$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa File: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (raw, json) Hash identifier: mqF8DRZBj5OvpmPSyP0HXuOrUKC0EOIhcSWlKxz4Meg= Subject key identifier: 01:FF:09:D3:76:71:A5:08:EE:74:77:A9:03:A1:1E:37:4A:50:D7:C2 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 06E8 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:50:11 +0000 ROA not before: Sat 15 Feb 2025 00:01:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137461 IP address blocks: 103.109.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Feb 15 00:01:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a5a3a3-507d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:d0:a9:5e:7f:41:00:d8:ce:63:06:68:7c:32: ae:5b:38:68:23:f0:0c:8f:38:98:0a:50:b2:6b:99: 0a:7e:0f:bb:ce:9c:eb:40:bd:a0:6d:c0:13:64:69: 7b:69:bb:08:40:d4:ee:c0:70:77:a4:82:71:c0:8c: a4:15:9b:81:4d:eb:9c:6e:93:ea:39:13:0e:64:ad: c4:e9:c4:1e:a2:3a:cf:ab:09:17:6c:f4:f8:8c:6b: 3f:b4:f7:45:29:0a:6f:3f:1d:d2:7f:c4:be:ce:8c: ff:eb:d2:d4:83:49:d9:84:67:0b:4b:eb:db:56:9f: be:ba:d8:11:99:bd:0a:fe:ff:69:6a:6b:1d:02:4d: d6:09:29:e5:18:43:e7:95:38:c8:c2:b1:a9:aa:dc: fc:24:3c:1e:bd:fb:b7:7a:ff:13:a3:db:25:23:65: 6c:23:36:35:1f:a8:a1:32:4a:20:06:2a:1d:76:c6: c7:46:96:86:04:2b:9f:3c:07:a9:78:51:7d:96:ae: 10:aa:65:32:ee:07:73:63:ab:58:d2:36:93:8d:91: f4:37:e7:e9:6b:d7:18:f1:f5:2e:d3:8a:26:b0:ed: fa:55:eb:af:37:64:16:7d:ac:b4:22:ad:98:7a:27: 57:69:04:51:99:e4:78:20:a6:f6:6a:d9:c8:29:65: 3b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:FF:09:D3:76:71:A5:08:EE:74:77:A9:03:A1:1E:37:4A:50:D7:C2 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.109.121.0/24 Signature Algorithm: sha256WithRSAEncryption 79:65:85:ea:63:88:e9:5c:9a:89:92:84:2c:2f:36:16:b7:3d: 75:82:91:33:04:90:5a:6b:aa:5e:69:3f:12:60:6c:55:a5:21: e3:91:44:90:5e:20:fa:44:76:12:a9:5b:fc:be:ea:00:97:08: 41:63:a1:e7:89:de:2d:4d:7c:96:92:6b:86:cb:88:ec:46:9d: e5:89:d1:3f:dd:15:eb:a6:d7:b4:e9:e6:41:38:84:57:5b:6d: 7f:c2:4e:8c:d0:03:4c:83:d1:b9:78:3b:03:99:99:bf:57:be: e8:44:bd:95:ce:9f:70:ed:bf:32:f1:b6:dc:d3:2f:22:56:19: 31:dc:30:ea:56:5f:89:98:36:63:7c:f6:10:a9:3d:3a:b1:85: 26:11:c0:64:48:26:5f:d4:f9:4d:ee:85:5c:65:ce:1c:d8:d7: 00:1c:b9:a7:25:61:ac:50:f8:b1:4b:7e:c0:ee:cc:ba:59:89: 9b:53:30:76:9b:ef:67:f0:ec:30:40:92:15:e3:06:09:fe:30: 63:24:2e:86:ae:e0:f0:1b:d3:03:60:8e:5e:ca:cb:d5:67:df: 78:ea:ab:ab:80:86:2b:d2:6e:77:a3:27:9d:5e:ee:1c:68:89: 8b:f7:40:2a:8e:fd:25:33:6c:05:21:51:9b:bf:fe:e1:f8:fe: 79:0c:f1:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwMjE1MDAwMTA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTNhMy01MDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/dCpXn9BANjOYwZofDKuWzhoI/AMjziYClCya5kKfg+7zpzrQL2gbcATZGl7 absIQNTuwHB3pIJxwIykFZuBTeucbpPqORMOZK3E6cQeojrPqwkXbPT4jGs/tPdF KQpvPx3Sf8S+zoz/69LUg0nZhGcLS+vbVp++utgRmb0K/v9pamsdAk3WCSnlGEPn lTjIwrGpqtz8JDwevfu3ev8To9slI2VsIzY1H6ihMkogBioddsbHRpaGBCufPAep eFF9lq4QqmUy7gdzY6tY0jaTjZH0N+fpa9cY8fUu04omsO36VeuvN2QWfay0Iq2Y eidXaQRRmeR4IKb2atnIKWU7TwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAH/CdN2 caUI7nR3qQOhHjdKUNfCMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCM0MvM0YzMzYyREE4NkZBMTFFQkIzQzdCQjI5QzRGOUFFMDIvMDBEOEJFNTI4 NkZDMTFFQjhBOTU2NDJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ215MA0GCSqGSIb3DQEBCwUAA4IBAQB5ZYXqY4jpXJqJkoQsLzYW tz11gpEzBJBaa6peaT8SYGxVpSHjkUSQXiD6RHYSqVv8vuoAlwhBY6Hnid4tTXyW kmuGy4jsRp3lidE/3RXrpte06eZBOIRXW21/wk6M0ANMg9G5eDsDmZm/V77oRL2V zp9w7b8y8bbc0y8iVhkx3DDqVl+JmDZjfPYQqT06sYUmEcBkSCZf1PlN7oVcZc4c 2NcAHLmnJWGsUPixS37A7sy6WYmbUzB2m+9n8OwwQJIV4wYJ/jBjJC6GruDwG9MD YI5eysvVZ9946qurgIYr0m53oyedXu4caImL90Aqjv0lM2wFIVGbv/7h+P55DPH0 -----END CERTIFICATE-----Generated at Thu Mar 26 06:53:48 2026 by rpki-client