$ rpki-client -vvf rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa File: F3DC25C41E4511EFBB4DF80DC4F9AE02.roa (raw, json) Hash identifier: UymEhDbFwl3qCyCqScVFcdAOyk6J7jfC5aOKZBd8Zmg= Subject key identifier: 39:DD:C4:B3:8A:B9:32:3A:73:18:24:BC:ED:00:35:88:29:F0:41:C9 Certificate issuer: /CN=A91E647A/serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086 Certificate serial: 354B Authority key identifier: 8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:37:14 +0000 ROA not before: Tue 14 Oct 2025 15:41:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58445 IP address blocks: 103.11.136.0/22 maxlen: 24 116.206.132.0/22 maxlen: 24 2001:df0:29f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.crl rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13643 (0x354b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E647A, serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086 Validity Not Before: Oct 14 15:41:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44109-7f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4f:92:ed:f9:9b:49:9c:da:0c:57:32:be:00: ad:d1:c4:33:3a:12:7d:b1:8c:52:ab:5a:05:33:ff: c7:4b:95:ac:cc:e5:4a:e8:cb:02:01:1e:a2:36:e2: d2:e9:06:6a:6e:2c:02:61:34:d1:af:3b:39:a2:1a: 98:f0:7b:0e:e0:ea:50:77:7a:2a:54:e4:41:2f:da: 93:84:13:2f:6c:eb:f4:eb:3c:3a:a3:35:cb:fd:e6: 36:f7:a3:60:a2:08:55:da:c5:94:7d:3c:50:df:96: c5:ed:eb:5d:10:32:40:ae:62:ce:d3:5e:85:d5:52: c4:11:c7:c6:ec:18:ab:9b:ef:4b:19:3f:55:e8:a6: 8c:c6:fd:2f:cb:ec:26:41:cb:68:55:14:a0:f3:a4: 22:a8:57:97:24:dc:c7:3d:5b:98:30:41:41:ac:ca: 2e:99:75:7c:15:f3:19:ec:d8:6c:bf:eb:37:20:f7: 40:f6:ff:13:6d:af:14:34:eb:a4:6a:b8:f4:3f:5f: 58:9a:b8:44:58:40:ba:76:05:55:dd:e2:1a:c8:86: 49:1a:3c:7d:33:61:e8:0e:f7:3d:f2:1a:e7:44:6a: 8a:e3:57:e0:24:09:d9:9a:4f:32:44:34:f9:41:ee: 91:67:bb:1e:c0:02:e6:bb:a7:dc:9a:b3:f5:91:97: 8e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DD:C4:B3:8A:B9:32:3A:73:18:24:BC:ED:00:35:88:29:F0:41:C9 X509v3 Authority Key Identifier: keyid:8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.136.0/22 116.206.132.0/22 IPv6: 2001:df0:29f::/48 Signature Algorithm: sha256WithRSAEncryption aa:99:34:62:1f:80:74:4a:39:79:31:45:41:fd:19:a9:2b:fa: 91:19:5c:29:6c:30:c9:18:75:45:11:51:a8:30:49:1f:23:ca: b6:34:85:c9:dc:57:cd:b2:cf:0f:76:ba:19:a6:de:43:1b:af: 05:36:d4:33:d8:27:26:0c:99:5b:1d:1e:bc:55:96:95:52:6a: 5a:04:6b:d2:37:4e:18:31:c6:ff:46:de:68:a3:cb:6f:15:3f: fd:12:e9:a4:1f:43:6a:5c:d1:6a:54:89:60:7c:44:2a:b3:48: 78:57:92:99:55:51:a9:a5:c5:41:92:b8:66:95:d4:b5:b5:f1: c7:13:2f:e9:de:39:6f:b9:f5:38:7f:36:06:ab:23:a9:a3:a5: 9f:b2:82:5b:3c:24:1b:5d:60:a0:d5:a7:18:46:47:19:5e:84: 9f:fa:a0:93:e4:5b:15:47:14:d9:9d:f9:79:4e:ed:75:9b:20: ed:1f:02:25:c7:80:b4:83:f8:4f:f7:f7:46:cb:e6:d7:50:2c: 2f:bc:20:d3:fe:b3:ae:f0:e0:5b:a0:df:ba:ad:c6:f6:84:c5: 79:b3:c4:c2:2e:18:26:7c:db:c9:c7:48:3a:81:99:f1:ba:bc: b3:e3:36:bc:29:bc:52:d8:8f:5b:ff:56:53:e0:fe:1a:85:46: a7:56:90:79 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICNUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0N0ExMTAvBgNVBAUTKDhGNTlDOEZENUEwQjVBOTlBQjA0MDA2NDQyM0FCRjRE QjBCNEUwODYwHhcNMjUxMDE0MTU0MTE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDEwOS03ZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6k+S7fmbSZzaDFcyvgCt0cQzOhJ9sYxSq1oFM//HS5WszOVK6MsCAR6iNuLS 6QZqbiwCYTTRrzs5ohqY8HsO4OpQd3oqVORBL9qThBMvbOv06zw6ozXL/eY296Ng oghV2sWUfTxQ35bF7etdEDJArmLO016F1VLEEcfG7Birm+9LGT9V6KaMxv0vy+wm QctoVRSg86QiqFeXJNzHPVuYMEFBrMoumXV8FfMZ7Nhsv+s3IPdA9v8Tba8UNOuk arj0P19YmrhEWEC6dgVV3eIayIZJGjx9M2HoDvc98hrnRGqK41fgJAnZmk8yRDT5 Qe6RZ7sewALmu6fcmrP1kZeOsQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFDndxLOK uTI6cxgkvO0ANYgp8EHJMB8GA1UdIwQYMBaAFI9ZyP1aC1qZqwQAZEI6v02wtOCG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQ3QS83OTQ4RUExQzFE QTkxMUUyQkExNDg0QTQwOEIwMkNEMi9qMW5JX1ZvTFdwbXJCQUJrUWpxX1RiQzA0 SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2oxbklfVm9MV3BtckJBQmtRanFfVGJDMDRJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY0N0EvNzk0OEVBMUMxREE5MTFFMkJBMTQ4NEE0MDhCMDJDRDIvRjNEQzI1QzQx RTQ1MTFFRkJCNERGODBEQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZwuIAwQCdM6EMA8EAgACMAkDBwAgAQ3wAp8wDQYJKoZIhvcNAQEL BQADggEBAKqZNGIfgHRKOXkxRUH9Gakr+pEZXClsMMkYdUURUagwSR8jyrY0hcnc V82yzw92uhmm3kMbrwU21DPYJyYMmVsdHrxVlpVSaloEa9I3Thgxxv9G3mijy28V P/0S6aQfQ2pc0WpUiWB8RCqzSHhXkplVUamlxUGSuGaV1LW18ccTL+neOW+59Th/ NgarI6mjpZ+ygls8JBtdYKDVpxhGRxlehJ/6oJPkWxVHFNmd+XlO7XWbIO0fAiXH gLSD+E/390bL5tdQLC+8INP+s67w4Fug37qtxvaExXmzxMIuGCZ828nHSDqBmfG6 vLPjNrwpvFLYj1v/VlPg/hqFRqdWkHk= -----END CERTIFICATE-----Generated at Thu Mar 26 13:28:15 2026 by rpki-client