$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa File: 5D001D76932811E8BC93865BC4F9AE02.roa (raw, json) Hash identifier: pnq2HjvX+VS1IJEyx1/G8baR9Q04KAF0DCxLCQuG8cY= Subject key identifier: 67:3A:4D:C6:CF:FB:37:8A:C8:FF:57:2B:5E:74:B4:8F:44:1A:1C:BF Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 36C9 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:45:46 +0000 ROA not before: Tue 02 Sep 2025 15:01:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45887 IP address blocks: 103.68.121.0/24 maxlen: 24 103.68.122.0/24 maxlen: 24 103.68.123.0/24 maxlen: 24 103.206.30.0/23 maxlen: 23 103.230.71.0/24 maxlen: 24 117.121.240.0/24 maxlen: 24 117.121.241.0/24 maxlen: 24 117.121.242.0/24 maxlen: 24 182.54.232.0/24 maxlen: 24 2403:cc00:8000::/36 maxlen: 36 2403:cc00:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14025 (0x36c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48959-815e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b9:b1:79:56:a0:8d:55:42:9f:d8:28:a1:bd: f6:9a:cd:dd:4d:c0:78:19:99:1b:be:1e:b8:b8:bb: 2f:2d:e5:00:f7:f0:00:d9:a6:fa:60:a4:0c:8a:d9: 12:7b:d9:5d:50:c4:32:69:54:e6:04:6d:d4:3c:a6: 55:23:61:53:53:ee:82:d6:e8:13:ad:3d:3b:66:f1: b2:80:0f:f9:5d:34:c4:67:f8:2d:d6:e5:91:98:ee: 6f:71:c1:de:bc:78:ef:93:fe:c3:d9:56:db:f0:21: b5:e4:6b:81:97:dc:12:26:ea:26:eb:cc:a3:b3:90: cd:1a:70:55:9b:a7:77:d5:9c:be:77:1a:9b:5f:c0: 34:7d:3a:2c:64:80:ee:15:21:05:a4:d7:39:4a:3d: de:40:a6:69:dd:f0:a8:5a:37:c0:88:88:10:82:a4: 99:4e:ab:ba:3b:48:62:19:0b:63:32:bf:e4:2a:04: 01:3b:a9:c6:b1:82:67:83:1b:25:95:63:b8:51:a3: 93:36:b1:24:46:13:dc:06:cf:4b:b4:82:93:c4:33: de:88:c5:9f:ee:d3:c0:0f:0c:81:80:9a:c5:2f:6c: 70:03:4d:fc:cc:47:9b:c6:4f:67:c9:57:49:0e:3d: 46:e6:9e:6c:b6:5c:c8:68:17:b1:14:b3:03:f0:f5: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3A:4D:C6:CF:FB:37:8A:C8:FF:57:2B:5E:74:B4:8F:44:1A:1C:BF X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5D001D76932811E8BC93865BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.121.0-103.68.123.255 103.206.30.0/23 103.230.71.0/24 117.121.240.0-117.121.242.255 182.54.232.0/24 IPv6: 2403:cc00:8000::/36 2403:cc00:a000::/36 Signature Algorithm: sha256WithRSAEncryption 8a:d4:1f:22:07:90:00:cc:6e:83:cf:75:0a:2c:f7:8e:85:d2: d4:35:35:ab:43:ec:ec:22:42:6f:87:2a:e4:4a:55:15:52:97: 2f:a3:86:c8:04:c6:a0:be:18:e3:f5:74:43:f8:69:e9:34:f8: 84:7b:b2:d4:1b:f0:fa:93:15:87:4a:d4:ab:83:65:c5:47:80: 06:ef:53:48:42:58:b3:97:e0:08:b6:8e:bc:b7:1b:20:b3:bf: 32:06:2c:dd:d5:b6:3b:a8:c8:72:09:31:25:41:fd:62:97:e2: 71:9a:d4:d7:15:fd:ff:2f:1f:85:a4:a3:38:9a:50:14:71:19: 96:2f:a3:25:c3:04:1d:b9:ea:af:4f:af:c6:f1:8a:25:4c:4b: 1f:6b:f6:9c:b3:9e:5c:f7:07:60:1d:8f:88:04:06:f6:bd:a5: 5f:55:ba:48:c7:2f:57:49:21:b5:5c:16:e6:06:8f:17:cb:d2: f6:f0:12:22:f8:60:6f:fc:cb:22:f9:3a:dc:da:3a:2c:61:53: b5:4b:9d:d2:a0:b2:a1:74:d8:04:14:e6:69:3c:02:83:82:4e: 22:9c:13:25:21:49:de:8f:a5:c7:99:db:5f:e2:f6:ce:6d:5b: 7c:cd:e0:c8:61:c6:5a:29:0c:a4:85:48:9c:fd:0e:d6:b6:48: 3c:45:4a:bb -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICNskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODk1OS04MTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LmxeVagjVVCn9goob32ms3dTcB4GZkbvh64uLsvLeUA9/AA2ab6YKQMitkS e9ldUMQyaVTmBG3UPKZVI2FTU+6C1ugTrT07ZvGygA/5XTTEZ/gt1uWRmO5vccHe vHjvk/7D2Vbb8CG15GuBl9wSJuom68yjs5DNGnBVm6d31Zy+dxqbX8A0fTosZIDu FSEFpNc5Sj3eQKZp3fCoWjfAiIgQgqSZTqu6O0hiGQtjMr/kKgQBO6nGsYJngxsl lWO4UaOTNrEkRhPcBs9LtIKTxDPeiMWf7tPADwyBgJrFL2xwA038zEebxk9nyVdJ Dj1G5p5stlzIaBexFLMD8PU9dQIDAQABo4ICoDCCApwwHQYDVR0OBBYEFGc6TcbP +zeKyP9XK150tI9EGhy/MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNUQwMDFENzY5 MzI4MTFFOEJDOTM4NjVCQzRGOUFFMDIucm9hMF8GCCsGAQUFBwEHAQH/BFAwTjA0 BAIAATAuMAwDBABnRHkDBAJnRHgDBAFnzh4DBABn5kcwDAMEBHV58AMEAHV58gME ALY26DAWBAIAAjAQAwYEJAPMAIADBgQkA8wAoDANBgkqhkiG9w0BAQsFAAOCAQEA itQfIgeQAMxug891Ciz3joXS1DU1q0Ps7CJCb4cq5EpVFVKXL6OGyATGoL4Y4/V0 Q/hp6TT4hHuy1Bvw+pMVh0rUq4NlxUeABu9TSEJYs5fgCLaOvLcbILO/MgYs3dW2 O6jIcgkxJUH9YpficZrU1xX9/y8fhaSjOJpQFHEZli+jJcMEHbnqr0+vxvGKJUxL H2v2nLOeXPcHYB2PiAQG9r2lX1W6SMcvV0khtVwW5gaPF8vS9vASIvhgb/zLIvk6 3No6LGFTtUud0qCyoXTYBBTmaTwCg4JOIpwTJSFJ3o+lx5nbX+L2zm1bfM3gyGHG WikMpIVInP0O1rZIPEVKuw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:16:36 2026 by rpki-client