$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa File: DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa (raw, json) Hash identifier: u23FB+guonR/g8Bs9AVntNN8XZjIlu0ZJiya6lu6OcA= Subject key identifier: F0:42:9D:61:3E:39:FA:E0:22:20:57:F2:AE:F6:09:C8:B3:A5:CC:4A Certificate issuer: /CN=A91A1FF1/serialNumber=263A55146E3172CFD8F00A6BB17BCB0EC20915C6 Certificate serial: 012F Authority key identifier: 26:3A:55:14:6E:31:72:CF:D8:F0:0A:6B:B1:7B:CB:0E:C2:09:15:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:10:08 +0000 ROA not before: Thu 15 Jan 2026 05:23:41 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.21.8.0/22 maxlen: 24 111.92.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.crl rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1FF1, serialNumber=263A55146E3172CFD8F00A6BB17BCB0EC20915C6 Validity Not Before: Jan 15 05:23:41 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a58c30-6220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:1d:c4:11:51:6f:08:e9:9e:81:a3:59:5e: 14:62:f2:1c:62:5e:63:e3:28:ef:04:d1:e7:c5:db: 2e:88:2a:38:ea:0b:43:c6:b6:c3:49:4c:c3:c8:a1: a6:18:29:0a:c7:14:1c:db:e5:5f:3c:e0:e9:8e:7f: 5d:6f:52:96:d2:3d:4a:19:95:11:c9:aa:6e:43:be: 28:25:21:41:42:74:68:5e:38:3f:6f:87:5a:82:5c: f8:32:3f:9c:4f:b9:e4:08:78:6a:32:09:5b:08:1c: ce:00:64:5c:8c:b8:29:75:91:a3:4c:34:81:36:89: 40:87:0f:c3:c9:9f:3a:e5:c2:47:85:67:ab:ce:f3: b8:d4:0d:17:05:f9:39:42:6e:80:b3:1d:48:d5:fe: 3f:d0:9d:60:7c:ec:68:9b:c7:87:f3:2e:9a:81:1b: 20:61:e4:d1:bc:46:35:4f:ed:59:c9:3d:0c:bf:d0: 21:66:aa:97:77:af:36:28:98:5a:23:84:61:fc:cb: 77:bb:1e:b1:d1:74:6d:8c:5d:3b:cf:3c:91:20:22: 2e:31:87:b1:a0:ad:3f:55:c2:10:29:2d:bf:a0:b2: a0:85:e0:c1:cf:56:ca:86:bb:4f:67:d6:45:56:5a: be:54:73:87:77:02:5c:49:22:03:8c:3a:0c:9b:c7: 03:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:42:9D:61:3E:39:FA:E0:22:20:57:F2:AE:F6:09:C8:B3:A5:CC:4A X509v3 Authority Key Identifier: keyid:26:3A:55:14:6E:31:72:CF:D8:F0:0A:6B:B1:7B:CB:0E:C2:09:15:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.8.0/22 111.92.184.0/22 Signature Algorithm: sha256WithRSAEncryption 15:46:3a:60:c7:da:98:c4:40:5e:87:85:2c:c2:76:41:19:ae: 7d:f9:43:f9:00:b0:e4:0a:d6:04:42:47:ec:ff:ec:95:54:0a: 6b:d8:2e:fb:e1:a5:b4:0e:e4:c2:f3:84:fe:7f:ac:31:56:5d: 27:3b:2e:b8:98:6e:a0:05:19:51:5c:fd:d2:96:87:82:54:22: 75:ea:4f:1e:c2:5a:1c:90:63:20:ea:62:e4:9e:f2:b7:00:53: 70:75:a1:62:9d:72:8f:90:cf:df:11:77:86:0f:6c:19:de:1d: 0c:f6:85:af:0d:6d:b3:91:a7:45:04:1e:51:70:6c:55:77:f8: 0a:9a:0c:9c:91:3b:b7:44:cc:b8:08:4e:34:42:0b:74:21:b4: 3c:54:75:67:28:a7:f2:31:79:bf:ef:15:8a:c5:f9:25:c4:6e: 1f:87:79:7f:aa:d3:70:ea:0c:12:e8:a2:ea:68:11:40:0c:65: d4:b5:5b:23:36:da:af:3c:6d:43:06:12:00:9c:4a:fb:bc:11: 7b:95:76:a6:6a:0d:28:04:26:d3:72:a0:f9:60:73:b4:c8:ae: c6:17:4d:8e:65:a2:da:cb:a6:73:40:3d:f9:8c:bf:6a:3b:b1: f9:e9:dc:e2:3c:3a:17:49:ac:c1:10:28:d6:92:8a:cd:81:23: 02:bb:1b:72 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFGRjExMTAvBgNVBAUTKDI2M0E1NTE0NkUzMTcyQ0ZEOEYwMEE2QkIxN0JDQjBF QzIwOTE1QzYwHhcNMjYwMTE1MDUyMzQxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGMzMC02MjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGMdxBFRbwjpnoGjWV4UYvIcYl5j4yjvBNHnxdsuiCo46gtDxrbDSUzDyKGm GCkKxxQc2+VfPODpjn9db1KW0j1KGZURyapuQ74oJSFBQnRoXjg/b4daglz4Mj+c T7nkCHhqMglbCBzOAGRcjLgpdZGjTDSBNolAhw/DyZ865cJHhWerzvO41A0XBfk5 Qm6Asx1I1f4/0J1gfOxom8eH8y6agRsgYeTRvEY1T+1ZyT0Mv9AhZqqXd682KJha I4Rh/Mt3ux6x0XRtjF07zzyRICIuMYexoK0/VcIQKS2/oLKgheDBz1bKhrtPZ9ZF Vlq+VHOHdwJcSSIDjDoMm8cDBwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPBCnWE+ OfrgIiBX8q72CcizpcxKMB8GA1UdIwQYMBaAFCY6VRRuMXLP2PAKa7F7yw7CCRXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUZGMS8wMEQ4RjlBRTVC OUIxMUVGOTZBQTRGNDJDNEY5QUUwMi9KanBWRkc0eGNzX1k4QXByc1h2TERzSUpG Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pqcFZGRzR4Y3NfWThBcHJzWHZMRHNJSkZjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFGRjEvMDBEOEY5QUU1QjlCMTFFRjk2QUE0RjQyQzRGOUFFMDIvREJBRUI4QjBB QkYwMTFGMDhGMkZGMDBCQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZxUIAwQCb1y4MA0GCSqGSIb3DQEBCwUAA4IBAQAVRjpgx9qYxEBe h4UswnZBGa59+UP5ALDkCtYEQkfs/+yVVApr2C774aW0DuTC84T+f6wxVl0nOy64 mG6gBRlRXP3SloeCVCJ16k8ewlockGMg6mLknvK3AFNwdaFinXKPkM/fEXeGD2wZ 3h0M9oWvDW2zkadFBB5RcGxVd/gKmgyckTu3RMy4CE40Qgt0IbQ8VHVnKKfyMXm/ 7xWKxfklxG4fh3l/qtNw6gwS6KLqaBFADGXUtVsjNtqvPG1DBhIAnEr7vBF7lXam ag0oBCbTcqD5YHO0yK7GF02OZaLay6ZzQD35jL9qO7H56dziPDoXSazBECjWkorN gSMCuxty -----END CERTIFICATE-----Generated at Sat Mar 21 22:25:36 2026 by rpki-client