$ rpki-client -vvf rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa File: A856E7621BBC11F182440C5A133D8C67.roa (raw, json) Hash identifier: KdW7HmM/QsPtpcnFpMg/Q8r0PDiCC8P4N0obd527mv4= Subject key identifier: 93:E8:AB:DD:81:54:4A:1A:91:1E:22:3D:BA:A2:9D:D2:C7:A1:52:4D Certificate issuer: /CN=A91D560D/serialNumber=D7146DA9DE28F5BB5E3DE2FF00C59FC85C9938DA Certificate serial: 0946 Authority key identifier: D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa Signing time: Mon 09 Mar 2026 13:34:12 +0000 ROA not before: Mon 09 Mar 2026 13:34:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135030 IP address blocks: 103.111.164.0/23 maxlen: 23 103.111.164.0/24 maxlen: 24 103.111.165.0/24 maxlen: 24 2402:9f40::/32 maxlen: 32 2402:9f40:1::/48 maxlen: 48 2402:9f40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2374 (0x946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D560D, serialNumber=D7146DA9DE28F5BB5E3DE2FF00C59FC85C9938DA Validity Not Before: Mar 9 13:34:12 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69aecc54-e9b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a6:29:7c:2e:6f:37:88:8e:c1:0f:2b:84:f2: b4:0b:27:6d:40:4a:4a:c9:91:2c:b0:26:a2:1d:43: bd:cf:49:fa:3f:f6:81:45:53:d7:d5:4a:df:94:36: e3:05:6a:6d:03:a4:6b:1c:1b:d5:47:af:97:02:69: de:2d:f4:f9:4c:7c:c1:34:38:66:e5:b6:b4:89:af: 3b:7f:72:a3:05:a9:95:6b:d6:b2:71:cd:bf:81:f1: 69:9c:8b:d2:f0:0a:42:52:3c:32:fe:97:db:46:2e: 76:fa:ec:91:c6:6c:3b:8b:25:91:dd:1c:ec:88:2a: 5c:b1:ee:13:19:2f:ae:d5:51:6e:d3:27:26:d8:22: 85:83:69:79:a0:b0:5f:ba:a2:79:43:db:98:a8:f7: 16:e2:f3:fa:bf:8e:4f:bd:c0:93:3b:4f:46:7c:2a: 39:59:fd:d2:86:08:03:5b:bf:b0:fc:87:5c:7c:f3: d8:8c:74:20:bb:87:86:64:20:de:3d:11:71:4e:6d: 4b:28:3e:73:cf:fe:85:a4:a5:d1:1a:55:0d:7f:60: 38:b8:fa:34:f4:46:76:50:d2:d9:b1:1b:cd:b9:7f: 2d:2f:85:78:01:3a:94:5b:bf:27:90:52:2c:ef:37: 2e:11:44:96:52:36:4a:fc:f0:6b:4b:6d:c9:1a:3b: f5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E8:AB:DD:81:54:4A:1A:91:1E:22:3D:BA:A2:9D:D2:C7:A1:52:4D X509v3 Authority Key Identifier: keyid:D7:14:6D:A9:DE:28:F5:BB:5E:3D:E2:FF:00:C5:9F:C8:5C:99:38:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/1xRtqd4o9btePeL_AMWfyFyZONo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xRtqd4o9btePeL_AMWfyFyZONo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D560D/68C3F49A41EE11EA9CEA1F75C4F9AE02/A856E7621BBC11F182440C5A133D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.111.164.0/23 IPv6: 2402:9f40::/32 