$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa File: B856D46C3B9611F0B2363C74C4F9AE02.roa (raw, json) Hash identifier: bXMhRP5t5yXxZ38+U5zANdmRNyogxO2UTQiQkXvbZD8= Subject key identifier: 33:DE:45:6B:91:8B:A5:7C:86:0D:24:FE:5E:CF:43:F6:4F:98:3C:62 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 0290 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:10:29 +0000 ROA not before: Mon 03 Nov 2025 02:17:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 395793 IP address blocks: 103.101.222.0/24 maxlen: 24 103.101.223.0/24 maxlen: 24 113.212.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 02:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Nov 3 02:17:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48115-0382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ed:5a:46:1c:eb:3c:23:35:80:45:3e:20:4f: ea:1e:fb:0f:92:f3:b5:b6:82:f0:47:93:1e:4f:e8: 35:07:f3:a5:2d:74:b6:5f:22:42:e2:61:72:90:84: 07:08:ba:2c:bb:b1:f8:56:0c:89:fb:13:f7:77:10: 8e:eb:17:61:45:44:9a:4e:b3:5f:71:e6:ce:03:83: a8:d8:17:ce:4d:ff:eb:ce:f7:fd:6e:56:0f:e4:5b: 2e:69:3a:d9:29:03:de:2d:8c:66:b8:c2:e8:9e:9d: c0:bb:f8:88:b3:21:61:8f:b4:01:89:3f:92:5f:fe: 84:b3:69:a5:1c:eb:d6:80:28:e8:af:e7:2e:d5:d5: f6:f3:71:a6:4f:c9:07:67:ad:33:da:ca:db:09:af: a8:fd:1d:d3:4c:bd:82:4a:29:2a:0d:00:80:7a:2d: ac:7d:20:fa:89:1e:ed:cf:da:b5:2a:5e:58:dc:50: b4:f2:40:bd:3e:ee:1e:5b:27:89:0e:fb:40:d9:d6: b9:01:c4:9e:e4:6a:ef:0f:3a:a9:cf:25:f2:8e:71: 8d:ca:cc:95:04:84:aa:c1:d0:f3:83:b4:a0:d2:59: 93:72:66:f8:5a:fe:b2:71:cd:b3:46:38:aa:eb:50: 07:72:d3:38:3d:31:e7:34:7b:27:a8:03:fd:09:6d: f0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DE:45:6B:91:8B:A5:7C:86:0D:24:FE:5E:CF:43:F6:4F:98:3C:62 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.222.0/23 113.212.89.0/24 Signature Algorithm: sha256WithRSAEncryption a8:99:35:5b:0f:c4:cb:8a:5f:f4:5a:8f:a6:70:4d:3c:2a:2b: 4a:a4:c5:66:96:9c:a3:df:e6:68:13:fa:bb:ee:87:9b:44:16: 37:8a:b5:5a:d4:d4:ed:b7:41:83:f2:73:4b:e1:e2:6f:72:fe: a2:70:60:47:b3:b9:92:30:73:d2:6d:f3:d4:57:60:52:82:92: c6:b3:26:91:25:5d:bf:e8:b4:a4:0f:83:25:d3:92:9a:81:2c: 7c:64:e6:7d:4e:ea:41:89:45:a2:1f:df:fd:35:cc:a0:17:fc: 2c:d0:e8:4f:e9:22:b3:7c:9a:2d:14:13:c8:f4:65:3b:80:2b: 14:d7:ae:18:8f:5a:4e:00:45:da:e0:c9:c0:a3:b5:b6:98:72: 9e:cb:44:88:8c:01:df:c9:84:1b:7c:18:61:0c:24:2a:18:75: 21:89:25:ae:68:5f:1a:68:3b:58:2a:f3:41:55:f1:cd:e7:71: f0:35:4e:cf:93:6f:49:83:df:d7:ee:a0:19:97:f4:ba:33:8c: 1d:5f:54:b4:c3:f3:79:87:fb:c2:72:1b:32:3a:31:32:ab:17: 6d:5e:fe:85:07:fc:5b:4f:a9:85:28:88:fd:f1:92:ab:5c:73: c9:3b:76:71:4c:99:81:8d:c8:29:d8:c2:35:83:eb:3d:f3:6c: e1:07:c4:83 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUxMTAzMDIxNzI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODExNS0wMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+O1aRhzrPCM1gEU+IE/qHvsPkvO1toLwR5MeT+g1B/OlLXS2XyJC4mFykIQH CLosu7H4VgyJ+xP3dxCO6xdhRUSaTrNfcebOA4Oo2BfOTf/rzvf9blYP5FsuaTrZ KQPeLYxmuMLonp3Au/iIsyFhj7QBiT+SX/6Es2mlHOvWgCjor+cu1dX283GmT8kH Z60z2srbCa+o/R3TTL2CSikqDQCAei2sfSD6iR7tz9q1Kl5Y3FC08kC9Pu4eWyeJ DvtA2da5AcSe5GrvDzqpzyXyjnGNysyVBISqwdDzg7Sg0lmTcmb4Wv6ycc2zRjiq 61AHctM4PTHnNHsnqAP9CW3wlQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDPeRWuR i6V8hg0k/l7PQ/ZPmDxiMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvQjg1NkQ0NkMz Qjk2MTFGMEIyMzYzQzc0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ2XeAwQAcdRZMA0GCSqGSIb3DQEBCwUAA4IBAQComTVbD8TLil/0 Wo+mcE08KitKpMVmlpyj3+ZoE/q77oebRBY3irVa1NTtt0GD8nNL4eJvcv6icGBH s7mSMHPSbfPUV2BSgpLGsyaRJV2/6LSkD4Ml05KagSx8ZOZ9TupBiUWiH9/9Ncyg F/ws0OhP6SKzfJotFBPI9GU7gCsU164Yj1pOAEXa4MnAo7W2mHKey0SIjAHfyYQb fBhhDCQqGHUhiSWuaF8aaDtYKvNBVfHN53HwNU7Pk29Jg9/X7qAZl/S6M4wdX1S0 w/N5h/vCchsyOjEyqxdtXv6FB/xbT6mFKIj98ZKrXHPJO3ZxTJmBjcgp2MI1g+s9 82zhB8SD -----END CERTIFICATE-----Generated at Wed Mar 4 15:46:47 2026 by rpki-client