$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa File: 997D587CABD011F0AA576211C4F9AE02.roa (raw, json) Hash identifier: LUO2DzJZDb3MFhgAFK7nfr+kdeF429YVOmQYxveo+6g= Subject key identifier: A4:D3:5A:A4:8E:63:E1:06:0B:0B:82:59:A9:08:8C:30:8A:6C:CE:CA Certificate issuer: /CN=A91CDC32/serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Certificate serial: 0130 Authority key identifier: 81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:11:17 +0000 ROA not before: Sat 29 Nov 2025 03:32:04 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 26658 IP address blocks: 103.197.216.0/22 maxlen: 24 220.158.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC32, serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Validity Not Before: Nov 29 03:32:04 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58c75-056c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:73:24:ac:56:bc:55:85:b9:e9:f7:2a:ed: ea:26:f5:96:2c:5e:f9:d4:55:5f:57:14:f2:a9:8e: 00:ab:2c:4c:fa:5f:37:53:06:a2:e3:f5:04:cc:6c: 2f:a0:b4:cd:7e:5b:4e:ce:40:c0:90:99:7f:46:88: 00:6c:fc:6c:33:20:5c:2e:01:ba:9f:e8:bb:67:f3: f2:00:e5:fb:2b:1c:81:ed:ea:97:04:25:92:a2:14: 71:6a:b6:d6:bf:34:22:60:38:4d:7d:81:cd:a4:10: 03:3b:d4:c8:e8:5d:e7:7a:d3:5a:60:05:19:d3:ce: 80:3f:59:f0:d0:c9:7b:42:7b:20:b0:07:e3:c6:bb: 0d:05:6b:f7:21:0b:c9:44:96:84:07:0a:73:19:d9: 51:27:f1:c3:ad:29:8e:58:3d:87:1b:a8:6c:f5:f8: b8:37:ae:99:33:2b:09:3b:98:c3:31:9e:16:34:3c: 4f:49:23:18:8c:62:eb:67:5a:5e:31:3c:e1:84:f5: be:78:da:d9:f4:42:d9:f7:d9:5a:17:13:71:28:95: 9e:87:93:3c:44:68:b8:27:a1:02:1d:99:b3:7c:30: 6c:2a:fa:4f:82:fd:67:af:3d:0a:74:27:ea:7b:5b: 01:6b:66:47:44:b6:c3:2f:d9:99:86:6e:23:1c:3a: be:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D3:5A:A4:8E:63:E1:06:0B:0B:82:59:A9:08:8C:30:8A:6C:CE:CA X509v3 Authority Key Identifier: keyid:81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.197.216.0/22 220.158.252.0/22 Signature Algorithm: sha256WithRSAEncryption 39:06:6b:6a:b9:fd:ab:42:33:ee:28:20:ae:69:f2:c2:77:34: 4e:f4:af:9b:c3:30:9d:64:83:68:c6:33:d4:a6:d2:bd:f1:d6: 89:aa:fc:e6:33:8a:56:d6:81:f4:ed:5c:18:85:d2:34:da:83: aa:00:77:38:ed:38:81:c5:a0:0b:ef:24:15:72:0a:c9:59:b1: b6:da:ed:61:2c:e3:d5:7c:94:b2:80:8a:18:c4:06:cb:4f:7f: ec:53:bc:3b:44:59:45:63:92:a3:6f:d1:70:71:d9:fd:fb:0c: 7a:c9:c0:43:f2:b5:e6:25:a0:f6:29:80:43:10:d1:10:4c:b1: 7b:e2:18:f1:43:dc:84:54:53:b3:2d:b3:5e:3f:59:ff:a7:1c: cd:dc:6c:3b:f6:b1:1f:cd:b5:a4:d1:0f:f0:4d:82:8f:c3:0f: 44:96:ba:c3:98:c2:e3:20:7d:94:6a:ac:d4:d2:fd:45:ca:a0: 84:32:90:67:42:09:9d:e0:b8:d1:fc:98:2f:6e:76:22:be:33: 56:cf:0d:c6:a9:53:af:62:55:68:bd:66:85:a2:00:6e:a8:86: 63:91:c7:37:f3:df:73:b9:6e:fc:c3:8e:15:27:96:d7:74:e8: 7d:23:22:a2:35:6b:df:f8:16:6d:52:16:7c:e0:0f:89:e5:77: 78:45:17:b3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDMzIxMTAvBgNVBAUTKDgxOTk0OTNBRDI2NUFEMkRDNzMzOTZGNkJBMEI2RUQ2 Q0M0MUUxMEIwHhcNMjUxMTI5MDMzMjA0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGM3NS0wNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVdzJKxWvFWFuen3Ku3qJvWWLF751FVfVxTyqY4AqyxM+l83Uwai4/UEzGwv oLTNfltOzkDAkJl/RogAbPxsMyBcLgG6n+i7Z/PyAOX7KxyB7eqXBCWSohRxarbW vzQiYDhNfYHNpBADO9TI6F3netNaYAUZ086AP1nw0Ml7QnsgsAfjxrsNBWv3IQvJ RJaEBwpzGdlRJ/HDrSmOWD2HG6hs9fi4N66ZMysJO5jDMZ4WNDxPSSMYjGLrZ1pe MTzhhPW+eNrZ9ELZ99laFxNxKJWeh5M8RGi4J6ECHZmzfDBsKvpPgv1nrz0KdCfq e1sBa2ZHRLbDL9mZhm4jHDq+mwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKTTWqSO Y+EGCwuCWakIjDCKbM7KMB8GA1UdIwQYMBaAFIGZSTrSZa0txzOW9roLbtbMQeEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREMzMi8wRjA5Mjg1NDVB REUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJTM0hNNWIydWd0dTFzeEI0 UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dabEpPdEpsclMzSE01YjJ1Z3R1MXN4QjRRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RDMzIvMEYwOTI4NTQ1QURFMTFFRkE1QzlBMjQwQzRGOUFFMDIvOTk3RDU4N0NB QkQwMTFGMEFBNTc2MjExQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ8XYAwQC3J78MA0GCSqGSIb3DQEBCwUAA4IBAQA5Bmtquf2rQjPu KCCuafLCdzRO9K+bwzCdZINoxjPUptK98daJqvzmM4pW1oH07VwYhdI02oOqAHc4 7TiBxaAL7yQVcgrJWbG22u1hLOPVfJSygIoYxAbLT3/sU7w7RFlFY5Kjb9Fwcdn9 +wx6ycBD8rXmJaD2KYBDENEQTLF74hjxQ9yEVFOzLbNeP1n/pxzN3Gw79rEfzbWk 0Q/wTYKPww9ElrrDmMLjIH2UaqzU0v1FyqCEMpBnQgmd4LjR/JgvbnYivjNWzw3G qVOvYlVovWaFogBuqIZjkcc3899zuW78w44VJ5bXdOh9IyKiNWvf+BZtUhZ84A+J 5Xd4RRez -----END CERTIFICATE-----Generated at Sat Mar 21 22:26:32 2026 by rpki-client