$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa File: CC99502E382F11EEAB87A63EC4F9AE02.roa (raw, json) Hash identifier: 1K8MV4sIj8T9zYYuz63dsbeo/qY6X7HrLn7VydAG5JM= Subject key identifier: 35:5B:76:9A:0D:88:40:F8:03:CE:B2:6B:AD:29:2B:99:17:16:32:F9 Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0FFE Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:15:23 +0000 ROA not before: Tue 02 Dec 2025 17:17:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134739 IP address blocks: 103.200.132.0/22 maxlen: 22 103.200.132.0/24 maxlen: 24 103.200.133.0/24 maxlen: 24 103.200.134.0/24 maxlen: 24 103.200.135.0/24 maxlen: 24 121.54.164.0/22 maxlen: 22 121.54.164.0/24 maxlen: 24 121.54.165.0/24 maxlen: 24 121.54.166.0/24 maxlen: 24 121.54.167.0/24 maxlen: 24 2403:8e80::/32 maxlen: 32 2403:8e80:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4094 (0xffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Dec 2 17:17:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4823a-6efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:56:44:73:6c:7f:32:22:87:9e:a3:c7:96:88: d0:53:aa:05:92:0f:1c:f4:32:b8:62:51:ba:c4:ff: 7d:c4:8a:e2:96:5b:bc:76:e5:ec:c4:65:87:6e:3d: 1d:cb:42:d4:53:11:0f:01:41:76:42:6b:27:5c:45: ed:c4:3f:9c:d7:3a:07:cc:9e:68:db:50:5f:f8:dd: 88:73:b0:d9:75:d2:c3:32:20:47:92:60:19:a6:cc: 6a:00:ba:e8:4f:2c:da:01:04:a9:55:7a:f0:2e:9e: c7:6a:27:2c:5c:63:df:3a:f7:40:77:07:6c:4d:7c: 6b:e0:7f:31:07:85:b2:92:4f:1c:19:e8:81:45:60: 34:9c:f9:34:eb:10:69:fa:c9:b4:19:e7:02:2b:88: ee:80:2b:fb:fe:3e:18:94:b1:1a:f9:17:37:4d:33: 48:4e:4d:12:64:13:05:09:e5:05:7d:db:5d:25:35: a1:e0:da:77:ee:4f:54:f0:83:37:97:e7:36:c4:f7: b0:23:c1:99:0e:49:17:fe:c0:cd:fb:10:d1:6c:c6: b0:1f:57:82:5c:a7:f8:77:7e:b8:9f:31:d9:e3:40: 48:19:b8:2f:48:fd:f7:20:41:5c:ea:41:3a:48:a6: e7:ee:a9:89:ee:6c:8d:70:1e:82:9a:80:b5:f7:68: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5B:76:9A:0D:88:40:F8:03:CE:B2:6B:AD:29:2B:99:17:16:32:F9 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.200.132.0/22 121.54.164.0/22 IPv6: 2403:8e80::/32 Signature Algorithm: sha256WithRSAEncryption ab:2b:11:34:48:f1:7d:61:2f:03:95:a3:20:ba:f3:9b:06:df: 31:f8:4f:7b:ea:05:9a:46:c0:9b:1b:c8:b5:47:a2:f7:78:73: 0a:c6:b3:32:ae:35:bb:11:08:9a:8f:df:c5:21:27:96:90:7e: b4:bd:cb:f6:0e:e8:d6:6e:6b:97:f8:99:26:4b:51:79:05:27: 72:fb:fb:2c:03:eb:b2:b3:e8:ec:3f:55:c6:2c:12:09:92:e7: be:74:fa:cb:b6:da:af:78:78:08:a0:47:6d:b3:35:f2:58:9e: 7a:b6:e7:2f:c1:73:ad:47:89:0c:cf:33:76:4f:f6:25:ad:26: e5:20:d2:b1:79:f6:a2:fe:0b:d9:bb:94:f8:16:35:9e:d2:88: e2:ff:27:bb:d0:fb:87:31:30:af:23:cb:3d:97:88:db:80:95: 25:92:a5:70:c1:09:43:6f:e4:90:28:ec:15:c2:10:b1:f2:6f: ce:62:16:3f:2d:36:41:df:7c:4c:10:7e:01:07:2a:fe:0f:0a: 4c:fe:53:7b:32:66:87:7c:1b:3d:e7:11:21:27:5d:20:a9:ad: 27:da:5d:91:92:36:98:bc:85:40:7b:b7:a1:12:43:a5:fe:64: 76:74:ee:85:21:b0:71:9b:97:6e:58:4e:76:57:a2:47:2e:c3: d5:ec:31:92 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICD/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjUxMjAyMTcxNzU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIzYS02ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVZEc2x/MiKHnqPHlojQU6oFkg8c9DK4YlG6xP99xIrillu8duXsxGWHbj0d y0LUUxEPAUF2QmsnXEXtxD+c1zoHzJ5o21Bf+N2Ic7DZddLDMiBHkmAZpsxqALro TyzaAQSpVXrwLp7HaicsXGPfOvdAdwdsTXxr4H8xB4Wykk8cGeiBRWA0nPk06xBp +sm0GecCK4jugCv7/j4YlLEa+Rc3TTNITk0SZBMFCeUFfdtdJTWh4Np37k9U8IM3 l+c2xPewI8GZDkkX/sDN+xDRbMawH1eCXKf4d364nzHZ40BIGbgvSP33IEFc6kE6 SKbn7qmJ7myNcB6CmoC192hYEQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDVbdpoN iED4A86ya60pK5kXFjL5MB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvRkE3OEIwNDQ2RkNFMTFFOTg4QzQ0QjNFQzRGOUFFMDIvQ0M5OTUwMkUz ODJGMTFFRUFCODdBNjNFQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ8iEAwQCeTakMA0EAgACMAcDBQAkA46AMA0GCSqGSIb3DQEBCwUA A4IBAQCrKxE0SPF9YS8DlaMguvObBt8x+E976gWaRsCbG8i1R6L3eHMKxrMyrjW7 EQiaj9/FISeWkH60vcv2DujWbmuX+JkmS1F5BSdy+/ssA+uys+jsP1XGLBIJkue+ dPrLttqveHgIoEdtszXyWJ56tucvwXOtR4kMzzN2T/YlrSblINKxefai/gvZu5T4 FjWe0oji/ye70PuHMTCvI8s9l4jbgJUlkqVwwQlDb+SQKOwVwhCx8m/OYhY/LTZB 33xMEH4BByr+DwpM/lN7MmaHfBs95xEhJ10gqa0n2l2RkjaYvIVAe7ehEkOl/mR2 dO6FIbBxm5duWE52V6JHLsPV7DGS -----END CERTIFICATE-----Generated at Sat Mar 7 19:32:03 2026 by rpki-client