$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa File: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (raw, json) Hash identifier: aHUYKJz3swuqsMEmIFAJ0GsRrZYFSKs8JsA+7j3SS9I= Subject key identifier: 21:D7:6D:A3:F6:30:6D:80:B1:EF:1D:56:EB:A7:8F:7B:DD:EB:2F:40 Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 197F Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:00:29 +0000 ROA not before: Mon 27 Oct 2025 03:32:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137962 IP address blocks: 103.99.50.0/24 maxlen: 24 103.99.51.0/24 maxlen: 24 103.118.81.0/24 maxlen: 24 2403:29c0:20::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 16:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6527 (0x197f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3, serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Oct 27 03:32:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5196d-a4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:70:39:b3:eb:a0:92:7e:8d:21:0b:24:d8:28: a5:73:56:b0:92:e3:5f:c7:49:a9:f5:d8:f7:4f:6c: 99:aa:6d:2e:0b:75:9f:34:7e:8d:6b:94:cf:10:2e: 7e:f6:55:2b:f3:63:31:3f:76:38:0e:22:76:4c:3a: 46:6c:6c:e6:fe:e2:3e:da:49:23:e7:5d:13:c1:96: cd:37:d0:03:04:3a:42:37:6a:43:10:7d:cb:62:ea: 86:dc:3c:04:63:cc:8b:0b:46:f8:7e:b1:c4:ce:18: e6:9a:86:12:9d:6c:c4:91:d7:20:44:87:40:5f:8f: 87:83:eb:e9:19:cd:9c:58:e3:bb:bc:ca:2f:d6:37: fe:8a:7a:98:02:0e:bc:fa:5b:57:4a:6f:56:ce:ea: 09:68:08:bb:ca:5f:bc:b3:12:e2:10:5e:c1:ac:7b: 69:70:16:6e:39:b2:59:59:9e:f6:c9:6b:a4:e0:4a: b3:a8:05:f0:56:ef:75:26:5b:d6:9f:0e:3a:c2:8a: 9f:f7:83:b7:d7:4e:44:8c:67:97:7b:94:ba:b0:9b: cd:c3:71:76:2a:8a:fa:22:81:06:e7:50:4e:f4:a6: d1:a1:66:e6:b0:da:18:ce:de:82:e3:e3:29:f4:61: 7e:45:9b:86:c1:78:56:a0:db:6a:02:b6:c5:92:7a: e8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D7:6D:A3:F6:30:6D:80:B1:EF:1D:56:EB:A7:8F:7B:DD:EB:2F:40 X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.99.50.0/23 103.118.81.0/24 IPv6: 2403:29c0:20::/47 Signature Algorithm: sha256WithRSAEncryption ac:fb:10:24:22:24:61:96:09:97:4b:7d:3a:3a:92:e8:fd:34: 10:be:4a:52:43:6e:62:e0:a0:ba:d1:d2:71:bc:93:19:8f:6d: 6f:16:2e:9c:ac:86:9b:40:ca:93:97:c8:79:c8:7d:68:4b:86: b7:e4:e2:03:e5:ad:48:31:97:27:e1:87:cf:d9:3e:4d:04:14: 2f:92:dc:87:59:4d:db:2e:e6:26:64:ad:8b:57:24:e3:e5:f0: f9:ee:a3:1a:be:7b:2a:11:93:6a:6a:6d:78:23:38:ac:3a:6c: 1c:1b:fc:49:f0:f9:c4:24:1e:ba:19:7e:2c:82:32:37:e0:ce: 9d:33:6f:2d:48:70:44:89:09:91:95:24:5e:52:f1:2d:35:2a: ee:73:e9:26:24:0c:c4:2c:99:4f:a0:2f:ae:4e:a6:ca:b5:68: 5a:0a:c8:72:28:78:87:6e:fb:b0:06:e7:8b:9e:d3:52:d2:f2: 89:68:e6:f6:6b:37:5d:af:93:60:a2:24:27:c6:92:d2:40:08: ac:06:d9:2e:bb:de:6c:bf:92:49:8f:1f:cb:0f:da:73:d5:53: 07:ec:90:60:72:29:42:70:61:54:ae:d0:be:7a:1e:15:bf:c9: d7:6e:ba:ab:22:31:84:c6:41:2d:a2:bb:9a:2c:60:f1:06:d8: bf:b7:06:05 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICGX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjUxMDI3MDMzMjU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTk2ZC1hNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3A5s+ugkn6NIQsk2Cilc1awkuNfx0mp9dj3T2yZqm0uC3WfNH6Na5TPEC5+ 9lUr82MxP3Y4DiJ2TDpGbGzm/uI+2kkj510TwZbNN9ADBDpCN2pDEH3LYuqG3DwE Y8yLC0b4frHEzhjmmoYSnWzEkdcgRIdAX4+Hg+vpGc2cWOO7vMov1jf+inqYAg68 +ltXSm9WzuoJaAi7yl+8sxLiEF7BrHtpcBZuObJZWZ72yWuk4EqzqAXwVu91JlvW nw46woqf94O3105EjGeXe5S6sJvNw3F2Kor6IoEG51BO9KbRoWbmsNoYzt6C4+Mp 9GF+RZuGwXhWoNtqArbFknroIQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFCHXbaP2 MG2Ase8dVuunj3vd6y9AMB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFQjMvNUQ3MzVENDY5NkRFMTFFN0JBN0QyQTc3QzRGOUFFMDIvNTcwNUUzMEVG QzdBMTFFOEJGQ0M3NjBBQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQBZ2MyAwQAZ3ZRMA8EAgACMAkDBwEkAynAACAwDQYJKoZIhvcNAQEL BQADggEBAKz7ECQiJGGWCZdLfTo6kuj9NBC+SlJDbmLgoLrR0nG8kxmPbW8WLpys hptAypOXyHnIfWhLhrfk4gPlrUgxlyfhh8/ZPk0EFC+S3IdZTdsu5iZkrYtXJOPl 8Pnuoxq+eyoRk2pqbXgjOKw6bBwb/Enw+cQkHroZfiyCMjfgzp0zby1IcESJCZGV JF5S8S01Ku5z6SYkDMQsmU+gL65Opsq1aFoKyHIoeIdu+7AG54ue01LS8olo5vZr N12vk2CiJCfGktJACKwG2S673my/kkmPH8sP2nPVUwfskGByKUJwYVSu0L56HhW/ ydduuqsiMYTGQS2iu5osYPEG2L+3BgU= -----END CERTIFICATE-----Generated at Thu Mar 12 08:02:32 2026 by rpki-client