$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/B855A21C3E1211EB8D23EB6CC4F9AE02.roa File: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (raw, json) Hash identifier: l3JeAQ3S0YOaZPvLg1VADUfgUPauzx1iQ/ocLZ5FTmk= Subject key identifier: 15:8E:1B:2D:FD:D7:CA:7C:F3:5B:C8:71:42:40:DD:90:4B:16:2A:3A Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 07A4 Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/B855A21C3E1211EB8D23EB6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:28:18 +0000 ROA not before: Sat 06 Dec 2025 21:03:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139770 IP address blocks: 103.144.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4, serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Dec 6 21:03:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a430e2-13bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5d:b9:3e:7a:74:2a:32:49:68:1c:48:cc:e5: b4:f3:d7:0c:d7:29:26:60:56:60:53:1d:4a:98:dd: 3c:21:f9:e9:cb:76:67:62:43:f4:f5:27:08:5c:53: 44:e3:93:a1:aa:78:74:74:0b:e4:27:d0:5e:08:ff: 62:bd:6a:34:5a:fb:e0:29:18:ef:8d:b5:5c:d3:44: 32:1f:75:b4:3e:e2:a2:35:88:92:95:ca:fe:38:90: 76:7b:bc:23:bf:f5:9d:83:48:05:a8:d6:ff:d2:67: fb:6f:1c:2f:62:db:7a:08:aa:dc:df:c0:29:fb:10: 1a:a7:a3:5b:a6:5f:0a:6c:49:54:c3:df:87:3e:80: 47:ba:26:67:37:c5:67:29:83:e5:91:e1:a1:d9:a1: 39:30:88:95:bf:ac:98:61:74:24:8e:79:19:08:7e: 2c:dd:df:df:aa:fd:58:33:67:b3:c7:b9:e4:2f:5a: df:29:5c:7a:ac:33:2c:5f:f9:29:21:e2:43:f8:8c: 06:1e:e1:55:f3:03:34:d5:1b:32:e6:41:69:ac:ca: 22:2e:2c:c4:27:09:db:a8:3c:ae:0f:76:68:f3:af: e5:65:4d:b9:78:e3:fb:1a:e1:46:db:d9:c3:8a:3a: 16:dc:b5:99:0e:69:52:08:fe:1c:fd:92:45:8d:21: 4a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8E:1B:2D:FD:D7:CA:7C:F3:5B:C8:71:42:40:DD:90:4B:16:2A:3A X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/B855A21C3E1211EB8D23EB6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.237.0/24 Signature Algorithm: sha256WithRSAEncryption 33:83:74:09:10:5c:91:09:a8:0a:f2:08:4a:3e:37:be:d0:0e: be:4f:64:7f:8d:9e:d3:02:ad:a2:79:53:4f:72:94:a1:92:bc: cd:bc:c7:0a:4c:06:98:c1:fc:51:f7:93:0f:53:eb:4d:71:53: a8:c0:c6:b9:20:ed:fb:43:e3:f4:11:4e:30:38:15:b8:5d:1a: 10:5b:71:c1:2d:37:f2:32:08:cd:81:d8:16:d7:02:a6:be:cc: 64:e8:bc:78:66:b9:36:f3:db:94:32:6a:d2:7e:f9:5a:08:2c: de:f3:6e:ff:47:1c:dc:40:8b:1a:f2:1a:6f:fd:0e:b4:8a:52: f3:83:72:81:92:cd:1c:57:82:84:b9:b3:37:d8:e6:95:5c:c6: 35:11:09:67:b3:4b:12:e1:5d:6c:54:7b:a9:74:ca:12:a4:f5: 15:aa:f5:52:d2:47:be:b2:1a:3c:28:54:cf:3a:f0:2c:e9:49: ed:7f:97:35:37:33:46:e8:97:41:0f:a1:42:1d:cc:1d:66:16: cb:1a:21:72:58:96:fc:89:7c:ae:97:28:6d:fe:6f:4b:3c:ff: 1b:28:b8:bf:0b:43:c9:a0:64:82:ac:b0:47:5c:9d:6a:57:f4: 10:9f:98:d3:c6:9e:c2:ed:7d:4d:d8:7b:fa:54:59:46:c8:25: c1:09:bf:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjUxMjA2MjEwMzEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzBlMi0xM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF25Pnp0KjJJaBxIzOW089cM1ykmYFZgUx1KmN08Ifnpy3ZnYkP09ScIXFNE 45Ohqnh0dAvkJ9BeCP9ivWo0WvvgKRjvjbVc00QyH3W0PuKiNYiSlcr+OJB2e7wj v/Wdg0gFqNb/0mf7bxwvYtt6CKrc38Ap+xAap6Nbpl8KbElUw9+HPoBHuiZnN8Vn KYPlkeGh2aE5MIiVv6yYYXQkjnkZCH4s3d/fqv1YM2ezx7nkL1rfKVx6rDMsX/kp IeJD+IwGHuFV8wM01Rsy5kFprMoiLizEJwnbqDyuD3Zo86/lZU25eOP7GuFG29nD ijoW3LWZDmlSCP4c/ZJFjSFKfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBWOGy39 18p881vIcUJA3ZBLFio6MB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA4QzQvNTMyRkRDREMzRTExMTFFQkFFMDAyMTZDQzRGOUFFMDIvQjg1NUEyMUMz RTEyMTFFQjhEMjNFQjZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5DtMA0GCSqGSIb3DQEBCwUAA4IBAQAzg3QJEFyRCagK8ghKPje+ 0A6+T2R/jZ7TAq2ieVNPcpShkrzNvMcKTAaYwfxR95MPU+tNcVOowMa5IO37Q+P0 EU4wOBW4XRoQW3HBLTfyMgjNgdgW1wKmvsxk6Lx4Zrk289uUMmrSfvlaCCze827/ RxzcQIsa8hpv/Q60ilLzg3KBks0cV4KEubM32OaVXMY1EQlns0sS4V1sVHupdMoS pPUVqvVS0ke+sho8KFTPOvAs6Untf5c1NzNG6JdBD6FCHcwdZhbLGiFyWJb8iXyu lyht/m9LPP8bKLi/C0PJoGSCrLBHXJ1qV/QQn5jTxp7C7X1N2Hv6VFlGyCXBCb8j -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:52 2026 by rpki-client