$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa File: CE3C7EF66FEB11EB91967864C4F9AE02.roa (raw, json) Hash identifier: pVllpqaYkicaFIWTL2XyjS6RmEOfq4yPCoNoR4rIsP4= Subject key identifier: 0D:7F:29:07:CB:81:E9:03:C4:C5:D0:5D:9E:07:5C:E5:98:FB:E0:40 Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0D07 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:10:25 +0000 ROA not before: Wed 11 Feb 2026 07:05:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18053 IP address blocks: 103.137.24.0/22 maxlen: 22 118.107.128.0/20 maxlen: 20 118.107.128.0/24 maxlen: 24 2404:8300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3335 (0xd07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Feb 11 07:05:59 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48f21-df6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:37:42:ea:ad:77:2c:28:15:9a:4e:9e:2d:9c: 0b:fc:af:ec:ac:b0:29:79:6f:52:e6:0f:c3:7b:53: 51:b7:2a:3a:9c:bc:d8:96:01:5f:2a:56:42:65:08: f0:8e:e8:2e:60:34:86:82:71:03:11:1a:3d:80:de: 2d:34:4c:6c:67:77:c4:2f:5e:ae:a2:89:1a:12:b3: de:22:9d:88:9e:68:0c:bc:77:fe:b2:03:14:7b:9d: 7d:b2:e0:e8:df:60:a3:bd:da:8e:69:88:f3:fb:96: 0d:ec:79:89:d9:09:f2:4d:af:8c:9d:67:f9:cc:ef: dd:ca:c7:f8:e9:7b:7a:d3:0b:4d:4c:88:7d:7d:3c: e7:66:ef:af:fb:5b:3d:80:40:17:2f:20:45:cf:bf: ee:40:ab:63:14:90:19:a5:66:39:83:39:48:07:26: 37:8c:32:34:6a:e6:0c:bf:da:72:cd:3f:f2:85:a0: 20:e9:da:85:80:01:03:e7:1f:07:ec:d0:7b:64:c6: 37:d7:35:36:32:9c:7d:63:7d:f1:5a:07:f1:81:b5: 54:33:8b:49:93:cf:49:f0:89:7b:94:b9:2c:ca:fc: 2a:95:fa:85:4d:9f:13:13:1e:55:e5:bf:2d:a3:0c: ff:f7:d0:c7:8a:16:55:15:23:1b:e4:71:bb:99:bf: 0d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7F:29:07:CB:81:E9:03:C4:C5:D0:5D:9E:07:5C:E5:98:FB:E0:40 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/CE3C7EF66FEB11EB91967864C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.24.0/22 118.107.128.0/20 IPv6: 2404:8300::/32 Signature Algorithm: sha256WithRSAEncryption 7a:6c:c5:c5:f7:d3:93:5a:40:8c:3a:9a:d4:62:2f:c0:01:13: 60:43:76:14:1c:d2:e3:12:dc:4a:db:89:4e:e7:bb:16:00:e1: 88:56:f5:8e:7d:c5:21:2d:12:c9:34:cb:b6:7f:a4:0e:f9:53: 01:58:6d:10:e6:fa:54:a0:b9:01:d3:31:62:38:2b:b2:74:de: 05:07:36:1f:8d:76:ad:09:db:51:4d:72:94:bc:40:f7:1c:0a: ec:78:7b:2e:0d:01:0b:39:96:f1:2b:8c:3d:f6:44:67:3d:b2: 23:a5:e7:5d:6d:b9:9e:c4:a2:e9:ac:c9:0e:f7:8d:51:ff:d3: d9:e6:a2:c1:2d:d1:0a:1e:62:9b:ee:a4:ac:12:65:6a:d0:94: 1a:ba:c6:ea:7b:1a:a2:53:8c:37:20:7e:e2:c1:88:9e:c7:d2: 62:a3:52:8f:53:95:3c:2c:63:28:2f:1d:65:f2:87:81:bc:3f: 00:41:3d:89:ab:e6:d8:69:f4:c7:c9:87:d5:8b:24:1a:d2:dc: 15:68:0a:bf:15:90:35:dd:25:0d:c7:b8:ce:05:62:1f:e4:77: a8:d2:75:df:65:c8:61:af:4a:c0:84:b2:8c:67:14:25:8a:7e: 40:48:79:9a:3a:f6:4d:dc:bb:9a:cd:4d:a5:3c:0c:2a:f0:88: 0b:9a:b6:62 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjYwMjExMDcwNTU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGYyMS1kZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDdC6q13LCgVmk6eLZwL/K/srLApeW9S5g/De1NRtyo6nLzYlgFfKlZCZQjw juguYDSGgnEDERo9gN4tNExsZ3fEL16uookaErPeIp2InmgMvHf+sgMUe519suDo 32CjvdqOaYjz+5YN7HmJ2QnyTa+MnWf5zO/dysf46Xt60wtNTIh9fTznZu+v+1s9 gEAXLyBFz7/uQKtjFJAZpWY5gzlIByY3jDI0auYMv9pyzT/yhaAg6dqFgAED5x8H 7NB7ZMY31zU2Mpx9Y33xWgfxgbVUM4tJk89J8Il7lLksyvwqlfqFTZ8TEx5V5b8t owz/99DHihZVFSMb5HG7mb8NEwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFA1/KQfL gekDxMXQXZ4HXOWY++BAMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBBRjAvRTM3NjI5NTAwRkZGMTFFOTg4MTVBRTIyQzRGOUFFMDIvQ0UzQzdFRjY2 RkVCMTFFQjkxOTY3ODY0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ4kYAwQEdmuAMA0EAgACMAcDBQAkBIMAMA0GCSqGSIb3DQEBCwUA A4IBAQB6bMXF99OTWkCMOprUYi/AARNgQ3YUHNLjEtxK24lO57sWAOGIVvWOfcUh LRLJNMu2f6QO+VMBWG0Q5vpUoLkB0zFiOCuydN4FBzYfjXatCdtRTXKUvED3HArs eHsuDQELOZbxK4w99kRnPbIjpeddbbmexKLprMkO941R/9PZ5qLBLdEKHmKb7qSs EmVq0JQausbqexqiU4w3IH7iwYiex9Jio1KPU5U8LGMoLx1l8oeBvD8AQT2Jq+bY afTHyYfViyQa0twVaAq/FZA13SUNx7jOBWIf5Heo0nXfZchhr0rAhLKMZxQlin5A SHmaOvZN3LuazU2lPAwq8IgLmrZi -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:26 2026 by rpki-client