$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa File: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (raw, json) Hash identifier: 2DYUUwYe0W6JaKRaSDK/nTIVkC2tQtPbi07IA11TupM= Subject key identifier: 4D:A0:62:65:E4:CA:75:F4:E7:56:BE:B2:20:DF:06:4B:0E:1F:76:FD Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 029F Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:08:55 +0000 ROA not before: Tue 01 Apr 2025 02:28:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18119 IP address blocks: 103.5.156.0/22 maxlen: 22 202.49.144.0/24 maxlen: 24 202.126.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Apr 1 02:28:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40226-9a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:c5:96:5d:52:c2:c1:8c:42:9a:05:b3:5f: 31:d8:13:0c:56:be:b6:fb:2e:94:cd:56:81:42:a0: 6c:bf:6b:cf:ab:20:a0:b8:4d:be:45:75:b4:2e:4c: e1:0e:36:12:7b:e1:46:f7:99:f5:eb:d0:f4:73:8c: 73:64:ee:32:10:a5:81:d3:3a:26:a7:03:4c:65:33: 7b:0b:5a:f5:51:8f:a2:c9:87:36:af:50:7f:13:fb: 2f:73:62:51:a0:18:d7:da:38:41:9b:80:82:55:94: a7:73:bd:83:25:56:66:82:00:10:5f:c4:07:25:34: 73:ad:1a:e5:cc:d7:30:87:b7:0a:72:d0:24:61:59: ab:1b:65:70:df:dd:73:61:e5:07:75:d7:ae:52:aa: 90:d3:00:73:fe:de:15:be:57:32:47:a3:5d:81:6c: 63:0b:82:e2:32:e3:f3:5c:1d:1d:3b:96:e5:80:e0: fd:f9:00:0e:3e:66:8f:4d:da:21:fd:a2:ac:25:be: 09:78:d5:80:4f:d2:8c:a5:58:6b:3e:2b:06:f6:27: 34:9a:bc:b7:40:1e:0a:b9:68:1a:84:74:86:9a:9e: c3:42:c2:08:2e:ec:61:47:aa:ea:5c:6a:19:aa:bd: d6:72:de:77:10:ef:59:14:75:62:18:74:3b:76:20: 08:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A0:62:65:E4:CA:75:F4:E7:56:BE:B2:20:DF:06:4B:0E:1F:76:FD X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/0B3B85D63A1B11EDAE662B14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.156.0/22 202.49.144.0/24 202.126.80.0/21 Signature Algorithm: sha256WithRSAEncryption b1:b9:45:b2:b5:68:33:52:7e:bd:dc:0d:e8:b0:75:b7:fc:f1: 0f:fc:c3:2f:49:d7:85:d9:4c:38:ad:74:92:66:90:34:ea:79: 17:72:53:7b:e9:30:27:13:74:4b:bb:4a:cb:77:38:7c:5f:49: 94:0a:ad:23:5a:aa:6f:02:52:f8:f6:28:49:0d:f6:88:8a:37: 6c:73:f8:c4:46:b8:b4:ee:70:75:40:b1:a4:bc:05:aa:7c:25: 8d:d0:2c:b8:1b:06:97:3f:e8:89:63:c7:23:55:3f:7a:d3:75: 0a:01:d3:d9:86:20:c3:19:76:b0:08:0a:15:0d:a7:84:65:15: 05:5e:c6:85:d7:b3:d5:87:9a:a2:f9:2b:a4:49:52:25:81:aa: 2d:de:24:cb:ce:72:c7:1f:af:0f:44:c2:c0:20:06:21:fd:86: f3:5c:bb:67:f3:c8:47:dc:12:f0:01:b5:50:2f:8e:42:8b:2e: 14:06:69:ce:47:fc:51:bc:7d:60:2f:3c:25:54:38:de:0f:a6: ca:49:a5:72:cc:c9:d4:85:8e:90:9b:d5:30:fb:74:2a:cc:9b: f9:55:78:e7:b6:7f:8e:b2:c0:36:ce:1f:30:91:66:4e:50:9f: 3a:b5:e7:75:ce:70:c8:d4:23:f2:b4:5d:c6:64:af:f8:8f:19: fa:38:42:29 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUwNDAxMDIyODQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDIyNi05YTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNDFll1SwsGMQpoFs18x2BMMVr62+y6UzVaBQqBsv2vPqyCguE2+RXW0Lkzh DjYSe+FG95n169D0c4xzZO4yEKWB0zompwNMZTN7C1r1UY+iyYc2r1B/E/svc2JR oBjX2jhBm4CCVZSnc72DJVZmggAQX8QHJTRzrRrlzNcwh7cKctAkYVmrG2Vw391z YeUHddeuUqqQ0wBz/t4VvlcyR6NdgWxjC4LiMuPzXB0dO5blgOD9+QAOPmaPTdoh /aKsJb4JeNWAT9KMpVhrPisG9ic0mry3QB4KuWgahHSGmp7DQsIILuxhR6rqXGoZ qr3Wct53EO9ZFHViGHQ7diAIvwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFE2gYmXk ynX051a+siDfBksOH3b9MB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwM0EvREZDNjhENjQzQTE2MTFFRDkxNTJCRjBFQzRGOUFFMDIvMEIzQjg1RDYz QTFCMTFFREFFNjYyQjE0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZwWcAwQAyjGQAwQDyn5QMA0GCSqGSIb3DQEBCwUAA4IBAQCxuUWy tWgzUn693A3osHW3/PEP/MMvSdeF2Uw4rXSSZpA06nkXclN76TAnE3RLu0rLdzh8 X0mUCq0jWqpvAlL49ihJDfaIijdsc/jERri07nB1QLGkvAWqfCWN0Cy4GwaXP+iJ Y8cjVT9603UKAdPZhiDDGXawCAoVDaeEZRUFXsaF17PVh5qi+SukSVIlgaot3iTL znLHH68PRMLAIAYh/YbzXLtn88hH3BLwAbVQL45Ciy4UBmnOR/xRvH1gLzwlVDje D6bKSaVyzMnUhY6Qm9Uw+3QqzJv5VXjntn+OssA2zh8wkWZOUJ86ted1znDI1CPy tF3GZK/4jxn6OEIp -----END CERTIFICATE-----Generated at Mon Mar 2 04:15:09 2026 by rpki-client