$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa File: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (raw, json) Hash identifier: 1MNwMcMX/YIxSKpmegVgnjdToRlQxDirMalIhcpKaow= Subject key identifier: 82:7E:F6:53:03:B6:7A:4D:5D:E4:EC:37:9B:F6:8C:4B:3B:89:A3:DB Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 0226 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:18:24 +0000 ROA not before: Wed 23 Apr 2025 02:58:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38903 IP address blocks: 103.122.123.0/24 maxlen: 24 103.131.83.0/24 maxlen: 24 203.99.152.0/24 maxlen: 24 203.99.153.0/24 maxlen: 24 203.99.154.0/24 maxlen: 24 203.99.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Apr 23 02:58:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42080-6dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:ed:9d:2e:ce:b1:b7:10:b3:8d:00:20:30: ec:6f:59:66:81:94:94:c2:38:73:5d:c8:11:82:6f: 2a:f8:d8:45:be:e0:d3:e9:0d:80:8c:de:cf:5f:8c: 4e:45:84:b6:a0:ac:33:57:67:ae:e1:ed:51:d0:d6: 23:5a:ce:03:70:b9:0e:e0:81:7c:38:2e:61:12:ec: 62:c9:ec:b1:7b:a7:64:f7:2e:a2:34:2e:a8:d3:00: d6:64:36:af:2f:50:97:63:f5:be:4b:1b:41:6b:18: 74:c1:b8:fd:22:2f:94:e7:33:0b:5f:31:82:8b:15: 90:a0:0c:40:32:51:3a:23:1b:94:c5:bc:51:62:74: b0:8f:60:30:12:f0:81:61:e8:8e:a4:31:4a:87:ca: 7d:80:d8:52:2b:2e:ca:8f:55:16:7f:1f:4e:73:38: f9:1e:45:00:fb:95:01:37:2b:ad:46:2e:00:0c:35: 7f:6c:1f:91:e1:8c:57:a3:d9:af:fe:2e:3e:2c:83: 8d:88:fe:c5:93:f0:6e:c9:fe:63:5d:31:b9:42:da: 0d:8f:69:57:c5:ae:9e:ed:ef:37:b7:50:7f:b7:34: a3:5d:8d:46:84:2f:0d:da:76:32:48:c9:7d:4e:aa: e7:7b:2c:5b:cd:3a:c5:eb:a9:3b:41:10:13:86:2e: aa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7E:F6:53:03:B6:7A:4D:5D:E4:EC:37:9B:F6:8C:4B:3B:89:A3:DB X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.123.0/24 103.131.83.0/24 203.99.152.0/22 Signature Algorithm: sha256WithRSAEncryption 58:f3:d6:66:50:61:46:1c:17:05:82:c1:52:3f:ca:2d:32:a6: 8f:b3:19:4f:e5:f3:85:31:1e:4c:36:95:e4:ae:90:ff:e2:a7: c2:19:5d:b7:da:47:a7:46:8d:fc:6c:8a:8e:8c:65:34:72:50: 0c:e2:d8:39:69:85:e7:6f:3b:77:fe:41:a0:34:b6:c9:d6:9b: 47:b2:e3:d8:c4:92:38:23:71:05:44:f2:f7:50:10:e1:dd:f4: 94:a2:61:c1:0e:53:58:ef:a5:26:bf:58:df:26:be:dd:45:6c: 6b:1c:16:45:79:08:f0:3f:fc:04:75:2a:7e:9a:f5:53:cb:3a: c5:7a:13:98:33:50:af:ee:94:5e:07:b2:82:61:dc:11:54:2a: 64:de:83:37:4a:13:48:52:7e:94:59:f7:e0:00:1b:41:7d:72: e3:92:5f:3e:e3:d4:27:58:b3:b1:d8:3b:98:c5:9c:2f:c2:c3: ac:57:67:ee:96:04:5b:30:ed:df:fc:e1:51:bc:f4:90:d6:40: 56:b0:cd:ee:3d:de:c2:ee:f1:cf:51:b9:b5:01:a9:06:7f:2d: 57:c2:32:79:36:61:f7:dc:5d:cb:84:4e:03:05:d9:87:b5:45: 01:5c:0f:e7:a0:1e:2a:d0:c6:61:d2:9b:33:18:2f:f1:33:e2: 0c:d5:b9:39 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjUwNDIzMDI1ODQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjA4MC02ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz93tnS7OsbcQs40AIDDsb1lmgZSUwjhzXcgRgm8q+NhFvuDT6Q2AjN7PX4xO RYS2oKwzV2eu4e1R0NYjWs4DcLkO4IF8OC5hEuxiyeyxe6dk9y6iNC6o0wDWZDav L1CXY/W+SxtBaxh0wbj9Ii+U5zMLXzGCixWQoAxAMlE6IxuUxbxRYnSwj2AwEvCB YeiOpDFKh8p9gNhSKy7Kj1UWfx9Oczj5HkUA+5UBNyutRi4ADDV/bB+R4YxXo9mv /i4+LIONiP7Fk/Buyf5jXTG5QtoNj2lXxa6e7e83t1B/tzSjXY1GhC8N2nYySMl9 TqrneyxbzTrF66k7QRAThi6qDQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIJ+9lMD tnpNXeTsN5v2jEs7iaPbMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REIxMjgvN0JGMjNBQzREREU4MTFFREJGOEM5NzNBQzRGOUFFMDIvQUJEN0Q5RkNE REVDMTFFREIxNEVEQTMyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ3p7AwQAZ4NTAwQCy2OYMA0GCSqGSIb3DQEBCwUAA4IBAQBY89Zm UGFGHBcFgsFSP8otMqaPsxlP5fOFMR5MNpXkrpD/4qfCGV232kenRo38bIqOjGU0 clAM4tg5aYXnbzt3/kGgNLbJ1ptHsuPYxJI4I3EFRPL3UBDh3fSUomHBDlNY76Um v1jfJr7dRWxrHBZFeQjwP/wEdSp+mvVTyzrFehOYM1Cv7pReB7KCYdwRVCpk3oM3 ShNIUn6UWffgABtBfXLjkl8+49QnWLOx2DuYxZwvwsOsV2fulgRbMO3f/OFRvPSQ 1kBWsM3uPd7C7vHPUbm1AakGfy1XwjJ5NmH33F3LhE4DBdmHtUUBXA/noB4q0MZh 0pszGC/xM+IM1bk5 -----END CERTIFICATE-----Generated at Thu Mar 26 08:51:28 2026 by rpki-client