$ rpki-client -vvf rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa File: 1C174EBCFC7011EE96142B1BC4F9AE02.roa (raw, json) Hash identifier: jcMfcvbTYBEvZvAM9l9pumxljJCtyzP7TzycGPDLmwI= Subject key identifier: 3E:59:2E:42:80:B9:CE:32:FE:44:90:18:65:EA:79:EE:DA:A3:E6:B1 Certificate issuer: /CN=A91878E2/serialNumber=0EDB4A37270BF494184A46E6023148FED6E33A1E Certificate serial: 0168 Authority key identifier: 0E:DB:4A:37:27:0B:F4:94:18:4A:46:E6:02:31:48:FE:D6:E3:3A:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:06:29 +0000 ROA not before: Mon 01 Dec 2025 03:30:59 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133393 IP address blocks: 103.217.96.0/24 maxlen: 24 103.217.97.0/24 maxlen: 24 103.238.194.0/24 maxlen: 24 103.253.116.0/24 maxlen: 24 139.5.120.0/24 maxlen: 24 139.5.121.0/24 maxlen: 24 139.5.122.0/24 maxlen: 24 139.5.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.crl rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878E2, serialNumber=0EDB4A37270BF494184A46E6023148FED6E33A1E Validity Not Before: Dec 1 03:30:59 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a59965-a656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:07:a4:82:19:a5:94:81:9c:45:6f:e0:c6: c5:c5:00:f4:a1:c6:97:a8:54:22:9f:7c:e1:be:71: df:e5:94:e3:a3:7d:c7:1d:5b:17:4f:9c:d0:8f:86: 4d:3b:db:f1:6d:83:89:15:db:92:3e:c9:76:fd:29: 82:e2:89:de:4a:88:54:1e:26:fe:22:ee:28:ba:a2: 46:22:fa:34:82:76:fa:7b:cb:ca:ef:f7:57:08:dc: 30:37:1c:50:12:21:e3:d1:f8:ef:90:30:74:04:3e: 06:99:84:8f:b4:a8:ed:50:a9:22:09:8b:81:a9:96: 4c:f9:b7:f0:e7:3e:c7:9b:2d:aa:db:3b:a8:1c:c4: 58:02:80:46:96:25:fc:86:ca:9a:52:ac:b2:5d:e1: 3d:23:2b:65:6e:54:a6:89:32:bf:57:b7:b6:87:41: 35:18:8f:f3:44:4b:0b:e2:b7:7b:0e:99:eb:3b:5b: 09:8e:49:49:79:64:29:d3:2e:74:4d:92:66:e9:61: 7b:0b:20:ee:97:35:55:6b:39:14:57:7f:a9:78:c4: e7:f9:d4:ea:c1:04:6f:7e:ca:e7:01:f8:29:dc:30: dd:75:54:1c:4e:65:fe:f1:c5:70:e7:1d:cc:db:88: 9c:70:2d:7e:6b:a4:4d:7c:ef:d7:40:f6:10:8a:3b: 59:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:59:2E:42:80:B9:CE:32:FE:44:90:18:65:EA:79:EE:DA:A3:E6:B1 X509v3 Authority Key Identifier: keyid:0E:DB:4A:37:27:0B:F4:94:18:4A:46:E6:02:31:48:FE:D6:E3:3A:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.217.96.0/23 103.238.194.0/24 103.253.116.0/24 139.5.120.0/22 Signature Algorithm: sha256WithRSAEncryption 52:31:1f:b6:98:3a:d3:66:a3:d1:26:f9:9b:26:38:50:bc:17: 