$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/A3FE68F6081C11F1912AFF69323D8C67.roa File: A3FE68F6081C11F1912AFF69323D8C67.roa (raw, json) Hash identifier: g2adiyPxsVhG5oeVaDBqn8Ydsbj30nd9vTisrwWjNJw= Subject key identifier: D0:D1:58:56:24:2C:76:A1:EA:08:35:A1:F6:90:FA:76:3B:DC:B3:16 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 071A Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/A3FE68F6081C11F1912AFF69323D8C67.roa Signing time: Sun 01 Mar 2026 18:11:35 +0000 ROA not before: Thu 12 Feb 2026 14:10:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 834 IP address blocks: 103.99.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Feb 12 14:10:53 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48157-82d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:38:c9:b7:2a:21:65:e6:e3:38:c8:32:f9:f5: c5:e7:7e:26:03:2d:5b:ea:67:58:16:6b:46:6f:84: 7c:ff:11:b0:97:bc:c3:e0:d5:a7:a4:90:e9:18:bb: 9b:8b:a2:d3:e1:ac:62:7e:8c:9e:aa:f2:ad:90:98: 9d:e3:a4:f9:09:45:c0:2f:1b:ec:85:4e:45:19:c0: cd:20:8c:0a:3c:3c:57:8c:58:48:69:bf:44:f9:72: 2f:ad:db:d1:e2:dd:ac:65:34:dd:cc:d9:8c:21:81: c0:b2:29:c7:c2:49:bb:94:03:ac:a2:21:1c:75:31: ca:0d:57:90:20:99:9b:ea:2a:db:ea:a7:f4:80:f1: 8a:c3:b0:4c:3e:bc:e5:ac:e9:84:33:ff:d6:23:c0: 12:95:3b:a2:c6:97:c8:76:1b:aa:85:48:47:1c:2e: 93:7c:0d:e0:e4:a5:9f:2e:14:6e:a3:d8:0d:58:39: ea:40:e1:8c:46:38:0a:e2:6f:a5:e3:f0:93:72:0f: a1:7d:f8:2d:e3:ae:96:f1:c9:2e:36:d1:1f:61:39: 10:d2:63:2c:2f:4c:99:bf:c2:4a:b2:2f:e6:56:fb: b4:1f:e8:f3:e8:dc:55:f9:49:af:b8:ca:b0:c3:7a: 8f:87:f0:f2:94:e3:e8:67:45:44:db:8a:18:d4:30: a7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D1:58:56:24:2C:76:A1:EA:08:35:A1:F6:90:FA:76:3B:DC:B3:16 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/A3FE68F6081C11F1912AFF69323D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.99.62.0/24 Signature Algorithm: sha256WithRSAEncryption 85:73:43:ab:1a:b1:05:4f:27:24:40:26:df:32:07:79:f6:49: 8f:6f:be:e9:d8:0e:21:be:6a:09:be:e6:8c:7c:1c:c8:82:77: d6:2c:d4:29:cc:61:0e:b2:2f:c9:6b:5a:b2:70:3a:e5:a6:91: 70:0d:da:8d:34:52:da:30:3d:58:d4:c6:77:7a:6c:f2:91:24: 22:ea:04:87:a3:6d:15:27:48:73:a0:c7:12:9b:2a:c2:a0:6c: eb:b7:18:de:92:a6:db:96:0f:09:89:03:94:ca:89:2d:8a:98: 0e:74:79:cb:d1:ba:47:fb:d1:5d:b9:06:81:9c:02:ed:24:43: 63:84:db:42:52:49:26:e4:5d:1f:44:4f:33:8b:bb:39:46:15: 77:d4:2f:5a:68:0f:19:6d:56:72:3c:58:68:2b:91:ae:b2:73: 19:53:ad:34:8b:3d:e3:50:c9:4a:92:82:ed:3d:9e:21:e9:36: 66:a6:c6:5a:7d:af:fb:e2:1d:03:be:57:e4:f6:d9:01:0a:20: 20:4e:0b:ac:f3:01:0a:cb:ff:d1:04:2e:a1:66:b3:86:fc:cb: e5:06:bf:b1:f2:6b:53:59:1c:4e:7d:fb:e8:8c:26:0f:30:cd: d9:5e:a7:18:c8:c4:8c:4f:71:96:50:73:c4:b3:7b:92:8e:1c: 60:f6:e6:a1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjYwMjEyMTQxMDUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE1Ny04MmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTjJtyohZebjOMgy+fXF534mAy1b6mdYFmtGb4R8/xGwl7zD4NWnpJDpGLub i6LT4axifoyeqvKtkJid46T5CUXALxvshU5FGcDNIIwKPDxXjFhIab9E+XIvrdvR 4t2sZTTdzNmMIYHAsinHwkm7lAOsoiEcdTHKDVeQIJmb6irb6qf0gPGKw7BMPrzl rOmEM//WI8ASlTuixpfIdhuqhUhHHC6TfA3g5KWfLhRuo9gNWDnqQOGMRjgK4m+l 4/CTcg+hffgt466W8ckuNtEfYTkQ0mMsL0yZv8JKsi/mVvu0H+jz6NxV+UmvuMqw w3qPh/DylOPoZ0VE24oY1DCnrQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNDRWFYk LHah6gg1ofaQ+nY73LMWMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvQTNGRTY4RjYw ODFDMTFGMTkxMkFGRjY5MzIzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2M+MA0GCSqGSIb3DQEBCwUAA4IBAQCFc0OrGrEFTyckQCbfMgd5 9kmPb77p2A4hvmoJvuaMfBzIgnfWLNQpzGEOsi/Ja1qycDrlppFwDdqNNFLaMD1Y 1MZ3emzykSQi6gSHo20VJ0hzoMcSmyrCoGzrtxjekqbblg8JiQOUyoktipgOdHnL 0bpH+9FduQaBnALtJENjhNtCUkkm5F0fRE8zi7s5RhV31C9aaA8ZbVZyPFhoK5Gu snMZU600iz3jUMlKkoLtPZ4h6TZmpsZafa/74h0Dvlfk9tkBCiAgTgus8wEKy//R BC6hZrOG/MvlBr+x8mtTWRxOffvojCYPMM3ZXqcYyMSMT3GWUHPEs3uSjhxg9uah -----END CERTIFICATE-----Generated at Thu Mar 26 06:37:16 2026 by rpki-client