$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa File: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (raw, json) Hash identifier: r/QdasLc5bg8TvtpOH3qUVDciFGg4kgkaUmfu3ixoOU= Subject key identifier: 66:DC:E1:0C:60:FF:E5:65:64:AF:FF:99:3F:1B:83:33:44:2B:87:66 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 0232 Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:57:40 +0000 ROA not before: Mon 09 Feb 2026 02:22:30 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150691 IP address blocks: 103.57.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Feb 9 02:22:30 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a5a564-8e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1f:a0:7f:38:1f:10:1a:83:18:38:8e:6c:70: ab:1e:f9:2a:ef:ca:4b:21:41:9d:bd:49:c3:d9:34: d7:20:5e:1e:61:e2:23:26:7b:83:c6:aa:1f:5f:23: 69:8c:34:6d:0d:93:36:ea:a0:f3:63:7e:4f:8f:7a: bc:b2:f7:66:d3:44:2f:96:a8:8d:09:f3:0c:73:27: 8c:08:41:18:6c:7c:58:5c:c4:6d:1a:30:ca:b3:b4: a8:68:4c:6d:f1:12:a8:bc:79:7f:a7:a8:c0:a8:8e: 93:5a:e9:36:9e:c7:9c:d8:a4:e0:99:d7:c2:4c:45: 52:b1:fc:25:49:e2:25:07:bd:1c:98:17:b4:ea:21: bc:d2:7e:c9:73:4a:6d:33:ef:c5:44:ad:ee:a6:77: cd:c8:6f:30:19:d4:ba:13:86:db:e8:f8:0a:30:45: b7:ca:77:d3:2f:c7:66:14:c1:36:4e:30:d0:0a:30: 44:a4:be:7c:5a:6b:2a:97:de:eb:db:4a:3b:42:c4: 5f:7b:a7:cc:6c:e3:f4:72:f9:b9:ce:5f:eb:f7:16: 39:73:78:d0:44:77:83:d4:83:2d:c4:c2:51:3a:84: 22:b3:6f:57:cb:82:36:79:f5:05:56:0a:48:d1:fa: 4d:6d:89:e1:49:0a:e3:d9:a2:1b:3a:44:c8:3b:ed: ef:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DC:E1:0C:60:FF:E5:65:64:AF:FF:99:3F:1B:83:33:44:2B:87:66 X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.57.98.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:1d:e8:7a:aa:05:50:51:22:b2:42:e8:6e:2d:8f:a2:8b:75: 33:c5:d6:26:93:8f:b6:01:97:8e:2f:c9:e7:ed:f2:61:83:6e: f5:0e:17:78:49:c9:72:3d:25:a5:a0:90:bb:94:10:e2:d9:01: 8a:5a:2d:e1:f7:56:58:9e:a3:09:0a:e8:33:41:83:e4:5c:a5: 32:c9:81:8f:4d:22:26:65:09:93:78:e8:91:e0:60:d7:db:bf: c9:90:1f:56:03:a7:1c:4a:d4:d5:cf:ad:d0:c1:d1:cb:7f:e1: f3:a9:a3:76:61:9f:1e:b3:e5:bf:23:7b:eb:26:19:b8:2a:40: 0e:7f:4d:40:17:67:61:02:5a:6b:72:4d:17:28:5a:ba:d5:a4: a3:e8:45:4c:7e:cd:1c:64:ec:27:fb:b2:ee:a2:c7:73:d5:20: 73:55:b1:3d:f6:82:25:99:14:48:d8:3b:4a:f9:bb:eb:2d:1e: c2:ae:c9:8f:c8:25:73:73:88:60:66:9d:40:dd:fa:6b:b2:78: 3c:73:30:c2:75:6e:d8:8b:e9:cc:3d:e7:10:1a:0f:b0:6e:e1: 6d:a0:34:09:c5:37:3d:e1:d0:a1:2d:8c:4f:78:a8:f9:63:f5: 33:9a:af:2f:c5:0f:fd:63:05:32:ab:e2:04:7a:13:fd:ec:ed: 02:01:e7:9b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjYwMjA5MDIyMjMwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTU2NC04ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h+gfzgfEBqDGDiObHCrHvkq78pLIUGdvUnD2TTXIF4eYeIjJnuDxqofXyNp jDRtDZM26qDzY35Pj3q8svdm00QvlqiNCfMMcyeMCEEYbHxYXMRtGjDKs7SoaExt 8RKovHl/p6jAqI6TWuk2nsec2KTgmdfCTEVSsfwlSeIlB70cmBe06iG80n7Jc0pt M+/FRK3upnfNyG8wGdS6E4bb6PgKMEW3ynfTL8dmFME2TjDQCjBEpL58Wmsql97r 20o7QsRfe6fMbOP0cvm5zl/r9xY5c3jQRHeD1IMtxMJROoQis29Xy4I2efUFVgpI 0fpNbYnhSQrj2aIbOkTIO+3vFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGbc4Qxg /+VlZK//mT8bgzNEK4dmMB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDMkIvRDI3RTZFRDBDQjk2MTFFREFDMzQ5Qjc5QzRGOUFFMDIvMTJCOUE1REVD QkMyMTFFREI2RjA5NTE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZzliMA0GCSqGSIb3DQEBCwUAA4IBAQCNHeh6qgVQUSKyQuhuLY+i i3UzxdYmk4+2AZeOL8nn7fJhg271Dhd4SclyPSWloJC7lBDi2QGKWi3h91ZYnqMJ CugzQYPkXKUyyYGPTSImZQmTeOiR4GDX27/JkB9WA6ccStTVz63QwdHLf+HzqaN2 YZ8es+W/I3vrJhm4KkAOf01AF2dhAlprck0XKFq61aSj6EVMfs0cZOwn+7Luosdz 1SBzVbE99oIlmRRI2DtK+bvrLR7CrsmPyCVzc4hgZp1A3fprsng8czDCdW7Yi+nM PecQGg+wbuFtoDQJxTc94dChLYxPeKj5Y/Uzmq8vxQ/9YwUyq+IEehP97O0CAeeb -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:20 2026 by rpki-client