$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa File: 3A4C99D49F7911F08FC08A7FC4F9AE02.roa (raw, json) Hash identifier: gAF8NOxTri4lmRnjfw1NrjD/U5F8xAKVG+vonQB71no= Subject key identifier: B8:58:60:43:27:1F:32:C9:F7:9B:5F:4D:FD:13:D0:25:CE:D0:2B:B2 Certificate issuer: /CN=A91DFD4C/serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Certificate serial: 6C Authority key identifier: 63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:54:26 +0000 ROA not before: Thu 02 Oct 2025 10:19:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154169 IP address blocks: 103.252.126.0/24 maxlen: 24 2001:df6:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFD4C, serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Validity Not Before: Oct 2 10:19:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58882-850d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:69:54:85:42:9d:1d:5f:3e:55:1f:0c:d5:a9: 27:84:97:d8:b1:8b:7a:20:8b:5a:0a:7c:b3:ed:25: 8b:9e:41:07:66:ca:ed:1d:a4:a3:ef:de:9a:a1:2b: c6:a1:5a:9f:5e:95:c9:07:ba:1b:13:5a:03:f8:35: 92:25:a0:19:e1:fe:28:5f:c2:85:54:fa:d3:fe:8c: fe:6d:9d:84:26:50:37:40:f9:83:bb:92:92:2d:2e: 6f:69:fa:54:a0:d9:8d:df:6a:5f:dc:28:3a:4e:32: 55:38:aa:5b:47:65:14:98:ce:cd:14:15:64:6e:f9: 8c:4f:85:74:c8:bc:1b:00:c0:9a:6d:21:09:11:b9: a2:14:40:46:7e:a3:6b:b4:24:bd:21:44:a3:02:54: f5:e7:0e:f2:bf:7f:37:26:e9:d7:9a:15:5b:4a:1d: 42:60:27:13:a9:5d:cf:cb:4a:fc:bc:af:16:2b:24: 34:7b:04:26:d6:fd:d4:b5:46:c9:93:03:f5:06:fa: 57:9b:b2:06:22:63:4f:19:4c:04:44:0f:2e:9a:12: e4:5a:26:2e:36:4f:c9:7c:fd:24:78:60:7b:4d:ea: b0:48:70:de:49:be:f8:a6:3c:c2:bf:c0:2d:55:5c: 80:7a:67:e5:44:87:b8:d8:87:15:78:b7:b6:15:f2: 95:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:58:60:43:27:1F:32:C9:F7:9B:5F:4D:FD:13:D0:25:CE:D0:2B:B2 X509v3 Authority Key Identifier: keyid:63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.252.126.0/24 IPv6: 2001:df6:a40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:45:70:79:3f:db:cb:5e:b0:7d:11:31:84:c0:0c:0e:77:74: 93:f7:9a:f4:0b:f3:02:0a:ef:8a:81:ce:8b:20:39:4c:44:7d: d3:15:47:35:1d:79:e3:25:c1:7f:c1:11:e9:6d:49:ff:79:1c: f7:c9:37:ff:56:6d:bf:02:b2:b7:7d:5d:0d:1f:e7:12:eb:bc: 17:e9:dc:bf:57:9a:bf:a7:cd:89:42:14:72:a5:76:03:a7:8d: 78:57:84:05:f3:57:05:67:8c:95:37:0b:cd:96:31:92:91:08: ed:2a:db:e7:02:c2:a7:1c:c6:38:48:4a:dc:91:86:78:1e:e5: a0:b1:e8:32:20:5b:61:fa:ac:fd:7c:03:63:74:b5:3d:a6:7e: 3a:8e:88:49:98:8b:d6:00:9c:c2:65:ad:b6:12:99:ee:dd:d8: 46:69:98:1b:06:8f:46:9a:8e:cd:7d:4f:c6:bb:f0:c4:40:fb: b6:17:6d:2f:bf:bb:68:07:b9:81:86:86:8b:07:28:31:02:1e: 16:49:b1:78:2e:83:92:b0:b4:8c:cd:53:a0:14:1a:38:42:a7: 74:94:33:5e:80:4b:5c:9b:24:3b:76:d1:9e:36:f9:68:ce:6f: b6:9d:be:18:39:90:2b:80:8a:3b:60:91:f1:db:99:d2:8f:39: 74:4d:e9:f2 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkQ0QzExMC8GA1UEBRMoNjM4MzNBMjQxRTNFNDk1OUVCQTE5QzcwMUQwNDg4N0RC NEIxRkM3NDAeFw0yNTEwMDIxMDE5MDdaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ODgyLTg1MGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAaVSFQp0dXz5VHwzVqSeEl9ixi3ogi1oKfLPtJYueQQdmyu0dpKPv3pqhK8ah Wp9elckHuhsTWgP4NZIloBnh/ihfwoVU+tP+jP5tnYQmUDdA+YO7kpItLm9p+lSg 2Y3fal/cKDpOMlU4qltHZRSYzs0UFWRu+YxPhXTIvBsAwJptIQkRuaIUQEZ+o2u0 JL0hRKMCVPXnDvK/fzcm6deaFVtKHUJgJxOpXc/LSvy8rxYrJDR7BCbW/dS1RsmT A/UG+lebsgYiY08ZTAREDy6aEuRaJi42T8l8/SR4YHtN6rBIcN5JvvimPMK/wC1V XIB6Z+VEh7jYhxV4t7YV8pUBAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUuFhgQycf Msn3m19N/RPQJc7QK7IwHwYDVR0jBBgwFoAUY4M6JB4+SVnroZxwHQSIfbSx/HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRDRDLzU2RUMzRDlDODM2 RDExRjA4ODE2MDA2QUM0RjlBRTAyL1k0TTZKQjQtU1Zucm9aeHdIUVNJZmJTeF9I US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTRNNkpCNC1TVm5yb1p4d0hRU0lmYlN4X0hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkQ0Qy81NkVDM0Q5QzgzNkQxMUYwODgxNjAwNkFDNEY5QUUwMi8zQTRDOTlENDlG NzkxMUYwOEZDMDhBN0ZDNEY5QUUwMi5yb2EwMAYIKwYBBQUHAQcBAf8EITAfMAwE AgABMAYDBABn/H4wDwQCAAIwCQMHACABDfYKQDANBgkqhkiG9w0BAQsFAAOCAQEA akVweT/by16wfRExhMAMDnd0k/ea9AvzAgrvioHOiyA5TER90xVHNR154yXBf8ER 6W1J/3kc98k3/1ZtvwKyt31dDR/nEuu8F+ncv1eav6fNiUIUcqV2A6eNeFeEBfNX BWeMlTcLzZYxkpEI7Srb5wLCpxzGOEhK3JGGeB7loLHoMiBbYfqs/XwDY3S1PaZ+ Oo6ISZiL1gCcwmWtthKZ7t3YRmmYGwaPRpqOzX1PxrvwxED7thdtL7+7aAe5gYaG iwcoMQIeFkmxeC6DkrC0jM1ToBQaOEKndJQzXoBLXJskO3bRnjb5aM5vtp2+GDmQ K4CKO2CR8duZ0o85dE3p8g== -----END CERTIFICATE-----Generated at Fri Mar 27 04:09:05 2026 by rpki-client