$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/9E1721445CFB11EAA377D527C4F9AE02.roa File: 9E1721445CFB11EAA377D527C4F9AE02.roa (raw, json) Hash identifier: KFWCj0VeMTZsryK7dYwol+clwxvg1qf8whaXnrZDGPg= Subject key identifier: 96:43:6C:7D:56:E6:14:63:D8:E4:BC:74:0C:3E:54:E1:B0:51:6E:B0 Certificate issuer: /CN=A91FCA4B/serialNumber=EF9E52BF9F4865CAF8787AD95CE6DE4F6476840D Certificate serial: 0B20 Authority key identifier: EF:9E:52:BF:9F:48:65:CA:F8:78:7A:D9:5C:E6:DE:4F:64:76:84:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/755Sv59IZcr4eHrZXObeT2R2hA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/9E1721445CFB11EAA377D527C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:46:43 +0000 ROA not before: Tue 02 Sep 2025 20:10:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138025 IP address blocks: 103.120.69.0/24 maxlen: 24 103.146.75.0/24 maxlen: 24 2001:df6:d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/755Sv59IZcr4eHrZXObeT2R2hA0.crl rsync://rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/755Sv59IZcr4eHrZXObeT2R2hA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/755Sv59IZcr4eHrZXObeT2R2hA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCA4B, serialNumber=EF9E52BF9F4865CAF8787AD95CE6DE4F6476840D Validity Not Before: Sep 2 20:10:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42723-f483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:29:9a:ba:ef:9c:77:3a:2e:4f:38:b3:44: 96:ef:e2:59:3b:09:ed:3a:1d:55:71:15:28:97:5d: 57:25:30:9e:d3:6b:d1:8c:13:d9:c5:75:bf:5f:88: e0:58:73:a9:96:c7:b8:4d:93:3b:f6:e9:d2:64:5c: 2f:33:26:51:6e:ef:1d:9a:e5:e5:92:0b:69:e8:67: 23:dc:0c:66:eb:56:e5:87:73:7e:0a:fa:02:a6:c1: f8:8f:2f:76:92:85:6b:38:a3:65:f9:bd:1f:b9:5c: c2:ff:9a:c4:2f:f2:c2:a0:59:7c:e0:74:79:7c:2d: 07:ac:58:2d:e2:a9:d2:47:fc:71:7b:4f:71:5f:a4: 7e:60:11:bc:ad:2f:c9:6b:48:ef:16:0a:76:ac:30: 86:8b:7f:73:2d:45:99:5c:1c:e4:73:e5:c9:a7:03: e0:04:71:ef:db:ff:96:7c:7b:a2:a2:ac:11:9f:2f: 7d:21:69:71:9c:46:15:33:42:a6:ef:7b:1b:90:06: 4c:cc:37:65:8c:e1:c2:59:f3:0b:8c:6c:e1:f9:3d: f6:d9:be:3b:ca:07:42:ff:07:f1:0c:f1:02:d1:bd: 86:2c:6e:50:02:de:3e:ca:59:ba:45:ea:06:5a:c7: a2:c9:a9:00:76:0e:d0:c1:46:31:54:d9:a4:03:30: e0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:43:6C:7D:56:E6:14:63:D8:E4:BC:74:0C:3E:54:E1:B0:51:6E:B0 X509v3 Authority Key Identifier: keyid:EF:9E:52:BF:9F:48:65:CA:F8:78:7A:D9:5C:E6:DE:4F:64:76:84:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/755Sv59IZcr4eHrZXObeT2R2hA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/755Sv59IZcr4eHrZXObeT2R2hA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCA4B/6E64C4105CEC11EAA6B6E878C4F9AE02/9E1721445CFB11EAA377D527C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.69.0/24 