$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa File: 3CEDCE18900D11F0BD65E474C4F9AE02.roa (raw, json) Hash identifier: si95Vdu34Zqe1asgmhnxqsOd5enCJnqLhJsasj0CoZQ= Subject key identifier: C5:0D:F4:2E:15:26:5D:66:24:4C:93:71:F5:7F:83:D4:ED:19:AD:4E Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 0717 Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:32 +0000 ROA not before: Wed 22 Oct 2025 23:42:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 15143 IP address blocks: 103.99.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Oct 22 23:42:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48154-ff8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:00:fd:fa:55:7f:8f:6b:3c:c7:e2:fc:b3:60: 1e:aa:dc:f3:72:b8:93:a7:8a:7d:52:19:bd:9c:78: eb:bc:e0:a4:cc:c1:f2:1c:66:90:48:d8:d0:c1:b6: fe:3a:9d:0c:8c:2e:69:da:09:73:c1:3c:68:0e:ec: 46:86:38:ba:e2:00:7d:54:fc:8a:8e:af:73:24:81: 50:1b:52:71:38:4a:0c:30:72:2a:d4:91:23:16:7e: 3d:70:ea:b7:89:17:0f:9c:34:19:00:01:3d:dd:49: 8f:4c:75:d6:af:bc:aa:cc:59:bf:8b:ea:54:9c:34: 9e:e4:20:68:96:ec:4a:a2:30:b4:2d:1a:e3:2a:2d: 80:90:3d:67:db:bf:23:6c:d4:37:c6:6b:52:e6:5c: b5:06:d8:4e:98:5a:46:c9:0a:86:13:02:5d:c1:2c: 8b:1c:37:56:db:1e:48:5c:47:0f:dc:3f:8c:2b:3c: 85:80:65:89:10:c5:47:53:9e:bf:a5:70:9e:db:22: 61:8c:4a:4a:dc:8a:37:d4:23:c7:05:2f:69:b9:0d: 14:5e:cc:40:6d:c1:28:f1:8e:89:02:03:3d:d2:2b: 72:70:ad:3f:b6:f6:41:f4:5b:4c:c3:e7:ed:c4:5f: 1d:9e:82:8e:70:c1:8d:42:7b:e7:2e:0f:5e:6e:e9: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0D:F4:2E:15:26:5D:66:24:4C:93:71:F5:7F:83:D4:ED:19:AD:4E X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/23 Signature Algorithm: sha256WithRSAEncryption 19:70:06:a0:3d:92:9c:23:e8:07:6e:b4:60:ec:f0:d3:99:53: b3:18:72:e3:58:d6:e6:40:13:5b:ef:c8:76:93:62:43:5e:21: 9d:dc:d9:44:b2:02:cc:f1:4f:42:2d:ea:52:32:b5:b7:c0:12: 42:7b:4f:a2:05:36:e9:04:fd:f0:8e:cd:8a:6d:cf:b9:77:fa: c0:9f:1b:39:8b:57:a6:48:ec:0b:52:d5:74:60:4f:18:63:91: e7:04:2a:87:00:81:72:11:ad:ad:ec:39:b5:92:32:55:d9:32: b2:95:fe:f9:aa:ad:41:88:b6:c6:83:2b:3a:d8:bd:46:0a:23: 0b:b7:ca:7a:f9:5f:fb:99:1e:9d:64:2a:17:af:3c:61:ef:f8: 13:b3:04:ce:e2:db:1c:ec:55:da:62:18:a7:b4:77:90:e6:1a: f3:87:e2:ca:13:57:7d:f1:5a:9c:71:b0:46:8f:55:0d:51:ca: 6f:73:fe:b5:48:96:2a:cd:9f:38:7d:87:a2:8d:73:ab:66:45: 4f:8d:f0:69:fd:58:b2:bc:e0:e2:c6:4d:e6:44:12:86:24:0f: 87:bb:30:55:96:17:49:ef:8a:a5:af:53:32:d5:8d:f7:7e:ca: e3:12:b3:87:ef:81:d6:ba:69:c4:4d:bf:ee:cc:49:e8:fc:a3: 74:6b:7a:ec -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjUxMDIyMjM0MjEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE1NC1mZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gD9+lV/j2s8x+L8s2AeqtzzcriTp4p9Uhm9nHjrvOCkzMHyHGaQSNjQwbb+ Op0MjC5p2glzwTxoDuxGhji64gB9VPyKjq9zJIFQG1JxOEoMMHIq1JEjFn49cOq3 iRcPnDQZAAE93UmPTHXWr7yqzFm/i+pUnDSe5CBoluxKojC0LRrjKi2AkD1n278j bNQ3xmtS5ly1BthOmFpGyQqGEwJdwSyLHDdW2x5IXEcP3D+MKzyFgGWJEMVHU56/ pXCe2yJhjEpK3Io31CPHBS9puQ0UXsxAbcEo8Y6JAgM90itycK0/tvZB9FtMw+ft xF8dnoKOcMGNQnvnLg9ebunzXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMUN9C4V Jl1mJEyTcfV/g9TtGa1OMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvM0NFRENFMTg5 MDBEMTFGMEJENjVFNDc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2M8MA0GCSqGSIb3DQEBCwUAA4IBAQAZcAagPZKcI+gHbrRg7PDT mVOzGHLjWNbmQBNb78h2k2JDXiGd3NlEsgLM8U9CLepSMrW3wBJCe0+iBTbpBP3w js2Kbc+5d/rAnxs5i1emSOwLUtV0YE8YY5HnBCqHAIFyEa2t7Dm1kjJV2TKylf75 qq1BiLbGgys62L1GCiMLt8p6+V/7mR6dZCoXrzxh7/gTswTO4tsc7FXaYhintHeQ 5hrzh+LKE1d98VqccbBGj1UNUcpvc/61SJYqzZ84fYeijXOrZkVPjfBp/ViyvODi xk3mRBKGJA+HuzBVlhdJ74qlr1My1Y33fsrjErOH74HWumnETb/uzEno/KN0a3rs -----END CERTIFICATE-----Generated at Thu Mar 26 10:38:01 2026 by rpki-client