$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa File: 3996C94896D211EF924C486FC4F9AE02.roa (raw, json) Hash identifier: RSWSsqKVGFqnc5MjQ5V0wfdqY1cc/uC9LzB1g38vtcs= Subject key identifier: 77:11:03:EE:BE:34:DE:47:71:F6:61:D7:AC:95:C7:34:EA:3A:E9:41 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: 0116 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:46:20 +0000 ROA not before: Mon 03 Nov 2025 06:21:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63851 IP address blocks: 103.42.152.0/22 maxlen: 22 103.42.152.0/23 maxlen: 23 103.42.152.0/24 maxlen: 24 103.42.153.0/24 maxlen: 24 103.42.154.0/23 maxlen: 23 103.42.154.0/24 maxlen: 24 103.42.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Nov 3 06:21:40 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5869c-933b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:51:07:9f:40:1d:d0:d2:55:3f:42:52:96:6b: ee:4a:7e:e1:f2:52:3f:12:ab:c9:ae:90:8f:a0:94: ea:df:3d:14:b6:f9:47:24:b4:d1:17:a1:df:67:2c: de:0a:f1:c6:35:3f:2b:98:f2:5e:30:4c:9d:9b:ae: ab:70:5a:30:a4:09:cf:30:7b:a1:2a:e2:02:2d:90: e2:28:20:d2:9a:28:8a:11:10:bb:1f:4d:00:6f:de: 5c:a6:2c:91:67:88:28:12:fa:ae:cb:06:0a:82:74: 03:58:31:d4:d7:cc:e0:41:cf:86:34:e8:6d:b9:07: ea:cd:81:3d:a3:52:0d:d8:36:03:2d:d6:75:b1:32: d5:c2:cc:cc:c8:5c:0a:90:6b:5e:d7:a0:db:74:65: 21:cb:72:92:ad:09:99:bf:e9:0e:21:4d:cd:c4:4f: 68:e9:24:13:47:56:4f:cb:ad:1f:44:e5:5e:51:34: e0:eb:8d:1e:8a:9c:9d:f1:9e:4a:42:42:01:53:49: 20:6c:92:0c:f0:75:13:8d:00:e2:d8:ed:94:a0:16: b5:41:81:2b:ab:92:71:65:30:e0:51:db:fa:9e:84: a5:87:56:92:d3:52:f7:fb:15:1f:1e:70:ab:7c:ec: da:f6:fb:15:12:59:c7:8e:f4:ca:f1:71:83:ff:8e: 97:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:11:03:EE:BE:34:DE:47:71:F6:61:D7:AC:95:C7:34:EA:3A:E9:41 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.42.152.0/22 Signature Algorithm: sha256WithRSAEncryption f6:e0:73:54:47:9b:26:60:38:1e:6e:95:59:e4:9d:72:ba:76: 2d:39:98:b0:20:67:4e:46:6a:9b:90:af:fe:e3:fa:33:28:be: 93:51:cc:e1:f4:24:d2:fd:75:f7:2f:09:0a:02:59:47:ad:18: 4f:6b:27:8c:b1:13:8a:9c:c7:60:e7:e6:00:90:a3:e6:20:29: f2:71:a7:d0:51:e9:68:d3:c5:d2:b1:d8:de:cf:a4:d0:00:ab: 51:50:f7:cf:72:e4:78:6b:b4:e1:4d:cd:a9:dc:b3:10:b5:77: f0:c5:d4:f6:89:c3:91:29:8c:9f:26:1f:3d:57:84:4a:bc:fa: 17:3d:bd:0f:3d:dc:5a:7f:e8:e1:15:a2:32:d5:80:cc:5f:77: 34:ed:c8:1e:e1:9a:07:f5:3b:66:b4:bc:e2:25:b7:8e:5f:2f: 2a:0b:38:c3:4e:d2:f3:1e:be:3f:29:ad:a0:82:33:09:0f:f1: 62:76:89:7b:da:b8:02:44:ff:ed:71:53:11:85:24:88:87:0c: 68:a1:26:2a:79:77:6d:c1:55:cb:ea:0b:8a:09:1e:1b:44:80: 7d:af:47:f4:85:49:55:47:89:e2:87:7e:da:11:b1:74:92:1e: 91:71:09:1c:00:d2:af:de:99:61:ff:14:d5:8e:4b:f4:75:f3: d4:6d:c7:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMTAzMDYyMTQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODY5Yy05MzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lEHn0Ad0NJVP0JSlmvuSn7h8lI/EqvJrpCPoJTq3z0UtvlHJLTRF6HfZyze CvHGNT8rmPJeMEydm66rcFowpAnPMHuhKuICLZDiKCDSmiiKERC7H00Ab95cpiyR Z4goEvquywYKgnQDWDHU18zgQc+GNOhtuQfqzYE9o1IN2DYDLdZ1sTLVwszMyFwK kGte16DbdGUhy3KSrQmZv+kOIU3NxE9o6SQTR1ZPy60fROVeUTTg640eipyd8Z5K QkIBU0kgbJIM8HUTjQDi2O2UoBa1QYErq5JxZTDgUdv6noSlh1aS01L3+xUfHnCr fOza9vsVElnHjvTK8XGD/46XhQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHcRA+6+ NN5HcfZh16yVxzTqOulBMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBFOUQvOTU2OUFEQjQ5NURCMTFFRkE0RTJGQjQ1QzRGOUFFMDIvMzk5NkM5NDg5 NkQyMTFFRjkyNEM0ODZGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZyqYMA0GCSqGSIb3DQEBCwUAA4IBAQD24HNUR5smYDgebpVZ5J1y unYtOZiwIGdORmqbkK/+4/ozKL6TUczh9CTS/XX3LwkKAllHrRhPayeMsROKnMdg 5+YAkKPmICnycafQUelo08XSsdjez6TQAKtRUPfPcuR4a7ThTc2p3LMQtXfwxdT2 icORKYyfJh89V4RKvPoXPb0PPdxaf+jhFaIy1YDMX3c07cge4ZoH9TtmtLziJbeO Xy8qCzjDTtLzHr4/Ka2ggjMJD/Fidol72rgCRP/tcVMRhSSIhwxooSYqeXdtwVXL 6guKCR4bRIB9r0f0hUlVR4nih37aEbF0kh6RcQkcANKv3plh/xTVjkv0dfPUbcek -----END CERTIFICATE-----Generated at Sat Mar 28 12:10:28 2026 by rpki-client