$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa File: E54E5FF6632311ED8D313442C4F9AE02.roa (raw, json) Hash identifier: 854w7PdZ+GVBnud2Squ7BH42nMJN3ruaV+ahUGF7ddM= Subject key identifier: 97:64:C5:0B:E1:04:DA:BC:D3:68:98:77:DC:3D:B8:5E:42:54:D2:32 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 26C3 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa Signing time: Tue 10 Mar 2026 17:23:40 +0000 ROA not before: Tue 10 Mar 2026 17:23:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9230 IP address blocks: 103.12.166.0/24 maxlen: 24 103.31.108.0/24 maxlen: 24 103.129.244.0/22 maxlen: 24 103.234.192.0/23 maxlen: 24 122.144.8.0/21 maxlen: 24 150.129.16.0/23 maxlen: 24 182.163.96.0/19 maxlen: 24 202.84.32.0/20 maxlen: 24 2402:c000::/32 maxlen: 40 2402:c000::/48 maxlen: 48 2402:c000:1::/48 maxlen: 48 2402:c000:5::/48 maxlen: 48 2402:c000:3800::/48 maxlen: 48 2402:c000:3801::/48 maxlen: 48 2402:c000:3802::/48 maxlen: 48 2402:c000:3803::/48 maxlen: 48 2402:c000:38f2::/48 maxlen: 48 2402:c000:38f3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9923 (0x26c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Mar 10 17:23:40 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69b0539c-482a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c2:58:1f:b1:93:1a:6b:03:34:07:25:b0:cb: 96:73:b0:9f:1b:74:53:07:d3:de:8c:c5:4a:4c:41: 3d:83:bb:fc:e1:87:85:16:75:4d:92:ec:d9:c7:c5: 16:fd:a9:69:7a:86:96:06:56:06:69:27:60:73:e3: 23:96:6e:96:d3:c5:64:77:0a:8d:79:af:6a:47:9f: 5f:fe:e3:c5:1a:26:75:9e:44:ae:47:ae:83:f1:a7: e4:29:79:36:d3:4e:de:3b:0e:31:fb:b4:58:c1:76: 78:a9:7a:72:7e:04:7f:ae:57:2f:31:bc:c1:a3:de: 6f:f6:8d:a1:97:c0:66:39:a8:93:48:97:8f:5e:32: e7:3b:85:bb:42:82:c8:40:03:d0:e6:fa:10:93:0a: 0c:d6:1c:7b:6e:9a:00:0a:fa:2d:f5:9c:e5:90:8a: 4f:37:47:d3:27:ff:ef:40:87:79:80:8c:07:62:c0: 95:e1:9a:c4:77:de:ad:d6:e1:20:52:c6:61:6d:7e: a4:d0:e5:de:7c:e3:50:54:9d:49:54:6f:97:c5:78: a7:c7:0e:78:e8:21:c3:68:6b:fc:d7:9c:4b:ce:9a: 17:72:e8:0d:d4:3a:33:26:8e:61:42:71:55:81:10: a6:3a:18:68:9d:27:f6:a9:cb:33:73:11:2f:e8:21: 0a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:64:C5:0B:E1:04:DA:BC:D3:68:98:77:DC:3D:B8:5E:42:54:D2:32 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/E54E5FF6632311ED8D313442C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.12.166.0/24 103.31.108.0/24 