$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa File: 0ED0913840C211EEB6B1731BC4F9AE02.roa (raw, json) Hash identifier: m6t8srNN3eMWT+F+QA7+HhiJWG9hksKNznLLBmbexGY= Subject key identifier: 44:85:B6:5E:43:87:A9:39:56:40:35:2A:60:59:6D:7C:92:09:D0:7C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DE7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:15:55 +0000 ROA not before: Thu 28 Aug 2025 14:53:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135932 IP address blocks: 103.70.12.0/23 maxlen: 23 103.140.249.0/24 maxlen: 24 103.147.122.0/24 maxlen: 24 103.147.123.0/24 maxlen: 24 103.155.160.0/24 maxlen: 24 103.155.161.0/24 maxlen: 24 2001:df4:4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24039 (0x5de7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c1b-2bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:63:99:1f:48:a8:c1:bb:6a:06:71:d0:36: 09:2b:68:ff:99:1d:c9:0d:e0:37:46:ed:5c:0d:5f: f3:c8:90:6c:87:91:a4:a8:3c:f8:47:76:17:de:b7: 6f:1e:fe:a9:4f:be:8b:37:57:77:08:8e:c1:a7:4c: d3:18:2a:a2:b1:ba:90:17:80:78:38:28:b4:82:39: 46:d9:81:79:9c:3b:ce:e9:82:6b:2f:b4:40:0a:c7: 27:bf:4e:2c:31:f0:4d:45:c2:d6:48:6c:4b:c2:47: 65:3d:14:d6:1a:61:0d:6c:b7:a5:1b:e5:fa:f8:13: 81:78:d9:a2:de:69:c7:86:e7:70:c1:f0:42:07:7e: ae:d3:74:46:48:c7:d8:2a:cc:7b:83:c1:08:60:35: ec:08:42:ec:b8:f5:24:46:6e:38:5b:77:e2:84:7b: b6:65:d8:14:19:cc:a2:eb:68:11:be:0c:3c:d4:0c: bf:9e:ec:93:c1:e9:93:37:3b:46:43:e1:f3:f6:b7: 2c:dd:b6:35:2d:6e:83:73:3d:bd:0c:be:0d:47:5f: 84:11:2b:34:64:72:10:b4:9b:53:0c:2a:b6:75:71: 60:0e:b2:a7:0a:1e:6c:11:85:80:82:a1:ad:bf:a0: 8b:c1:a4:b9:e3:52:78:fc:bb:60:bb:88:b4:7d:69: 1e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:85:B6:5E:43:87:A9:39:56:40:35:2A:60:59:6D:7C:92:09:D0:7C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.70.12.0/23 103.140.249.0/24 103.147.122.0/23 103.155.160.0/23 IPv6: 2001:df4:4c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:f5:f4:02:45:3f:ed:ae:3e:99:88:b6:77:37:8e:d3:51:89: 67:19:f2:d6:a0:99:86:09:f5:b0:c5:c8:77:f2:b8:60:af:a7: 89:90:2d:dc:4d:62:06:b3:67:f9:f7:39:d0:7f:d8:97:ad:ab: 29:80:c2:10:ae:cb:7e:32:12:05:ae:f8:7f:2e:60:48:48:47: 11:e3:d6:d1:20:68:38:cd:6e:29:5f:50:77:d6:7b:3d:e4:a2: 72:18:ab:40:11:1f:5b:ee:2f:57:49:c9:06:32:09:0f:44:2d: f6:95:f3:32:9a:72:3e:45:21:80:d8:2a:f0:7b:1f:91:79:9f: a3:ad:76:be:88:2f:61:52:40:b0:09:99:e0:68:d1:de:68:45: ff:eb:4d:3b:18:87:6f:96:61:93:17:36:1e:24:1e:e0:d3:2a: 09:ae:1d:67:6a:9a:c2:76:df:2e:f0:91:ef:e4:37:67:a2:bf: a9:4f:2d:1c:cb:ce:ed:4c:e1:f7:02:24:d1:59:fd:b7:cd:80: 6a:3b:65:0d:db:e8:2d:c7:1e:72:58:a7:48:4d:14:72:54:89: f3:1d:42:37:b4:8a:94:60:c5:92:bd:a0:41:22:c9:18:be:09: 0b:71:e9:33:8a:01:e0:15:c2:95:8e:9e:1f:1d:f1:6d:07:96: d8:26:70:b7 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICXecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGMxYi0yYmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfFjmR9IqMG7agZx0DYJK2j/mR3JDeA3Ru1cDV/zyJBsh5GkqDz4R3YX3rdv Hv6pT76LN1d3CI7Bp0zTGCqisbqQF4B4OCi0gjlG2YF5nDvO6YJrL7RACscnv04s MfBNRcLWSGxLwkdlPRTWGmENbLelG+X6+BOBeNmi3mnHhudwwfBCB36u03RGSMfY Ksx7g8EIYDXsCELsuPUkRm44W3fihHu2ZdgUGcyi62gRvgw81Ay/nuyTwemTNztG Q+Hz9rcs3bY1LW6Dcz29DL4NR1+EESs0ZHIQtJtTDCq2dXFgDrKnCh5sEYWAgqGt v6CLwaS541J4/Ltgu4i0fWke5QIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFESFtl5D h6k5VkA1KmBZbXySCdB8MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEVEMDkxMzg0 MEMyMTFFRUI2QjE3MzFCQzRGOUFFMDIucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAe BAIAATAYAwQBZ0YMAwQAZ4z5AwQBZ5N6AwQBZ5ugMA8EAgACMAkDBwAgAQ30BMAw DQYJKoZIhvcNAQELBQADggEBADP19AJFP+2uPpmItnc3jtNRiWcZ8tagmYYJ9bDF yHfyuGCvp4mQLdxNYgazZ/n3OdB/2JetqymAwhCuy34yEgWu+H8uYEhIRxHj1tEg aDjNbilfUHfWez3konIYq0ARH1vuL1dJyQYyCQ9ELfaV8zKacj5FIYDYKvB7H5F5 n6Otdr6IL2FSQLAJmeBo0d5oRf/rTTsYh2+WYZMXNh4kHuDTKgmuHWdqmsJ23y7w ke/kN2eiv6lPLRzLzu1M4fcCJNFZ/bfNgGo7ZQ3b6C3HHnJYp0hNFHJUifMdQje0 ipRgxZK9oEEiyRi+CQtx6TOKAeAVwpWOnh8d8W0HltgmcLc= -----END CERTIFICATE-----Generated at Sat Mar 7 22:45:26 2026 by rpki-client