$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa File: 1D9F5104C99B11F092A1C310C4F9AE02.roa (raw, json) Hash identifier: ZvIqaTrMx4lREhhOll5OEYiWwpf2XdBASEHvDBRAKLs= Subject key identifier: 82:08:6B:2A:CE:11:7E:0A:0A:4D:4B:4F:B0:65:E4:13:9B:E9:6F:1A Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 0118 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:57:59 +0000 ROA not before: Tue 09 Dec 2025 03:42:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139005 IP address blocks: 103.138.130.0/24 maxlen: 24 2405:e40::/45 maxlen: 45 2405:e40:100::/45 maxlen: 45 2405:e40:108::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Dec 9 03:42:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58957-c974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:69:9c:d6:08:b0:c3:8e:50:20:fe:74:3d:05: 31:22:11:57:e7:5a:62:03:9e:f1:d2:c8:b9:6d:09: 7a:dd:56:db:d3:1b:31:8e:7e:d5:dd:32:40:7d:be: e5:b4:21:90:db:ac:0c:50:82:1f:d3:f7:06:ed:3e: 09:f6:b1:e9:78:21:82:8f:46:e5:67:73:8b:48:7b: 00:8f:ba:e0:af:dd:50:df:84:36:3d:96:a8:86:b6: 8e:ca:75:30:67:53:d9:48:44:14:c5:5a:4b:10:21: 0c:7b:34:77:77:bb:ff:e1:da:7e:a5:47:b6:d0:e2: 89:24:50:2a:b0:4d:57:15:c8:e2:1a:e9:be:87:f7: 61:f4:bd:4f:e1:c9:7b:9d:cd:96:95:f3:c3:f2:5b: fa:35:41:a0:f5:28:41:30:4e:30:c9:26:69:f4:17: 26:ac:03:53:e7:14:b5:e6:7f:d4:6a:73:d5:92:86: 1e:05:19:0f:d1:d4:54:28:14:46:b3:4a:01:fb:f0: a7:e5:67:38:89:88:65:c1:39:31:f7:f9:42:c4:33: 6a:cc:1c:f3:9b:45:8c:5d:48:6a:e5:a4:0c:f0:95: e9:a1:77:a2:fe:53:5f:5f:1e:37:48:f4:ce:f2:de: ea:8f:88:33:df:03:57:47:94:a9:d1:9d:8f:82:8f: cb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:08:6B:2A:CE:11:7E:0A:0A:4D:4B:4F:B0:65:E4:13:9B:E9:6F:1A X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/1D9F5104C99B11F092A1C310C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.130.0/24 IPv6: 2405:e40::/45 2405:e40:100::-2405:e40:108:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a7:79:fa:6e:af:18:ca:b6:a1:af:51:17:96:99:4c:c7:bb:35: c0:af:73:a9:c7:ac:a3:31:2c:b3:e8:39:20:94:68:dc:59:fd: 76:0c:52:df:64:a6:f8:c9:5e:38:57:44:1b:96:fb:cb:df:b0: db:1d:9d:81:36:e9:f0:9e:9b:ec:32:ad:23:ac:3c:49:74:51: 89:e3:53:1c:6e:46:16:f3:25:29:35:71:7b:5b:3c:08:cd:90: b0:e1:5f:f8:66:2c:da:28:43:bb:7c:53:53:21:6f:77:e3:90: 0a:ed:4f:3d:d0:54:ed:21:25:2d:c2:a7:e9:72:7c:93:7b:91: 92:a1:e3:0e:75:16:39:6f:39:40:bc:89:af:22:64:fc:d4:93: 3c:c2:bb:83:ba:8d:f8:e8:04:1c:a2:84:df:67:22:f5:dc:67: bb:5b:d2:7f:09:23:bc:28:c3:ff:7a:16:9d:35:0e:96:6c:58: 32:6e:5b:ff:6f:66:04:e4:5f:bb:4e:d6:a6:c2:dc:af:35:99: 33:e8:d3:b9:a9:92:4f:72:0a:50:09:8f:aa:50:fc:ab:18:a6: d7:0e:5d:a4:d1:81:35:33:c1:eb:f4:5e:f1:c3:29:ff:1e:6c: 26:bd:a0:34:82:08:1a:0a:f3:98:fe:02:1d:35:0c:44:55:bf: 7f:b1:21:e3 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUxMjA5MDM0MjU4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODk1Ny1jOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj2mc1giww45QIP50PQUxIhFX51piA57x0si5bQl63Vbb0xsxjn7V3TJAfb7l tCGQ26wMUIIf0/cG7T4J9rHpeCGCj0blZ3OLSHsAj7rgr91Q34Q2PZaohraOynUw Z1PZSEQUxVpLECEMezR3d7v/4dp+pUe20OKJJFAqsE1XFcjiGum+h/dh9L1P4cl7 nc2WlfPD8lv6NUGg9ShBME4wySZp9BcmrANT5xS15n/UanPVkoYeBRkP0dRUKBRG s0oB+/Cn5Wc4iYhlwTkx9/lCxDNqzBzzm0WMXUhq5aQM8JXpoXei/lNfXx43SPTO 8t7qj4gz3wNXR5Sp0Z2Pgo/LKQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFIIIayrO EX4KCk1LT7Bl5BOb6W8aMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY4QUQvREVCQTIzODA4NkEwMTFFRkIzNkUzMDBFQzRGOUFFMDIvMUQ5RjUxMDRD OTlCMTFGMDkyQTFDMzEwQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAM BAIAATAGAwQAZ4qCMCIEAgACMBwDBwMkBQ5AAAAwEQMGACQFDkABAwcAJAUOQAEI MA0GCSqGSIb3DQEBCwUAA4IBAQCnefpurxjKtqGvUReWmUzHuzXAr3Opx6yjMSyz 6DkglGjcWf12DFLfZKb4yV44V0QblvvL37DbHZ2BNunwnpvsMq0jrDxJdFGJ41Mc bkYW8yUpNXF7WzwIzZCw4V/4ZizaKEO7fFNTIW9345AK7U890FTtISUtwqfpcnyT e5GSoeMOdRY5bzlAvImvImT81JM8wruDuo346AQcooTfZyL13Ge7W9J/CSO8KMP/ ehadNQ6WbFgyblv/b2YE5F+7TtamwtyvNZkz6NO5qZJPcgpQCY+qUPyrGKbXDl2k 0YE1M8Hr9F7xwyn/HmwmvaA0gggaCvOY/gIdNQxEVb9/sSHj -----END CERTIFICATE-----Generated at Thu Mar 26 10:52:03 2026 by rpki-client