$ rpki-client -vvf rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/E6F6831A26AF11EEA8E86146C4F9AE02.roa File: E6F6831A26AF11EEA8E86146C4F9AE02.roa (raw, json) Hash identifier: hX2Iw++PK9Y+cjSdv5iifugQbVGCyctU8mKlkkvrChc= Subject key identifier: AF:F1:5B:DE:EC:65:B5:86:A3:89:BD:B0:68:91:42:88:2C:97:11:02 Certificate issuer: /CN=A91487A2/serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Certificate serial: 01F5 Authority key identifier: F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/E6F6831A26AF11EEA8E86146C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:35:22 +0000 ROA not before: Sat 23 Aug 2025 04:08:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151618 IP address blocks: 103.239.172.0/23 maxlen: 23 103.239.172.0/24 maxlen: 24 103.239.173.0/24 maxlen: 24 2001:df2:b6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487A2, serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Validity Not Before: Aug 23 04:08:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3ec3a-6ed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b7:81:8c:ce:19:55:a3:1b:81:84:b4:0b:6e: e7:94:aa:61:e4:4b:e5:d4:5f:55:4d:40:67:62:71: fb:7a:c1:e3:79:bc:bc:5f:d6:79:ba:80:fc:1c:2d: 1b:ea:af:7f:25:86:9b:ab:31:a7:04:10:f8:c8:3a: 0b:00:fc:45:d6:5c:9b:9e:32:ee:31:c8:5c:5b:57: 1e:21:40:7c:b5:50:76:e1:9b:c5:15:e3:0a:9b:3b: 3b:d7:94:49:4b:d2:ef:7a:a5:84:a7:0b:e8:1e:33: 42:70:de:b5:5f:e5:15:bf:a8:b6:ee:36:22:6d:b0: d5:12:a9:33:18:65:77:aa:c9:76:35:02:b8:3d:e9: b6:75:77:6d:82:f5:36:c3:56:f0:bb:77:d1:e1:87: ad:ac:99:68:5f:47:18:f6:a8:49:81:39:05:e1:be: eb:79:8f:f7:b2:01:3c:f4:19:e7:a4:e3:e3:ec:0a: 08:c2:0a:c6:8e:6e:8f:42:1e:e6:a1:bd:b1:52:10: c8:26:3e:a4:76:89:ec:55:24:e4:9e:f6:68:a4:a4: 09:82:8a:10:9a:7e:4b:76:d8:31:7b:06:2a:57:bf: c3:6b:b9:ed:4e:e4:54:9b:9e:97:e6:0d:01:b0:7c: 62:ed:7c:8c:4a:eb:72:ed:c2:5b:96:b9:4f:2a:a2: 42:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F1:5B:DE:EC:65:B5:86:A3:89:BD:B0:68:91:42:88:2C:97:11:02 X509v3 Authority Key Identifier: keyid:F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/E6F6831A26AF11EEA8E86146C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.239.172.0/23 IPv6: 2001:df2:b6c0::/48 Signature Algorithm: sha256WithRSAEncryption 62:ea:07:be:c2:c8:ad:bf:56:34:d8:32:0a:80:e9:a2:0d:81: f2:93:15:63:6f:9b:ab:e8:fb:a4:aa:70:b1:fe:44:4c:d1:fb: 07:4e:e9:f0:f5:0a:55:b8:aa:74:ba:69:9a:d1:87:e3:41:47: a1:55:12:e4:7a:fd:69:b6:0d:ce:19:09:f8:4c:4b:a1:59:ee: 23:03:fc:10:bf:7b:6e:5b:e7:f4:f8:a1:e4:3e:5b:cf:d2:6f: 86:63:63:a7:24:fe:c7:17:77:58:eb:14:88:50:cb:da:31:6b: ac:35:3f:35:95:18:60:32:6f:a5:52:24:98:49:2b:7e:f6:20: 40:4b:3e:8c:93:d3:02:cb:9b:61:ac:71:e1:5e:ef:be:e3:4b: c5:f8:c5:6e:60:c3:04:19:3a:d6:4a:47:3f:aa:0f:e7:bf:3c: 54:3c:fb:a9:90:ed:cb:4c:dc:7a:01:41:5a:14:24:66:a0:cc: 79:64:c1:ed:98:05:c1:15:34:81:d1:44:28:ac:33:ed:2f:8d: 8f:e0:f7:d9:b6:00:29:70:71:8e:84:ee:1c:98:08:35:cf:7e: 57:01:ed:42:40:b8:28:6c:0e:59:cf:81:81:e1:ff:df:50:28: 02:4d:3b:c7:eb:55:d9:e8:74:a9:32:b1:1d:28:ca:21:f0:56: 83:86:94:d5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QTIxMTAvBgNVBAUTKEY2OERDRUQyRTYwMkY0NDY1Njc0MTA5OTRBOEU4QzAy MTAwOUVEODkwHhcNMjUwODIzMDQwODU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWMzYS02ZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsreBjM4ZVaMbgYS0C27nlKph5Evl1F9VTUBnYnH7esHjeby8X9Z5uoD8HC0b 6q9/JYabqzGnBBD4yDoLAPxF1lybnjLuMchcW1ceIUB8tVB24ZvFFeMKmzs715RJ S9LveqWEpwvoHjNCcN61X+UVv6i27jYibbDVEqkzGGV3qsl2NQK4Pem2dXdtgvU2 w1bwu3fR4YetrJloX0cY9qhJgTkF4b7reY/3sgE89BnnpOPj7AoIwgrGjm6PQh7m ob2xUhDIJj6kdonsVSTknvZopKQJgooQmn5LdtgxewYqV7/Da7ntTuRUm56X5g0B sHxi7XyMSuty7cJblrlPKqJCJQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFK/xW97s ZbWGo4m9sGiRQogslxECMB8GA1UdIwQYMBaAFPaNztLmAvRGVnQQmUqOjAIQCe2J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdBMi80MDZCNjEwMDI2 QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlFWldkQkNaU282TUFoQUo3 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvM08wdVlDOUVaV2RCQ1pTbzZNQWhBSjdZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg3QTIvNDA2QjYxMDAyNkFGMTFFRThBRUQ0RjQ1QzRGOUFFMDIvRTZGNjgzMUEy NkFGMTFFRUE4RTg2MTQ2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ++sMA8EAgACMAkDBwAgAQ3ytsAwDQYJKoZIhvcNAQELBQADggEB AGLqB77CyK2/VjTYMgqA6aINgfKTFWNvm6vo+6SqcLH+REzR+wdO6fD1ClW4qnS6 aZrRh+NBR6FVEuR6/Wm2Dc4ZCfhMS6FZ7iMD/BC/e25b5/T4oeQ+W8/Sb4ZjY6ck /scXd1jrFIhQy9oxa6w1PzWVGGAyb6VSJJhJK372IEBLPoyT0wLLm2GsceFe777j S8X4xW5gwwQZOtZKRz+qD+e/PFQ8+6mQ7ctM3HoBQVoUJGagzHlkwe2YBcEVNIHR RCisM+0vjY/g99m2AClwcY6E7hyYCDXPflcB7UJAuChsDlnPgYHh/99QKAJNO8fr VdnodKkysR0oyiHwVoOGlNU= -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:51 2026 by rpki-client