$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa File: D968823E3DA111EA9A3FD550C4F9AE02.roa (raw, json) Hash identifier: 1gkuDEjoW9bKvN1y3NeSWvvd5mzGWAKNaZO4Fh0ZKKE= Subject key identifier: B5:19:65:F4:86:4B:77:65:D4:61:ED:D9:18:A8:80:36:B1:F9:E6:9E Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0BDD Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:37:25 +0000 ROA not before: Sat 18 Oct 2025 19:58:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 38320 IP address blocks: 103.122.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Oct 18 19:58:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45d34-a8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:b5:5c:3b:d0:c9:2e:f3:ea:f2:99:0e:35: 60:19:01:06:41:fc:eb:49:f6:89:d6:6a:b7:5e:ae: 39:7e:8e:72:0d:39:fa:d5:19:3f:1c:aa:01:3f:d0: f9:af:c8:3f:62:30:c4:51:1b:ed:02:1d:79:bc:d6: d5:f0:2d:e7:38:3a:00:69:83:3c:bf:52:90:4c:c5: c9:d5:cc:7c:28:ba:5f:3d:b4:50:04:80:8a:45:74: c8:31:83:0b:0b:eb:7e:ac:fe:a4:47:fa:99:93:09: ee:51:63:ef:be:f3:a4:a5:17:20:af:18:3e:2f:99: d9:2e:d9:7e:ec:6f:e7:6d:27:02:1f:cf:3f:e3:51: 9e:33:38:58:3a:84:d9:79:94:9d:52:7a:a2:d5:34: d5:4c:f7:6d:58:28:12:c5:74:82:0a:58:e5:e8:c0: 0d:5f:ae:6c:f7:4f:d6:e0:e9:a4:57:cd:f2:36:00: 61:7b:5d:24:e6:aa:7d:04:2e:b2:17:8e:12:29:02: 17:bd:34:f9:ab:1d:5e:c9:ca:f2:29:74:0b:b9:01: 0f:20:b6:5a:c9:33:73:28:f8:3a:02:d2:7a:46:8b: 73:4c:6f:a4:c9:a3:56:e6:ac:7e:af:f1:37:ba:fb: f8:4c:0b:f5:c7:60:b1:bf:ef:22:e5:9b:18:3f:4f: 1e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:19:65:F4:86:4B:77:65:D4:61:ED:D9:18:A8:80:36:B1:F9:E6:9E X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.252.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:1a:fd:dc:13:03:6a:96:31:12:3f:ba:ef:c7:14:9d:62:08: 53:48:f4:83:5c:07:8e:fb:37:17:33:02:19:cd:b7:c6:99:52: 83:1c:45:26:5a:d9:67:03:56:19:50:1f:2b:7b:6d:89:32:13: ee:fa:a8:1b:d3:4c:d6:cb:d5:8f:ba:98:a8:3e:60:42:17:77: 73:57:01:96:2d:5f:af:dd:01:13:c9:fd:a8:b9:10:b8:d2:60: 5f:42:de:84:5a:5d:a3:10:a4:fb:0d:e3:9d:25:6f:93:4b:d8: f5:0b:47:c3:fb:0f:af:2b:b4:21:8d:4d:5d:10:18:9a:e3:8d: 06:d5:71:97:f8:d1:c4:2f:75:93:76:2e:00:23:0f:26:93:4f: 65:aa:2a:67:ad:19:c2:08:e4:37:56:a4:9f:3f:a2:f5:5c:46: ca:f0:83:a0:b2:48:37:2c:d7:10:e8:6d:43:2d:da:95:d2:00: c1:2e:97:81:65:a8:67:fa:c2:e6:6a:a3:2e:e2:62:e1:e5:7e: cb:19:06:43:4e:6e:c4:ce:02:37:ee:2d:4a:8b:75:10:e7:a4: b3:20:46:e0:6f:94:f7:5b:c6:7b:41:c9:31:d8:26:f0:50:12: 9c:14:b5:f1:cc:ac:69:ea:f7:76:37:b0:fc:cd:7d:3f:c0:03: bd:ec:61:a5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUxMDE4MTk1ODU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWQzNC1hOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOa1XDvQyS7z6vKZDjVgGQEGQfzrSfaJ1mq3Xq45fo5yDTn61Rk/HKoBP9D5 r8g/YjDEURvtAh15vNbV8C3nODoAaYM8v1KQTMXJ1cx8KLpfPbRQBICKRXTIMYML C+t+rP6kR/qZkwnuUWPvvvOkpRcgrxg+L5nZLtl+7G/nbScCH88/41GeMzhYOoTZ eZSdUnqi1TTVTPdtWCgSxXSCCljl6MANX65s90/W4OmkV83yNgBhe10k5qp9BC6y F44SKQIXvTT5qx1eycryKXQLuQEPILZayTNzKPg6AtJ6RotzTG+kyaNW5qx+r/E3 uvv4TAv1x2Cxv+8i5ZsYP08erwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLUZZfSG S3dl1GHt2RiogDax+eaeMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM5QjQvMUVFMTgyOUUzREExMTFFQThCNjdFOTRGQzRGOUFFMDIvRDk2ODgyM0Uz REExMTFFQTlBM0ZENTUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3r8MA0GCSqGSIb3DQEBCwUAA4IBAQBaGv3cEwNqljESP7rvxxSd YghTSPSDXAeO+zcXMwIZzbfGmVKDHEUmWtlnA1YZUB8re22JMhPu+qgb00zWy9WP upioPmBCF3dzVwGWLV+v3QETyf2ouRC40mBfQt6EWl2jEKT7DeOdJW+TS9j1C0fD +w+vK7QhjU1dEBia440G1XGX+NHEL3WTdi4AIw8mk09lqipnrRnCCOQ3VqSfP6L1 XEbK8IOgskg3LNcQ6G1DLdqV0gDBLpeBZahn+sLmaqMu4mLh5X7LGQZDTm7EzgI3 7i1Ki3UQ56SzIEbgb5T3W8Z7Qckx2CbwUBKcFLXxzKxp6vd2N7D8zX0/wAO97GGl -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:17 2026 by rpki-client