$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa File: CEC4C3FC903B11ED96D73F40C4F9AE02.roa (raw, json) Hash identifier: ulVwpupTnSQGj93CteWzU9AxM16id4m9AwfIdwmeXW4= Subject key identifier: 39:22:8A:EE:A1:F8:D0:89:04:82:5C:ED:89:C7:58:F3:0F:B2:96:4F Certificate issuer: /CN=A91AE984/serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Certificate serial: 0C87 Authority key identifier: 8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:24:37 +0000 ROA not before: Fri 28 Mar 2025 19:29:52 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59238 IP address blocks: 103.135.108.0/22 maxlen: 24 2404:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE984, serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Validity Not Before: Mar 28 19:29:52 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a405d5-7302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:50:0a:fa:80:94:b6:33:7a:c8:70:eb:d0: e1:f2:09:05:6d:d6:16:c8:82:cd:64:e2:e6:cf:15: e9:be:f7:93:95:76:d8:2b:e8:3b:60:cd:99:ab:5f: c7:af:62:99:54:d9:54:c6:ca:ac:1b:df:e1:a4:f4: 12:84:ec:c0:09:ab:95:07:fa:5a:e9:4a:58:34:91: 1b:b6:3c:1c:36:f9:2e:71:84:45:0f:40:1e:1c:ce: 7d:8c:44:9c:9e:3a:82:e4:3e:e9:25:5c:29:1f:8a: 37:f4:5b:92:e5:80:ed:d1:49:8e:91:d0:7b:fe:e7: 85:7a:57:6f:5a:91:92:0f:15:b6:7e:b2:47:ff:1d: 66:cc:6c:dc:b4:f6:1b:25:e1:2a:05:f8:81:eb:28: d4:47:7f:af:f6:fa:97:45:6a:9e:32:ea:0d:12:b9: 66:e4:50:da:f9:ea:34:b4:0e:57:6a:09:7e:c0:65: 22:a2:92:8c:a3:5c:c1:c4:f5:68:90:d0:7d:82:f6: 37:81:9a:05:cf:ae:c7:8c:c5:38:c1:bf:11:ad:06: 98:19:60:2c:94:9d:bc:37:19:d4:71:1a:ef:bd:58: 98:5d:18:b7:5c:52:7a:99:b7:32:95:e7:fe:9e:1f: b9:50:5f:40:9d:9a:dd:69:2e:7e:ef:da:d0:ed:a0: 1a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:22:8A:EE:A1:F8:D0:89:04:82:5C:ED:89:C7:58:F3:0F:B2:96:4F X509v3 Authority Key Identifier: keyid:8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/CEC4C3FC903B11ED96D73F40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.135.108.0/22 IPv6: 2404:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption b0:0c:fc:7d:d6:9d:d0:b0:ea:63:74:95:c9:d4:a2:ee:7c:45: cc:0c:26:50:54:a2:b4:5c:7f:d1:a9:c5:70:b7:e5:27:56:30: f9:81:10:9d:d9:4b:a2:15:bb:ea:75:ff:ab:9a:63:c7:6e:19: ad:52:17:d4:88:47:9e:58:b8:d2:5b:cd:3b:b6:b5:83:16:de: 96:48:a5:84:a9:81:96:43:18:e2:79:36:7c:40:97:26:87:b8: fa:9d:74:7d:a0:8e:13:ab:64:d2:9d:0a:d3:eb:f8:7d:65:7f: a2:94:a8:2f:94:7e:19:25:c1:22:34:42:16:74:c3:67:f2:95: cf:1b:e3:38:df:93:37:c9:b4:04:fa:c4:11:8e:3a:09:cb:f7: 99:1c:fd:39:97:26:ee:60:21:fe:33:84:d8:30:40:04:4f:f6: 14:06:15:1b:07:ae:8a:b2:fa:74:e3:8b:5f:a3:78:15:61:1d: 0f:c6:09:55:be:03:91:11:a9:13:d4:84:55:9e:c3:93:1c:4e: 27:87:36:ea:72:83:41:f1:2f:fe:d6:2a:69:a3:cc:50:a9:74: 39:18:b0:14:52:79:35:dc:c9:07:85:f6:f2:e4:26:90:d7:00: 89:50:9d:cf:cb:7c:26:49:7a:5f:07:c0:1b:a7:84:e3:24:de: 75:cb:88:e2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5ODQxMTAvBgNVBAUTKDhBQkEzRTQ3RDUxQzVEMkM5RUYzNDNFNUFGNDExMDFF NDNDNThBODgwHhcNMjUwMzI4MTkyOTUyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDVkNS03MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujBQCvqAlLYzeshw69Dh8gkFbdYWyILNZOLmzxXpvveTlXbYK+g7YM2Zq1/H r2KZVNlUxsqsG9/hpPQShOzACauVB/pa6UpYNJEbtjwcNvkucYRFD0AeHM59jESc njqC5D7pJVwpH4o39FuS5YDt0UmOkdB7/ueFeldvWpGSDxW2frJH/x1mzGzctPYb JeEqBfiB6yjUR3+v9vqXRWqeMuoNErlm5FDa+eo0tA5Xagl+wGUiopKMo1zBxPVo kNB9gvY3gZoFz67HjMU4wb8RrQaYGWAslJ28NxnUcRrvvViYXRi3XFJ6mbcylef+ nh+5UF9AnZrdaS5+79rQ7aAa8wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDkiiu6h +NCJBIJc7YnHWPMPspZPMB8GA1UdIwQYMBaAFIq6PkfVHF0snvND5a9BEB5DxYqI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk4NC8yODc0NUU0QzE1 RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hTeWU4MFBscjBFUUhrUEZp b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lyby1SOVVjWFN5ZTgwUGxyMEVRSGtQRmlvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5ODQvMjg3NDVFNEMxNUVFMTFFQUEyRDlFMDZFQzRGOUFFMDIvQ0VDNEMzRkM5 MDNCMTFFRDk2RDczRjQwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4dsMA0EAgACMAcDBQAkBHvAMA0GCSqGSIb3DQEBCwUAA4IBAQCw DPx91p3QsOpjdJXJ1KLufEXMDCZQVKK0XH/RqcVwt+UnVjD5gRCd2UuiFbvqdf+r mmPHbhmtUhfUiEeeWLjSW807trWDFt6WSKWEqYGWQxjieTZ8QJcmh7j6nXR9oI4T q2TSnQrT6/h9ZX+ilKgvlH4ZJcEiNEIWdMNn8pXPG+M435M3ybQE+sQRjjoJy/eZ HP05lybuYCH+M4TYMEAET/YUBhUbB66Ksvp044tfo3gVYR0PxglVvgOREakT1IRV nsOTHE4nhzbqcoNB8S/+1ippo8xQqXQ5GLAUUnk13MkHhfby5CaQ1wCJUJ3Py3wm SXpfB8Abp4TjJN51y4ji -----END CERTIFICATE-----Generated at Thu Mar 26 05:10:47 2026 by rpki-client