$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa File: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: 2PM2q9cUg2P0NzsrCEQgTadgMBgcus+n4gLLyMzQ2+A= Subject key identifier: F1:BC:7A:28:37:30:E2:12:47:62:F9:A1:FE:12:E5:01:31:B0:DF:05 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07F0 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:03:55 +0000 ROA not before: Mon 06 Oct 2025 22:22:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140732 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 103.150.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Oct 6 22:22:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a47f8b-ae05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4c:6a:81:6a:df:fd:34:8b:5f:23:8e:be:b6: 93:da:0b:19:64:24:2c:dd:0d:ba:36:91:8c:c6:a9: 17:c4:8c:59:74:a8:da:b0:64:c5:4f:73:a3:c8:3e: 0d:2d:0f:dd:5d:cc:b8:d0:4b:be:21:a1:7b:72:15: 81:3d:74:ae:a1:4f:51:0c:c6:c4:d8:67:90:3e:8f: 4d:49:fa:10:1b:e0:81:df:6d:5b:d8:3f:b2:87:ed: 8a:bf:c8:43:8c:b6:25:e5:91:9a:09:01:be:41:d2: 3d:21:e7:08:6d:74:39:47:6f:ca:9a:da:5d:de:0a: 6b:5b:0d:f1:a2:a2:d0:98:72:a6:ff:af:2a:de:64: 8a:f9:8e:4a:7a:44:ad:d4:bf:d3:9f:8f:39:0a:0b: 06:8e:ca:0a:5f:42:5a:3e:55:3f:ab:51:da:96:1a: 72:42:5d:c1:2b:c6:d1:6c:52:15:11:07:8f:95:0d: 52:22:58:ed:fe:83:de:90:fb:0a:47:04:67:44:b4: 00:48:46:86:a1:1a:c8:c5:37:32:e0:b4:72:55:79: 99:d8:1c:6f:54:2a:a0:9d:e2:42:fd:a5:3b:b1:fa: 10:41:e0:fa:9a:4a:33:ae:53:21:74:af:c5:25:d5: 67:19:3d:2c:a3:1a:30:2b:f8:d5:f8:90:89:cb:fb: 2e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BC:7A:28:37:30:E2:12:47:62:F9:A1:FE:12:E5:01:31:B0:DF:05 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 103.150.208.0/23 Signature Algorithm: sha256WithRSAEncryption 23:34:bc:63:c5:04:21:9a:7a:57:36:92:3e:1e:04:35:fc:3c: 23:d4:fa:73:e4:da:64:46:f0:41:0a:aa:ef:00:2f:25:dd:f6: 9f:5d:1c:15:05:20:ac:33:8b:01:c7:32:c3:c0:59:00:15:90: a2:86:34:fc:c9:35:2a:3b:c7:f5:61:03:77:20:80:f0:c7:f5: 9b:0e:1c:6e:b4:98:e4:a2:b2:ab:8f:c0:f3:ae:ed:48:62:ea: a2:c4:b4:eb:46:1f:dc:2a:89:01:21:45:1f:5f:40:41:db:80: 27:fc:7d:28:2c:18:d7:6e:ec:10:7c:6f:14:c8:d8:88:b4:ef: b8:fd:c0:f6:84:0f:b8:fb:2d:3d:3a:22:0a:48:dc:e0:09:f3: a1:3f:0f:d9:8a:fb:de:ba:38:c0:3b:38:07:23:46:84:48:cc: 5a:93:f2:31:aa:e5:e1:91:d8:48:5f:df:1c:9f:76:63:9f:ec: 1e:03:76:24:05:bf:dd:dc:36:d8:86:b6:1a:95:ca:30:bd:ff: 30:43:51:95:1e:c3:8a:55:84:c7:72:8e:04:93:c0:8b:63:72: 02:85:82:4e:4d:9e:5e:ea:b8:7e:f8:eb:28:85:a4:ca:4c:bc: 32:41:fb:da:4b:1d:a8:b0:68:8c:4c:62:6f:f1:5b:dc:2d:ca: f2:54:8d:13 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMDA2MjIyMjUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Y4Yi1hZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0xqgWrf/TSLXyOOvraT2gsZZCQs3Q26NpGMxqkXxIxZdKjasGTFT3OjyD4N LQ/dXcy40Eu+IaF7chWBPXSuoU9RDMbE2GeQPo9NSfoQG+CB321b2D+yh+2Kv8hD jLYl5ZGaCQG+QdI9IecIbXQ5R2/Kmtpd3gprWw3xoqLQmHKm/68q3mSK+Y5KekSt 1L/Tn485CgsGjsoKX0JaPlU/q1HalhpyQl3BK8bRbFIVEQePlQ1SIljt/oPekPsK RwRnRLQASEaGoRrIxTcy4LRyVXmZ2BxvVCqgneJC/aU7sfoQQeD6mkozrlMhdK/F JdVnGT0soxowK/jV+JCJy/suawIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPG8eig3 MOISR2L5of4S5QExsN8FMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMEEzN0ZFRkEw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZwzEAwQCZ0lkAwQBZ5bQMA0GCSqGSIb3DQEBCwUAA4IBAQAjNLxj xQQhmnpXNpI+HgQ1/Dwj1Ppz5NpkRvBBCqrvAC8l3fafXRwVBSCsM4sBxzLDwFkA FZCihjT8yTUqO8f1YQN3IIDwx/WbDhxutJjkorKrj8Dzru1IYuqixLTrRh/cKokB IUUfX0BB24An/H0oLBjXbuwQfG8UyNiItO+4/cD2hA+4+y09OiIKSNzgCfOhPw/Z ivveujjAOzgHI0aESMxak/IxquXhkdhIX98cn3Zjn+weA3YkBb/d3DbYhrYalcow vf8wQ1GVHsOKVYTHco4Ek8CLY3IChYJOTZ5e6rh++OsohaTKTLwyQfvaSx2osGiM TGJv8VvcLcryVI0T -----END CERTIFICATE-----Generated at Sat Mar 14 03:48:41 2026 by rpki-client