$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa File: 685DC124EC7B11EFAF014776C4F9AE02.roa (raw, json) Hash identifier: 6sYXn011K9g2scrf7jey3FtY3PeEY3hVRse65pK5m0Y= Subject key identifier: D5:4B:D5:2C:AD:76:91:B7:55:25:15:EE:39:83:0F:7F:A0:65:C0:8D Certificate issuer: /CN=A91D6F21/serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Certificate serial: 010B Authority key identifier: 9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:58:59 +0000 ROA not before: Fri 03 Oct 2025 06:33:47 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 3356 IP address blocks: 103.129.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F21, serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Validity Not Before: Oct 3 06:33:47 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a5b3-054b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:1f:7e:93:f1:bb:44:24:92:e9:de:45:36:d9: 6e:ec:58:e4:86:b2:38:c8:58:93:97:dd:76:d0:89: 43:38:18:22:8d:3b:1e:03:80:b1:71:2a:a1:fc:bd: 7f:0e:a7:89:0a:b4:f8:6a:ea:92:e0:0b:b9:0c:cb: 61:02:88:c2:cf:c8:23:a2:45:60:9d:f1:ce:9f:01: 2a:d8:8c:85:6a:1a:86:8b:54:97:b0:33:62:31:1c: ba:cc:2a:27:7f:07:c9:9b:67:72:25:f8:42:a1:fa: 28:c0:eb:27:8a:2c:d7:8d:f1:ea:ca:3b:c9:85:92: c1:29:eb:96:8d:5e:4b:e5:84:d3:a9:e9:c7:73:7b: 0a:5c:ac:08:9f:09:80:5d:ab:e9:1e:2c:8f:a0:35: e3:fd:ea:67:c0:6d:72:3f:1d:81:88:81:dd:72:7d: e5:f0:85:04:63:8e:94:97:9f:d9:97:57:01:90:aa: e1:2a:81:a4:61:de:b4:53:b7:2e:a8:66:4e:42:db: 1d:6d:f6:14:3f:06:9c:d3:ba:76:45:b0:14:de:d7: 4e:a8:6c:a1:3c:5c:a1:bd:fc:21:02:dc:64:1f:d8: 33:4e:26:eb:04:5c:a4:35:f6:cd:8c:7c:03:37:90: 7c:88:86:09:9b:6c:db:af:ae:2c:0b:9c:c6:d2:f5: ab:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4B:D5:2C:AD:76:91:B7:55:25:15:EE:39:83:0F:7F:A0:65:C0:8D X509v3 Authority Key Identifier: keyid:9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.129.116.0/23 Signature Algorithm: sha256WithRSAEncryption 37:d9:d5:bd:60:9a:d8:68:81:d2:53:22:b6:c5:af:a0:55:35: 8f:4b:c2:7c:74:d3:fa:27:95:a3:94:9d:ad:06:ce:94:3d:ac: 83:1c:9e:0e:a8:75:86:37:f3:53:98:9d:b9:8f:23:e6:b5:c7: 90:f8:01:ff:24:0e:01:2c:bf:d2:f0:14:fd:5b:95:b1:bd:61: f6:15:37:cc:a6:07:05:ae:73:01:db:55:30:bb:fa:91:27:90: 4f:e2:6c:70:f2:ec:3e:31:c2:84:df:8d:31:e8:65:54:ba:fd: c1:4f:67:83:83:45:de:4d:f1:b8:e6:64:7b:e2:e0:71:f6:86: c9:11:c5:cb:fc:6c:47:cc:fa:8c:04:0d:ef:33:e7:b3:80:1f: d1:84:17:92:2a:e9:d4:ab:37:e0:fa:e1:ad:27:7b:fa:81:a7: b6:8a:1c:fe:b6:ac:a2:a9:cd:cd:4f:b6:4d:4e:2e:2a:48:71: 0d:f0:98:d3:4f:f9:04:a1:06:2b:57:5c:61:7b:8b:3e:fb:13: 43:87:cc:ea:d7:3a:8b:c3:0e:0d:35:94:56:40:2b:03:8e:fa: 0a:4b:6b:5c:f9:76:61:14:fe:24:22:e5:d8:06:2d:0f:08:6f: 8a:45:3a:0c:8c:bc:46:6d:0d:3e:cb:8c:1e:5d:12:13:03:c5: a0:d5:d2:43 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMjExMTAvBgNVBAUTKDlDRERGQUVBQkM2NEJDQ0Q3ODg4Mjk2MjkxMEVDMTky QTJEMjI4MzgwHhcNMjUxMDAzMDYzMzQ3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTViMy0wNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkB9+k/G7RCSS6d5FNtlu7FjkhrI4yFiTl9120IlDOBgijTseA4CxcSqh/L1/ DqeJCrT4auqS4Au5DMthAojCz8gjokVgnfHOnwEq2IyFahqGi1SXsDNiMRy6zCon fwfJm2dyJfhCofoowOsniizXjfHqyjvJhZLBKeuWjV5L5YTTqenHc3sKXKwInwmA XavpHiyPoDXj/epnwG1yPx2BiIHdcn3l8IUEY46Ul5/Zl1cBkKrhKoGkYd60U7cu qGZOQtsdbfYUPwac07p2RbAU3tdOqGyhPFyhvfwhAtxkH9gzTibrBFykNfbNjHwD N5B8iIYJm2zbr64sC5zG0vWrNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNVL1Syt dpG3VSUV7jmDD3+gZcCNMB8GA1UdIwQYMBaAFJzd+uq8ZLzNeIgpYpEOwZKi0ig4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyMS9GRTM3RTNFQ0Ex QUMxMUVGQjY3NTg1NDhDNEY5QUUwMi9uTjM2NnJ4a3ZNMTRpQ2xpa1E3QmtxTFNL RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OMzY2cnhrdk0xNGlDbGlrUTdCa3FMU0tEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZGMjEvRkUzN0UzRUNBMUFDMTFFRkI2NzU4NTQ4QzRGOUFFMDIvNjg1REMxMjRF QzdCMTFFRkFGMDE0Nzc2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4F0MA0GCSqGSIb3DQEBCwUAA4IBAQA32dW9YJrYaIHSUyK2xa+g VTWPS8J8dNP6J5WjlJ2tBs6UPayDHJ4OqHWGN/NTmJ25jyPmtceQ+AH/JA4BLL/S 8BT9W5WxvWH2FTfMpgcFrnMB21Uwu/qRJ5BP4mxw8uw+McKE340x6GVUuv3BT2eD g0XeTfG45mR74uBx9obJEcXL/GxHzPqMBA3vM+ezgB/RhBeSKunUqzfg+uGtJ3v6 gae2ihz+tqyiqc3NT7ZNTi4qSHEN8JjTT/kEoQYrV1xhe4s++xNDh8zq1zqLww4N NZRWQCsDjvoKS2tc+XZhFP4kIuXYBi0PCG+KRToMjLxGbQ0+y4weXRITA8Wg1dJD -----END CERTIFICATE-----Generated at Thu Mar 26 15:57:53 2026 by rpki-client