$ rpki-client -vvf rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa File: 1D0A29A68E2911F08D963C69C4F9AE02.roa (raw, json) Hash identifier: N6CBwqrOqMiPVhe2XON5ueLRVOAkc+Y5PryJUTw3C2g= Subject key identifier: BE:8B:9C:C4:06:F1:C2:47:14:F1:2E:01:34:F2:BC:74:1E:84:E8:0C Certificate issuer: /CN=A91568A0/serialNumber=AFBAA1516E9E17F24CF9145B8C7CD4BA81A57A40 Certificate serial: 72 Authority key identifier: AF:BA:A1:51:6E:9E:17:F2:4C:F9:14:5B:8C:7C:D4:BA:81:A5:7A:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa Signing time: Wed 25 Mar 2026 07:45:47 +0000 ROA not before: Wed 25 Mar 2026 07:45:47 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140622 IP address blocks: 103.182.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.crl rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568A0, serialNumber=AFBAA1516E9E17F24CF9145B8C7CD4BA81A57A40 Validity Not Before: Mar 25 07:45:47 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c392ab-77ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:be:d2:9e:a6:b0:3e:cd:6e:e1:8a:0f:1d:ae: 96:09:7c:82:59:92:cd:dd:9b:2a:52:e3:61:a3:fe: bf:a5:f6:59:f9:7d:fd:3d:c4:52:c9:b4:92:d4:b1: 90:7d:f4:0d:03:fb:50:94:a3:57:7d:fd:bf:69:b1: 13:10:47:09:06:69:c1:fc:f4:bb:b8:bc:9c:c8:87: f4:82:9f:85:1a:6a:26:ee:2f:17:40:e4:9a:b3:f9: 9d:4f:37:50:8d:75:a4:69:f1:82:0c:c8:63:b8:e1: 73:c4:71:37:6c:e5:a4:f9:9c:97:38:b6:f8:4e:8a: f1:89:ab:5c:4c:28:f5:f4:54:9a:c8:82:8c:9b:8f: ed:88:05:1e:9d:cc:7f:ec:6e:f9:9d:26:f6:66:0e: 0e:f3:62:bf:43:45:3b:df:27:e3:f2:2c:29:d0:af: 05:a5:9d:67:0e:dd:74:d9:89:3e:4d:b4:6f:f3:25: 3b:8c:d9:fc:4c:3d:b1:4d:ac:c5:76:28:41:63:77: f9:5e:58:02:60:cf:32:a4:ce:6d:86:1b:54:dc:a0: 45:ea:13:ed:a1:62:29:8d:9c:fb:ee:df:5b:94:5c: 44:d1:33:98:08:d9:16:40:f3:b8:92:82:74:a4:80: c4:92:bb:b8:81:32:b9:57:53:e6:c0:f2:c2:d6:f8: f6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8B:9C:C4:06:F1:C2:47:14:F1:2E:01:34:F2:BC:74:1E:84:E8:0C X509v3 Authority Key Identifier: keyid:AF:BA:A1:51:6E:9E:17:F2:4C:F9:14:5B:8C:7C:D4:BA:81:A5:7A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/r7qhUW6eF_JM-RRbjHzUuoGlekA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7qhUW6eF_JM-RRbjHzUuoGlekA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568A0/B2068CF88E2811F09C2A6B49C4F9AE02/1D0A29A68E2911F08D963C69C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.182.173.