$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa File: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (raw, json) Hash identifier: oQRja5kNE1xgzFCqir1541pX0ir8ZOqbUXiW5IO5uBg= Subject key identifier: B4:2A:03:4F:79:B3:A7:01:50:98:4B:96:D0:35:59:38:50:6C:B5:0E Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 0137 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:03:26 +0000 ROA not before: Fri 05 Dec 2025 03:43:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.199.244.0/22 maxlen: 24 203.82.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Dec 5 03:43:15 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a58a9e-ff2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c8:9c:eb:a7:01:24:a5:68:79:eb:29:87:dc: 15:bd:23:b5:e3:b2:b9:83:59:26:bd:a1:99:8f:f8: 3d:03:31:bc:43:9a:66:2b:ec:4e:52:a7:7c:fc:7a: da:b9:f7:bb:47:ce:d3:d6:23:08:29:2e:c4:ba:bd: f7:f1:13:64:67:10:ef:ea:f9:e0:af:a7:8a:54:76: 8c:9b:16:7b:64:87:fd:51:00:7c:62:36:85:0e:78: 89:4c:bd:a2:43:11:77:f2:03:e0:30:86:82:64:40: e3:bc:cf:63:41:a4:06:84:d5:a3:72:6d:49:0d:c5: ea:cc:ee:50:d0:27:de:c7:a5:80:59:c9:a1:02:01: 7e:49:08:82:0f:96:e0:06:04:1e:fd:59:50:a3:da: 5b:fb:eb:92:28:3f:a3:cb:54:45:b4:42:28:80:4b: a2:95:ba:c7:79:9b:04:fb:b5:fc:ec:e9:af:73:2c: 5e:c6:01:6f:f5:01:b5:b5:ed:df:07:f5:a8:fa:36: 49:a3:47:9a:cc:b5:ff:31:c4:97:ac:a8:b5:44:a4: ce:92:5e:cf:fc:bb:61:b1:0a:97:5e:46:79:ba:c1: 58:99:01:07:36:5c:88:a4:6d:f3:45:1d:7c:d0:c9: e9:75:aa:2c:37:e6:4c:0a:02:69:5c:5f:d8:3d:58: 79:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2A:03:4F:79:B3:A7:01:50:98:4B:96:D0:35:59:38:50:6C:B5:0E X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.199.244.0/22 203.82.28.0/22 Signature Algorithm: sha256WithRSAEncryption b6:8d:e8:38:c9:0d:82:b0:ca:79:ed:2f:71:1c:92:8d:e0:c6: 90:46:99:2b:07:3b:4a:79:82:e9:fb:ef:b9:20:79:28:41:ce: 7c:77:74:79:f8:6f:0f:d8:91:67:85:0a:4b:b4:b3:90:1c:8a: c1:b2:13:76:aa:b1:01:b9:07:e8:c4:2b:23:19:81:92:ea:9f: 8d:dc:2c:dc:86:3d:12:b5:df:fb:08:7a:30:68:03:53:47:62: fb:50:75:2b:8c:f7:b3:24:b4:27:62:14:45:25:3e:0e:27:55: 01:48:72:48:aa:aa:67:8b:74:aa:e3:ce:ea:c5:7a:9b:1f:2b: 14:1a:0c:f9:e7:7f:72:0f:e2:9d:a9:fb:28:e0:30:41:ef:59: b8:60:4a:70:1c:c3:a2:fe:27:93:ee:af:2e:1c:19:42:af:2d: bf:73:99:de:15:31:f4:b2:43:27:38:df:24:e3:bf:26:eb:bc: 93:f7:ec:d5:ff:93:95:70:d5:21:a9:6c:ed:27:5f:e0:44:1b: 1a:6c:2b:81:00:35:c1:57:73:b0:81:85:23:cd:89:c7:2a:1a: c3:b3:20:94:6a:b3:6b:22:f6:5c:47:46:20:2b:b5:b9:f7:8c: 32:d4:75:11:3c:02:51:1c:d2:ba:fb:a7:94:09:d1:f7:b1:91: e2:eb:c5:e6 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUxMjA1MDM0MzE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE5ZS1mZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMic66cBJKVoeesph9wVvSO147K5g1kmvaGZj/g9AzG8Q5pmK+xOUqd8/Hra ufe7R87T1iMIKS7Eur338RNkZxDv6vngr6eKVHaMmxZ7ZIf9UQB8YjaFDniJTL2i QxF38gPgMIaCZEDjvM9jQaQGhNWjcm1JDcXqzO5Q0Cfex6WAWcmhAgF+SQiCD5bg BgQe/VlQo9pb++uSKD+jy1RFtEIogEuilbrHeZsE+7X87OmvcyxexgFv9QG1te3f B/Wo+jZJo0eazLX/McSXrKi1RKTOkl7P/LthsQqXXkZ5usFYmQEHNlyIpG3zRR18 0MnpdaosN+ZMCgJpXF/YPVh5uQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLQqA095 s6cBUJhLltA1WThQbLUOMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk3OTAvNzE4MDVCQUM1QUUyMTFFRkFFQjAzMTJFQzRGOUFFMDIvOUVDM0RBMENB QkMzMTFGMEI1QzU1ODNEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ8f0AwQCy1IcMA0GCSqGSIb3DQEBCwUAA4IBAQC2jeg4yQ2CsMp5 7S9xHJKN4MaQRpkrBztKeYLp+++5IHkoQc58d3R5+G8P2JFnhQpLtLOQHIrBshN2 qrEBuQfoxCsjGYGS6p+N3Czchj0Std/7CHowaANTR2L7UHUrjPezJLQnYhRFJT4O J1UBSHJIqqpni3Sq487qxXqbHysUGgz5539yD+Kdqfso4DBB71m4YEpwHMOi/ieT 7q8uHBlCry2/c5neFTH0skMnON8k478m67yT9+zV/5OVcNUhqWztJ1/gRBsabCuB ADXBV3OwgYUjzYnHKhrDsyCUarNrIvZcR0YgK7W594wy1HURPAJRHNK6+6eUCdH3 sZHi68Xm -----END CERTIFICATE-----Generated at Sat Mar 21 22:26:56 2026 by rpki-client