$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa File: A5B7D874091F11EFA6EDE141C4F9AE02.roa (raw, json) Hash identifier: nwEIy7xPw+1tR+gqF3l6cQwTi+bhxEm67T3G2uPpLSc= Subject key identifier: 60:23:60:5F:C1:4D:F6:EA:F8:81:50:07:CA:C0:C2:24:5F:3D:A0:69 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0F12 Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:36:30 +0000 ROA not before: Thu 22 May 2025 18:20:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136617 IP address blocks: 103.94.68.0/22 maxlen: 24 203.109.36.0/22 maxlen: 22 203.109.36.0/24 maxlen: 24 203.109.37.0/24 maxlen: 24 203.109.38.0/24 maxlen: 24 203.109.39.0/24 maxlen: 24 2401:35c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3858 (0xf12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668, serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: May 22 18:20:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45cfe-70e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:44:0d:d6:f7:92:fb:4d:15:82:70:cb:c5:90: af:87:24:fb:bb:0e:ae:78:7c:82:f7:a3:cb:18:62: be:1a:29:f8:25:bf:95:a4:1c:c8:e0:f4:6a:85:fc: f3:77:10:ba:f1:4f:7e:28:c0:25:d4:dd:01:fc:59: 94:37:28:36:91:c3:27:a2:b2:e9:80:31:10:f5:8c: 22:5f:d6:f0:b2:25:cf:4c:81:e2:16:04:cf:a9:5c: fd:bf:d6:8f:3b:79:9e:ba:db:2d:93:14:e3:ec:e7: 7f:80:d4:b3:a0:84:54:1b:2d:45:12:29:b0:33:c3: aa:6e:8a:db:dc:f4:30:89:90:fb:94:b6:d5:93:c7: bc:6f:3a:be:1c:fc:df:67:51:3f:69:25:85:68:e5: 9b:77:36:b1:fe:c1:ad:5b:2f:30:05:3e:48:45:a5: ed:54:50:12:40:55:fa:fc:41:95:a3:33:18:37:14: 3d:db:b7:4d:30:bd:1c:84:c9:a0:43:67:dd:20:97: 20:26:45:de:eb:bd:05:35:66:88:a5:39:b3:e2:9d: 1c:fd:f1:a1:ac:7e:49:7e:ec:f2:92:3f:61:a1:93: 5c:6a:aa:09:1f:74:4c:ed:fb:57:0a:64:f0:4e:e1: a5:8f:4d:b1:87:59:7b:67:6c:b6:0a:d1:8b:37:49: 98:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:23:60:5F:C1:4D:F6:EA:F8:81:50:07:CA:C0:C2:24:5F:3D:A0:69 X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.94.68.0/22 203.109.36.0/22 IPv6: 2401:35c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:81:9e:7d:95:60:08:d0:ed:c7:8e:86:bc:8c:c6:f0:e9:ee: 99:75:17:f1:dd:ee:55:70:e8:1a:bf:d9:16:81:b6:d8:95:4f: 14:4e:9b:74:ac:cd:29:f9:a7:68:7c:74:ad:f1:6b:69:7c:cc: 95:b6:5d:33:38:e8:f4:13:91:87:df:6e:64:b7:2f:b7:16:c0: e5:24:ec:56:af:62:c8:63:eb:ac:97:47:bc:ac:72:28:ee:a9: 25:96:9c:c8:e2:19:a2:47:46:f2:0d:61:21:83:51:aa:d3:c7: b3:ce:f2:e7:0e:5b:fc:71:b4:82:3e:8e:3f:ac:2e:94:bc:14: a6:fa:be:ee:8f:b7:a9:5f:5a:de:60:0e:73:23:20:5c:ed:41: cc:3b:c3:54:d9:4f:f3:f8:e2:a2:99:63:f6:0c:b9:56:23:81: 1a:40:77:d0:96:18:d6:f3:80:85:aa:84:62:21:fb:83:81:97: 42:8e:8d:a3:6c:d3:1c:a7:ca:6f:b1:8c:11:1e:33:d1:98:4d: 5d:6a:31:3c:d9:56:ca:fe:69:1f:ef:ac:7d:77:18:a8:dd:bf: 25:5a:38:b8:9a:90:6b:53:96:7c:87:96:23:f8:94:ad:40:1e: 83:f9:59:f0:da:02:8f:ef:3b:c0:63:6b:68:91:9c:59:6b:02: 98:4f:3a:29 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjUwNTIyMTgyMDQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWNmZS03MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj0QN1veS+00VgnDLxZCvhyT7uw6ueHyC96PLGGK+Gin4Jb+VpBzI4PRqhfzz dxC68U9+KMAl1N0B/FmUNyg2kcMnorLpgDEQ9YwiX9bwsiXPTIHiFgTPqVz9v9aP O3meutstkxTj7Od/gNSzoIRUGy1FEimwM8Oqborb3PQwiZD7lLbVk8e8bzq+HPzf Z1E/aSWFaOWbdzax/sGtWy8wBT5IRaXtVFASQFX6/EGVozMYNxQ927dNML0chMmg Q2fdIJcgJkXe670FNWaIpTmz4p0c/fGhrH5Jfuzykj9hoZNcaqoJH3RM7ftXCmTw TuGlj02xh1l7Z2y2CtGLN0mYKwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGAjYF/B Tfbq+IFQB8rAwiRfPaBpMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2NjgvN0M5MDA5QUM5N0YxMTFFOUEyRTUxOTgxQzRGOUFFMDIvQTVCN0Q4NzQw OTFGMTFFRkE2RURFMTQxQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ15EAwQCy20kMA0EAgACMAcDBQAkATXAMA0GCSqGSIb3DQEBCwUA A4IBAQBtgZ59lWAI0O3Hjoa8jMbw6e6ZdRfx3e5VcOgav9kWgbbYlU8UTpt0rM0p +adofHSt8WtpfMyVtl0zOOj0E5GH325kty+3FsDlJOxWr2LIY+usl0e8rHIo7qkl lpzI4hmiR0byDWEhg1Gq08ezzvLnDlv8cbSCPo4/rC6UvBSm+r7uj7epX1reYA5z IyBc7UHMO8NU2U/z+OKimWP2DLlWI4EaQHfQlhjW84CFqoRiIfuDgZdCjo2jbNMc p8pvsYwRHjPRmE1dajE82VbK/mkf76x9dxio3b8lWji4mpBrU5Z8h5Yj+JStQB6D +Vnw2gKP7zvAY2tokZxZawKYTzop -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:46 2026 by rpki-client