File: A212A64854F611E79DF7E643C4F9AE02.roa (raw, json) Hash identifier: vjWgPjyP1dqeWvKxkKTcsD2vuPHSp4MP/FzZfYjUz8I= Subject key identifier: 16:8A:F8:B2:B1:B1:78:6D:A3:D7:7E:18:6E:35:74:95:00:C4:52:A9 Certificate issuer: /CN=A91E01A9/serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Certificate serial: 205C Authority key identifier: 4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:40:01 +0000 ROA not before: Tue 02 Dec 2025 16:14:15 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134787 IP address blocks: 103.9.20.0/23 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8284 (0x205c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01A9, serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Validity Not Before: Dec 2 16:14:15 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a441b1-d1b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:77:bf:71:e1:b5:39:f5:0e:da:4d:cf:2b:05: a9:fc:72:7d:33:ac:af:c2:96:8f:b1:42:f3:f2:a0: a0:75:a3:43:ce:a1:3f:28:8a:c0:26:0a:22:63:18: a9:76:62:ff:a6:17:ec:f2:c2:5d:3b:10:7f:dc:d1: 7f:60:f7:de:cf:75:55:8f:5e:95:31:59:37:4b:a0: c4:94:5c:f3:79:0b:7d:60:00:19:7f:55:1a:fb:f3: e1:65:d3:dc:40:43:b0:74:56:0b:68:b9:a4:d8:d8: 94:dc:0b:e7:ca:35:d3:62:b3:4b:3a:06:10:af:55: b9:89:fa:e6:22:0c:15:dd:e3:27:93:e9:b9:fd:c1: 0e:d8:cf:e4:df:dc:bd:58:d5:e5:0a:d4:5d:25:d6: 56:b8:5b:79:ce:96:05:65:09:0b:ad:bf:42:25:82: ba:3f:08:78:0d:c8:d2:94:1b:df:11:cc:8a:c1:d0: c7:6e:47:e3:b1:12:35:be:df:37:f0:79:68:5f:65: b1:4f:78:18:a9:37:ca:f7:37:00:bf:54:6f:eb:e9: ab:f7:77:7f:2e:18:b2:5a:21:7e:93:43:5b:ac:56: 84:43:b9:d8:82:73:3c:f8:fa:6e:f8:f1:3b:ee:87: 91:39:ca:23:19:69:e7:70:f5:2d:29:92:ec:be:59: 59:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8A:F8:B2:B1:B1:78:6D:A3:D7:7E:18:6E:35:74:95:00:C4:52:A9 X509v3 Authority Key Identifier: keyid:4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.20.0/23 Signature Algorithm: sha256WithRSAEncryption 02:24:2b:01:cb:38:f4:a7:b8:8a:10:74:93:16:51:4b:bd:5a: 39:88:35:fc:fb:07:d2:4a:57:a9:cd:dd:f3:96:99:49:8a:0d: e2:ec:15:25:bd:ef:90:0a:97:78:ed:2c:70:a7:ec:b1:c8:7f: 9b:39:8e:86:19:31:d3:e5:76:bb:10:72:b2:e9:d2:09:a9:64: 44:0d:3d:df:47:46:08:6c:65:60:81:09:80:d0:c7:16:16:7a: b2:32:f5:47:68:85:8a:22:4b:9a:67:a7:27:3f:b3:23:65:8f: a2:92:7d:26:b1:b7:eb:46:3a:3e:3d:fb:fd:73:df:d3:b5:3e: f7:3e:05:8f:46:a5:b5:f1:1d:6d:76:ed:2b:05:ef:29:dc:59: 79:f8:c3:fc:fb:4f:e5:62:ca:97:f9:a0:8c:84:8a:02:45:5c: 40:4b:5b:17:81:55:e1:f1:ad:cf:f0:da:d1:d5:a4:53:c6:99: bd:c5:68:e6:30:f0:a0:f6:37:69:ef:4e:a3:39:f5:04:4d:87: 30:75:e2:30:da:56:20:ad:43:5a:ed:ef:05:4e:90:ac:e0:96: f8:c6:30:33:34:7b:f3:88:7f:e9:94:03:c2:8e:9f:df:da:ae: d2:c1:eb:01:9d:0b:d1:9d:e4:b4:1f:2e:eb:15:f3:37:ac:17: 11:31:d5:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQTkxMTAvBgNVBAUTKDRBNTc1RjJCRjMzMTI0NjJGODU2NDYxQUU5REREMEEz ODQ0QUJEMkYwHhcNMjUxMjAyMTYxNDE1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDFiMS1kMWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23e/ceG1OfUO2k3PKwWp/HJ9M6yvwpaPsULz8qCgdaNDzqE/KIrAJgoiYxip dmL/phfs8sJdOxB/3NF/YPfez3VVj16VMVk3S6DElFzzeQt9YAAZf1Ua+/PhZdPc QEOwdFYLaLmk2NiU3AvnyjXTYrNLOgYQr1W5ifrmIgwV3eMnk+m5/cEO2M/k39y9 WNXlCtRdJdZWuFt5zpYFZQkLrb9CJYK6Pwh4DcjSlBvfEcyKwdDHbkfjsRI1vt83 8HloX2WxT3gYqTfK9zcAv1Rv6+mr93d/LhiyWiF+k0NbrFaEQ7nYgnM8+Ppu+PE7 7oeROcojGWnncPUtKZLsvllZwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBaK+LKx sXhto9d+GG41dJUAxFKpMB8GA1UdIwQYMBaAFEpXXyvzMSRi+FZGGund0KOESr0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFBOS84M0MzMTEwODMz NUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19NeEpHTDRWa1lhNmQzUW80Ukt2 UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NsZGZLX014SkdMNFZrWWE2ZDNRbzRSS3ZTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQTkvODNDMzExMDgzMzVDMTFFNkE4MDAwRjREQzRGOUFFMDIvQTIxMkE2NDg1 NEY2MTFFNzlERjdFNjQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZwkUMA0GCSqGSIb3DQEBCwUAA4IBAQACJCsByzj0p7iKEHSTFlFL vVo5iDX8+wfSSlepzd3zlplJig3i7BUlve+QCpd47Sxwp+yxyH+bOY6GGTHT5Xa7 EHKy6dIJqWREDT3fR0YIbGVggQmA0McWFnqyMvVHaIWKIkuaZ6cnP7MjZY+ikn0m sbfrRjo+Pfv9c9/TtT73PgWPRqW18R1tdu0rBe8p3Fl5+MP8+0/lYsqX+aCMhIoC RVxAS1sXgVXh8a3P8NrR1aRTxpm9xWjmMPCg9jdp706jOfUETYcwdeIw2lYgrUNa 7e8FTpCs4Jb4xjAzNHvziH/plAPCjp/f2q7SwesBnQvRneS0Hy7rFfM3rBcRMdW9 -----END CERTIFICATE-----Generated at Mon Mar 2 04:41:51 2026 by rpki-client