$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/E2891A621EA111F1917EDCD9123D8C67.roa File: E2891A621EA111F1917EDCD9123D8C67.roa (raw, json) Hash identifier: gEX8Atz/LLQf1n/y8rRUMSuwdmjVhyMahE2Jamzx/nI= Subject key identifier: 26:65:56:9F:93:10:24:13:7D:33:AF:B7:3D:1C:BC:2E:1B:D2:30:15 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 0A1D Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/E2891A621EA111F1917EDCD9123D8C67.roa Signing time: Fri 13 Mar 2026 06:02:23 +0000 ROA not before: Fri 13 Mar 2026 06:02:23 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132041 IP address blocks: 103.96.24.0/24 maxlen: 24 103.96.25.0/24 maxlen: 24 103.96.27.0/24 maxlen: 24 123.253.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4, serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Mar 13 06:02:23 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b3a86e-f605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:89:2d:c3:83:39:c4:5c:2b:db:62:c2:c2:c4: 87:00:f2:ae:2b:2f:cf:5f:c0:2f:5b:03:cc:99:fe: 44:ac:a7:cd:36:ee:94:05:52:2f:b9:67:41:63:2e: 29:79:9a:c9:ca:b5:16:08:5a:f9:14:87:08:96:09: ba:f5:6e:f7:dd:6f:11:f3:21:24:27:2e:9c:72:b1: e8:c7:10:5e:82:1e:ea:3f:e5:89:88:34:09:e3:21: 74:76:83:28:de:23:57:50:be:ad:24:e0:92:24:88: e5:e0:34:cf:41:43:f8:f7:18:4f:98:59:56:d1:78: cc:24:bd:20:fb:58:9d:6f:ff:ec:25:05:47:e8:22: 68:22:c5:e0:10:1e:40:4a:28:63:cf:c8:53:23:71: 39:7e:71:d1:c4:93:d2:de:31:74:47:cc:eb:7e:d6: c6:25:37:1e:32:6d:db:92:d0:3a:9a:de:59:53:9e: c5:ca:bd:92:55:2b:36:64:ec:e0:96:96:59:d8:95: 9a:dd:4d:e2:4a:59:af:7e:c7:0e:db:bf:4b:27:0a: 27:7c:90:34:21:b8:2c:d9:8c:7b:18:40:b5:71:72: 3f:f1:89:20:3e:c2:04:bf:82:dd:c1:82:a3:31:1a: cc:a9:f7:2d:8d:9d:32:2d:f6:e5:fc:95:b0:e1:41: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:56:9F:93:10:24:13:7D:33:AF:B7:3D:1C:BC:2E:1B:D2:30:15 X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/E2891A621EA111F1917EDCD9123D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.96.24.0/23 103.96.27.0/24 123.253.195.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:25:1b:90:a4:56:27:36:ad:4f:a0:c4:22:8a:b8:a2:30:db: 8f:07:f2:a9:36:bf:74:18:9f:63:75:43:0b:5e:a8:f3:71:cd: b4:83:75:1a:90:3d:83:bb:f4:2a:22:4a:d5:aa:2b:9e:49:07: da:06:a9:ae:d3:9f:3c:50:34:e6:4a:b6:aa:6e:fd:27:5f:5f: 2c:b5:17:4a:0f:9b:72:5f:5b:cd:1d:f4:e3:23:d5:85:8f:f6: bb:e7:ea:8c:e9:f5:06:ae:77:dc:df:49:c2:32:2b:a3:4f:11: 18:86:a9:9b:19:2c:aa:b3:34:1a:b8:9e:f5:c1:0c:ee:1a:98: c3:f3:f4:ab:06:f2:76:43:40:20:63:b9:b9:e5:4f:35:fb:17: 92:97:43:a8:4c:d0:d1:56:9d:d1:e9:39:94:07:9a:05:b0:c5: c0:5c:2e:59:bf:9e:a6:02:ec:1b:9b:c1:78:f1:cf:0a:3d:29: b6:5d:40:d5:2c:41:6b:d8:a9:74:61:29:f1:36:f9:e6:ce:72: c4:e5:56:dc:82:c6:24:88:34:cd:0d:31:db:fe:a4:82:5a:bc: 88:b4:b8:e2:17:cd:11:5c:cd:c2:26:45:c3:99:30:71:0c:af: c3:a5:0d:6f:7f:2d:97:b9:a6:8f:06:fe:c6:1a:0e:30:e8:22: 67:f4:19:73 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjYwMzEzMDYwMjIzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzYTg2ZS1mNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmoktw4M5xFwr22LCwsSHAPKuKy/PX8AvWwPMmf5ErKfNNu6UBVIvuWdBYy4p eZrJyrUWCFr5FIcIlgm69W733W8R8yEkJy6ccrHoxxBegh7qP+WJiDQJ4yF0doMo 3iNXUL6tJOCSJIjl4DTPQUP49xhPmFlW0XjMJL0g+1idb//sJQVH6CJoIsXgEB5A Sihjz8hTI3E5fnHRxJPS3jF0R8zrftbGJTceMm3bktA6mt5ZU57Fyr2SVSs2ZOzg lpZZ2JWa3U3iSlmvfscO279LJwonfJA0Ibgs2Yx7GEC1cXI/8YkgPsIEv4LdwYKj MRrMqfctjZ0yLfbl/JWw4UEqCwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCZlVp+T ECQTfTOvtz0cvC4b0jAVMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFGQTQvQjY3ODYyRkFBQjk1MTFFQUIyNTU5QzVCQzRGOUFFMDIvRTI4OTFBNjIx RUExMTFGMTkxN0VEQ0Q5MTIzRDhDNjcucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBZ2AYAwQAZ2AbAwQAe/3DMA0GCSqGSIb3DQEBCwUAA4IBAQANJRuQ pFYnNq1PoMQiiriiMNuPB/KpNr90GJ9jdUMLXqjzcc20g3UakD2Du/QqIkrVqiue SQfaBqmu0588UDTmSraqbv0nX18stRdKD5tyX1vNHfTjI9WFj/a75+qM6fUGrnfc 30nCMiujTxEYhqmbGSyqszQauJ71wQzuGpjD8/SrBvJ2Q0AgY7m55U81+xeSl0Oo TNDRVp3R6TmUB5oFsMXAXC5Zv56mAuwbm8F48c8KPSm2XUDVLEFr2Kl0YSnxNvnm znLE5VbcgsYkiDTNDTHb/qSCWryItLjiF80RXM3CJkXDmTBxDK/DpQ1vfy2XuaaP Bv7GGg4w6CJn9Blz -----END CERTIFICATE-----Generated at Thu Mar 26 08:44:31 2026 by rpki-client