$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/12D352766D2911F0B26CB33BC4F9AE02.roa File: 12D352766D2911F0B26CB33BC4F9AE02.roa (raw, json) Hash identifier: +veuE7uroMOvZaLX4YYQUXIUo7kDv0lS8n9ppMEUfBU= Subject key identifier: 0E:3D:8D:E0:E2:AB:C4:77:91:77:BF:92:7E:4F:F9:D6:BC:DE:C9:03 Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0C90 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/12D352766D2911F0B26CB33BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:29:22 +0000 ROA not before: Mon 12 Jan 2026 18:15:36 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134971 IP address blocks: 103.252.224.0/22 maxlen: 24 123.253.220.0/22 maxlen: 23 123.253.220.0/23 maxlen: 24 123.253.222.0/24 maxlen: 24 2401:7940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Jan 12 18:15:36 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46962-e976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:14:cf:40:92:25:4b:79:df:42:06:62:5d:2d: 6e:cd:57:35:fc:6f:c6:3a:8b:e0:c2:1b:ca:cb:62: a2:1c:35:11:10:22:cc:ca:7c:30:e1:de:dd:c4:40: 5f:f0:75:0e:22:2a:d0:18:e6:e6:ea:fb:8c:33:1c: 8b:bb:04:31:d2:79:c7:c9:ed:55:01:39:48:45:c6: 14:28:77:08:c5:c8:80:6a:65:8c:df:a5:78:4f:53: cf:2e:10:c0:27:9d:66:db:81:a5:32:a9:ef:35:b0: 6c:02:79:98:46:69:5c:9c:eb:2f:07:7e:67:2c:5d: 36:b3:d2:b0:41:8b:79:98:70:8d:9b:47:15:c2:1b: 8b:bc:b6:78:7d:c8:a4:73:cc:3a:63:96:a4:b7:6b: 1b:cc:dc:b1:be:4d:9b:77:a4:7c:50:d8:50:87:15: 6e:9c:a8:34:7e:af:0f:e1:7e:e4:81:2f:25:0c:1a: 92:65:54:e5:8c:a5:3f:26:25:c1:29:75:ff:0e:9d: a7:0a:e3:a9:a9:78:8e:89:2a:7f:ac:7b:63:e0:11: 35:9f:af:a0:d5:68:64:68:cb:4e:50:f5:45:90:d1: 52:e2:59:af:91:91:7c:3b:cb:d0:df:9d:fb:62:b4: 0e:02:91:79:32:84:da:5e:b2:1d:7c:99:bb:fd:94: 4e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:3D:8D:E0:E2:AB:C4:77:91:77:BF:92:7E:4F:F9:D6:BC:DE:C9:03 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/12D352766D2911F0B26CB33BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.252.224.0/22 123.253.220.0/22 IPv6: 2401:7940::/32 Signature Algorithm: sha256WithRSAEncryption 82:4d:e3:59:25:a9:c5:86:f6:39:aa:6d:f5:f0:42:01:c0:1d: 4d:c7:70:a1:18:34:96:a2:ff:3c:d2:d1:6b:eb:b1:22:4f:03: ae:95:c2:ec:b2:1a:87:42:6f:32:57:c3:92:7a:64:ab:a1:51: 68:55:fd:3f:7b:8f:b2:70:c2:4d:30:10:2d:60:2d:a2:05:c9: fd:58:d8:ec:7b:7d:51:1c:b5:42:74:87:1a:32:e4:b6:3e:5d: 02:43:77:e8:ec:0f:5f:28:14:e8:68:56:47:32:14:79:ef:7c: c5:6f:a7:5a:33:05:72:6f:f6:1a:11:95:75:22:1c:e0:61:fe: b7:ac:0e:04:61:68:50:4c:46:4c:8c:e8:86:4b:7e:df:6a:0c: 03:e8:8e:52:3d:2e:79:63:64:64:72:33:59:3d:e1:27:dd:cc: 2d:c6:2a:de:0e:ff:ad:c2:a8:e6:2e:ee:b1:68:d1:1c:d5:71: f7:f2:92:2d:94:b6:08:3d:5c:70:04:8e:53:b3:7f:0c:5a:70: 8f:02:7f:62:45:26:ae:dc:67:b8:0b:3d:ad:15:0e:45:63:54: bd:04:ee:34:11:c8:62:69:28:50:e8:e0:c3:93:98:97:b2:97: 18:56:aa:4d:f7:44:4e:0a:db:21:9b:d8:3d:54:d7:12:dc:5d: 1b:0b:8a:82 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjYwMTEyMTgxNTM2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njk2Mi1lOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RTPQJIlS3nfQgZiXS1uzVc1/G/GOovgwhvKy2KiHDURECLMynww4d7dxEBf 8HUOIirQGObm6vuMMxyLuwQx0nnHye1VATlIRcYUKHcIxciAamWM36V4T1PPLhDA J51m24GlMqnvNbBsAnmYRmlcnOsvB35nLF02s9KwQYt5mHCNm0cVwhuLvLZ4fcik c8w6Y5akt2sbzNyxvk2bd6R8UNhQhxVunKg0fq8P4X7kgS8lDBqSZVTljKU/JiXB KXX/Dp2nCuOpqXiOiSp/rHtj4BE1n6+g1WhkaMtOUPVFkNFS4lmvkZF8O8vQ3537 YrQOApF5MoTaXrIdfJm7/ZROuwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFA49jeDi q8R3kXe/kn5P+da83skDMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI2QUMvRDdFOThBNkUxNUQwMTFFQTkzQ0EwRTE5QzRGOUFFMDIvMTJEMzUyNzY2 RDI5MTFGMEIyNkNCMzNCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ/zgAwQCe/3cMA0EAgACMAcDBQAkAXlAMA0GCSqGSIb3DQEBCwUA A4IBAQCCTeNZJanFhvY5qm318EIBwB1Nx3ChGDSWov880tFr67EiTwOulcLsshqH Qm8yV8OSemSroVFoVf0/e4+ycMJNMBAtYC2iBcn9WNjse31RHLVCdIcaMuS2Pl0C Q3fo7A9fKBToaFZHMhR573zFb6daMwVyb/YaEZV1IhzgYf63rA4EYWhQTEZMjOiG S37fagwD6I5SPS55Y2RkcjNZPeEn3cwtxireDv+twqjmLu6xaNEc1XH38pItlLYI PVxwBI5Ts38MWnCPAn9iRSau3Ge4Cz2tFQ5FY1S9BO40EchiaShQ6ODDk5iXspcY VqpN90ROCtshm9g9VNcS3F0bC4qC -----END CERTIFICATE-----Generated at Mon Mar 2 12:00:01 2026 by rpki-client