$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa File: 21997AB0FEBC11E9B0463650C4F9AE02.roa (raw, json) Hash identifier: JwOjYA/Jw9dwtNja6OhiUESlnckDLqCGhIODnzf58NE= Subject key identifier: FA:55:89:34:21:57:9D:D5:04:CC:E5:92:E5:76:0D:8F:83:74:CD:A3 Certificate issuer: /CN=A91D8F57/serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Certificate serial: 0D0C Authority key identifier: 4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:17:25 +0000 ROA not before: Wed 14 Jan 2026 18:15:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137257 IP address blocks: 103.106.64.0/23 maxlen: 24 2402:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3340 (0xd0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8F57, serialNumber=4FED3D3721A78AB20486CDAF34A3AE6917D87CBE Validity Not Before: Jan 14 18:15:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a51d65-2860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d5:76:b1:c7:9e:6c:e9:d5:60:ee:d4:46:aa: f5:f3:5c:7b:a6:f3:b4:fd:9f:f1:db:1e:9f:06:43: 77:e9:8d:91:44:b9:26:44:9e:f4:8c:d5:9e:0a:62: 0b:98:ff:7e:7b:6e:39:fb:fe:12:6b:c2:4a:03:d7: 6b:f6:11:03:0e:1f:8d:e3:21:a3:9e:57:63:e3:5b: 48:a7:52:18:ea:3a:4f:10:5e:b6:0b:12:10:74:b3: 60:16:90:6c:7d:2a:d5:ee:3c:6e:73:0e:99:bc:98: c7:08:6b:7d:4c:0d:4e:5b:b1:b3:c0:33:87:6a:4f: 5a:16:cf:70:f5:98:12:9c:7a:14:dd:9d:e1:77:15: b9:91:51:a8:ed:d0:b3:b1:3a:79:83:25:9a:ac:94: 9c:39:9d:53:bc:ac:d3:2f:b3:eb:4e:a8:f8:f0:d7: bf:71:a8:57:21:c3:03:24:1a:40:80:62:fa:83:77: fa:27:3a:ff:5d:02:f7:fb:ed:02:9c:c5:36:2c:1e: 39:cb:54:92:ff:c0:60:c1:ca:c1:77:47:a7:68:ef: 85:60:51:b0:0e:ce:eb:8b:8b:38:6d:14:51:97:7b: c0:77:dd:2c:c8:79:b9:76:13:06:54:a1:75:a7:fe: c1:5a:25:99:40:22:e0:de:5e:e9:11:8b:db:e0:2b: 89:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:55:89:34:21:57:9D:D5:04:CC:E5:92:E5:76:0D:8F:83:74:CD:A3 X509v3 Authority Key Identifier: keyid:4F:ED:3D:37:21:A7:8A:B2:04:86:CD:AF:34:A3:AE:69:17:D8:7C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/T-09NyGnirIEhs2vNKOuaRfYfL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-09NyGnirIEhs2vNKOuaRfYfL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8F57/4C59F966FEBA11E99ED9824CC4F9AE02/21997AB0FEBC11E9B0463650C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.64.0/23 IPv6: 2402:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 56:9f:bf:d2:9e:80:15:e1:25:83:bb:57:dc:8f:61:78:82:35: 26:a5:60:1b:2d:ae:41:c5:fb:ed:64:e8:62:b2:e2:05:c8:2c: e3:0e:5c:c7:a1:b5:f4:17:cb:f3:e1:c3:9c:be:3b:19:0a:56: 2a:2b:fd:ab:f2:d1:c7:c5:03:54:a7:09:af:89:f7:bd:3b:77: 6c:ec:1b:25:5f:6c:cd:92:32:c8:ae:b7:0b:2f:80:b0:43:89: ab:13:b2:d3:84:91:d1:c4:f7:5b:66:80:0a:26:98:49:5a:b1: a3:3c:05:ef:40:d4:f7:12:68:cd:0d:86:78:95:18:21:1a:fd: 19:16:4b:85:3e:99:59:6e:9e:c1:94:f7:3d:0f:75:cb:3c:25: 9b:b2:d9:64:6b:be:9f:8a:e4:67:b0:50:49:57:31:8c:0c:69: b5:21:01:7b:7d:68:12:2c:12:68:90:16:b4:fe:b9:f8:e2:19: ea:19:0c:7a:53:99:20:bb:98:61:6b:18:33:b0:35:b6:28:dd: 78:76:9e:05:1f:15:9b:a7:ac:d3:30:a7:38:92:90:76:43:3c: b9:cf:02:e2:fb:8d:87:e8:a9:01:cc:33:b3:25:24:4e:81:53: 3c:83:0b:06:85:89:74:cf:c1:bd:44:f2:74:00:c5:21:27:c1: 82:04:23:af -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhGNTcxMTAvBgNVBAUTKDRGRUQzRDM3MjFBNzhBQjIwNDg2Q0RBRjM0QTNBRTY5 MTdEODdDQkUwHhcNMjYwMTE0MTgxNTQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWQ2NS0yODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNV2sceebOnVYO7URqr181x7pvO0/Z/x2x6fBkN36Y2RRLkmRJ70jNWeCmIL mP9+e245+/4Sa8JKA9dr9hEDDh+N4yGjnldj41tIp1IY6jpPEF62CxIQdLNgFpBs fSrV7jxucw6ZvJjHCGt9TA1OW7GzwDOHak9aFs9w9ZgSnHoU3Z3hdxW5kVGo7dCz sTp5gyWarJScOZ1TvKzTL7PrTqj48Ne/cahXIcMDJBpAgGL6g3f6Jzr/XQL3++0C nMU2LB45y1SS/8BgwcrBd0enaO+FYFGwDs7ri4s4bRRRl3vAd90syHm5dhMGVKF1 p/7BWiWZQCLg3l7pEYvb4CuJFwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPpViTQh V53VBMzlkuV2DY+DdM2jMB8GA1UdIwQYMBaAFE/tPTchp4qyBIbNrzSjrmkX2Hy+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEY1Ny80QzU5Rjk2NkZF QkExMUU5OUVEOTgyNENDNEY5QUUwMi9ULTA5TnlHbmlySUVoczJ2TktPdWFSZllm TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtMDlOeUduaXJJRWhzMnZOS091YVJmWWZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhGNTcvNEM1OUY5NjZGRUJBMTFFOTlFRDk4MjRDQzRGOUFFMDIvMjE5OTdBQjBG RUJDMTFFOUIwNDYzNjUwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ2pAMA0EAgACMAcDBQAkAjzAMA0GCSqGSIb3DQEBCwUAA4IBAQBW n7/SnoAV4SWDu1fcj2F4gjUmpWAbLa5BxfvtZOhisuIFyCzjDlzHobX0F8vz4cOc vjsZClYqK/2r8tHHxQNUpwmvife9O3ds7BslX2zNkjLIrrcLL4CwQ4mrE7LThJHR xPdbZoAKJphJWrGjPAXvQNT3EmjNDYZ4lRghGv0ZFkuFPplZbp7BlPc9D3XLPCWb stlka76fiuRnsFBJVzGMDGm1IQF7fWgSLBJokBa0/rn44hnqGQx6U5kgu5hhaxgz sDW2KN14dp4FHxWbp6zTMKc4kpB2Qzy5zwLi+42H6KkBzDOzJSROgVM8gwsGhYl0 z8G9RPJ0AMUhJ8GCBCOv -----END CERTIFICATE-----Generated at Thu Mar 26 09:55:57 2026 by rpki-client