$ rpki-client -vvf rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/9E393ADA657011EB96AF8F49C4F9AE02.roa File: 9E393ADA657011EB96AF8F49C4F9AE02.roa (raw, json) Hash identifier: ev3sBPy0Q1f1TCa3FQ+DO7T8UGM3EjS+3+xQyEkvgdw= Subject key identifier: B6:C7:FF:2D:99:67:CF:2A:BA:2B:99:B7:CC:D7:14:CE:2B:2D:EF:01 Certificate issuer: /CN=A91E838F/serialNumber=3A85D447E18675FED5AE05C929379EEFAD5BCBC0 Certificate serial: 0855 Authority key identifier: 3A:85:D4:47:E1:86:75:FE:D5:AE:05:C9:29:37:9E:EF:AD:5B:CB:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OoXUR-GGdf7VrgXJKTee761by8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/9E393ADA657011EB96AF8F49C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:46:22 +0000 ROA not before: Sun 02 Nov 2025 21:11:01 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139648 IP address blocks: 103.156.22.0/23 maxlen: 23 103.156.22.0/24 maxlen: 24 103.156.23.0/24 maxlen: 24 2001:df4:f780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/OoXUR-GGdf7VrgXJKTee761by8A.crl rsync://rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/OoXUR-GGdf7VrgXJKTee761by8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OoXUR-GGdf7VrgXJKTee761by8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E838F, serialNumber=3A85D447E18675FED5AE05C929379EEFAD5BCBC0 Validity Not Before: Nov 2 21:11:01 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46d5e-ba16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3e:28:8a:f4:ff:a8:b5:36:02:ba:f5:36:e3: d9:e5:e7:e8:d1:3f:4f:26:54:bb:a4:fb:d8:6d:a7: 5c:f1:a7:cd:c9:6f:8a:43:b2:cd:36:68:4c:78:99: 4d:e7:41:5d:0c:a3:ef:5e:d9:0f:ee:4c:66:35:bb: a8:9c:08:14:2d:0b:de:8a:0a:65:78:44:ac:6a:00: 5a:36:81:af:ca:a4:fd:fb:54:ce:07:ee:62:0c:dd: a0:38:92:a9:16:d0:ed:18:e1:10:fd:7b:72:2d:4d: 8f:a9:2e:ae:ef:76:7a:69:0f:c9:52:ad:a3:20:34: 41:fc:96:b3:68:a6:f4:95:a5:57:e6:d9:e4:0c:6e: ad:57:58:27:35:81:66:8c:b4:0e:3a:53:34:76:ed: 3b:ef:e7:33:f6:1d:85:6a:81:8e:61:3d:71:82:42: d2:01:ed:d0:d5:db:03:2c:ec:3b:f3:27:28:8f:25: e0:e7:9f:69:9c:a7:43:4d:46:6d:53:5b:b6:c7:6f: ab:ba:1e:88:13:94:a9:91:5a:c3:f4:e5:e3:a1:c9: 0a:1e:16:ed:91:f8:40:bf:7d:7f:fa:8d:4e:fc:9c: c1:5f:de:8b:c7:0d:74:83:e7:c1:cc:1b:57:47:99: cb:52:ae:10:a0:6b:93:57:12:5b:c1:4e:e7:b2:d5: 7c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C7:FF:2D:99:67:CF:2A:BA:2B:99:B7:CC:D7:14:CE:2B:2D:EF:01 X509v3 Authority Key Identifier: keyid:3A:85:D4:47:E1:86:75:FE:D5:AE:05:C9:29:37:9E:EF:AD:5B:CB:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/OoXUR-GGdf7VrgXJKTee761by8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OoXUR-GGdf7VrgXJKTee761by8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E838F/A9F7739806E111EB9B335C6DC4F9AE02/9E393ADA657011EB96AF8F49C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.22.0/23 