$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa File: 3C50B390F40D11EA8F33167EC4F9AE02.roa (raw, json) Hash identifier: w8TJCaAnJSoER+oO/nkTrqtcEJk0MhvisxFFIZm2Qck= Subject key identifier: CB:FA:E5:56:54:DF:E0:8D:EC:75:F3:1A:1E:1D:43:E5:67:E5:8D:C1 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DAB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:14:56 +0000 ROA not before: Thu 28 Aug 2025 14:52:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131365 IP address blocks: 103.9.84.0/22 maxlen: 24 2001:df0:3780::/48 maxlen: 48 2001:df0:3781::/48 maxlen: 48 2001:df0:3782::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23979 (0x5dab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60be0-e149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:73:c7:e3:9e:ac:19:9c:3b:53:1b:ff:26:af: 68:ac:5b:63:b1:5a:4d:94:37:0f:f4:f1:bc:fc:d5: 6b:bd:a8:cd:fc:ed:85:d0:28:5b:13:b9:fa:2f:69: 45:fd:72:24:96:54:b7:4f:d4:b4:e4:8b:27:7f:21: ae:6c:cf:5f:d4:77:63:6b:73:3c:2f:31:b7:f4:6d: 16:fe:2e:35:9f:4a:b9:38:49:5d:06:4b:99:96:3e: ca:7f:48:93:fc:92:95:81:c9:d5:75:1d:4c:22:5f: d7:f9:95:1b:be:fa:08:d8:73:ea:fb:df:e4:01:d4: d0:87:21:8d:7f:86:59:ad:dd:9f:2f:fb:43:1d:5a: 61:f9:88:4d:2e:b0:24:c2:8e:29:2f:38:a9:61:49: e2:b0:62:1d:b8:38:28:2b:43:9b:28:cd:79:fd:b7: 3a:11:d7:71:95:98:9c:64:f8:64:85:ad:5f:00:76: 50:db:04:56:a5:82:09:80:b4:e5:96:3f:fe:98:74: 74:93:db:51:10:36:b4:b8:9b:c1:a5:42:64:2a:cb: 9e:a8:4c:1d:02:d1:16:5c:59:af:5c:59:3a:2f:8d: 83:3e:0f:5c:4f:d1:4c:f9:a1:0c:39:92:b1:55:d4: 9d:d8:05:f0:03:87:43:c0:02:cd:4d:13:a6:d9:76: 46:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FA:E5:56:54:DF:E0:8D:EC:75:F3:1A:1E:1D:43:E5:67:E5:8D:C1 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.84.0/22 IPv6: 2001:df0:3780::-2001:df0:3782:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption af:e1:a5:f5:ef:fd:ad:76:e4:14:d4:ec:af:ea:16:e0:f5:bb: 75:02:9b:30:37:35:15:ce:e3:ad:40:46:0b:df:20:f2:4d:f7: af:a0:2b:2b:c5:39:a2:69:f6:be:dd:24:d4:a8:3e:2c:7e:a1: 68:36:85:c3:e9:58:bc:39:78:fa:45:95:70:84:da:2e:bc:63: 5c:ad:71:ba:fa:7c:b6:25:aa:29:63:e2:67:73:50:10:91:d2: 7b:70:23:0e:1f:12:d8:77:47:d3:d5:c6:a1:df:b7:96:31:28: 67:b2:2b:52:9c:82:87:03:6d:0c:e9:e5:80:7c:6d:0a:81:0f: 05:0c:d9:bc:83:c9:b2:45:6e:b3:14:9d:8e:c6:a6:06:55:dd: c5:3d:35:81:14:ad:9a:d6:76:83:2e:ac:56:23:10:6a:f4:f7: 54:a6:0b:34:c1:e2:f3:08:1a:27:8c:43:b5:37:1e:c0:34:a0: e2:40:77:a4:b4:0b:3e:46:01:dc:30:60:bd:98:f9:2b:7d:bb: a6:c6:d6:dd:18:8c:f0:fc:8e:16:ba:e8:48:52:4f:9d:57:6b: 6b:55:0c:a3:28:f5:53:11:47:14:13:bd:dd:a9:84:26:cd:7b: 3b:5d:0b:fc:47:2b:b7:27:7b:76:39:82:1d:b9:d7:85:2a:64: 3f:ac:46:74 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICXaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJlMC1lMTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnPH456sGZw7Uxv/Jq9orFtjsVpNlDcP9PG8/NVrvajN/O2F0ChbE7n6L2lF /XIkllS3T9S05IsnfyGubM9f1Hdja3M8LzG39G0W/i41n0q5OEldBkuZlj7Kf0iT /JKVgcnVdR1MIl/X+ZUbvvoI2HPq+9/kAdTQhyGNf4ZZrd2fL/tDHVph+YhNLrAk wo4pLzipYUnisGIduDgoK0ObKM15/bc6EddxlZicZPhkha1fAHZQ2wRWpYIJgLTl lj/+mHR0k9tREDa0uJvBpUJkKsueqEwdAtEWXFmvXFk6L42DPg9cT9FM+aEMOZKx VdSd2AXwA4dDwALNTROm2XZGjQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFMv65VZU 3+CN7HXzGh4dQ+Vn5Y3BMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0M1MEIzOTBG NDBEMTFFQThGMzMxNjdFQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAM BAIAATAGAwQCZwlUMBoEAgACMBQwEgMHByABDfA3gAMHACABDfA3gjANBgkqhkiG 9w0BAQsFAAOCAQEAr+Gl9e/9rXbkFNTsr+oW4PW7dQKbMDc1Fc7jrUBGC98g8k33 r6ArK8U5omn2vt0k1Kg+LH6haDaFw+lYvDl4+kWVcITaLrxjXK1xuvp8tiWqKWPi Z3NQEJHSe3AjDh8S2HdH09XGod+3ljEoZ7IrUpyChwNtDOnlgHxtCoEPBQzZvIPJ skVusxSdjsamBlXdxT01gRStmtZ2gy6sViMQavT3VKYLNMHi8wgaJ4xDtTcewDSg 4kB3pLQLPkYB3DBgvZj5K327psbW3RiM8PyOFrroSFJPnVdra1UMoyj1UxFHFBO9 3amEJs17O10L/Ecrtyd7djmCHbnXhSpkP6xGdA== -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:43 2026 by rpki-client