$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa File: 12702794577711ECB7FD0C6FC4F9AE02.roa (raw, json) Hash identifier: E1ZhKxPEzQQ/QbldcIhGwEwKe1KS8Rg1yFxMH77UIsk= Subject key identifier: E8:A6:FB:B7:92:CF:EB:3D:DD:76:FE:54:5F:78:F4:DF:F3:36:D6:C3 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 04E6 Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:58:34 +0000 ROA not before: Thu 17 Jul 2025 00:35:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18196 IP address blocks: 103.115.21.0/24 maxlen: 24 103.123.27.0/24 maxlen: 24 103.123.36.0/23 maxlen: 23 103.123.36.0/24 maxlen: 24 103.123.37.0/24 maxlen: 24 2001:df5:1700::/48 maxlen: 48 2400:3c20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Jul 17 00:35:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40dca-9a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8d:0e:6d:34:04:dd:8f:89:61:31:93:40:34: 8c:50:05:6b:0f:60:0a:fa:11:09:bb:51:5e:29:64: 4a:80:e0:4d:36:2d:ad:b1:0c:81:72:14:98:ba:c1: f0:f6:47:51:8d:7d:f2:3e:1d:80:3b:84:f9:35:b7: 39:2d:59:a6:00:6d:b7:06:3d:68:92:10:7e:be:74: ca:23:c0:82:b1:5e:d8:81:15:26:85:06:42:2e:9f: b8:47:fb:81:14:5d:5a:39:df:c9:ad:a4:67:e9:f9: dd:5e:97:fa:7e:95:d1:9d:ce:8f:d4:d9:18:31:6e: 27:e3:bd:99:29:35:31:49:9e:88:e9:9f:cc:0a:ba: 02:35:6c:16:f9:f8:44:eb:81:a6:5d:c0:f0:bd:a0: 8c:53:e2:07:9d:28:54:3b:f0:5a:49:15:54:51:f0: 54:f8:8a:ac:ec:b9:ed:ae:99:81:36:f0:8d:7f:c5: 1b:30:b6:0a:79:c2:4f:b5:d0:ba:8f:38:60:7b:59: e1:7d:2a:36:7b:12:f1:c2:b9:66:52:a9:1f:10:de: 92:5b:18:f1:46:3c:69:1c:f0:7c:c7:31:e6:0a:92: 30:e5:49:50:d4:c2:45:99:18:81:5c:40:c5:5d:05: e6:d6:89:05:34:92:d4:2e:aa:73:bf:5a:e7:82:c7: e6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A6:FB:B7:92:CF:EB:3D:DD:76:FE:54:5F:78:F4:DF:F3:36:D6:C3 X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/12702794577711ECB7FD0C6FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.115.21.0/24 103.123.27.0/24 103.123.36.0/23 IPv6: 2001:df5:1700::/48 2400:3c20::/32 Signature Algorithm: sha256WithRSAEncryption 2b:e0:9a:be:77:a3:b2:77:76:9c:ed:6a:0d:e7:3e:50:bd:1e: ee:be:41:6e:00:9a:84:a2:41:93:b1:7a:45:17:14:1a:cc:2e: ff:78:8e:21:30:6b:75:28:b0:61:5b:7a:6d:bf:55:ef:32:f7: 24:9f:31:16:4a:d8:28:1e:06:22:70:81:51:bc:e0:91:82:e4: 4f:69:01:86:e5:0b:bd:77:41:ee:0c:da:6e:d4:b4:01:03:40: 3f:fd:b0:b9:66:74:cc:58:d3:b8:c9:f4:46:50:99:45:b1:f1: 1f:db:62:7f:8b:2b:63:b2:76:f4:5e:4b:f8:b5:d9:7a:17:b5: 88:1c:06:c8:a8:67:02:fe:b5:dd:d6:87:1c:23:dc:f0:87:4b: 9d:93:eb:c8:36:e8:5c:17:1b:eb:84:07:a6:06:bd:6f:fc:b6: 50:a6:28:41:18:6f:b5:a7:6e:60:27:2c:9a:f7:d2:15:34:e1: e8:f8:2a:52:98:69:32:51:f2:66:88:e5:75:c6:46:d6:dd:83: 5e:af:fc:72:c9:83:f3:31:51:15:b2:24:da:93:36:ba:16:9b: 79:8e:3c:f0:a0:87:7d:0a:07:b3:06:4d:cb:97:d0:f1:d1:45: 38:c9:16:90:f2:b2:4b:25:2f:5d:fa:c5:14:ef:c9:e1:d6:89: 32:b8:d3:5f -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUwNzE3MDAzNTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGRjYS05YTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y0ObTQE3Y+JYTGTQDSMUAVrD2AK+hEJu1FeKWRKgOBNNi2tsQyBchSYusHw 9kdRjX3yPh2AO4T5Nbc5LVmmAG23Bj1okhB+vnTKI8CCsV7YgRUmhQZCLp+4R/uB FF1aOd/JraRn6fndXpf6fpXRnc6P1NkYMW4n472ZKTUxSZ6I6Z/MCroCNWwW+fhE 64GmXcDwvaCMU+IHnShUO/BaSRVUUfBU+Iqs7LntrpmBNvCNf8UbMLYKecJPtdC6 jzhge1nhfSo2exLxwrlmUqkfEN6SWxjxRjxpHPB8xzHmCpIw5UlQ1MJFmRiBXEDF XQXm1okFNJLULqpzv1rngsfmfQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFOim+7eS z+s93Xb+VF949N/zNtbDMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM5QTkvNTI1NDg2Qjg1NjYyMTFFQ0I4RUM3MzMxQzRGOUFFMDIvMTI3MDI3OTQ1 Nzc3MTFFQ0I3RkQwQzZGQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAY BAIAATASAwQAZ3MVAwQAZ3sbAwQBZ3skMBYEAgACMBADBwAgAQ31FwADBQAkADwg MA0GCSqGSIb3DQEBCwUAA4IBAQAr4Jq+d6Oyd3ac7WoN5z5QvR7uvkFuAJqEokGT sXpFFxQazC7/eI4hMGt1KLBhW3ptv1XvMvcknzEWStgoHgYicIFRvOCRguRPaQGG 5Qu9d0HuDNpu1LQBA0A//bC5ZnTMWNO4yfRGUJlFsfEf22J/iytjsnb0Xkv4tdl6 F7WIHAbIqGcC/rXd1occI9zwh0udk+vINuhcFxvrhAemBr1v/LZQpihBGG+1p25g Jyya99IVNOHo+CpSmGkyUfJmiOV1xkbW3YNer/xyyYPzMVEVsiTakza6Fpt5jjzw oId9CgezBk3Ll9Dx0UU4yRaQ8rJLJS9d+sUU78nh1okyuNNf -----END CERTIFICATE-----Generated at Mon Mar 2 13:02:36 2026 by rpki-client