$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa File: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (raw, json) Hash identifier: DAjpYy2F7JuENdM1mCWzZ4UuisI9F+H32xQyrUo660o= Subject key identifier: 51:99:5D:3B:E6:CE:CE:E1:F8:55:D4:04:55:EA:58:95:2A:5F:89:A5 Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35D8 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:26:42 +0000 ROA not before: Thu 10 Apr 2025 15:20:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38477 IP address blocks: 103.11.124.0/22 maxlen: 24 116.90.128.0/20 maxlen: 20 116.90.128.0/21 maxlen: 21 116.90.128.0/24 maxlen: 24 116.90.129.0/24 maxlen: 24 116.90.130.0/24 maxlen: 24 116.90.133.0/24 maxlen: 24 116.90.134.0/24 maxlen: 24 116.90.136.0/21 maxlen: 21 116.90.136.0/23 maxlen: 23 116.90.138.0/24 maxlen: 24 116.90.139.0/24 maxlen: 24 116.90.140.0/24 maxlen: 24 116.90.142.0/24 maxlen: 24 116.90.143.0/24 maxlen: 24 120.136.62.0/24 maxlen: 24 122.102.108.0/23 maxlen: 23 202.6.116.0/23 maxlen: 23 2401:f000::/32 maxlen: 32 2401:f000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13784 (0x35d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Apr 10 15:20:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45ab2-9c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:31:d7:7e:13:2e:4c:32:f9:44:c0:f7:ef: d4:45:ae:03:f5:75:49:7b:dc:9e:9a:f5:26:57:d0: 8b:bb:7f:77:77:5a:91:fa:91:ed:0d:31:8a:98:cf: 84:3f:1d:54:44:d1:db:24:84:13:03:b4:3d:51:4f: 0f:17:52:64:7c:6d:4a:3d:09:d4:3a:b5:83:c3:fa: ec:f4:70:11:bc:51:0f:39:02:c4:37:b7:2e:27:eb: 33:4e:8a:0a:78:56:a4:2d:b7:f5:eb:85:9d:e9:75: 52:b2:84:8d:16:33:39:e1:ca:c8:16:05:24:1b:f8: 61:d0:d2:45:d2:10:00:ec:aa:37:9f:e2:6c:cb:85: 99:28:c9:fb:60:32:33:e8:0b:bc:7c:da:34:af:30: b2:27:cf:e9:43:84:4b:fb:d1:1e:64:8d:87:64:30: d9:14:ff:93:11:b7:cf:94:82:d9:ce:e5:f3:49:da: ad:64:78:68:11:80:ec:2f:ef:b8:70:10:3b:9c:71: 46:b0:94:97:27:cb:14:a7:97:69:e4:0f:5f:aa:78: 18:ef:75:ed:28:2b:65:ac:3c:e9:c9:46:36:8a:02: 1a:79:1f:a5:51:96:5a:04:fd:25:86:cb:54:71:bc: cb:48:6e:3c:e0:e1:66:97:2a:85:86:e4:81:75:5a: 82:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:99:5D:3B:E6:CE:CE:E1:F8:55:D4:04:55:EA:58:95:2A:5F:89:A5 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/D1EE6884F06C11EEA5BAA656C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.124.0/22 116.90.128.0/20 120.136.62.0/24 122.102.108.0/23 202.6.116.0/23 IPv6: 2401:f000::/32 Signature Algorithm: sha256WithRSAEncryption 31:c3:0a:6d:f0:7a:5a:db:dc:14:3f:1c:f0:ee:9e:9f:e6:29: b0:34:58:cb:c0:90:7f:45:3f:4a:1c:d5:1b:5c:28:76:b5:51: aa:7e:97:e4:d2:cb:ed:24:c7:f2:08:0e:ef:c2:15:4d:2a:31: 4e:cc:05:b4:71:ec:aa:d7:dc:2b:de:15:c0:66:80:b9:11:0a: 4f:06:31:e4:28:bb:d6:c9:55:58:fa:73:46:9f:b7:34:e0:18: 2a:fd:5d:8f:3c:c5:03:86:fa:88:2c:79:67:f8:43:4f:b0:b2: a2:68:68:00:f4:de:8e:90:a7:64:a9:ef:53:ef:60:22:82:6f: aa:64:c3:c9:c9:be:f4:2d:a4:95:aa:a5:47:39:21:de:12:dd: d1:23:a9:0a:f2:d8:b4:42:fe:0d:bd:cd:1d:fb:f3:ec:3f:39: 0f:22:e1:7e:a3:8b:c1:74:8e:20:f2:c7:f5:68:26:77:4e:49: fc:78:c9:16:a5:9f:cf:59:3b:8b:d0:a4:9d:50:65:4a:61:e2: a7:41:3a:bb:29:0f:5d:ea:ed:b6:b1:4e:5a:de:4d:2b:5a:8d: 46:06:58:a7:67:7b:b7:76:b2:46:a3:18:d4:94:0b:d4:f4:8b: 1b:ee:b6:4b:3f:39:65:d7:9e:7f:b5:6a:a3:19:a5:14:8d:80: 9e:13:b8:78 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICNdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNDEwMTUyMDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFiMi05YzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfMx134TLkwy+UTA9+/URa4D9XVJe9yemvUmV9CLu393d1qR+pHtDTGKmM+E Px1URNHbJIQTA7Q9UU8PF1JkfG1KPQnUOrWDw/rs9HARvFEPOQLEN7cuJ+szTooK eFakLbf164Wd6XVSsoSNFjM54crIFgUkG/hh0NJF0hAA7Ko3n+Jsy4WZKMn7YDIz 6Au8fNo0rzCyJ8/pQ4RL+9EeZI2HZDDZFP+TEbfPlILZzuXzSdqtZHhoEYDsL++4 cBA7nHFGsJSXJ8sUp5dp5A9fqngY73XtKCtlrDzpyUY2igIaeR+lUZZaBP0lhstU cbzLSG484OFmlyqFhuSBdVqCFwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFFGZXTvm zs7h+FXUBFXqWJUqX4mlMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NzgvMzIyM0YzNUUxRDk4MTFFMjhBOEMyRTgyMDhCMDJDRDIvRDFFRTY4ODRG MDZDMTFFRUE1QkFBNjU2QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZwt8AwQEdFqAAwQAeIg+AwQBemZsAwQBygZ0MA0EAgACMAcDBQAk AfAAMA0GCSqGSIb3DQEBCwUAA4IBAQAxwwpt8Hpa29wUPxzw7p6f5imwNFjLwJB/ RT9KHNUbXCh2tVGqfpfk0svtJMfyCA7vwhVNKjFOzAW0ceyq19wr3hXAZoC5EQpP BjHkKLvWyVVY+nNGn7c04Bgq/V2PPMUDhvqILHln+ENPsLKiaGgA9N6OkKdkqe9T 72Aigm+qZMPJyb70LaSVqqVHOSHeEt3RI6kK8ti0Qv4Nvc0d+/PsPzkPIuF+o4vB dI4g8sf1aCZ3Tkn8eMkWpZ/PWTuL0KSdUGVKYeKnQTq7KQ9d6u22sU5a3k0rWo1G BlinZ3u3drJGoxjUlAvU9Isb7rZLPzll155/tWqjGaUUjYCeE7h4 -----END CERTIFICATE-----Generated at Sun Mar 22 20:12:45 2026 by rpki-client