$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/AB68CE76346511EDAC41E081C4F9AE02.roa File: AB68CE76346511EDAC41E081C4F9AE02.roa (raw, json) Hash identifier: N8hOIX9lBnkWNR17KITPRqZldmiFlqdcpwwzsFLdg0U= Subject key identifier: D2:D9:57:E0:CA:AD:DD:20:77:CE:73:65:7A:93:B6:7A:E2:BE:13:62 Certificate issuer: /CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Certificate serial: 02C9 Authority key identifier: 37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/AB68CE76346511EDAC41E081C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:29:01 +0000 ROA not before: Wed 01 Oct 2025 02:28:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 21734 IP address blocks: 103.99.4.0/24 maxlen: 24 103.99.5.0/24 maxlen: 24 103.99.6.0/24 maxlen: 24 103.99.7.0/24 maxlen: 24 103.196.140.0/24 maxlen: 24 103.196.141.0/24 maxlen: 24 103.196.142.0/24 maxlen: 24 103.196.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 713 (0x2c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD47F, serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Validity Not Before: Oct 1 02:28:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44d2c-c0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:09:e8:0f:a3:e4:8f:6a:cf:66:3a:6c:99: 59:c7:79:07:1f:62:38:b9:e5:5a:7c:0a:40:91:39: eb:53:eb:32:f4:24:03:35:4d:ac:95:91:05:45:53: 3a:49:3a:c5:7e:2a:dc:98:52:67:8c:7f:bd:1b:ed: 65:4d:09:bd:2b:68:17:a8:72:c2:79:78:15:e9:d3: b2:88:96:c8:3f:5a:28:f2:3c:01:7f:9e:6e:63:c8: 8b:c8:46:65:7e:f4:08:fa:f6:ff:ba:71:26:e7:ea: 64:16:b1:7d:46:5b:63:d2:a3:75:88:da:8f:c0:2b: f8:29:3e:62:40:31:09:79:9a:42:d9:6c:d5:93:b9: 9c:84:2d:f1:58:12:98:11:0d:5b:00:6f:81:a6:54: 45:1c:95:03:05:e0:7a:35:26:37:10:2a:5f:e6:85: 59:4b:8f:62:9a:c7:f1:9b:a1:44:30:bc:1f:33:10: 96:2b:68:82:20:a4:14:40:66:62:f4:77:9c:93:7c: 39:f4:47:fd:de:8c:b2:b5:73:67:6e:f8:24:dc:86: 07:43:da:92:4c:de:47:3c:7a:09:c1:30:62:4f:bd: cf:44:74:39:4e:c9:63:19:cd:b6:9b:11:9f:f7:c8: 55:b6:44:da:f5:e6:6c:93:69:3f:a4:1e:43:92:38: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D9:57:E0:CA:AD:DD:20:77:CE:73:65:7A:93:B6:7A:E2:BE:13:62 X509v3 Authority Key Identifier: keyid:37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/AB68CE76346511EDAC41E081C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.4.0/22 103.196.140.0/22 Signature Algorithm: sha256WithRSAEncryption b9:1b:00:ad:d9:04:63:af:9e:d7:b4:4b:49:32:4b:94:49:a9: 34:f6:4f:fa:90:92:66:97:38:b8:6d:bc:5d:fe:fa:7a:c8:d8: 82:eb:6d:d7:7c:96:97:4a:25:59:7f:04:73:c3:55:c1:0d:2c: 50:dc:ce:1e:ff:a8:20:b7:69:83:41:21:0a:b6:bb:ab:ed:c8: 5b:ff:cd:f2:05:34:39:6f:6e:37:26:6a:21:4b:4c:93:a4:f5: 31:a6:f3:d2:57:ee:e4:30:dc:76:5f:85:ec:0b:00:03:5f:94: 7f:ab:52:06:33:f8:fd:ed:b8:15:af:42:7d:a5:d2:5f:c1:8a: 0b:af:e5:45:c0:15:a2:bc:df:28:1e:6f:1f:a2:d2:6e:9d:8a: 87:bc:2a:be:18:f5:c0:0e:3d:88:b6:fc:ba:db:ca:3c:1b:77: bf:05:d1:62:05:43:ff:cd:41:fa:07:38:39:8d:66:68:43:41: 12:4d:2a:19:79:60:c2:1f:8a:9e:fb:57:9e:a5:85:95:36:64: 67:2c:89:9e:0d:0f:38:5b:2c:c8:4c:53:2d:4f:1f:95:3b:cd: b9:10:f9:ed:c8:71:cb:92:15:a6:6f:7a:2e:9e:0e:9d:75:91: 83:12:55:ed:13:1b:14:64:df:7d:4c:5c:f7:75:9a:ac:64:01: e7:b6:57:af -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0N0YxMTAvBgNVBAUTKDM3NjAzREIyRTA3MkMwQThGRDcxMTM4RTI1NDA5OUY0 Q0FEOEMxNkYwHhcNMjUxMDAxMDIyODQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQyYy1jMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCUJ6A+j5I9qz2Y6bJlZx3kHH2I4ueVafApAkTnrU+sy9CQDNU2slZEFRVM6 STrFfircmFJnjH+9G+1lTQm9K2gXqHLCeXgV6dOyiJbIP1oo8jwBf55uY8iLyEZl fvQI+vb/unEm5+pkFrF9Rltj0qN1iNqPwCv4KT5iQDEJeZpC2WzVk7mchC3xWBKY EQ1bAG+BplRFHJUDBeB6NSY3ECpf5oVZS49imsfxm6FEMLwfMxCWK2iCIKQUQGZi 9Heck3w59Ef93oyytXNnbvgk3IYHQ9qSTN5HPHoJwTBiT73PRHQ5TsljGc22mxGf 98hVtkTa9eZsk2k/pB5DkjjnBwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNLZV+DK rd0gd85zZXqTtnrivhNiMB8GA1UdIwQYMBaAFDdgPbLgcsCo/XETjiVAmfTK2MFv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDQ3Ri9ENUNFNjI2QTM0 NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdLajljUk9PSlVDWjlNcll3 VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yQTlzdUJ5d0tqOWNST09KVUNaOU1yWXdXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ0N0YvRDVDRTYyNkEzNDYxMTFFRDlERUU4RTdBQzRGOUFFMDIvQUI2OENFNzYz NDY1MTFFREFDNDFFMDgxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ2MEAwQCZ8SMMA0GCSqGSIb3DQEBCwUAA4IBAQC5GwCt2QRjr57X tEtJMkuUSak09k/6kJJmlzi4bbxd/vp6yNiC623XfJaXSiVZfwRzw1XBDSxQ3M4e /6ggt2mDQSEKtrur7chb/83yBTQ5b243JmohS0yTpPUxpvPSV+7kMNx2X4XsCwAD X5R/q1IGM/j97bgVr0J9pdJfwYoLr+VFwBWivN8oHm8fotJunYqHvCq+GPXADj2I tvy628o8G3e/BdFiBUP/zUH6Bzg5jWZoQ0ESTSoZeWDCH4qe+1eepYWVNmRnLIme DQ84WyzITFMtTx+VO825EPntyHHLkhWmb3oung6ddZGDElXtExsUZN99TFz3dZqs ZAHntlev -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:52 2026 by rpki-client