8f:62:b5:8b:cf:66:3f:6a:03:2c:f2:7c:45:c8:28:92:43:f6: 3b:65:f9:07:3c:ae:d4:ab:e5:68:0c:9b:da:99:85:0e:4d:13: 2e:30:f3:25:2e:a1:80:13:72:8a:a0:29:4e:ae:eb:13:16:a1: 30:fe:8d:f2:e6:25:d2:c2:5e:fa:f5:bc:91:b0:14:9d:bb:b0: cf:21:12:43:df:aa:aa:3e:51:03:08:2b:0e:c8:90:9e:21:2b: 91:ce:63:cf:f7:19:b7:e6:77:7e:45:17:98:31:da:93:2c:85: bd:9a:fd:80:3c:6d:9c:f6:20:c5:8c:47:61:79:d3:e5:8b:11: 36:9d:67:8a:7c:36:7c:83:ee:6d:84:09:aa:ff:72:74:02:57: b9:13:78:a9:39:f9:59:fc:bd:22:76:77:ea:b8:f6:f0:2e:fb: 7a:61:af:10:c6:69:f2:a4:91:bb:21:59:3f:f9:75:38:67:c2: 11:4c:34:57:8a:b3:d8:7d:41:44:8d:f0:aa:91:ff:1f:47:d7: 75:0f:3a:66:3e:99:f3:8f:9c:2f:bf:c9:03:fe:e3:ea:48:f4: a9:40:77:28:c6:8b:5c:42:74:e7:01:20:da:24:cb:c2:46:b2: bf:e5:7a:0d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc4RTIxMTAvBgNVBAUTKDBFREI0QTM3MjcwQkY0OTQxODRBNDZFNjAyMzE0OEZF RDZFMzNBMUUwHhcNMjUxMjAxMDMzMDU5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTk2NS1hNjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm8HpIIZpZSBnEVv4MbFxQD0ocaXqFQin3zhvnHf5ZTjo33HHVsXT5zQj4ZN O9vxbYOJFduSPsl2/SmC4oneSohUHib+Iu4ouqJGIvo0gnb6e8vK7/dXCNwwNxxQ EiHj0fjvkDB0BD4GmYSPtKjtUKkiCYuBqZZM+bfw5z7Hmy2q2zuoHMRYAoBGliX8 hsqaUqyyXeE9IytlblSmiTK/V7e2h0E1GI/zREsL4rd7DpnrO1sJjklJeWQp0y50 TZJm6WF7CyDulzVVazkUV3+peMTn+dTqwQRvfsrnAfgp3DDddVQcTmX+8cVw5x3M 24iccC1+a6RNfO/XQPYQijtZEQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFD5ZLkKA uc4y/kSQGGXqee7ao+axMB8GA1UdIwQYMBaAFA7bSjcnC/SUGEpG5gIxSP7W4zoe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzhFMi9BRjMyMDgzRUZD NjgxMUVFOTk2MURENURDNEY5QUUwMi9EdHRLTnljTDlKUVlTa2JtQWpGSV90YmpP aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0dEtOeWNMOUpRWVNrYm1BakZJX3Riak9oNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc4RTIvQUYzMjA4M0VGQzY4MTFFRTk5NjFERDVEQzRGOUFFMDIvMUMxNzRFQkNG QzcwMTFFRTk2MTQyQjFCQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBZ9lgAwQAZ+7CAwQAZ/10AwQCiwV4MA0GCSqGSIb3DQEBCwUAA4IB AQBSMR+2mDrTZqPRJvmbJjhQvBePYrWLz2Y/agMs8nxFyCiSQ/Y7ZfkHPK7Uq+Vo DJvamYUOTRMuMPMlLqGAE3KKoClOrusTFqEw/o3y5iXSwl769byRsBSdu7DPIRJD 36qqPlEDCCsOyJCeISuRzmPP9xm35nd+RReYMdqTLIW9mv2APG2c9iDFjEdhedPl ixE2nWeKfDZ8g+5thAmq/3J0Ale5E3ipOflZ/L0idnfquPbwLvt6Ya8QxmnypJG7 IVk/+XU4Z8IRTDRXirPYfUFEjfCqkf8fR9d1DzpmPpnzj5wvv8kD/uPqSPSpQHco xotcQnTnASDaJMvCRrK/5XoN -----END CERTIFICATE-----Generated at Thu Mar 26 04:07:51 2026 by rpki-client