$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa File: DF502EECD44511E984021644C4F9AE02.roa (raw, json) Hash identifier: 21AjYTfLUshiJrSB8v0qMUe0rh432FPnINO3hRlb2tM= Subject key identifier: 93:0D:14:73:70:D9:B7:C3:56:87:54:31:4F:02:77:44:62:FB:66:65 Certificate issuer: /CN=A91FB924/serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Certificate serial: 3527 Authority key identifier: B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:30:47 +0000 ROA not before: Tue 06 Jan 2026 15:10:57 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 56055 IP address blocks: 103.17.44.0/22 maxlen: 22 118.179.224.0/19 maxlen: 19 163.47.248.0/22 maxlen: 22 202.22.224.0/20 maxlen: 20 203.80.48.0/21 maxlen: 21 2407:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13607 (0x3527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB924, serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Validity Not Before: Jan 6 15:10:57 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44d97-1412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:cd:7a:36:b0:46:46:c9:64:9e:64:af:e4:08: c0:3f:78:be:51:5e:db:cb:fe:e5:c0:e2:a4:8e:7a: 25:b0:79:e4:ab:ca:35:ea:e1:1a:a1:6d:74:19:1f: f5:70:96:9e:ab:dc:38:9f:5c:ac:64:39:4c:27:86: 5e:7c:bb:e5:bf:76:01:c6:15:6d:a8:58:c3:1f:d3: 21:aa:fc:6e:e4:3d:b6:dd:a7:67:63:c6:42:4b:50: d7:53:51:81:d0:f0:d4:55:30:28:95:38:74:08:07: e9:ca:65:f5:78:2e:52:c4:a4:83:7c:75:d0:7d:ff: 15:e2:20:b7:53:c5:c9:a2:c3:4c:c3:b5:e7:8f:67: 8e:52:45:e5:39:14:8d:64:c1:1a:4b:c5:9e:ff:65: 79:09:4a:d7:fa:c9:24:05:fd:43:02:23:5a:b7:0f: 73:59:c5:4d:94:3a:fb:e0:3c:33:8d:d1:28:10:d6: d8:54:39:05:13:68:bc:21:38:9d:1d:40:20:26:89: e2:8b:9e:81:a7:14:f5:9b:bf:25:cb:1b:d5:a5:d2: 62:a9:1d:5d:2a:53:47:c1:a1:f9:d1:17:ba:ba:cd: 5b:f1:49:10:f2:50:bb:10:ce:af:06:ff:e7:d1:f4: 81:80:d6:1c:60:fe:75:9b:14:ef:65:83:66:1f:90: 26:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0D:14:73:70:D9:B7:C3:56:87:54:31:4F:02:77:44:62:FB:66:65 X509v3 Authority Key Identifier: keyid:B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.44.0/22 118.179.224.0/19 163.47.248.0/22 202.22.224.0/20 203.80.48.0/21 IPv6: 2407:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 02:ed:83:fc:2d:31:fa:2b:c8:81:46:fd:4f:59:54:54:4b:61: 3d:0a:0a:d1:8e:19:6e:41:34:9b:f1:bf:7c:24:02:e9:6e:4a: cf:e3:3d:15:74:47:ea:e6:93:6e:a5:d0:a4:7d:49:dd:ca:67: 3a:fe:17:d2:92:9a:0f:aa:58:30:9e:e0:1a:d4:74:7e:70:eb: 1a:8b:8c:76:a6:13:85:ed:4a:1f:f8:c9:e0:ee:87:ea:ac:33: c7:0e:20:c3:58:f9:1e:29:34:21:d7:5d:5b:ca:df:4d:44:53: d4:5a:60:72:17:67:27:33:d7:62:7e:0a:aa:48:02:e7:67:34: 63:5f:3e:6f:7f:10:18:1a:e3:8e:2f:d8:9b:d1:9e:c6:0e:7c: a9:a6:2b:92:8b:03:5e:64:62:1e:93:fc:07:fa:b5:5a:e3:9d: 59:5c:7f:b6:67:51:db:7d:01:3a:6e:67:a4:91:74:47:34:4a: 78:f0:d0:67:41:9a:1f:ec:c2:7b:e6:d8:82:63:8c:be:9c:78: 5a:ed:3b:b3:9a:ea:84:8e:fc:52:9c:ac:c2:25:28:bd:85:ca: e9:df:3f:b1:28:05:e3:53:70:a5:eb:66:c4:21:b5:72:68:eb: d1:23:76:4b:25:ca:0a:ab:36:40:63:a0:8d:c9:75:2c:09:90: c4:48:98:f8 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICNScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI5MjQxMTAvBgNVBAUTKEIyQUEzRTNBNUIyOUUwRjQxQ0RENUE2MTdGN0ZCNkEz N0ExQjkwMTEwHhcNMjYwMTA2MTUxMDU3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQ5Ny0xNDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6816NrBGRslknmSv5AjAP3i+UV7by/7lwOKkjnolsHnkq8o16uEaoW10GR/1 cJaeq9w4n1ysZDlMJ4ZefLvlv3YBxhVtqFjDH9Mhqvxu5D223adnY8ZCS1DXU1GB 0PDUVTAolTh0CAfpymX1eC5SxKSDfHXQff8V4iC3U8XJosNMw7Xnj2eOUkXlORSN ZMEaS8We/2V5CUrX+skkBf1DAiNatw9zWcVNlDr74DwzjdEoENbYVDkFE2i8ITid HUAgJonii56BpxT1m78lyxvVpdJiqR1dKlNHwaH50Re6us1b8UkQ8lC7EM6vBv/n 0fSBgNYcYP51mxTvZYNmH5AmkwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFJMNFHNw 2bfDVodUMU8Cd0Ri+2ZlMB8GA1UdIwQYMBaAFLKqPjpbKeD0HN1aYX9/tqN6G5AR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjkyNC9GRUQyM0Q4MjFE OEIxMUUyODZBMkU1RTYwOEIwMkNEMi9zcW8tT2xzcDRQUWMzVnBoZjMtMm8zb2Jr QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nxby1PbHNwNFBRYzNWcGhmMy0ybzNvYmtCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI5MjQvRkVEMjNEODIxRDhCMTFFMjg2QTJFNUU2MDhCMDJDRDIvREY1MDJFRUNE NDQ1MTFFOTg0MDIxNjQ0QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZxEsAwQFdrPgAwQCoy/4AwQEyhbgAwQDy1AwMA0EAgACMAcDBQAk B0oAMA0GCSqGSIb3DQEBCwUAA4IBAQAC7YP8LTH6K8iBRv1PWVRUS2E9CgrRjhlu QTSb8b98JALpbkrP4z0VdEfq5pNupdCkfUndymc6/hfSkpoPqlgwnuAa1HR+cOsa i4x2phOF7Uof+Mng7ofqrDPHDiDDWPkeKTQh111byt9NRFPUWmByF2cnM9difgqq SALnZzRjXz5vfxAYGuOOL9ib0Z7GDnyppiuSiwNeZGIek/wH+rVa451ZXH+2Z1Hb fQE6bmekkXRHNEp48NBnQZof7MJ75tiCY4y+nHha7TuzmuqEjvxSnKzCJSi9hcrp 3z+xKAXjU3Cl62bEIbVyaOvRI3ZLJcoKqzZAY6CNyXUsCZDESJj4 -----END CERTIFICATE-----Generated at Mon Mar 2 12:39:46 2026 by rpki-client