$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa File: A3BE70CCD5AE11EE909D5C40C4F9AE02.roa (raw, json) Hash identifier: rY5KQkYqT1Rwo0jw8gQc5MX066+hkbql7YzRhVJVrdg= Subject key identifier: F5:87:27:26:5B:D5:E7:73:F4:9D:5B:22:C4:CE:E1:DF:32:51:61:74 Certificate issuer: /CN=A91E4F66/serialNumber=69C8198BDA3FD09053F42553D73EEA15121D241C Certificate serial: 0BEF Authority key identifier: 69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:30:08 +0000 ROA not before: Tue 16 Sep 2025 19:29:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137884 IP address blocks: 103.116.116.0/23 maxlen: 23 103.116.116.0/24 maxlen: 24 103.116.117.0/24 maxlen: 24 103.116.118.0/24 maxlen: 24 2402:f940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.crl rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4F66, serialNumber=69C8198BDA3FD09053F42553D73EEA15121D241C Validity Not Before: Sep 16 19:29:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a46990-2351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:48:81:5b:32:34:f9:42:0b:33:5c:8d:30: c8:6d:6c:3e:8c:e4:48:e8:48:b0:70:66:a4:c0:b4: d5:5d:c8:2c:73:74:ae:25:b4:aa:d0:fa:e1:8c:65: 49:54:b0:cf:f3:1a:ed:d2:8a:52:06:55:74:b7:61: 7c:47:42:ce:e9:12:52:fe:7d:b5:fd:62:a1:11:1c: 80:73:a4:55:16:f9:f1:67:dc:eb:58:ad:c5:aa:8b: 38:4b:49:76:f0:14:4f:bb:7f:43:b6:34:45:74:e5: 22:fb:74:15:82:c1:4b:24:b3:61:4f:c3:4b:76:ca: f1:98:3d:76:48:19:b6:f1:51:83:d1:02:9e:5c:08: 85:a3:9d:bb:f8:d1:54:78:91:33:14:72:c5:ab:f5: d7:29:26:fa:62:85:47:6b:f4:71:48:db:d1:07:c4: ad:f8:1e:1a:4f:e2:1c:c0:d3:54:75:7f:a3:99:4c: d4:c0:9b:39:c8:7f:dd:ea:4a:8e:05:ac:0b:1e:26: a1:4a:86:c6:98:ed:f3:48:34:02:21:f4:b7:0f:5b: 95:24:1b:57:7d:3a:9b:8b:db:bc:a9:b2:b0:65:f9: 2f:6e:57:13:23:2d:31:7b:34:cc:78:81:fa:67:80: f8:76:d8:69:d4:a6:bb:9d:a2:b6:aa:3f:c2:09:ee: 17:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:87:27:26:5B:D5:E7:73:F4:9D:5B:22:C4:CE:E1:DF:32:51:61:74 X509v3 Authority Key Identifier: keyid:69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.116.0-103.116.118.255 IPv6: 2402:f940::/32 Signature Algorithm: sha256WithRSAEncryption 23:92:67:c5:fc:1e:1f:69:3e:95:da:83:c3:a7:77:f0:ee:5c: bd:36:c9:22:5a:84:44:fc:e6:30:ee:77:31:25:50:f6:4f:ba: bc:0d:23:c7:77:26:35:54:f0:48:85:f4:3e:4e:53:86:ae:86: ea:61:18:50:2d:4c:3f:44:77:55:65:05:49:67:77:88:a9:a9: 6f:b8:c0:87:72:91:4f:13:b2:d9:83:e8:77:39:da:f8:9c:9d: 4f:9c:74:90:60:9b:8b:aa:34:7a:3a:2f:50:59:80:66:f7:40: 86:00:26:ee:ef:5a:4d:b7:52:e1:40:14:64:1b:8e:57:98:75: 4f:48:66:6e:de:16:a8:5e:cd:00:67:cc:d6:c9:48:db:bd:74: 2d:90:7f:fc:01:41:00:e4:29:1d:e4:60:48:db:1f:5e:90:c1: b6:d5:60:77:dc:9f:71:bd:36:e1:f5:2a:99:bc:b0:b2:69:73: b4:39:65:76:dc:65:53:22:ae:52:4c:2b:c7:54:a1:73:9b:e7: d0:0f:7f:b6:86:a0:fe:11:ea:e6:ae:ae:bc:c3:fe:c0:c8:5d: f2:a4:95:11:71:ae:bc:39:01:18:c8:52:0d:9c:b4:d3:78:52: a8:da:d5:90:a4:1b:2a:4a:bf:92:46:a2:79:5f:21:ea:a1:10: ad:d2:43:d6 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRGNjYxMTAvBgNVBAUTKDY5QzgxOThCREEzRkQwOTA1M0Y0MjU1M0Q3M0VFQTE1 MTIxRDI0MUMwHhcNMjUwOTE2MTkyOTM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk5MC0yMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxJIgVsyNPlCCzNcjTDIbWw+jORI6EiwcGakwLTVXcgsc3SuJbSq0PrhjGVJ VLDP8xrt0opSBlV0t2F8R0LO6RJS/n21/WKhERyAc6RVFvnxZ9zrWK3Fqos4S0l2 8BRPu39DtjRFdOUi+3QVgsFLJLNhT8NLdsrxmD12SBm28VGD0QKeXAiFo527+NFU eJEzFHLFq/XXKSb6YoVHa/RxSNvRB8St+B4aT+IcwNNUdX+jmUzUwJs5yH/d6kqO BawLHiahSobGmO3zSDQCIfS3D1uVJBtXfTqbi9u8qbKwZfkvblcTIy0xezTMeIH6 Z4D4dthp1Ka7naK2qj/CCe4XLwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPWHJyZb 1edz9J1bIsTO4d8yUWF0MB8GA1UdIwQYMBaAFGnIGYvaP9CQU/QlU9c+6hUSHSQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEY2Ni9FNUY2NThBQTM2 OEExMUVBQjU3NDkyNzJDNEY5QUUwMi9hY2daaTlvXzBKQlQ5Q1ZUMXo3cUZSSWRK QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FjZ1ppOW9fMEpCVDlDVlQxejdxRlJJZEpCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRGNjYvRTVGNjU4QUEzNjhBMTFFQUI1NzQ5MjcyQzRGOUFFMDIvQTNCRTcwQ0NE NUFFMTFFRTkwOUQ1QzQwQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBAJndHQDBABndHYwDQQCAAIwBwMFACQC+UAwDQYJKoZIhvcNAQEL BQADggEBACOSZ8X8Hh9pPpXag8Ond/DuXL02ySJahET85jDudzElUPZPurwNI8d3 JjVU8EiF9D5OU4auhuphGFAtTD9Ed1VlBUlnd4ipqW+4wIdykU8TstmD6Hc52vic nU+cdJBgm4uqNHo6L1BZgGb3QIYAJu7vWk23UuFAFGQbjleYdU9IZm7eFqhezQBn zNbJSNu9dC2Qf/wBQQDkKR3kYEjbH16QwbbVYHfcn3G9NuH1Kpm8sLJpc7Q5ZXbc ZVMirlJMK8dUoXOb59APf7aGoP4R6uaurrzD/sDIXfKklRFxrrw5ARjIUg2ctNN4 Uqja1ZCkGypKv5JGonlfIeqhEK3SQ9Y= -----END CERTIFICATE-----Generated at Mon Mar 2 04:45:14 2026 by rpki-client