IPv6: 2001:df4:f780::/48 Signature Algorithm: sha256WithRSAEncryption ca:7f:4f:ce:8c:ff:dd:74:49:b7:a8:cb:c6:da:05:f3:6d:63: e4:67:61:06:05:3c:2b:1b:4b:83:05:9c:95:4d:14:16:17:6c: 8d:95:61:92:ae:0b:ca:ec:81:08:ef:fe:b3:13:92:d8:b7:c8: 19:4f:d6:e4:a8:61:0a:ab:89:3c:31:04:c5:6d:b6:ce:9e:89: b2:50:f8:4b:0c:fb:dd:99:2b:ad:11:bb:52:9f:48:4e:8c:41: cc:fc:1e:05:74:a9:14:98:8a:22:63:56:22:52:a4:c7:8a:fa: 01:98:16:c5:a0:96:19:c6:ba:60:0e:5d:7d:66:6d:d5:04:3f: 42:fe:ce:52:30:20:51:7d:d7:12:a8:dd:44:48:a0:a2:e2:35: a1:4f:b7:3f:e9:32:10:f8:27:22:41:20:c0:b5:37:d4:c1:d7: 90:50:59:ae:00:e8:9a:a2:0a:3e:19:52:8f:7c:9e:44:07:d5: d9:12:29:c4:de:9c:28:30:36:27:f9:11:92:f4:73:65:31:3f: 02:be:4f:bd:02:2d:38:f2:49:b3:54:47:61:6b:ff:09:b0:a0: 29:32:0c:e7:cf:a6:59:3e:22:16:bc:2f:97:98:c9:8c:25:50: c9:95:8c:b3:9d:9f:8a:b0:07:b3:e9:fc:46:4d:30:89:4f:00: 91:99:5c:61 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgzOEYxMTAvBgNVBAUTKDNBODVENDQ3RTE4Njc1RkVENUFFMDVDOTI5Mzc5RUVG QUQ1QkNCQzAwHhcNMjUxMTAyMjExMTAxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQ1ZS1iYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoz4oivT/qLU2Arr1NuPZ5efo0T9PJlS7pPvYbadc8afNyW+KQ7LNNmhMeJlN 50FdDKPvXtkP7kxmNbuonAgULQveigpleESsagBaNoGvyqT9+1TOB+5iDN2gOJKp FtDtGOEQ/XtyLU2PqS6u73Z6aQ/JUq2jIDRB/JazaKb0laVX5tnkDG6tV1gnNYFm jLQOOlM0du077+cz9h2FaoGOYT1xgkLSAe3Q1dsDLOw78ycojyXg559pnKdDTUZt U1u2x2+ruh6IE5SpkVrD9OXjockKHhbtkfhAv31/+o1O/JzBX96Lxw10g+fBzBtX R5nLUq4QoGuTVxJbwU7nstV8hwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLbH/y2Z Z88quiuZt8zXFM4rLe8BMB8GA1UdIwQYMBaAFDqF1EfhhnX+1a4FySk3nu+tW8vA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODM4Ri9BOUY3NzM5ODA2 RTExMUVCOUIzMzVDNkRDNEY5QUUwMi9Pb1hVUi1HR2RmN1ZyZ1hKS1RlZTc2MWJ5 OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09vWFVSLUdHZGY3VnJnWEpLVGVlNzYxYnk4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgzOEYvQTlGNzczOTgwNkUxMTFFQjlCMzM1QzZEQzRGOUFFMDIvOUUzOTNBREE2 NTcwMTFFQjk2QUY4RjQ5QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5wWMA8EAgACMAkDBwAgAQ3094AwDQYJKoZIhvcNAQELBQADggEB AMp/T86M/910Sbeoy8baBfNtY+RnYQYFPCsbS4MFnJVNFBYXbI2VYZKuC8rsgQjv /rMTkti3yBlP1uSoYQqriTwxBMVtts6eibJQ+EsM+92ZK60Ru1KfSE6MQcz8HgV0 qRSYiiJjViJSpMeK+gGYFsWglhnGumAOXX1mbdUEP0L+zlIwIFF91xKo3URIoKLi NaFPtz/pMhD4JyJBIMC1N9TB15BQWa4A6JqiCj4ZUo98nkQH1dkSKcTenCgwNif5 EZL0c2UxPwK+T70CLTjySbNUR2Fr/wmwoCkyDOfPplk+Iha8L5eYyYwlUMmVjLOd n4qwB7Pp/EZNMIlPAJGZXGE= -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:15 2026 by rpki-client