$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/B7ACB272A25611EFACD47A47C4F9AE02.roa File: B7ACB272A25611EFACD47A47C4F9AE02.roa (raw, json) Hash identifier: 7BcXlcd3LJPGSVAJ0cpsMaAQmbsNPhOb+ijpOwrVFzQ= Subject key identifier: 47:70:48:5B:D9:A0:E8:38:AE:B0:7F:4D:E3:D9:D1:20:E7:65:E0:6C Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0970 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/B7ACB272A25611EFACD47A47C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:32:50 +0000 ROA not before: Fri 22 Aug 2025 21:00:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133210 IP address blocks: 103.253.24.0/24 maxlen: 24 103.253.25.0/24 maxlen: 24 103.253.26.0/24 maxlen: 24 103.253.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1, serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Aug 22 21:00:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46a32-f5e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:18:0b:0c:a0:36:02:14:dd:4b:5c:e8:34:84: 77:e2:09:7f:84:9d:26:7a:df:55:69:f3:8c:0e:f1: 51:f3:2c:e2:0b:bf:63:36:4d:58:6e:8f:1f:f1:ea: e0:87:fc:b2:32:68:23:a4:cc:e7:3b:79:d4:4f:4f: d3:7f:e3:a5:09:80:94:5d:d2:82:7d:ed:6e:c8:03: c8:e5:14:5c:72:ee:ff:a0:90:f4:e1:76:aa:c1:95: e8:31:a7:ab:d0:7c:a1:1f:26:a4:2f:b5:f2:ac:b7: bc:fa:22:74:16:40:29:a9:01:d8:b2:44:57:60:11: c4:c7:db:94:b5:44:91:0e:66:8d:68:c1:1b:f6:be: 96:4b:71:16:50:36:d4:75:69:dd:16:11:e9:7e:b5: f6:06:1a:27:61:ae:79:b8:19:98:11:91:c6:3b:54: 57:bd:8c:41:d0:d5:6c:4f:5d:a3:d2:23:07:d6:20: fe:cf:4f:69:d7:f3:4e:82:84:9c:a9:40:fc:84:7d: 4b:1c:46:5d:74:f1:6f:97:35:f9:ea:8a:bd:1c:61: 8b:7c:34:3a:03:d8:6c:cb:cc:9a:13:b5:39:62:c2: 6b:28:d0:7d:9a:2a:8e:df:50:89:74:9f:36:9c:0c: 77:a7:00:cd:7d:01:bc:c2:94:6f:c8:f0:ed:8c:b9: a9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:70:48:5B:D9:A0:E8:38:AE:B0:7F:4D:E3:D9:D1:20:E7:65:E0:6C X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/B7ACB272A25611EFACD47A47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.253.24.0/22 Signature Algorithm: sha256WithRSAEncryption 82:4b:bc:32:7e:10:e2:9e:06:56:e4:cc:c3:99:34:23:1a:d6: 4d:ed:7d:83:c9:44:ba:81:0b:1c:6e:f7:93:2f:8a:ee:fb:8a: 74:bd:94:7e:9a:a0:c5:9e:19:42:19:21:5e:06:ca:0f:76:1a: d8:00:43:58:7c:f5:f0:4c:c5:c0:6a:7f:6d:16:4b:32:5b:2c: 78:2f:e6:c7:b0:f7:80:71:21:3b:b0:ec:fb:9b:72:4e:b9:e6: 12:c0:df:1f:e4:65:70:d0:4f:2b:38:2f:22:9b:35:34:c7:cf: c9:da:b7:39:3f:a0:a4:3e:e4:27:9d:44:6d:72:7a:5d:1f:31: b5:ea:58:f6:ee:c4:6b:75:20:e1:14:95:aa:05:61:3f:d8:5b: 5e:de:7c:59:a2:f2:45:ae:42:ce:a5:0c:a8:14:f2:ef:38:da: 58:84:05:7f:42:1b:67:04:2f:9f:23:c8:5c:af:6b:ae:00:da: 9c:b7:38:3d:7e:c5:b4:0b:84:8a:a0:d6:2f:70:cc:29:05:90: ea:59:b3:6d:7e:08:36:66:fc:25:e7:f1:32:a5:31:e3:18:f7: 17:c2:d1:bf:73:9b:67:2c:c1:34:7a:01:53:34:f8:2e:8b:f8: aa:88:38:7c:ee:e7:ed:36:c2:3f:40:34:25:82:e4:50:96:9c: d5:37:91:2f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjUwODIyMjEwMDM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmEzMi1mNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RgLDKA2AhTdS1zoNIR34gl/hJ0met9VafOMDvFR8yziC79jNk1Ybo8f8erg h/yyMmgjpMznO3nUT0/Tf+OlCYCUXdKCfe1uyAPI5RRccu7/oJD04XaqwZXoMaer 0HyhHyakL7XyrLe8+iJ0FkApqQHYskRXYBHEx9uUtUSRDmaNaMEb9r6WS3EWUDbU dWndFhHpfrX2BhonYa55uBmYEZHGO1RXvYxB0NVsT12j0iMH1iD+z09p1/NOgoSc qUD8hH1LHEZddPFvlzX56oq9HGGLfDQ6A9hsy8yaE7U5YsJrKNB9miqO31CJdJ82 nAx3pwDNfQG8wpRvyPDtjLmptQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEdwSFvZ oOg4rrB/TePZ0SDnZeBsMB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvQjdBQ0IyNzJB MjU2MTFFRkFDRDQ3QTQ3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/0YMA0GCSqGSIb3DQEBCwUAA4IBAQCCS7wyfhDingZW5MzDmTQj GtZN7X2DyUS6gQscbveTL4ru+4p0vZR+mqDFnhlCGSFeBsoPdhrYAENYfPXwTMXA an9tFksyWyx4L+bHsPeAcSE7sOz7m3JOueYSwN8f5GVw0E8rOC8imzU0x8/J2rc5 P6CkPuQnnURtcnpdHzG16lj27sRrdSDhFJWqBWE/2Fte3nxZovJFrkLOpQyoFPLv ONpYhAV/QhtnBC+fI8hcr2uuANqctzg9fsW0C4SKoNYvcMwpBZDqWbNtfgg2Zvwl 5/EypTHjGPcXwtG/c5tnLME0egFTNPgui/iqiDh87uftNsI/QDQlguRQlpzVN5Ev -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:58 2026 by rpki-client