$ rpki-client -vvf rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa File: 01B2AC1E064111E8A62EF586C4F9AE02.roa (raw, json) Hash identifier: n3LIJOsHlARAi65lnMhL3wL2TR8QPk4sPY0Xr04F6l0= Subject key identifier: 9E:F7:0B:38:DD:41:56:05:22:CD:D2:DB:0E:D7:F9:C7:65:40:D8:D1 Certificate issuer: /CN=A91935EA/serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Certificate serial: 1729 Authority key identifier: FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:31:52 +0000 ROA not before: Sat 28 Jun 2025 17:07:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9834 IP address blocks: 103.88.104.0/22 maxlen: 24 122.252.184.0/21 maxlen: 24 202.21.128.0/24 maxlen: 24 202.162.72.0/23 maxlen: 24 203.57.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5929 (0x1729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91935EA, serialNumber=FD7C4811C87C566EF55EDAB0E743FF066B9FA866 Validity Not Before: Jun 28 17:07:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a423a7-ad8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3d:f7:3c:80:f6:f5:e6:90:90:56:10:79:d2: 73:06:f0:00:4f:5f:7d:46:0c:8d:b2:78:c9:5e:f4: d8:64:c8:74:14:cf:ab:7b:b5:b6:ca:39:fa:a7:5b: 15:19:3e:b3:41:7f:3f:f7:85:e7:fd:f7:49:17:cf: 64:52:80:48:a9:2f:7e:63:34:66:80:b8:5a:8e:1c: 51:83:c4:a5:25:3a:fa:f5:64:6d:b8:b5:08:aa:57: 88:42:8c:3e:59:81:7c:c5:98:47:3e:aa:84:70:b0: ff:5b:78:30:cc:4d:c4:73:e5:d5:c7:e8:26:05:e7: f6:7f:bf:1b:82:81:08:7a:93:9c:d0:17:02:21:39: 5a:08:10:4f:be:9b:5c:43:4c:03:d4:3c:6e:b6:48: dc:7e:34:4d:eb:25:73:34:49:85:42:5d:80:73:ab: c1:ce:6e:f8:5a:25:ba:a4:c9:89:92:3b:d6:74:f6: 05:7c:13:4a:cb:3c:77:8e:0b:5e:f3:30:ad:03:56: c1:c7:87:28:c7:93:38:66:de:77:af:8f:ff:1c:e9: e5:28:7a:06:3b:cf:cc:31:ec:88:f3:e4:51:bc:41: 0c:4e:4d:0f:15:ac:16:87:b8:74:be:35:4d:1e:06: e0:41:55:f8:56:81:b0:ff:2b:b1:44:92:c0:77:d4: 87:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F7:0B:38:DD:41:56:05:22:CD:D2:DB:0E:D7:F9:C7:65:40:D8:D1 X509v3 Authority Key Identifier: keyid:FD:7C:48:11:C8:7C:56:6E:F5:5E:DA:B0:E7:43:FF:06:6B:9F:A8:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/_XxIEch8Vm71Xtqw50P_BmufqGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XxIEch8Vm71Xtqw50P_BmufqGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91935EA/19DD467000AE11E8BC3A1F2FC4F9AE02/01B2AC1E064111E8A62EF586C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.104.0/22 122.252.184.0/21 202.21.128.0/24 202.162.72.0/23 203.57.145.