$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa File: 5AA3FD0868D111ED99477B87C4F9AE02.roa (raw, json) Hash identifier: OtV6b8befwkPsOuYarHGh5SRZOjkzLz1qANk490i9b8= Subject key identifier: 0E:F7:A5:00:29:B3:D1:67:07:7E:A7:35:8C:48:DB:27:78:8A:51:23 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0CCE Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:36:03 +0000 ROA not before: Tue 16 Sep 2025 18:58:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137961 IP address blocks: 103.118.84.0/24 maxlen: 24 103.118.85.0/24 maxlen: 24 103.118.86.0/24 maxlen: 24 2403:2ec0::/32 maxlen: 40 2403:2ec0:2000::/48 maxlen: 48 2403:2ec0:20ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Sep 16 18:58:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45ce3-ebc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:3b:00:ce:0c:29:fb:75:80:43:5d:22:c9: 3a:0d:ef:a7:fc:86:11:bd:65:4d:fd:86:6a:aa:50: 9c:e5:9e:75:50:4f:e0:87:7e:1f:2c:37:a8:bb:0d: 19:3e:5b:15:86:67:f8:90:57:31:3c:69:b9:54:b7: 22:a2:76:1a:1d:9d:5a:81:dd:80:7b:8a:7d:ca:96: 5a:d6:df:d0:79:c8:37:1b:95:e1:e3:39:7b:03:ff: 05:56:66:7c:fb:8f:2b:12:79:cc:08:5e:5e:79:95: 8f:9b:b9:72:78:39:a3:8f:78:49:6a:19:47:94:5c: 70:3b:6f:91:04:41:f7:87:9d:ac:61:6a:1b:6b:43: 8b:c2:59:8f:f3:ab:1d:15:03:0d:47:44:74:9e:79: dc:54:65:77:ac:86:ad:66:96:d2:dd:52:32:0a:7f: c1:4f:fa:d9:e8:ac:9c:63:fa:5a:2b:a2:1e:29:b2: 45:2e:dd:b7:f4:f0:e1:f2:30:6c:45:b3:d2:c8:8f: 4d:cd:4f:25:98:72:7a:14:61:3d:3b:90:a1:2a:da: dc:c1:4d:73:e1:f8:1b:02:76:88:a7:59:ea:84:40: 8d:7b:e4:06:a9:b4:9c:a8:2e:2c:f1:63:32:88:c9: 9c:43:91:35:00:df:c3:ff:8d:51:23:fb:7f:bb:b5: e4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F7:A5:00:29:B3:D1:67:07:7E:A7:35:8C:48:DB:27:78:8A:51:23 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.118.84.0-103.118.86.255 IPv6: 2403:2ec0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:52:7a:06:b9:6d:69:6f:75:50:d4:12:95:2f:c7:0b:d8:56: 2e:b2:7e:2d:32:d1:9d:7f:1c:c0:e5:b3:94:32:6a:f7:03:2e: 34:42:cf:f3:f8:29:f6:b3:51:29:f3:56:37:e3:68:f9:74:0b: de:92:af:c1:c0:e3:01:03:1c:df:35:e0:73:ef:d5:59:1b:2d: f1:4f:5d:93:62:04:7f:21:bd:fb:97:f6:a4:ff:97:61:90:0a: 7c:7f:fe:9d:da:64:a7:d9:ea:ec:ad:15:19:9e:78:73:29:a5: 6e:95:69:e5:1d:71:9d:a3:94:f7:3b:fd:e7:a8:f2:6d:42:14: f8:fc:ca:01:db:9c:47:b5:69:51:d3:d6:a9:ed:e3:c5:32:56: f9:5e:75:17:36:0a:6d:16:94:f0:c6:53:a1:5e:55:ae:e0:fb: 90:30:ec:be:e9:07:28:8b:ed:33:fc:c8:10:92:d1:32:f2:04: 6c:cb:74:fe:03:cf:00:66:d0:a8:91:55:30:08:02:ba:28:20: 52:53:91:8b:0a:48:83:8e:66:19:68:7d:b9:7a:69:8c:b8:73: 63:7b:4f:9e:b8:fc:d9:80:63:1a:0f:32:2f:8c:22:57:9b:10: ef:43:9c:c1:06:53:5d:81:53:ea:ae:18:95:58:55:d1:b6:e1: 3f:52:10:c1 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwOTE2MTg1ODMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWNlMy1lYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunA7AM4MKft1gENdIsk6De+n/IYRvWVN/YZqqlCc5Z51UE/gh34fLDeouw0Z PlsVhmf4kFcxPGm5VLcionYaHZ1agd2Ae4p9ypZa1t/Qecg3G5Xh4zl7A/8FVmZ8 +48rEnnMCF5eeZWPm7lyeDmjj3hJahlHlFxwO2+RBEH3h52sYWoba0OLwlmP86sd FQMNR0R0nnncVGV3rIatZpbS3VIyCn/BT/rZ6KycY/paK6IeKbJFLt239PDh8jBs RbPSyI9NzU8lmHJ6FGE9O5ChKtrcwU1z4fgbAnaIp1nqhECNe+QGqbScqC4s8WMy iMmcQ5E1AN/D/41RI/t/u7XkGQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFA73pQAp s9FnB36nNYxI2yd4ilEjMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzREMvMDY2MzlGODYwQTkzMTFFQTg1QUQ4ODZBQzRGOUFFMDIvNUFBM0ZEMDg2 OEQxMTFFRDk5NDc3Qjg3QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAU BAIAATAOMAwDBAJndlQDBABndlYwDQQCAAIwBwMFACQDLsAwDQYJKoZIhvcNAQEL BQADggEBAHtSega5bWlvdVDUEpUvxwvYVi6yfi0y0Z1/HMDls5QyavcDLjRCz/P4 KfazUSnzVjfjaPl0C96Sr8HA4wEDHN814HPv1VkbLfFPXZNiBH8hvfuX9qT/l2GQ Cnx//p3aZKfZ6uytFRmeeHMppW6VaeUdcZ2jlPc7/eeo8m1CFPj8ygHbnEe1aVHT 1qnt48UyVvledRc2Cm0WlPDGU6FeVa7g+5Aw7L7pByiL7TP8yBCS0TLyBGzLdP4D zwBm0KiRVTAIArooIFJTkYsKSIOOZhlofbl6aYy4c2N7T564/NmAYxoPMi+MIleb EO9DnMEGU12BU+quGJVYVdG24T9SEME= -----END CERTIFICATE-----Generated at Fri Mar 27 01:55:39 2026 by rpki-client