$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/14A4E3F099E211EAAC99C833C4F9AE02.roa File: 14A4E3F099E211EAAC99C833C4F9AE02.roa (raw, json) Hash identifier: QqaVtXOsQ3g2/ddOuRomNusHtKcEc9UpR1465Wcagcc= Subject key identifier: A4:25:98:EA:85:B4:97:EF:76:CA:0C:CC:C4:A4:AA:99:39:F2:32:24 Certificate issuer: /CN=A91E28C1/serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Certificate serial: 09F4 Authority key identifier: 25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/14A4E3F099E211EAAC99C833C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:56 +0000 ROA not before: Thu 26 Jun 2025 20:06:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139004 IP address blocks: 103.138.120.0/22 maxlen: 24 2001:df0:3b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2548 (0x9f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28C1, serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Validity Not Before: Jun 26 20:06:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42eec-8349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:4b:d2:e0:b0:71:ba:17:6a:99:c7:6f:aa: 77:34:e1:a1:da:d6:3c:69:84:14:9c:b4:3b:22:f4: 51:eb:db:c4:ff:85:9d:d3:96:17:06:b2:27:1d:55: 0f:a8:1c:39:23:96:07:5c:43:43:14:42:dd:74:ca: 2e:56:5b:ba:1f:6f:b6:a5:4e:9c:54:8d:54:7f:2e: 0b:b9:32:06:f5:c7:01:5a:a3:e2:6b:f0:8b:33:e3: ff:7d:c3:aa:aa:13:d1:fc:48:68:cf:dc:15:71:d7: 90:67:18:9c:2a:87:cd:88:b3:b5:ec:5e:7d:36:57: c9:ce:4f:1f:f4:e7:46:49:b8:3c:60:f1:83:4f:e3: aa:7e:ca:38:18:0b:14:39:48:e9:61:66:00:b3:4d: c8:53:70:7f:dd:c2:a8:a6:5a:7e:0b:e1:3d:6b:67: 70:c6:99:c0:b6:31:02:18:72:a2:33:4b:ed:23:b8: e9:23:b9:85:b5:ee:39:70:df:d3:68:65:9a:37:c8: 85:54:7b:ad:31:83:96:17:c5:c6:a4:50:e3:57:f4: 01:eb:78:51:05:3d:37:f7:d0:ac:48:fa:3b:9f:81: 1f:0d:12:18:0a:6e:d2:2d:9a:77:b4:af:db:41:38: 17:15:16:71:a4:ab:a1:d9:ea:1c:22:a3:69:ec:29: ef:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:25:98:EA:85:B4:97:EF:76:CA:0C:CC:C4:A4:AA:99:39:F2:32:24 X509v3 Authority Key Identifier: keyid:25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/14A4E3F099E211EAAC99C833C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.120.0/22 IPv6: 2001:df0:3b80::/48 Signature Algorithm: sha256WithRSAEncryption 11:af:cc:b5:17:e6:d8:f2:c8:71:bb:9d:8b:2b:6b:e3:72:27: a7:7d:18:da:a9:24:e8:08:df:a8:cc:7f:c2:02:fe:6f:65:df: 0e:8e:13:22:25:73:60:f8:ab:9e:48:8b:d4:c8:5f:1c:1b:ed: 83:7f:40:3f:b5:cb:b1:a1:b9:1c:87:5e:0a:4c:5f:25:65:e2: 28:50:28:fc:48:83:53:cf:5f:ef:59:6b:16:8e:3f:53:57:be: d6:50:c7:81:3b:96:26:f6:a3:00:5e:7a:ef:d2:8c:cd:48:ce: db:b8:94:76:fb:1e:7b:85:22:95:b3:4b:e7:48:4f:ad:a8:0f: 2e:4c:ff:c3:90:a0:d4:05:73:40:d1:4f:e8:7e:dc:86:7a:5f: 97:fb:43:d3:5d:de:0a:17:c7:36:dd:e2:03:9f:18:37:a0:86: be:72:21:3a:fc:69:06:7a:ea:bc:48:0e:55:60:27:d7:74:cf: 7e:1a:dd:5a:1d:60:7e:c9:0b:9f:09:f1:f9:4d:93:4b:71:3c: ea:bb:39:f9:d7:aa:53:6d:ac:0c:d7:90:a3:69:da:5c:28:9e: ec:9f:a9:cc:0a:0b:78:b2:b6:70:0a:57:07:11:90:31:38:b1: 7e:e2:b4:a3:3c:62:66:ed:b2:96:da:e3:4d:1e:e3:01:26:c1: 51:0e:3a:47 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4QzExMTAvBgNVBAUTKDI1ODQxRkE3N0MwNTcxNjU4NUZFN0JEQjA2MDBCOTg2 NEUzNDA2RDIwHhcNMjUwNjI2MjAwNjIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmVlYy04MzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eFL0uCwcboXapnHb6p3NOGh2tY8aYQUnLQ7IvRR69vE/4Wd05YXBrInHVUP qBw5I5YHXENDFELddMouVlu6H2+2pU6cVI1Ufy4LuTIG9ccBWqPia/CLM+P/fcOq qhPR/Ehoz9wVcdeQZxicKofNiLO17F59NlfJzk8f9OdGSbg8YPGDT+Oqfso4GAsU OUjpYWYAs03IU3B/3cKoplp+C+E9a2dwxpnAtjECGHKiM0vtI7jpI7mFte45cN/T aGWaN8iFVHutMYOWF8XGpFDjV/QB63hRBT0399CsSPo7n4EfDRIYCm7SLZp3tK/b QTgXFRZxpKuh2eocIqNp7CnvvQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKQlmOqF tJfvdsoMzMSkqpk58jIkMB8GA1UdIwQYMBaAFCWEH6d8BXFlhf572wYAuYZONAbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhDMS9GOEFGQTE0MDk5 RTAxMUVBOTY2NTJGMzJDNEY5QUUwMi9KWVFmcDN3RmNXV0ZfbnZiQmdDNWhrNDBC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZUWZwM3dGY1dXRl9udmJCZ0M1aGs0MEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4QzEvRjhBRkExNDA5OUUwMTFFQTk2NjUyRjMyQzRGOUFFMDIvMTRBNEUzRjA5 OUUyMTFFQUFDOTlDODMzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ4p4MA8EAgACMAkDBwAgAQ3wO4AwDQYJKoZIhvcNAQELBQADggEB ABGvzLUX5tjyyHG7nYsra+NyJ6d9GNqpJOgI36jMf8IC/m9l3w6OEyIlc2D4q55I i9TIXxwb7YN/QD+1y7GhuRyHXgpMXyVl4ihQKPxIg1PPX+9ZaxaOP1NXvtZQx4E7 lib2owBeeu/SjM1Iztu4lHb7HnuFIpWzS+dIT62oDy5M/8OQoNQFc0DRT+h+3IZ6 X5f7Q9Nd3goXxzbd4gOfGDeghr5yITr8aQZ66rxIDlVgJ9d0z34a3VodYH7JC58J 8flNk0txPOq7OfnXqlNtrAzXkKNp2lwonuyfqcwKC3iytnAKVwcRkDE4sX7itKM8 Ymbtspba400e4wEmwVEOOkc= -----END CERTIFICATE-----Generated at Mon Mar 2 09:30:41 2026 by rpki-client