103.146.75.0/24 IPv6: 2001:df6:d00::/48 Signature Algorithm: sha256WithRSAEncryption 25:b2:dc:a9:62:ff:ac:35:b9:7f:1b:e7:ab:4a:72:aa:ab:8c: bf:f2:0e:8a:80:a0:6b:c7:72:f6:67:62:c0:05:66:c0:fa:73: f7:7d:55:8b:12:fe:1a:59:65:ab:06:15:ac:f4:09:4a:3c:0e: 2e:d2:81:e3:ad:66:85:fd:0f:b3:71:e5:25:be:22:31:8e:82: fd:86:42:96:4d:81:0b:dd:d7:77:7d:3e:af:8f:19:f1:39:d1: 58:ec:fe:b3:b2:a1:4a:db:de:ef:0a:f1:f7:de:f6:6c:2f:00: d0:fc:a9:9d:a5:95:ac:3d:67:be:93:b9:32:37:40:fa:70:a5: da:c3:6a:3e:fc:8a:05:16:69:58:06:bb:cd:39:9e:bb:d8:0a: 78:19:25:6c:49:16:70:21:97:3d:ae:37:18:dd:81:a3:79:0a: 4e:0e:da:10:6d:59:88:fa:bf:40:8c:52:22:7d:d2:62:de:d0: 5e:c8:6d:77:6f:77:f0:0b:b7:d7:0d:f8:f0:32:96:15:c6:69: 5f:ac:12:9a:d9:1d:8e:32:28:0f:35:b5:f1:5f:35:83:6c:4f: d2:97:8c:f4:57:a8:83:5e:89:bc:aa:2c:18:6d:5e:07:80:13: 2c:2e:dc:b1:e4:4f:46:e1:a0:5b:22:8f:6c:7f:04:aa:a7:ab: 1f:cf:a1:18 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBNEIxMTAvBgNVBAUTKEVGOUU1MkJGOUY0ODY1Q0FGODc4N0FEOTVDRTZERTRG NjQ3Njg0MEQwHhcNMjUwOTAyMjAxMDE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjcyMy1mNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmspmrrvnHc6Lk84s0SW7+JZOwntOh1VcRUol11XJTCe02vRjBPZxXW/X4jg WHOplse4TZM79unSZFwvMyZRbu8dmuXlkgtp6Gcj3Axm61blh3N+CvoCpsH4jy92 koVrOKNl+b0fuVzC/5rEL/LCoFl84HR5fC0HrFgt4qnSR/xxe09xX6R+YBG8rS/J a0jvFgp2rDCGi39zLUWZXBzkc+XJpwPgBHHv2/+WfHuioqwRny99IWlxnEYVM0Km 73sbkAZMzDdljOHCWfMLjGzh+T322b47ygdC/wfxDPEC0b2GLG5QAt4+ylm6ReoG WseiyakAdg7QwUYxVNmkAzDgiQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFJZDbH1W 5hRj2OS8dAw+VOGwUW6wMB8GA1UdIwQYMBaAFO+eUr+fSGXK+Hh62Vzm3k9kdoQN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0E0Qi82RTY0QzQxMDVD RUMxMUVBQTZCNkU4NzhDNEY5QUUwMi83NTVTdjU5SVpjcjRlSHJaWE9iZVQyUjJo QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1NVN2NTlJWmNyNGVIclpYT2JlVDJSMmhBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNBNEIvNkU2NEM0MTA1Q0VDMTFFQUE2QjZFODc4QzRGOUFFMDIvOUUxNzIxNDQ1 Q0ZCMTFFQUEzNzdENTI3QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ3hFAwQAZ5JLMA8EAgACMAkDBwAgAQ32DQAwDQYJKoZIhvcNAQEL BQADggEBACWy3Kli/6w1uX8b56tKcqqrjL/yDoqAoGvHcvZnYsAFZsD6c/d9VYsS /hpZZasGFaz0CUo8Di7SgeOtZoX9D7Nx5SW+IjGOgv2GQpZNgQvd13d9Pq+PGfE5 0Vjs/rOyoUrb3u8K8ffe9mwvAND8qZ2llaw9Z76TuTI3QPpwpdrDaj78igUWaVgG u805nrvYCngZJWxJFnAhlz2uNxjdgaN5Ck4O2hBtWYj6v0CMUiJ90mLe0F7IbXdv d/ALt9cN+PAylhXGaV+sEprZHY4yKA81tfFfNYNsT9KXjPRXqINeibyqLBhtXgeA Eywu3LHkT0bhoFsij2x/BKqnqx/PoRg= -----END CERTIFICATE-----Generated at Mon Mar 2 06:39:20 2026 by rpki-client