103.129.244.0/22 103.234.192.0/23 122.144.8.0/21 150.129.16.0/23 182.163.96.0/19 202.84.32.0/20 IPv6: 2402:c000::/32 Signature Algorithm: sha256WithRSAEncryption ce:d9:75:34:02:83:2b:8e:ef:05:a3:a3:65:73:60:5f:4a:5c: 5e:d0:b1:d5:3f:5a:f2:58:2d:19:3f:45:ca:05:c7:5b:df:04: bb:e0:3b:bc:40:38:8f:a0:e7:0b:0e:31:5c:02:f1:bc:15:72: c2:2b:c2:5c:82:48:2b:5f:e4:7c:61:a1:85:23:a3:49:c8:87: 7b:39:8c:00:e2:c6:b6:0d:7b:77:cd:f4:69:98:2a:f2:18:09: 8d:7f:3d:d9:ba:bd:6b:d2:52:d9:00:10:18:03:aa:57:60:21: ad:a8:fa:39:d8:56:5b:f5:c4:6d:ae:c7:c5:02:fd:9c:3e:29: 32:96:f6:2b:fa:11:49:e8:97:e8:bd:1a:dc:91:8e:54:71:e2: b6:2e:cf:32:c2:9d:9f:62:70:ec:c5:50:0e:13:5c:ab:0d:96: c3:cd:13:f1:f4:91:9c:6c:d3:06:cf:81:9b:2e:6e:dd:c1:02: dc:92:ba:bf:ba:01:c7:8a:a5:30:31:85:f4:19:29:5f:ae:96: 8a:2f:c6:89:63:f3:b9:6b:e3:45:f7:ec:69:96:72:91:ab:82: 51:b8:65:4c:a9:18:a3:42:97:77:de:45:06:01:31:3d:56:01: 24:c7:0f:60:30:46:39:db:ae:d4:12:09:65:16:e8:99:2e:c6: b1:c6:a1:f4 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICJsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjYwMzEwMTcyMzQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIwNTM5Yy00ODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsJYH7GTGmsDNAclsMuWc7CfG3RTB9PejMVKTEE9g7v84YeFFnVNkuzZx8UW /alpeoaWBlYGaSdgc+Mjlm6W08VkdwqNea9qR59f/uPFGiZ1nkSuR66D8afkKXk2 007eOw4x+7RYwXZ4qXpyfgR/rlcvMbzBo95v9o2hl8BmOaiTSJePXjLnO4W7QoLI QAPQ5voQkwoM1hx7bpoACvot9ZzlkIpPN0fTJ//vQId5gIwHYsCV4ZrEd96t1uEg UsZhbX6k0OXefONQVJ1JVG+XxXinxw546CHDaGv815xLzpoXcugN1DozJo5hQnFV gRCmOhhonSf2qcszcxEv6CEKywIDAQABo4ICmTCCApUwHQYDVR0OBBYEFJdkxQvh BNq802iYd9w9uF5CVNIyMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMDIvNEVBNDhFODRGQkE5MTFFNEE4QjM0QzIzQzRGOUFFMDIvRTU0RTVGRjY2 MzIzMTFFRDhEMzEzNDQyQzRGOUFFMDIucm9hMFgGCCsGAQUFBwEHAQH/BEkwRzA2 BAIAATAwAwQAZwymAwQAZx9sAwQCZ4H0AwQBZ+rAAwQDepAIAwQBloEQAwQFtqNg AwQEylQgMA0EAgACMAcDBQAkAsAAMA0GCSqGSIb3DQEBCwUAA4IBAQDO2XU0AoMr ju8Fo6Nlc2BfSlxe0LHVP1ryWC0ZP0XKBcdb3wS74Du8QDiPoOcLDjFcAvG8FXLC K8JcgkgrX+R8YaGFI6NJyId7OYwA4sa2DXt3zfRpmCryGAmNfz3Zur1r0lLZABAY A6pXYCGtqPo52FZb9cRtrsfFAv2cPikylvYr+hFJ6JfovRrckY5UceK2Ls8ywp2f YnDsxVAOE1yrDZbDzRPx9JGcbNMGz4GbLm7dwQLckrq/ugHHiqUwMYX0GSlfrpaK L8aJY/O5a+NF9+xplnKRq4JRuGVMqRijQpd33kUGATE9VgEkxw9gMEY5267UEgll FuiZLsaxxqH0 -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:19 2026 by rpki-client