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:b6:e0:20:fc:43:44:66:91:5b:91:f9:ec:c1:f2:c2:53:c9: 1b:c2:97:ae:98:55:e6:e1:15:00:9b:1a:d3:f9:c3:69:90:90: 04:07:ae:33:1f:d8:8f:73:c0:0d:2a:26:0d:2f:9c:af:8c:f3: a2:e0:32:41:94:77:e3:49:85:06:74:9a:4e:45:7a:e5:a7:c7: 7b:14:87:10:46:1d:5a:f9:8c:15:6f:0e:f0:03:79:10:e7:66: a3:80:b7:0c:45:e7:ce:2e:7b:0a:0a:8d:23:f4:13:6a:dd:07: 94:a9:81:8f:a8:a9:b5:bc:db:01:51:dc:fa:1b:1f:54:a4:13: f7:5a:e1:b5:0c:9f:bc:e8:2e:5c:7e:04:5b:36:2c:72:98:79: 46:ce:88:af:58:1f:15:32:85:8c:3b:cb:02:7f:bb:84:b3:19: b8:6c:ff:f6:ff:cf:94:c9:4c:f0:26:d0:e3:02:46:89:41:26: 2a:fe:9c:d5:d5:8c:b3:0f:c4:1d:37:e4:28:50:98:5b:f4:61: 1e:92:bc:0c:3a:04:d4:13:49:df:31:d1:08:57:19:62:b7:f4: 8b:83:bf:63:d8:a6:91:df:25:3a:17:85:9b:e3:40:a7:32:87: b0:88:59:6c:a8:53:f3:c0:6c:72:51:fb:51:64:fc:49:1c:1b: 63:cd:60:e1 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjhBMDExMC8GA1UEBRMoQUZCQUExNTE2RTlFMTdGMjRDRjkxNDVCOEM3Q0Q0QkE4 MUE1N0E0MDAeFw0yNjAzMjUwNzQ1NDdaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzM5MmFiLTc3ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgvtKeprA+zW7hig8drpYJfIJZks3dmypS42Gj/r+l9ln5ff09xFLJtJLUsZB9 9A0D+1CUo1d9/b9psRMQRwkGacH89Lu4vJzIh/SCn4UaaibuLxdA5Jqz+Z1PN1CN daRp8YIMyGO44XPEcTds5aT5nJc4tvhOivGJq1xMKPX0VJrIgoybj+2IBR6dzH/s bvmdJvZmDg7zYr9DRTvfJ+PyLCnQrwWlnWcO3XTZiT5NtG/zJTuM2fxMPbFNrMV2 KEFjd/leWAJgzzKkzm2GG1TcoEXqE+2hYimNnPvu31uUXETRM5gI2RZA87iSgnSk gMSSu7iBMrlXU+bA8sLW+PbdAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUvoucxAbx wkcU8S4BNPK8dB6E6AwwHwYDVR0jBBgwFoAUr7qhUW6eF/JM+RRbjHzUuoGlekAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2OEEwL0IyMDY4Q0Y4OEUy ODExRjA5QzJBNkI0OUM0RjlBRTAyL3I3cWhVVzZlRl9KTS1SUmJqSHpVdW9HbGVr QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjdxaFVXNmVGX0pNLVJSYmpIelV1b0dsZWtBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjhBMC9CMjA2OENGODhFMjgxMUYwOUMyQTZCNDlDNEY5QUUwMi8xRDBBMjlBNjhF MjkxMUYwOEQ5NjNDNjlDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABntq0wDQYJKoZIhvcNAQELBQADggEBAJu24CD8Q0RmkVuR+ezB8sJT yRvCl66YVebhFQCbGtP5w2mQkAQHrjMf2I9zwA0qJg0vnK+M86LgMkGUd+NJhQZ0 mk5FeuWnx3sUhxBGHVr5jBVvDvADeRDnZqOAtwxF584uewoKjSP0E2rdB5SpgY+o qbW82wFR3PobH1SkE/da4bUMn7zoLlx+BFs2LHKYeUbOiK9YHxUyhYw7ywJ/u4Sz Gbhs//b/z5TJTPAm0OMCRolBJir+nNXVjLMPxB035ChQmFv0YR6SvAw6BNQTSd8x 0QhXGWK39IuDv2PYppHfJToXhZvjQKcyh7CIWWyoU/PAbHJR+1Fk/EkcG2PNYOE= -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:05 2026 by rpki-client