Signature Algorithm: sha256WithRSAEncryption a3:d4:83:91:d7:a3:9e:1c:4d:be:c8:6d:ed:51:34:54:50:46: 14:c1:fe:9e:dc:cf:b4:17:7b:19:f6:4c:b0:6b:30:15:cf:ba: ac:d2:01:49:b0:45:ce:24:71:93:c7:c8:d1:89:84:ae:7e:29: 05:da:6f:c4:38:aa:9c:4b:9b:14:05:ea:89:82:0b:95:e4:e1: 7f:d5:77:31:a7:8b:c1:c5:a9:87:99:05:16:ee:c5:8e:92:b1: f8:97:d0:1f:4e:7b:7a:92:40:1a:42:00:d6:ca:f1:7f:98:fe: bc:50:54:d3:18:5e:f9:d9:1a:ba:59:2e:bc:5c:9e:d3:c9:d5: a6:49:2a:c9:26:ae:c7:76:aa:73:0a:3f:d4:14:04:75:fa:fe: b9:07:a4:42:35:fe:a7:25:b2:35:3b:8e:d7:1f:0d:1a:f2:a5: 9a:0c:83:f6:d0:83:b4:16:56:f8:b4:bb:49:59:d9:e5:93:13: 1f:d6:28:76:ce:7f:75:d4:b3:e6:21:43:5c:6a:2f:aa:c5:d1: 3d:f2:f3:b1:7f:24:50:98:66:9a:18:ed:6f:77:ae:50:e9:1e: 3e:d4:cb:e1:be:e8:80:3f:48:79:32:1a:4f:2b:c5:7c:62:f9: 89:14:88:11:a8:15:61:0d:4e:e9:3f:e2:cc:be:5a:57:d2:62: 99:45:fa:9c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2MEQxMTAvBgNVBAUTKEQ3MTQ2REE5REUyOEY1QkI1RTNERTJGRjAwQzU5RkM4 NUM5OTM4REEwHhcNMjYwMzA5MTMzNDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFlY2M1NC1lOWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKYpfC5vN4iOwQ8rhPK0CydtQEpKyZEssCaiHUO9z0n6P/aBRVPX1UrflDbj BWptA6RrHBvVR6+XAmneLfT5THzBNDhm5ba0ia87f3KjBamVa9aycc2/gfFpnIvS 8ApCUjwy/pfbRi52+uyRxmw7iyWR3RzsiCpcse4TGS+u1VFu0ycm2CKFg2l5oLBf uqJ5Q9uYqPcW4vP6v45PvcCTO09GfCo5Wf3ShggDW7+w/IdcfPPYjHQgu4eGZCDe PRFxTm1LKD5zz/6FpKXRGlUNf2A4uPo09EZ2UNLZsRvNuX8tL4V4ATqUW78nkFIs 7zcuEUSWUjZK/PBrS23JGjv1YQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJPoq92B VEoakR4iPbqindLHoVJNMB8GA1UdIwQYMBaAFNcUbaneKPW7Xj3i/wDFn8hcmTja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTYwRC82OEMzRjQ5QTQx RUUxMUVBOUNFQTFGNzVDNEY5QUUwMi8xeFJ0cWQ0bzlidGVQZUxfQU1XZnlGeVpP Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4UnRxZDRvOWJ0ZVBlTF9BTVdmeUZ5Wk9Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2MEQvNjhDM0Y0OUE0MUVFMTFFQTlDRUExRjc1QzRGOUFFMDIvQTg1NkU3NjIx QkJDMTFGMTgyNDQwQzVBMTMzRDhDNjcucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2+kMA0EAgACMAcDBQAkAp9AMA0GCSqGSIb3DQEBCwUAA4IBAQCj 1IOR16OeHE2+yG3tUTRUUEYUwf6e3M+0F3sZ9kywazAVz7qs0gFJsEXOJHGTx8jR iYSufikF2m/EOKqcS5sUBeqJgguV5OF/1Xcxp4vBxamHmQUW7sWOkrH4l9AfTnt6 kkAaQgDWyvF/mP68UFTTGF752Rq6WS68XJ7TydWmSSrJJq7HdqpzCj/UFAR1+v65 B6RCNf6nJbI1O47XHw0a8qWaDIP20IO0Flb4tLtJWdnlkxMf1ih2zn911LPmIUNc ai+qxdE98vOxfyRQmGaaGO1vd65Q6R4+1MvhvuiAP0h5MhpPK8V8YvmJFIgRqBVh DU7pP+LMvlpX0mKZRfqc -----END CERTIFICATE-----Generated at Thu Mar 26 07:06:00 2026 by rpki-client