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:5d:55:9d:5f:38:5b:a8:6d:d0:c9:fe:10:64:b7:1f:d0:1e: b3:e1:59:da:9c:ec:a6:f8:76:fb:6a:81:f0:9a:ec:65:87:68: 78:cf:82:25:0d:65:3d:54:49:fc:16:65:b8:ca:ac:d3:07:ac: 5a:32:cd:ae:fc:5f:b2:59:69:ac:6f:ca:7e:d1:ba:00:dd:2b: a6:ff:47:cd:d2:e2:5c:5f:e1:d9:98:d2:8f:cb:cc:72:b8:19: eb:0c:be:6d:30:d3:da:21:38:70:76:8c:9a:9b:74:06:15:28: df:63:27:be:2b:1f:fc:5b:28:00:ac:52:02:e1:20:a9:41:67: 2b:35:19:9f:75:f7:a2:a1:4b:dd:d9:a6:fd:60:e3:86:88:4f: 33:c2:91:0d:c5:b7:92:b2:9e:c3:eb:04:cc:fe:45:bc:64:d5: 24:ec:ae:68:ff:83:23:40:a3:73:e0:43:db:74:2a:1c:6d:fe: 9b:2a:46:07:40:76:23:9e:4c:88:96:a7:fd:18:e1:c8:84:1b: 7e:9c:b9:68:19:5a:36:e2:48:77:4c:9c:d5:97:e2:e0:36:65: 1c:5d:33:04:66:93:e6:f2:cc:e6:d6:a1:8a:14:54:37:3a:07: c9:5c:1d:a8:a3:44:cc:14:61:0d:0a:b2:39:31:f9:99:30:58: 76:10:e5:82 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICFykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM1RUExMTAvBgNVBAUTKEZEN0M0ODExQzg3QzU2NkVGNTVFREFCMEU3NDNGRjA2 NkI5RkE4NjYwHhcNMjUwNjI4MTcwNzM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjNhNy1hZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D33PID29eaQkFYQedJzBvAAT199RgyNsnjJXvTYZMh0FM+re7W2yjn6p1sV GT6zQX8/94Xn/fdJF89kUoBIqS9+YzRmgLhajhxRg8SlJTr69WRtuLUIqleIQow+ WYF8xZhHPqqEcLD/W3gwzE3Ec+XVx+gmBef2f78bgoEIepOc0BcCITlaCBBPvptc Q0wD1DxutkjcfjRN6yVzNEmFQl2Ac6vBzm74WiW6pMmJkjvWdPYFfBNKyzx3jgte 8zCtA1bBx4cox5M4Zt53r4//HOnlKHoGO8/MMeyI8+RRvEEMTk0PFawWh7h0vjVN HgbgQVX4VoGw/yuxRJLAd9SHvQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFJ73Czjd QVYFIs3S2w7X+cdlQNjRMB8GA1UdIwQYMBaAFP18SBHIfFZu9V7asOdD/wZrn6hm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzVFQS8xOURENDY3MDAw QUUxMUU4QkMzQTFGMkZDNEY5QUUwMi9fWHhJRWNoOFZtNzFYdHF3NTBQX0JtdWZx R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YeElFY2g4Vm03MVh0cXc1MFBfQm11ZnFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM1RUEvMTlERDQ2NzAwMEFFMTFFOEJDM0ExRjJGQzRGOUFFMDIvMDFCMkFDMUUw NjQxMTFFOEE2MkVGNTg2QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZ1hoAwQDevy4AwQAyhWAAwQByqJIAwQAyzmRMA0GCSqGSIb3DQEB CwUAA4IBAQBMXVWdXzhbqG3Qyf4QZLcf0B6z4VnanOym+Hb7aoHwmuxlh2h4z4Il DWU9VEn8FmW4yqzTB6xaMs2u/F+yWWmsb8p+0boA3Sum/0fN0uJcX+HZmNKPy8xy uBnrDL5tMNPaIThwdoyam3QGFSjfYye+Kx/8WygArFIC4SCpQWcrNRmfdfeioUvd 2ab9YOOGiE8zwpENxbeSsp7D6wTM/kW8ZNUk7K5o/4MjQKNz4EPbdCocbf6bKkYH QHYjnkyIlqf9GOHIhBt+nLloGVo24kh3TJzVl+LgNmUcXTMEZpPm8szm1qGKFFQ3 OgfJXB2oo0TMFGENCrI5MfmZMFh2EOWC -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:13 2026 by rpki-client