$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa File: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (raw, json) Hash identifier: wS6WujKS1RlUSlM65oSTLz34uOnLb4N0Cqn3TGYDt4w= Subject key identifier: 5A:85:34:C8:EF:4D:81:4B:03:5F:6A:10:82:33:13:74:8E:E4:F2:BB Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A8B Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:12:14 +0000 ROA not before: Sun 06 Apr 2025 20:00:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139009 IP address blocks: 103.150.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Apr 6 20:00:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58cad-e0da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:67:68:26:48:f6:10:ad:a8:de:a2:b6:50:6f: 4c:77:f5:1f:e1:22:de:37:78:a9:ec:ca:1c:ae:ca: a9:3a:ae:d1:0d:24:e7:5b:62:0e:d6:a3:1b:5e:34: b5:87:5e:5f:aa:9a:97:b3:62:a5:57:39:2d:65:d2: 44:64:34:f7:5f:9a:07:c7:d0:c3:7a:ce:6e:db:75: 1f:96:a1:1c:11:57:f9:4b:db:57:d3:4c:66:6d:b5: 27:16:c0:e4:1f:71:73:f5:a3:01:c3:e6:3e:11:10: 7b:10:d9:83:3e:38:11:5e:90:3c:88:df:dc:bd:52: ec:56:1a:f7:73:43:19:28:66:4c:e0:d7:e6:16:c9: d5:79:23:8e:17:e8:81:e1:dd:e5:cc:76:4a:55:7a: 92:b8:be:02:ac:b9:78:85:29:2e:f4:e8:ee:63:ee: 48:39:91:e2:92:a5:85:8e:aa:1d:98:47:f8:1b:78: ac:6c:f7:a3:78:b5:b5:e7:61:b1:c8:7e:ee:1f:1b: 10:0e:d1:ac:2b:35:3c:37:68:ca:82:a8:9d:b6:e1: 66:e5:d9:4e:79:e7:5e:43:6d:b6:1a:c7:29:d2:1b: 46:95:ed:71:44:96:75:ac:66:fe:46:db:ff:6b:e9: 25:36:6c:ef:3b:cd:9a:17:2a:bb:c4:20:07:25:85: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:85:34:C8:EF:4D:81:4B:03:5F:6A:10:82:33:13:74:8E:E4:F2:BB X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/5A3B7CECDDBC11EC8378E737C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.64.0/24 Signature Algorithm: sha256WithRSAEncryption 33:45:d6:ab:ba:65:f0:c4:94:03:7e:8b:22:c1:97:dd:92:be: e0:f0:33:89:9b:cf:62:1f:07:f0:6c:41:77:65:10:7d:ca:2c: dd:35:6e:d3:7d:9c:2b:e2:65:bc:22:b9:2c:ac:6c:27:18:56: 5c:1d:26:31:fe:87:3b:b5:19:83:4d:85:b6:ce:88:c7:6d:45: 7b:85:6f:69:0b:ea:6a:8f:82:ee:50:b8:0c:7a:d0:3a:92:5b: f1:8c:6b:68:4f:f9:36:d9:60:e9:20:9b:98:a4:2b:25:67:9f: 66:95:88:38:c1:d2:a4:64:ed:dc:86:a2:d4:e0:d7:5e:ae:3c: 2e:4c:53:21:6e:54:93:a2:1e:5e:d5:74:43:ae:d6:64:0e:b7: b4:5d:ef:c7:57:36:fd:8f:c1:b5:ee:8f:72:8c:cf:d9:5c:2f: bf:be:eb:3f:da:67:c3:be:e0:4a:f0:54:2a:a0:9f:9f:b2:71: dd:f9:e7:eb:1c:4b:8e:8f:0b:82:d0:e1:d9:4d:84:be:51:52: 81:e8:84:66:96:df:a3:b7:63:9f:8e:8c:aa:76:62:73:06:68: 28:48:de:a6:a9:44:a4:98:40:e9:e8:9a:c7:23:d4:79:26:9d: 2a:d2:5f:46:f2:19:43:a9:60:20:9f:1c:25:da:dc:36:d2:7b: 60:a0:7b:1f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNDA2MjAwMDE0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGNhZC1lMGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWdoJkj2EK2o3qK2UG9Md/Uf4SLeN3ip7MocrsqpOq7RDSTnW2IO1qMbXjS1 h15fqpqXs2KlVzktZdJEZDT3X5oHx9DDes5u23UflqEcEVf5S9tX00xmbbUnFsDk H3Fz9aMBw+Y+ERB7ENmDPjgRXpA8iN/cvVLsVhr3c0MZKGZM4NfmFsnVeSOOF+iB 4d3lzHZKVXqSuL4CrLl4hSku9OjuY+5IOZHikqWFjqodmEf4G3isbPejeLW152Gx yH7uHxsQDtGsKzU8N2jKgqidtuFm5dlOeedeQ222Gscp0htGle1xRJZ1rGb+Rtv/ a+klNmzvO82aFyq7xCAHJYVlvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFqFNMjv TYFLA19qEIIzE3SO5PK7MB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCQ0QvNjFEMEM0ODY3QTNBMTFFQUJGOEI1ODI2QzRGOUFFMDIvNUEzQjdDRUNE REJDMTFFQzgzNzhFNzM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5ZAMA0GCSqGSIb3DQEBCwUAA4IBAQAzRdarumXwxJQDfosiwZfd kr7g8DOJm89iHwfwbEF3ZRB9yizdNW7TfZwr4mW8IrksrGwnGFZcHSYx/oc7tRmD TYW2zojHbUV7hW9pC+pqj4LuULgMetA6klvxjGtoT/k22WDpIJuYpCslZ59mlYg4 wdKkZO3chqLU4NderjwuTFMhblSToh5e1XRDrtZkDre0Xe/HVzb9j8G17o9yjM/Z XC+/vus/2mfDvuBK8FQqoJ+fsnHd+efrHEuOjwuC0OHZTYS+UVKB6IRmlt+jt2Of joyqdmJzBmgoSN6mqUSkmEDp6JrHI9R5Jp0q0l9G8hlDqWAgnxwl2tw20ntgoHsf -----END CERTIFICATE-----Generated at Thu Mar 26 09:55:21 2026 by rpki-client