$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa File: BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa (raw, json) Hash identifier: u9yEmInS9EFrDlF+rIMSXXmeb03dUiClpU02GBUfE/I= Subject key identifier: CF:AA:BE:E6:5F:C7:ED:D6:B6:29:72:BC:2A:33:2E:69:D3:05:8C:61 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5E33 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:17:11 +0000 ROA not before: Thu 28 Aug 2025 14:54:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149068 IP address blocks: 103.72.96.0/22 maxlen: 24 2001:df0:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24115 (0x5e33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c67-915b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:b1:f1:82:dd:20:2d:a0:d9:73:45:29:2f: d4:31:15:ca:4c:a6:18:11:17:2c:9d:4e:f4:54:72: 2c:02:92:99:5f:3a:2b:8e:2b:a5:fe:3c:87:49:6e: dd:da:99:81:20:a1:90:20:93:25:14:3d:6a:88:83: 56:37:6d:f6:5b:53:0a:f2:2f:ed:93:ac:f3:b5:b8: d1:8e:29:ca:0e:93:e9:a5:50:06:1d:0a:44:1a:54: 7b:50:d1:e3:cc:43:3f:63:24:ea:00:68:5f:8a:c0: 05:60:d5:82:d9:a4:36:ea:40:02:22:df:28:f0:b1: bc:00:d3:f8:ed:19:7f:a3:e2:7e:0f:d0:5a:ba:f5: 99:89:72:8b:e4:0b:73:cf:eb:6f:cf:4f:ef:8d:43: 50:5c:b5:f4:86:44:3a:8a:c4:d0:0b:39:3b:dd:00: 45:8c:3a:ff:9d:6b:6a:b1:2e:f6:8a:4e:8e:25:0b: cb:2c:67:98:51:ea:ab:02:04:6b:10:b7:80:b0:e5: 9f:e1:5b:c9:5a:ff:94:0c:45:b3:dd:82:57:89:bf: 07:0d:04:be:5d:d0:ec:bc:0d:d4:bb:70:0f:b5:ce: 80:85:d7:fb:23:e9:bb:94:03:44:76:67:e1:4a:cf: 66:61:82:3d:36:e9:a1:a7:b2:f2:ac:42:c0:fb:e1: 24:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AA:BE:E6:5F:C7:ED:D6:B6:29:72:BC:2A:33:2E:69:D3:05:8C:61 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.96.0/22 IPv6: 2001:df0:1b::/48 Signature Algorithm: sha256WithRSAEncryption 59:aa:34:66:44:3d:56:be:fb:72:96:8e:e3:14:02:17:fc:98: 7f:75:52:ef:8b:95:6c:10:49:7a:dd:ee:45:bb:be:f8:1e:a5: 99:35:c1:e9:c2:d6:c3:06:ea:22:5f:d9:67:7a:bd:eb:17:70: f2:90:0f:41:56:d2:0b:f3:05:73:7c:68:ea:7d:d4:e3:f1:1c: 7f:21:4d:0d:88:f7:3f:3d:25:83:95:5e:9b:5a:93:cb:26:e1: 25:86:11:e5:6f:2f:9c:90:86:78:2a:c7:e8:f4:52:fa:75:53: a5:25:e1:1d:7d:38:0b:1d:c9:7a:fa:ce:35:aa:29:62:73:ad: 02:3c:99:17:d2:f4:ae:3e:76:2f:c4:d2:b2:28:c3:78:dc:94: e3:4a:7c:d8:db:0e:50:89:ba:c3:91:46:07:70:2a:38:ae:93: 9e:0a:bf:b0:5e:84:ce:78:f2:ac:b2:9d:5c:02:1f:36:e3:cf: 3f:8f:aa:7d:46:a0:50:48:7b:7d:ca:c7:7c:08:18:1e:3b:c1: 0c:a1:ce:8f:72:b2:a8:00:1f:e0:af:d4:54:a6:fa:b6:01:11: 74:74:76:89:48:34:de:9f:5e:79:b5:3f:a2:f5:c9:0b:70:81: a9:11:d9:ca:ac:ea:6f:40:ab:73:0c:a6:56:c6:78:26:57:26: d1:5a:87:87 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICXjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGM2Ny05MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqmx8YLdIC2g2XNFKS/UMRXKTKYYERcsnU70VHIsApKZXzorjiul/jyHSW7d 2pmBIKGQIJMlFD1qiINWN232W1MK8i/tk6zztbjRjinKDpPppVAGHQpEGlR7UNHj zEM/YyTqAGhfisAFYNWC2aQ26kACIt8o8LG8ANP47Rl/o+J+D9BauvWZiXKL5Atz z+tvz0/vjUNQXLX0hkQ6isTQCzk73QBFjDr/nWtqsS72ik6OJQvLLGeYUeqrAgRr ELeAsOWf4VvJWv+UDEWz3YJXib8HDQS+XdDsvA3Uu3APtc6Ahdf7I+m7lANEdmfh Ss9mYYI9Numhp7LyrELA++EkNQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFM+qvuZf x+3WtilyvCozLmnTBYxhMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkJERDhDQkM4 RjU3MTFFRUJFQTk3QzJEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ0hgMA8EAgACMAkDBwAgAQ3wABswDQYJKoZIhvcNAQELBQADggEB AFmqNGZEPVa++3KWjuMUAhf8mH91Uu+LlWwQSXrd7kW7vvgepZk1wenC1sMG6iJf 2Wd6vesXcPKQD0FW0gvzBXN8aOp91OPxHH8hTQ2I9z89JYOVXptak8sm4SWGEeVv L5yQhngqx+j0Uvp1U6Ul4R19OAsdyXr6zjWqKWJzrQI8mRfS9K4+di/E0rIow3jc lONKfNjbDlCJusORRgdwKjiuk54Kv7BehM548qyynVwCHzbjzz+Pqn1GoFBIe33K x3wIGB47wQyhzo9ysqgAH+Cv1FSm+rYBEXR0dolINN6fXnm1P6L1yQtwgakR2cqs 6m9Aq3MMplbGeCZXJtFah4c= -----END CERTIFICATE-----Generated at Sat Mar 7 22:43:48 2026 by rpki-client