$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa File: A10812CA0CD511EB9433AE69C4F9AE02.roa (raw, json) Hash identifier: NMTUrKMIx31/0mtiq6P7wggIISpvN4nrVOQG47MIy0w= Subject key identifier: DC:4F:F9:0F:01:97:2B:8D:42:E5:68:41:4B:96:D2:5B:3E:87:5B:86 Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 0830 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:38:22 +0000 ROA not before: Thu 06 Mar 2025 21:41:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9290 IP address blocks: 103.11.144.0/22 maxlen: 22 110.34.52.0/22 maxlen: 22 121.127.35.0/24 maxlen: 24 202.47.95.0/24 maxlen: 24 203.83.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50, serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Mar 6 21:41:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4090e-685c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:f1:db:eb:28:98:ea:b8:6f:84:6e:31:bd: 43:61:4a:24:ea:3e:63:ae:93:20:7b:14:6d:e3:f3: 06:eb:57:ec:39:fc:3b:b4:14:9a:4d:2b:4a:43:cf: 93:b5:a9:98:13:9e:33:d7:6e:81:52:ca:e7:8a:dc: f7:70:98:d2:35:70:fa:25:53:ba:a7:4a:51:14:4e: 54:34:f6:c7:3d:d2:af:23:15:8d:e1:03:05:f8:f2: ee:5f:a5:6c:7a:c0:0c:68:ff:87:6a:19:69:d6:65: d8:3d:4d:6e:63:d3:48:e7:23:3a:bb:1b:e8:ae:63: c2:ec:6a:ea:28:cd:99:0a:cf:64:cc:de:f9:a2:53: c4:0d:e3:8c:f7:1c:b5:b7:83:dc:f3:94:93:8b:43: 55:c0:59:9f:23:9e:bc:96:29:0c:7b:a8:da:f4:4b: 28:14:fa:73:7e:02:6e:e7:aa:c7:82:98:d0:a0:1e: 19:98:04:b6:2d:bf:d7:40:e9:74:9a:58:48:49:52: 1a:a3:e3:c5:67:f2:1c:30:ad:48:57:44:de:0e:09: 50:9a:fc:81:ee:22:1f:f7:54:f4:ef:9a:9d:81:73: 30:85:41:05:3c:ac:38:9f:dc:0f:f7:b0:4f:5b:2a: 7e:4a:26:91:38:cf:70:d1:e5:6f:46:23:2d:6f:4d: 43:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4F:F9:0F:01:97:2B:8D:42:E5:68:41:4B:96:D2:5B:3E:87:5B:86 X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.144.0/22 110.34.52.0/22 121.127.35.0/24 202.47.95.0/24 203.83.219.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a6:02:b3:7d:f3:bb:0c:72:d6:1a:c4:93:bc:9d:2e:d6:d5: fb:df:f9:7b:71:4e:88:0e:bd:b9:e1:a0:4e:6d:16:12:19:93: b3:b0:5a:82:d1:13:fb:81:21:72:fc:c3:a0:ee:11:8d:8e:cf: bd:67:20:8b:ee:80:fb:4e:df:de:ab:28:e9:d7:8b:bd:8e:1e: 74:4e:4b:0d:ce:1f:a2:41:52:62:12:d4:e2:ba:77:83:34:bd: 17:03:66:29:3d:fd:89:47:19:0a:d5:9a:da:d9:54:73:f2:12: 2a:78:07:78:84:8a:90:10:9e:a4:8d:f9:84:c8:ea:3f:e2:29: 87:58:9d:d8:19:e7:35:ea:6f:f4:82:51:9c:75:be:0b:c1:51: e7:80:7d:b2:ad:9d:2d:b4:b4:0b:2e:82:a6:f1:b9:55:46:e8: d8:84:88:26:a0:36:18:f8:d6:33:15:8b:98:52:c2:94:c2:22: 16:bd:2b:87:ab:f0:ec:26:4d:31:1c:82:71:8e:25:de:ef:0e: 51:db:f5:26:d6:8e:74:b6:8e:7f:9f:05:c5:af:67:42:45:9f: 1b:8e:f6:ff:16:80:4c:fc:06:54:12:db:bc:c1:d8:06:3f:25: 77:3f:8b:fa:15:4f:32:e4:b1:14:0f:5e:73:85:12:fd:f0:14: 83:26:da:90 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjUwMzA2MjE0MTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDkwZS02ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpnx2+somOq4b4RuMb1DYUok6j5jrpMgexRt4/MG61fsOfw7tBSaTStKQ8+T tamYE54z126BUsrnitz3cJjSNXD6JVO6p0pRFE5UNPbHPdKvIxWN4QMF+PLuX6Vs esAMaP+Hahlp1mXYPU1uY9NI5yM6uxvormPC7GrqKM2ZCs9kzN75olPEDeOM9xy1 t4Pc85STi0NVwFmfI568likMe6ja9EsoFPpzfgJu56rHgpjQoB4ZmAS2Lb/XQOl0 mlhISVIao+PFZ/IcMK1IV0TeDglQmvyB7iIf91T075qdgXMwhUEFPKw4n9wP97BP Wyp+SiaROM9w0eVvRiMtb01DXQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFNxP+Q8B lyuNQuVoQUuW0ls+h1uGMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvQTEwODEyQ0Ew Q0Q1MTFFQjk0MzNBRTY5QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZwuQAwQCbiI0AwQAeX8jAwQAyi9fAwQAy1PbMA0GCSqGSIb3DQEB CwUAA4IBAQAHpgKzffO7DHLWGsSTvJ0u1tX73/l7cU6IDr254aBObRYSGZOzsFqC 0RP7gSFy/MOg7hGNjs+9ZyCL7oD7Tt/eqyjp14u9jh50TksNzh+iQVJiEtTiuneD NL0XA2YpPf2JRxkK1Zra2VRz8hIqeAd4hIqQEJ6kjfmEyOo/4imHWJ3YGec16m/0 glGcdb4LwVHngH2yrZ0ttLQLLoKm8blVRujYhIgmoDYY+NYzFYuYUsKUwiIWvSuH q/DsJk0xHIJxjiXe7w5R2/Um1o50to5/nwXFr2dCRZ8bjvb/FoBM/AZUEtu8wdgG PyV3P4v6FU8y5LEUD15zhRL98BSDJtqQ -----END CERTIFICATE-----Generated at Mon Mar 2 17:05:05 2026 by rpki-client