$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: SuNBYkbcHt/E/yDdSZbsjsp7zc+8rseF2Of8cM/fHb4= Subject key identifier: B6:3F:B3:0F:89:2B:FF:73:D3:5F:85:11:33:19:71:4F:89:CC:10:79 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0622 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:30 +0000 ROA not before: Wed 04 Feb 2026 22:19:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45577 IP address blocks: 103.82.109.0/24 maxlen: 24 111.125.176.0/24 maxlen: 24 111.125.180.0/24 maxlen: 24 111.125.184.0/24 maxlen: 24 111.125.185.0/24 maxlen: 24 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Feb 4 22:19:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a471da-f056 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:e3:b5:ee:dd:51:c4:ce:6f:4f:a6:fb:5e: 9d:e7:a8:49:31:1b:f6:a9:57:18:70:14:95:82:81: 31:86:65:46:2b:73:95:2f:16:50:2e:93:1f:c2:03: 5e:37:85:0d:64:29:1f:94:07:b0:0b:62:04:ab:28: 75:5e:f6:1e:2a:f3:67:90:6e:97:b3:9d:f8:ee:05: 02:d7:3c:ef:25:5a:75:c2:5d:72:65:f0:67:ec:87: 96:0b:a9:24:38:b8:0f:81:1c:41:13:3e:d9:95:d9: 3e:b0:50:dc:f6:61:2d:bd:1e:07:39:56:ea:16:2e: 44:7b:4c:a9:a2:16:ff:e3:5f:18:50:ba:8d:10:a9: f6:0f:e3:6f:9c:7c:59:6f:d0:9a:69:d0:00:b9:7b: 65:29:94:4d:c8:13:ce:5d:2f:b8:25:1b:d6:c7:de: a5:e2:1e:64:23:6e:2b:1c:01:ab:5e:94:4b:1d:2a: fb:7e:e4:13:e4:27:f0:c2:1f:30:0f:88:f1:4d:d9: c8:82:e2:b3:db:4b:56:26:08:d8:8a:99:51:2f:10: b2:6b:13:a2:86:2a:7c:f7:15:a8:04:c9:b4:b6:d2: 1b:40:ec:06:84:1f:15:92:07:e7:7b:20:cd:75:cb: 85:65:e3:de:34:2b:9e:84:f2:16:99:b8:36:63:23: cf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3F:B3:0F:89:2B:FF:73:D3:5F:85:11:33:19:71:4F:89:CC:10:79 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.82.109.0/24 111.125.176.0/24 111.125.180.0/24 111.125.184.0/23 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption 97:e5:14:0a:81:71:70:de:35:75:ec:38:3f:81:6d:30:5f:9e: 35:51:31:39:6b:17:d8:af:8a:bf:46:10:02:42:f9:b4:a0:b8: d3:11:3d:9c:ca:b3:9b:af:52:e7:b3:f0:84:d7:b3:9c:ed:ac: f8:7d:55:2a:b5:6d:23:29:a2:c8:a9:1c:27:59:ec:0d:31:27: 06:26:94:00:ce:8a:6b:c9:6d:29:77:fa:66:7a:1b:d8:e0:c6: 22:cc:00:0c:60:1f:9f:b1:af:0c:ea:d0:dc:b3:be:9b:b7:ca: 4a:52:55:f7:cb:1a:f9:e4:f4:63:2e:4e:25:91:a7:06:72:9f: 51:07:3a:9f:d5:61:1e:33:4d:7b:d5:3f:39:c7:ff:fc:10:46: 3d:38:42:60:ae:95:e4:14:7f:92:fa:02:f5:c3:44:94:ba:89: 5c:54:67:73:47:41:2b:16:e5:fc:ce:09:ac:7c:3d:1b:72:f7: 29:17:80:b7:87:43:56:01:07:92:06:a2:11:f0:ec:97:4a:1c: 8f:4e:ec:51:43:9d:62:47:e9:aa:26:77:0a:65:e2:23:40:7c: e6:d3:79:c2:68:d0:b3:46:aa:77:1a:48:fc:f8:67:8f:ae:3b: b1:38:99:fe:41:ab:70:62:1c:e5:00:ec:c5:09:f4:f5:d1:e1: 4b:99:a9:30 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwMjA0MjIxOTM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFkYS1mMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrjjte7dUcTOb0+m+16d56hJMRv2qVcYcBSVgoExhmVGK3OVLxZQLpMfwgNe N4UNZCkflAewC2IEqyh1XvYeKvNnkG6Xs5347gUC1zzvJVp1wl1yZfBn7IeWC6kk OLgPgRxBEz7Zldk+sFDc9mEtvR4HOVbqFi5Ee0ypohb/418YULqNEKn2D+NvnHxZ b9CaadAAuXtlKZRNyBPOXS+4JRvWx96l4h5kI24rHAGrXpRLHSr7fuQT5Cfwwh8w D4jxTdnIguKz20tWJgjYiplRLxCyaxOihip89xWoBMm0ttIbQOwGhB8VkgfneyDN dcuFZePeNCuehPIWmbg2YyPP2wIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFLY/sw+J K/9z01+FETMZcU+JzBB5MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDkxODJEMzgw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQAZ1JtAwQAb32wAwQAb320AwQBb324AwQC3xngMA0GCSqGSIb3DQEB CwUAA4IBAQCX5RQKgXFw3jV17Dg/gW0wX541UTE5axfYr4q/RhACQvm0oLjTET2c yrObr1Lns/CE17Oc7az4fVUqtW0jKaLIqRwnWewNMScGJpQAzopryW0pd/pmehvY 4MYizAAMYB+fsa8M6tDcs76bt8pKUlX3yxr55PRjLk4lkacGcp9RBzqf1WEeM017 1T85x//8EEY9OEJgrpXkFH+S+gL1w0SUuolcVGdzR0ErFuX8zgmsfD0bcvcpF4C3 h0NWAQeSBqIR8OyXShyPTuxRQ51iR+mqJncKZeIjQHzm03nCaNCzRqp3Gkj8+GeP rjuxOJn+QatwYhzlAOzFCfT10eFLmakw -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:26 2026 by rpki-client