$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa File: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (raw, json) Hash identifier: NN7TdFNt1WRW/52kOM2Hp51nX3VWKqgOLsvUo4lFNA8= Subject key identifier: 5C:49:00:9D:F6:67:EC:5D:40:D7:23:F9:2F:D8:E2:B2:7F:91:82:5D Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: BF Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:05:30 +0000 ROA not before: Tue 09 Sep 2025 07:14:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58437 IP address blocks: 103.29.250.0/24 maxlen: 24 103.29.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Sep 9 07:14:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3f34a-7a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:52:e1:2e:4e:eb:36:d2:b5:54:da:56:fa:2e: 99:48:00:72:5b:25:eb:07:c0:66:1b:e3:df:25:b3: 28:76:1a:7c:29:af:63:d5:fe:45:03:53:7b:11:60: aa:44:e0:2b:11:2c:97:2a:b0:7e:03:e1:54:b8:83: c8:3c:6b:5e:5b:b6:21:d4:68:88:d3:74:bb:48:43: ae:b3:1f:c3:ae:8e:55:a9:36:ae:b7:9c:83:9a:76: 23:4f:5a:a8:4c:43:6a:3a:07:91:2e:f9:80:ad:a0: ad:e8:85:86:5a:19:b8:e2:14:1d:06:f6:20:f1:a3: fc:c8:ca:83:1c:3c:82:3a:01:56:d2:76:8c:7a:a3: 42:cc:fa:7e:8d:ae:e8:82:81:3d:6d:aa:d2:7f:45: a0:18:50:c4:97:af:8f:0e:4c:7c:cb:2c:64:6f:13: 60:cb:e9:1d:05:e8:99:34:56:d9:65:be:b1:a6:aa: 49:46:a4:93:a9:40:b9:62:98:a7:c1:99:70:dd:1c: 1c:de:b1:e7:66:79:ca:85:52:e7:ac:b2:3a:e3:de: a3:56:04:73:d8:16:53:c8:a6:df:b2:e1:d1:12:42: bd:ee:90:5f:04:60:9b:8a:67:0f:58:23:73:a9:4f: a3:ad:fd:6c:af:42:22:b3:c6:2a:fc:21:6f:3d:38: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:49:00:9D:F6:67:EC:5D:40:D7:23:F9:2F:D8:E2:B2:7F:91:82:5D X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.29.250.0/23 Signature Algorithm: sha256WithRSAEncryption 63:16:6a:6e:54:74:19:d6:2f:c4:97:3c:34:b0:d9:ec:13:1f: af:d5:b6:81:a7:73:31:49:fc:c2:cf:0b:14:60:d6:28:e9:84: df:d4:30:e3:87:31:6e:06:61:3e:95:0f:33:8e:7a:43:c3:a9: c6:63:84:87:6b:73:eb:0c:08:f2:fd:22:a3:40:0f:a3:aa:f4: 9d:ba:4a:20:fb:4a:69:4c:5c:75:22:73:8a:42:f1:92:58:74: 2c:0e:ed:98:6c:a7:c5:70:12:92:03:bb:b8:f0:80:08:7d:fd: 26:03:1d:c8:b2:3e:04:dc:54:fb:db:6a:5d:50:5b:37:0d:7f: 5c:61:03:e0:31:28:cd:d4:7e:a1:a5:6e:db:98:f1:95:fe:61: b0:93:74:82:f1:88:99:c9:d8:b4:15:68:e5:4e:b9:4b:be:79: c1:78:e6:ae:ba:94:14:7e:56:88:85:a4:59:f0:34:80:a4:5e: 65:ee:f8:7d:73:3c:02:42:47:16:45:80:1e:b4:23:66:75:2b: f6:2d:20:ac:05:f3:fe:87:6b:e7:45:b6:6e:1f:ba:e4:ea:41: 41:5b:df:e5:04:c2:d4:f1:b9:1d:d6:66:aa:cf:f8:c0:f8:76: 32:9f:29:a2:bd:9e:94:9e:89:e5:00:0b:b8:de:26:c5:ef:ee: db:3c:89:89 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCNkMxMTAvBgNVBAUTKDQ3NjdCNjkzQkQ4NDYyRUVBRkE4M0Q5RTgwM0M5RDI4 NkI2MjFEQzgwHhcNMjUwOTA5MDcxNDE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjM0YS03YTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1LhLk7rNtK1VNpW+i6ZSAByWyXrB8BmG+PfJbModhp8Ka9j1f5FA1N7EWCq ROArESyXKrB+A+FUuIPIPGteW7Yh1GiI03S7SEOusx/Dro5VqTaut5yDmnYjT1qo TENqOgeRLvmAraCt6IWGWhm44hQdBvYg8aP8yMqDHDyCOgFW0naMeqNCzPp+ja7o goE9barSf0WgGFDEl6+PDkx8yyxkbxNgy+kdBeiZNFbZZb6xpqpJRqSTqUC5Ypin wZlw3Rwc3rHnZnnKhVLnrLI6496jVgRz2BZTyKbfsuHREkK97pBfBGCbimcPWCNz qU+jrf1sr0Iis8Yq/CFvPTi5/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFxJAJ32 Z+xdQNcj+S/Y4rJ/kYJdMB8GA1UdIwQYMBaAFEdntpO9hGLur6g9noA8nShrYh3I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUI2Qy9EN0RCMEEwOEZB NUQxMUVGQUUzNzRENjhDNEY5QUUwMi9SMmUyazcyRVl1NnZxRDJlZ0R5ZEtHdGlI Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlCNkMvRDdEQjBBMDhGQTVEMTFFRkFFMzc0RDY4QzRGOUFFMDIvM0Q2MEI2RkNG QTVFMTFFRkI4NEFGMDY4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZx36MA0GCSqGSIb3DQEBCwUAA4IBAQBjFmpuVHQZ1i/Elzw0sNns Ex+v1baBp3MxSfzCzwsUYNYo6YTf1DDjhzFuBmE+lQ8zjnpDw6nGY4SHa3PrDAjy /SKjQA+jqvSdukog+0ppTFx1InOKQvGSWHQsDu2YbKfFcBKSA7u48IAIff0mAx3I sj4E3FT722pdUFs3DX9cYQPgMSjN1H6hpW7bmPGV/mGwk3SC8YiZydi0FWjlTrlL vnnBeOauupQUflaIhaRZ8DSApF5l7vh9czwCQkcWRYAetCNmdSv2LSCsBfP+h2vn RbZuH7rk6kFBW9/lBMLU8bkd1maqz/jA+HYynymivZ6UnonlAAu43ibF7+7bPImJ -----END CERTIFICATE-----Generated at Mon Mar 2 02:07:08 2026 by rpki-client