$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa File: 5D58A6368CBD11EFBA479615C4F9AE02.roa (raw, json) Hash identifier: WXld54/qQpJ20SP2MF49RJrfgvRKOagSnwKZf6AK3Ng= Subject key identifier: 16:F3:07:F8:53:76:F0:71:3F:3E:66:89:D0:22:5C:06:AF:D8:5B:41 Certificate issuer: /CN=A91EDFAF/serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Certificate serial: 0117 Authority key identifier: 0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:42:21 +0000 ROA not before: Tue 01 Jul 2025 07:43:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132804 IP address blocks: 27.109.104.0/22 maxlen: 22 103.2.105.0/24 maxlen: 24 103.2.106.0/24 maxlen: 24 2404:e600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDFAF, serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Validity Not Before: Jul 1 07:43:04 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a593bd-0fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:44:ee:bb:46:2c:e1:f4:57:46:d1:31:48:f8: da:20:35:9f:ed:03:d5:c6:f9:e3:5e:1f:e2:3d:76: c5:b1:0f:c4:fb:ae:f4:38:f8:c9:78:88:04:7e:c5: 4a:90:2f:37:97:cf:de:d2:30:94:64:11:bc:11:9d: d0:85:1d:08:94:41:7b:23:4e:4c:78:7d:22:12:2c: 52:73:20:ff:d1:33:12:88:f6:e5:05:31:33:02:a1: 9d:26:68:c9:bb:14:d9:24:a5:3a:24:f3:d5:56:ea: 8d:ed:4b:47:3e:f3:be:1d:93:82:e4:10:6f:73:b8: da:2b:21:4e:46:b6:b5:7b:95:41:81:33:ba:ff:bb: af:f8:68:ba:91:62:a3:59:8f:a9:77:25:ed:04:b0: 3e:27:8d:c8:ab:cf:f1:f1:ee:2d:3f:ab:ef:24:96: d0:f5:4a:e8:b6:30:8e:de:2f:d7:fd:64:91:b2:94: 2b:ab:5a:0f:de:f0:2f:f5:7d:cc:80:0b:c8:f1:c3: 00:1d:12:a2:ae:b8:bb:13:07:10:f8:4d:d3:9a:62: 1d:ba:5e:a2:0c:ae:19:2d:48:77:ed:e2:b1:d8:13: f7:a0:db:02:32:19:fa:7b:fd:f7:de:55:49:09:96: 0d:b5:51:73:a7:70:00:4f:05:a8:9f:b4:e9:4d:bd: 54:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F3:07:F8:53:76:F0:71:3F:3E:66:89:D0:22:5C:06:AF:D8:5B:41 X509v3 Authority Key Identifier: keyid:0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5D58A6368CBD11EFBA479615C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.109.104.0/22 103.2.105.0-103.2.106.255 IPv6: 2404:e600::/48 Signature Algorithm: sha256WithRSAEncryption 38:7d:3f:d9:1c:38:3c:2d:0c:2f:1b:ee:51:f8:fd:79:ea:ed: 24:12:12:e9:d3:38:8c:97:98:19:98:a6:e7:70:98:97:a4:2a: 67:56:f2:1d:1e:ab:e6:71:9c:fa:a8:63:de:4b:79:06:fc:4c: 49:58:0d:8d:8c:83:d7:97:f4:cf:75:15:4c:af:fb:f1:fd:cb: 3b:59:dc:bc:93:28:67:2f:62:2e:33:b2:01:48:7f:75:69:92: ad:6c:7e:54:9b:ed:39:e9:23:ab:dd:07:ef:26:9e:7f:40:89: 70:66:b9:80:ac:e0:78:d2:e9:3a:98:e2:35:27:de:18:cd:74: 62:be:63:9e:97:cc:ad:b6:15:05:27:3d:ca:c0:b4:79:4c:06: 8f:7e:fc:71:fd:12:89:a3:4d:8d:2b:fd:59:f8:07:bb:11:16: 5e:47:69:27:94:bd:e8:e1:83:9c:df:fe:1b:91:13:6b:48:38: fd:f7:22:93:10:2f:23:bc:2c:37:a1:b4:20:ee:e9:ff:e4:e9: 71:67:92:e7:bc:e7:d9:4a:7c:46:d7:47:39:43:0c:12:24:11: 75:53:03:5d:9b:50:59:03:3d:f5:a7:bc:64:67:26:1e:8a:22: 77:3c:38:e9:3f:20:cc:a6:b8:37:a6:73:87:da:39:2e:e1:a0: c9:74:da:f2 -----BEGIN CERTIFICATE----- MIIFWzCCBEOgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGQUYxMTAvBgNVBAUTKDBFNjYzQ0I0OTAwRUY0RDgyMkY5OUFCREUyN0ZBNDAz QUI5RjRDNDAwHhcNMjUwNzAxMDc0MzA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTNiZC0wZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUTuu0Ys4fRXRtExSPjaIDWf7QPVxvnjXh/iPXbFsQ/E+670OPjJeIgEfsVK kC83l8/e0jCUZBG8EZ3QhR0IlEF7I05MeH0iEixScyD/0TMSiPblBTEzAqGdJmjJ uxTZJKU6JPPVVuqN7UtHPvO+HZOC5BBvc7jaKyFORra1e5VBgTO6/7uv+Gi6kWKj WY+pdyXtBLA+J43Iq8/x8e4tP6vvJJbQ9UrotjCO3i/X/WSRspQrq1oP3vAv9X3M gAvI8cMAHRKirri7EwcQ+E3TmmIdul6iDK4ZLUh37eKx2BP3oNsCMhn6e/333lVJ CZYNtVFzp3AATwWon7TpTb1UDQIDAQABo4ICfzCCAnswHQYDVR0OBBYEFBbzB/hT dvBxPz5midAiXAav2FtBMB8GA1UdIwQYMBaAFA5mPLSQDvTYIvmaveJ/pAOrn0xA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREZBRi85N0JFOTMwRThD QkMxMUVGQkYyMjAwMTJDNEY5QUUwMi9EbVk4dEpBTzlOZ2ktWnE5NG4ta0E2dWZU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtWTh0SkFPOU5naS1acTk0bi1rQTZ1ZlRFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURGQUYvOTdCRTkzMEU4Q0JDMTFFRkJGMjIwMDEyQzRGOUFFMDIvNUQ1OEE2MzY4 Q0JEMTFFRkJBNDc5NjE1QzRGOUFFMDIucm9hMD4GCCsGAQUFBwEHAQH/BC8wLTAa BAIAATAUAwQCG21oMAwDBABnAmkDBABnAmowDwQCAAIwCQMHACQE5gAAADANBgkq hkiG9w0BAQsFAAOCAQEAOH0/2Rw4PC0MLxvuUfj9eertJBIS6dM4jJeYGZim53CY l6QqZ1byHR6r5nGc+qhj3kt5BvxMSVgNjYyD15f0z3UVTK/78f3LO1ncvJMoZy9i LjOyAUh/dWmSrWx+VJvtOekjq90H7yaef0CJcGa5gKzgeNLpOpjiNSfeGM10Yr5j npfMrbYVBSc9ysC0eUwGj378cf0SiaNNjSv9WfgHuxEWXkdpJ5S96OGDnN/+G5ET a0g4/fcikxAvI7wsN6G0IO7p/+TpcWeS57zn2Up8RtdHOUMMEiQRdVMDXZtQWQM9 9ae8ZGcmHooidzw46T8gzKa4N6Zzh9o5LuGgyXTa8g== -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:40 2026 by rpki-client