$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa File: 8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa (raw, json) Hash identifier: d4ncv5a3TLvDOREFJsDkKtxP2XasPd2Zn6xBOqjOcLE= Subject key identifier: C3:57:D3:26:5A:9F:05:05:36:21:1E:41:7D:A3:F6:35:8A:41:F4:D7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5F1D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:21:07 +0000 ROA not before: Thu 28 Aug 2025 14:57:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63741 IP address blocks: 103.51.120.0/23 maxlen: 24 103.216.72.0/22 maxlen: 24 103.245.244.0/22 maxlen: 24 163.227.120.0/24 maxlen: 24 163.227.121.0/24 maxlen: 24 163.227.228.0/23 maxlen: 24 203.167.8.0/22 maxlen: 24 2001:df5:66c0::/48 maxlen: 48 2001:df5:7c40::/48 maxlen: 48 2404:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24349 (0x5f1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d53-165a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:ce:6a:65:71:94:43:76:3e:68:95:14:5a: 69:59:8f:b3:17:ea:a5:3a:ba:15:b0:65:06:86:f5: f2:ed:5d:f2:82:4f:a6:84:37:9d:1a:b2:45:b0:a5: d4:bf:57:a4:7f:01:df:37:ce:10:c8:86:ec:48:97: 00:4b:c9:0d:9d:18:89:3b:54:7a:31:49:0c:a2:73: d0:9c:2d:ef:a8:91:94:31:61:8a:b9:49:ce:8a:c3: 93:9a:b8:a6:7d:63:ca:23:21:f9:17:05:e9:9a:fa: b7:75:08:cf:bc:f9:c0:4c:f3:80:a3:67:3c:67:d1: 88:3c:0e:33:bc:b9:d8:4e:1e:84:54:8c:5d:c4:55: 31:eb:02:da:bc:21:9e:43:7e:18:cf:ff:68:a2:64: 5a:84:03:d9:7a:38:a6:ed:b1:f7:e8:72:a5:83:b6: 24:41:a3:68:4d:2a:19:37:57:e2:1b:d9:a2:e8:f7: 8b:3e:ac:66:a6:a8:17:33:fc:c0:74:18:35:64:d5: 4d:5b:55:aa:e5:01:84:c2:69:a2:33:d4:b4:e5:be: c9:ba:25:7c:3a:80:a4:4f:cb:9c:ca:92:dc:af:d8: d3:5b:ee:1d:0d:d9:88:a8:b1:ca:56:1f:57:3b:db: 39:a9:76:cd:ea:38:d7:44:c4:c4:33:82:68:46:94: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:57:D3:26:5A:9F:05:05:36:21:1E:41:7D:A3:F6:35:8A:41:F4:D7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.51.120.0/23 103.216.72.0/22 103.245.244.0/22 163.227.120.0/23 163.227.228.0/23 203.167.8.0/22 IPv6: 2001:df5:66c0::/48 2001:df5:7c40::/48 2404:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 9f:e1:52:bd:1f:3e:9f:12:09:60:15:e6:fb:54:37:6e:13:44: 9d:0f:9f:3d:c2:8c:a2:58:2c:73:9c:b0:72:e8:53:73:d9:61: d0:c6:97:28:92:f2:24:d9:5c:e4:29:c6:b6:ce:10:d3:c3:f8: 89:9c:73:d5:18:6d:5c:96:28:f0:92:ad:04:e5:97:df:5e:6f: e4:ab:a7:6e:31:bd:01:7c:44:59:9f:48:9c:48:69:2c:81:5a: ca:6e:97:b1:6b:d9:be:11:f9:ae:bf:83:a5:07:6a:ce:f6:5e: fc:a2:f3:1d:3b:cb:9c:bf:23:ba:8b:89:9b:29:0c:51:24:0e: 64:3b:57:08:e8:3b:e9:19:72:b6:ee:5e:5d:5b:bb:da:7f:18: 23:cb:e5:76:e1:02:19:d5:ab:25:52:12:b0:85:ec:c1:eb:81: f8:f1:ef:96:d2:e3:a6:c0:e7:ec:35:25:28:5d:ba:e2:16:1c: 0f:aa:bf:da:9b:a1:4f:05:4c:d2:89:d8:7f:12:77:0f:5d:1c: 28:f3:83:ef:ba:50:20:d5:e3:32:ed:fc:92:85:39:75:67:a2: 71:39:6f:a7:25:aa:a8:c0:99:f2:d1:c6:d7:87:56:72:d9:80: 5f:1d:d7:e4:c0:7e:27:4a:be:a8:0c:a7:13:30:4b:db:dd:e9: ab:d6:b0:54 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICXx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQ1My0xNjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxHOamVxlEN2PmiVFFppWY+zF+qlOroVsGUGhvXy7V3ygk+mhDedGrJFsKXU v1ekfwHfN84QyIbsSJcAS8kNnRiJO1R6MUkMonPQnC3vqJGUMWGKuUnOisOTmrim fWPKIyH5FwXpmvq3dQjPvPnATPOAo2c8Z9GIPA4zvLnYTh6EVIxdxFUx6wLavCGe Q34Yz/9oomRahAPZejim7bH36HKlg7YkQaNoTSoZN1fiG9mi6PeLPqxmpqgXM/zA dBg1ZNVNW1Wq5QGEwmmiM9S05b7JuiV8OoCkT8ucypLcr9jTW+4dDdmIqLHKVh9X O9s5qXbN6jjXRMTEM4JoRpSCowIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMNX0yZa nwUFNiEeQX2j9jWKQfTXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEFFQThEM0NE RkZDMTFFQ0FFN0NFNjMxQzRGOUFFMDIucm9hMGAGCCsGAQUFBwEHAQH/BFEwTzAq BAIAATAkAwQBZzN4AwQCZ9hIAwQCZ/X0AwQBo+N4AwQBo+PkAwQCy6cIMCEEAgAC MBsDBwAgAQ31ZsADBwAgAQ31fEADBwAkBO6AAAAwDQYJKoZIhvcNAQELBQADggEB AJ/hUr0fPp8SCWAV5vtUN24TRJ0Pnz3CjKJYLHOcsHLoU3PZYdDGlyiS8iTZXOQp xrbOENPD+Imcc9UYbVyWKPCSrQTll99eb+Srp24xvQF8RFmfSJxIaSyBWspul7Fr 2b4R+a6/g6UHas72Xvyi8x07y5y/I7qLiZspDFEkDmQ7VwjoO+kZcrbuXl1bu9p/ GCPL5XbhAhnVqyVSErCF7MHrgfjx75bS46bA5+w1JShduuIWHA+qv9qboU8FTNKJ 2H8Sdw9dHCjzg++6UCDV4zLt/JKFOXVnonE5b6clqqjAmfLRxteHVnLZgF8d1+TA fidKvqgMpxMwS9vd6avWsFQ= -----END CERTIFICATE-----Generated at Thu Mar 26 07:14:12 2026 by rpki-client