$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa File: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (raw, json) Hash identifier: ZS5cuNMtd6yQQN38E7lp5FQ2jmo2L2QBDwPjFbM0irs= Subject key identifier: 76:B2:56:70:8D:9C:40:5E:DD:14:80:38:27:21:20:F4:F7:98:4E:A9 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 0315 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:53:09 +0000 ROA not before: Fri 09 Jan 2026 01:20:25 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133189 IP address blocks: 103.87.218.0/23 maxlen: 23 103.226.8.0/23 maxlen: 23 2401:3ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Jan 9 01:20:25 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a436b5-4de9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:11:5e:d9:97:a5:98:65:6f:32:ce:93:38: e3:a6:a6:9d:75:87:8b:53:0c:8c:21:c5:93:b3:7d: c1:3c:de:67:cd:7c:6e:92:b5:42:10:04:0c:64:39: 3b:5e:89:c2:4a:a3:82:3e:a1:86:bd:a5:db:51:02: 97:ff:16:ff:30:3b:81:3f:64:65:45:7e:54:8a:41: 1a:68:19:e1:17:13:1f:67:c4:ed:66:05:0e:cc:99: c0:f9:ad:5d:29:8d:67:d7:e3:42:93:9b:e4:c3:80: 74:95:ec:76:46:21:a3:4e:11:8d:8a:75:da:4a:79: 7d:18:5d:64:36:2d:47:79:32:f0:09:46:fc:4b:a9: d6:be:4f:70:14:5f:4d:0e:35:92:92:af:71:81:3d: bb:bb:f7:46:f8:bb:f3:31:74:94:5e:34:43:1c:6d: 49:c3:5d:f7:19:c2:84:f7:22:36:57:0a:d0:cc:d1: f8:b1:ed:90:9e:9b:77:3d:64:2a:4e:74:35:bb:17: ce:ca:ae:7f:99:f3:51:68:92:cd:6a:39:8f:c5:2d: 39:3c:e5:51:95:b3:25:53:27:e7:ba:49:d8:1a:d7: 8b:43:6a:47:61:48:39:97:a2:24:cc:b2:41:72:11: 01:94:20:92:08:54:f3:2e:1c:59:1e:b7:02:45:1d: 44:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B2:56:70:8D:9C:40:5E:DD:14:80:38:27:21:20:F4:F7:98:4E:A9 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.87.218.0/23 103.226.8.0/23 IPv6: 2401:3ac0::/32 Signature Algorithm: sha256WithRSAEncryption 76:48:2c:8a:de:5c:1f:fb:5a:b0:49:82:b6:5c:2f:1c:f5:b9: 67:69:12:b1:00:dd:41:0b:83:9e:ba:cc:50:9d:67:77:5a:78: b2:5f:04:b4:5e:e5:b5:fd:cb:7d:c9:76:bb:f7:85:8a:56:41: ea:76:06:ee:8f:65:cd:7f:92:ff:df:b1:d7:63:54:20:ba:b7: f7:f9:05:d1:ed:9c:a5:b6:cb:78:5a:2a:d5:54:75:e0:49:1b: db:1a:ce:29:cb:cc:1a:43:11:bf:58:f8:19:c6:99:93:4e:03: 61:ba:09:33:ae:f2:0a:2f:e2:3c:d8:01:43:3a:c5:68:6f:bd: 48:14:1b:cb:a7:10:d4:c1:b7:45:38:d4:91:fc:3f:38:57:3a: c4:c1:46:d2:84:2f:18:5e:10:fd:4c:74:7c:62:2f:06:8e:a1: c6:08:21:90:4b:13:32:b9:81:56:8c:ec:87:84:1a:25:20:9e: 5f:12:09:78:06:5b:d7:99:e1:d8:67:81:db:36:f2:ad:f2:05: 82:6b:b5:e2:bf:75:c4:79:fe:71:d3:a0:4f:9b:76:20:06:03: 31:4f:39:0c:42:f3:09:c5:5c:85:69:2b:56:38:2a:e0:9c:1f: e7:5c:20:7e:ee:d2:82:19:0f:49:22:4e:79:52:7f:0b:df:c9: c3:a7:5f:d3 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjYwMTA5MDEyMDI1WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzZiNS00ZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoARXtmXpZhlbzLOkzjjpqaddYeLUwyMIcWTs33BPN5nzXxukrVCEAQMZDk7 XonCSqOCPqGGvaXbUQKX/xb/MDuBP2RlRX5UikEaaBnhFxMfZ8TtZgUOzJnA+a1d KY1n1+NCk5vkw4B0lex2RiGjThGNinXaSnl9GF1kNi1HeTLwCUb8S6nWvk9wFF9N DjWSkq9xgT27u/dG+LvzMXSUXjRDHG1Jw133GcKE9yI2VwrQzNH4se2Qnpt3PWQq TnQ1uxfOyq5/mfNRaJLNajmPxS05POVRlbMlUyfnuknYGteLQ2pHYUg5l6IkzLJB chEBlCCSCFTzLhxZHrcCRR1E7wIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFHayVnCN nEBe3RSAOCchIPT3mE6pMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcwQjcvQTUyNjRFRTAwQkREMTFFRDlBQjlFQzJCQzRGOUFFMDIvMjg0MUEwQ0Uw QkUxMTFFRDlFM0FBMTM1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ1faAwQBZ+IIMA0EAgACMAcDBQAkATrAMA0GCSqGSIb3DQEBCwUA A4IBAQB2SCyK3lwf+1qwSYK2XC8c9blnaRKxAN1BC4OeusxQnWd3WniyXwS0XuW1 /ct9yXa794WKVkHqdgbuj2XNf5L/37HXY1Qgurf3+QXR7Zyltst4WirVVHXgSRvb Gs4py8waQxG/WPgZxpmTTgNhugkzrvIKL+I82AFDOsVob71IFBvLpxDUwbdFONSR /D84VzrEwUbShC8YXhD9THR8Yi8GjqHGCCGQSxMyuYFWjOyHhBolIJ5fEgl4BlvX meHYZ4HbNvKt8gWCa7Xiv3XEef5x06BPm3YgBgMxTzkMQvMJxVyFaStWOCrgnB/n XCB+7tKCGQ9JIk55Un8L38nDp1/T -----END CERTIFICATE-----Generated at Sat Mar 28 12:11:11 2026 by rpki-client