$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa File: 568D8AACF00511ED9239BC6EC4F9AE02.roa (raw, json) Hash identifier: yPVfb1MOazkpM9yPxxW2+TeE6FVQ8h/jpcjwh9yPTZc= Subject key identifier: 95:DD:2B:67:C4:A9:6A:FE:13:21:A4:9A:E3:07:23:A9:1F:5B:F5:10 Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0212 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:08:35 +0000 ROA not before: Sat 31 May 2025 03:51:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151318 IP address blocks: 103.137.230.0/23 maxlen: 23 103.137.230.0/24 maxlen: 24 103.137.231.0/24 maxlen: 24 2001:df2:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 31 03:51:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5a7f3-9d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:e2:be:76:d8:8b:7b:5f:54:df:18:e1:1f: 67:d7:26:79:6e:37:38:a4:69:42:67:88:39:d2:9e: e9:80:35:2e:ff:77:3c:d4:f7:48:1f:a2:99:8a:7a: 3a:9a:a0:bd:33:ea:56:29:dd:fc:64:0c:7e:4e:c3: 90:ed:94:eb:ae:75:d4:31:f9:07:50:41:72:66:31: 16:7c:ec:0b:b6:4c:c6:0c:02:a3:df:2b:7e:92:92: 54:63:b9:46:8b:83:ab:93:91:ac:16:5d:a0:12:12: 05:c9:46:99:f0:8e:80:fb:30:74:e8:c7:af:59:de: 92:51:69:98:01:4a:a8:b8:e5:d3:c3:5e:f5:32:ca: 55:ea:d2:ce:17:e0:8e:34:a7:ea:88:bb:be:6a:eb: 11:f1:0e:a4:f9:46:25:0d:0c:5a:82:eb:4b:9b:e5: 13:21:1d:49:05:29:ce:b8:a6:3a:0a:cb:fb:ef:24: 74:c5:71:1d:dd:87:26:42:f6:88:a2:81:13:78:50: 6c:7f:25:e5:b6:44:ac:58:0d:0d:0e:4a:7f:8d:62: 33:10:17:99:44:b1:4f:db:dc:40:cc:1f:b8:68:f8: 07:93:91:45:28:34:5a:9e:03:37:0d:04:88:c2:e3: 4d:2c:60:5c:35:45:54:3e:8b:23:52:05:e6:33:fd: 7f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DD:2B:67:C4:A9:6A:FE:13:21:A4:9A:E3:07:23:A9:1F:5B:F5:10 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.137.230.0/23 IPv6: 2001:df2:66c0::/48 Signature Algorithm: sha256WithRSAEncryption de:e6:50:5e:30:cf:96:31:0c:67:73:59:d0:4e:d6:ef:b7:a3: ec:52:14:ee:56:21:b4:0a:06:94:de:d9:3d:3b:ee:42:94:eb: d5:c1:cd:d9:dc:29:8c:87:34:12:1c:f4:c3:41:2b:18:40:1d: bb:f3:99:c3:b3:02:09:cc:f3:92:ee:71:14:e1:ca:b3:6d:4c: 00:6a:81:fe:63:4f:58:42:bc:23:e4:56:66:ff:7e:67:e8:32: 45:4e:a8:d6:6e:28:3a:26:61:33:d1:eb:02:4f:16:a3:09:d3: 30:ff:13:0b:5b:d0:51:6e:88:54:1f:e5:44:22:4d:4b:14:26: f9:60:28:dc:f0:f6:dd:53:ca:18:d3:25:ac:a2:5c:8a:bb:73: 46:e0:7e:60:a2:05:d7:44:e3:eb:d0:d5:bf:89:84:d2:2b:50: fa:7a:98:e3:21:80:a5:e0:0d:e6:4e:1c:37:1b:66:cf:0c:30: 7e:34:3b:6b:d2:3e:f7:e3:67:9a:8e:dc:cc:99:33:5d:25:15: b1:b4:ff:51:db:00:a7:b6:85:77:2e:33:75:ba:ec:7d:77:ef: 73:69:99:28:32:dd:07:f1:0b:7b:60:e1:eb:56:c6:bd:aa:be: 7a:4d:52:4e:6a:ed:dc:25:97:04:a6:4c:66:06:c4:39:46:43: 62:d3:2c:dc -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNTMxMDM1MTMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTdmMy05ZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwnivnbYi3tfVN8Y4R9n1yZ5bjc4pGlCZ4g50p7pgDUu/3c81PdIH6KZino6 mqC9M+pWKd38ZAx+TsOQ7ZTrrnXUMfkHUEFyZjEWfOwLtkzGDAKj3yt+kpJUY7lG i4Ork5GsFl2gEhIFyUaZ8I6A+zB06MevWd6SUWmYAUqouOXTw171MspV6tLOF+CO NKfqiLu+ausR8Q6k+UYlDQxagutLm+UTIR1JBSnOuKY6Csv77yR0xXEd3YcmQvaI ooETeFBsfyXltkSsWA0NDkp/jWIzEBeZRLFP29xAzB+4aPgHk5FFKDRangM3DQSI wuNNLGBcNUVUPosjUgXmM/1/OQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJXdK2fE qWr+EyGkmuMHI6kfW/UQMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ5RTIvQjY0NDMzODRFRkZGMTFFRDg1NTZFRTU0QzRGOUFFMDIvNTY4RDhBQUNG MDA1MTFFRDkyMzlCQzZFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ4nmMA8EAgACMAkDBwAgAQ3yZsAwDQYJKoZIhvcNAQELBQADggEB AN7mUF4wz5YxDGdzWdBO1u+3o+xSFO5WIbQKBpTe2T077kKU69XBzdncKYyHNBIc 9MNBKxhAHbvzmcOzAgnM85LucRThyrNtTABqgf5jT1hCvCPkVmb/fmfoMkVOqNZu KDomYTPR6wJPFqMJ0zD/Ewtb0FFuiFQf5UQiTUsUJvlgKNzw9t1TyhjTJayiXIq7 c0bgfmCiBddE4+vQ1b+JhNIrUPp6mOMhgKXgDeZOHDcbZs8MMH40O2vSPvfjZ5qO 3MyZM10lFbG0/1HbAKe2hXcuM3W67H1373NpmSgy3QfxC3tg4etWxr2qvnpNUk5q 7dwllwSmTGYGxDlGQ2LTLNw= -----END CERTIFICATE-----Generated at Thu Mar 26 08:33:34 2026 by rpki-client