$ rpki-client -vvf rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa File: D57C98A88C0311EFAA53FF12C4F9AE02.roa (raw, json) Hash identifier: sk/aWgMAKHJV+S5wciXhAIcHYQF2Px3Gvke4ka59rbI= Subject key identifier: F0:AD:46:EB:A7:DA:C5:22:AD:C9:CB:F8:5E:0F:AC:94:52:1F:B4:DC Certificate issuer: /CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Certificate serial: 198B Authority key identifier: 23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:42:49 +0000 ROA not before: Thu 04 Sep 2025 16:55:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 64231 IP address blocks: 103.99.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6539 (0x198b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E892A, serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Validity Not Before: Sep 4 16:55:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44259-8cf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b1:99:f3:7d:2b:5b:73:71:af:f0:70:11:3d: 38:60:f6:4a:2b:46:d5:50:6e:10:16:d4:d6:e6:aa: 64:ba:e3:3d:af:f9:45:90:b8:0b:93:92:7f:d3:fe: 0e:15:26:76:a4:8b:8a:ad:3d:91:21:aa:13:6d:1d: 94:7b:c6:18:b1:47:f0:79:f2:cf:71:5b:fc:17:a5: b8:69:ec:a7:bd:e3:40:ab:21:7f:3c:84:3a:b7:92: a8:53:8c:1e:a5:c7:e9:8e:31:7f:c2:78:d9:52:da: 7b:8b:46:e6:f9:70:9b:60:e7:c7:48:e7:08:56:41: 3b:85:4d:70:f7:57:1b:1f:17:1e:a5:37:34:db:38: 98:87:0f:3c:97:16:dd:f5:35:71:0c:9b:79:89:11: 2f:da:ba:e3:6c:fb:99:50:17:b9:c4:7a:de:0e:7c: 5e:79:3e:cd:59:a7:0d:3b:11:e1:ba:4b:45:27:13: 43:0a:60:ae:f3:10:e7:ae:7c:c1:5f:d1:c1:95:5d: 6f:2a:d1:29:4a:39:03:e1:5d:b7:53:49:b4:63:16: 0d:ad:91:fa:39:b6:c8:d6:39:5d:43:36:0e:fa:ce: 96:94:75:7d:38:f0:5d:a3:48:1d:80:62:11:7e:83: 58:80:0b:be:0e:65:81:aa:3b:77:f0:24:e5:6c:7a: 5d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AD:46:EB:A7:DA:C5:22:AD:C9:CB:F8:5E:0F:AC:94:52:1F:B4:DC X509v3 Authority Key Identifier: keyid:23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D57C98A88C0311EFAA53FF12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.42.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:30:48:ac:5d:5f:48:33:df:4c:04:9b:47:1b:c8:bc:91:ab: 58:08:40:0e:be:a7:7e:37:db:aa:7c:4e:0b:d7:8f:4e:d5:fc: 96:fb:51:b9:65:ee:ff:3a:0d:d4:e5:63:2a:e6:f4:bb:3f:b6: 2b:4c:74:e3:55:55:b3:51:2a:96:09:4d:6b:b6:f6:ff:05:19: 51:85:8b:b8:05:09:14:73:30:2d:d4:c3:a2:da:14:2f:99:bf: 1a:0d:14:6e:53:80:b3:b2:ef:17:c2:48:53:3b:09:49:57:c8: 48:b4:89:38:e2:ac:fb:33:b5:22:55:55:5d:d4:0d:e0:8c:97: 35:45:4b:fa:71:18:c3:a6:cc:19:8c:96:86:2f:fb:40:b1:9e: 25:95:78:37:1f:a8:c3:f6:1d:4e:ca:44:19:8d:7f:95:2e:55: 31:c8:c0:f3:ca:b1:f8:08:03:b8:7e:05:b1:39:c2:ba:6b:8e: 11:95:74:be:42:a7:65:ba:2a:75:89:ef:18:40:04:db:5c:b5: 1a:b0:5a:ab:23:08:4f:94:74:f3:23:c9:06:cd:6c:42:7b:75: 7f:30:f3:23:3a:84:5c:94:a6:a7:22:58:f8:ec:12:e5:9a:cc: b2:95:33:83:3f:cd:37:01:76:b7:af:80:0b:b9:54:26:9f:59: a0:e1:98:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MkExMTAvBgNVBAUTKDIzQjk2MDM3QUI4QUQyMzdFNjMyNkY3RUQwRjgxRTMx OEU4QTE0QUIwHhcNMjUwOTA0MTY1NTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDI1OS04Y2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7GZ830rW3Nxr/BwET04YPZKK0bVUG4QFtTW5qpkuuM9r/lFkLgLk5J/0/4O FSZ2pIuKrT2RIaoTbR2Ue8YYsUfwefLPcVv8F6W4aeynveNAqyF/PIQ6t5KoU4we pcfpjjF/wnjZUtp7i0bm+XCbYOfHSOcIVkE7hU1w91cbHxcepTc02ziYhw88lxbd 9TVxDJt5iREv2rrjbPuZUBe5xHreDnxeeT7NWacNOxHhuktFJxNDCmCu8xDnrnzB X9HBlV1vKtEpSjkD4V23U0m0YxYNrZH6ObbI1jldQzYO+s6WlHV9OPBdo0gdgGIR foNYgAu+DmWBqjt38CTlbHpdoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPCtRuun 2sUircnL+F4PrJRSH7TcMB8GA1UdIwQYMBaAFCO5YDeritI35jJvftD4HjGOihSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkyQS9GODEwRTlBNDg4 MTUxMUU3OEJGN0QxNEVDNEY5QUUwMi9JN2xnTjZ1SzBqZm1NbTktMFBnZU1ZNktG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k3bGdONnVLMGpmbU1tOS0wUGdlTVk2S0ZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MkEvRjgxMEU5QTQ4ODE1MTFFNzhCRjdEMTRFQzRGOUFFMDIvRDU3Qzk4QTg4 QzAzMTFFRkFBNTNGRjEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2MqMA0GCSqGSIb3DQEBCwUAA4IBAQCPMEisXV9IM99MBJtHG8i8 katYCEAOvqd+N9uqfE4L149O1fyW+1G5Ze7/Og3U5WMq5vS7P7YrTHTjVVWzUSqW CU1rtvb/BRlRhYu4BQkUczAt1MOi2hQvmb8aDRRuU4Czsu8XwkhTOwlJV8hItIk4 4qz7M7UiVVVd1A3gjJc1RUv6cRjDpswZjJaGL/tAsZ4llXg3H6jD9h1OykQZjX+V LlUxyMDzyrH4CAO4fgWxOcK6a44RlXS+Qqdluip1ie8YQATbXLUasFqrIwhPlHTz I8kGzWxCe3V/MPMjOoRclKanIlj47BLlmsyylTODP803AXa3r4ALuVQmn1mg4Zgf -----END CERTIFICATE-----Generated at Mon Mar 2 17:07:12 2026 by rpki-client