$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa File: 69482E56075411EFB23BE380C4F9AE02.roa (raw, json) Hash identifier: v0xqswgei3klkM48UKau+ZFSqGoqNY8ubfB94GPpoto= Subject key identifier: 8D:4A:FD:13:E7:5A:F8:2F:F8:3D:EF:64:D1:63:BC:E3:E9:F2:53:DD Certificate issuer: /CN=A91A5C43/serialNumber=ECDA73070CB6C7790DC60B869FBB0431D967DE4E Certificate serial: 0793 Authority key identifier: EC:DA:73:07:0C:B6:C7:79:0D:C6:0B:86:9F:BB:04:31:D9:67:DE:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:47:13 +0000 ROA not before: Wed 04 Feb 2026 21:18:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134507 IP address blocks: 103.231.204.0/22 maxlen: 23 103.231.204.0/24 maxlen: 24 103.231.205.0/24 maxlen: 24 103.231.206.0/24 maxlen: 24 103.231.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.crl rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5C43, serialNumber=ECDA73070CB6C7790DC60B869FBB0431D967DE4E Validity Not Before: Feb 4 21:18:36 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a5a2f1-7fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:59:e0:a6:6b:b0:0a:d3:73:16:9e:58:32:1c: a1:15:c3:a2:5c:53:f3:21:b0:91:40:80:10:a1:75: f7:08:0d:be:69:31:e3:d0:de:9b:23:8c:3a:52:33: ca:9b:68:fd:aa:d4:e4:fb:5a:66:f9:6f:3c:6d:34: 4e:e6:93:eb:9e:9d:82:5a:7b:30:4f:b2:f6:5e:13: 2e:e5:7f:58:72:f0:6d:ad:b0:54:a8:4a:6a:bf:0d: 2a:e4:e9:08:06:9b:e4:89:4a:74:d9:d4:62:5d:ac: 01:60:ec:30:28:0e:93:43:7b:3f:13:a4:20:6c:f7: 69:71:b4:ae:02:de:08:64:3d:da:fe:83:61:79:5c: c8:83:cb:80:81:94:67:b0:f4:f6:24:62:14:24:f4: 88:2d:57:5f:aa:52:60:52:ab:ba:56:7d:26:42:d0: 16:2f:c2:43:6c:2d:de:be:18:ea:ee:76:18:27:f4: 4f:76:87:09:2a:5b:23:8b:b0:8a:57:63:5b:78:b3: e2:af:74:fa:2b:7e:11:f5:b3:1f:e1:56:70:d1:b1: 63:e0:b0:e1:37:ee:14:0d:9b:f7:c9:9b:40:22:5e: 49:43:6f:09:45:64:79:c9:4b:74:8c:b1:8c:6e:12: d2:bc:d2:bf:dc:0a:db:5b:fc:28:1f:64:1b:4a:cf: 7c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4A:FD:13:E7:5A:F8:2F:F8:3D:EF:64:D1:63:BC:E3:E9:F2:53:DD X509v3 Authority Key Identifier: keyid:EC:DA:73:07:0C:B6:C7:79:0D:C6:0B:86:9F:BB:04:31:D9:67:DE:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.204.0/22 Signature Algorithm: sha256WithRSAEncryption 44:9e:96:f4:07:77:9c:1a:9c:5c:5c:60:b3:02:d0:80:de:ae: 1f:aa:b2:d3:3b:1c:5d:00:91:d8:e2:94:73:c7:36:85:18:2c: 5d:38:35:8a:67:67:31:23:8a:21:e0:a4:0e:93:60:2a:89:06: e9:3c:fb:7f:ed:25:18:c6:b8:8e:62:34:7e:21:27:ce:ce:af: a4:da:1b:a1:64:1a:67:7f:01:2f:4a:c4:8c:05:aa:fe:76:b0: 4b:96:86:13:1c:c9:c4:47:e0:0b:5e:5c:0d:51:41:3a:9e:24: 4b:44:09:16:da:d0:0c:c3:6e:e0:32:b7:69:85:06:f8:25:67: a6:18:ce:fe:b7:48:e4:44:80:75:db:84:78:cb:82:02:1b:62: d4:46:a9:94:ef:64:f5:6d:fa:91:2c:e4:8f:7c:45:11:62:8e: 6d:71:b1:2b:db:42:6e:55:6c:61:7f:e5:3f:d1:f6:f4:1c:b0: 81:ab:2f:2e:4f:e0:89:50:cc:37:d6:37:86:29:68:7d:81:5f: bc:fb:e4:19:a3:b8:90:dc:15:91:84:7b:21:f5:83:a5:4e:cb: b1:49:26:f7:9c:88:7e:51:c8:14:da:7f:99:33:3b:d4:9e:9b: 48:2c:94:cc:3b:38:73:b5:f4:11:5a:2e:ae:67:7b:97:eb:10: e5:63:f3:9f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDNDMxMTAvBgNVBAUTKEVDREE3MzA3MENCNkM3NzkwREM2MEI4NjlGQkIwNDMx RDk2N0RFNEUwHhcNMjYwMjA0MjExODM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTJmMS03ZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FngpmuwCtNzFp5YMhyhFcOiXFPzIbCRQIAQoXX3CA2+aTHj0N6bI4w6UjPK m2j9qtTk+1pm+W88bTRO5pPrnp2CWnswT7L2XhMu5X9YcvBtrbBUqEpqvw0q5OkI BpvkiUp02dRiXawBYOwwKA6TQ3s/E6QgbPdpcbSuAt4IZD3a/oNheVzIg8uAgZRn sPT2JGIUJPSILVdfqlJgUqu6Vn0mQtAWL8JDbC3evhjq7nYYJ/RPdocJKlsji7CK V2NbeLPir3T6K34R9bMf4VZw0bFj4LDhN+4UDZv3yZtAIl5JQ28JRWR5yUt0jLGM bhLSvNK/3ArbW/woH2QbSs988wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI1K/RPn Wvgv+D3vZNFjvOPp8lPdMB8GA1UdIwQYMBaAFOzacwcMtsd5DcYLhp+7BDHZZ95O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUM0My84OUUzNkU2QTRC MkMxMUVCOTExQkFENzBDNEY5QUUwMi83TnB6Qnd5Mngza054Z3VHbjdzRU1kbG4z azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdOcHpCd3kyeDNrTnhndUduN3NFTWRsbjNrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVDNDMvODlFMzZFNkE0QjJDMTFFQjkxMUJBRDcwQzRGOUFFMDIvNjk0ODJFNTYw NzU0MTFFRkIyM0JFMzgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+fMMA0GCSqGSIb3DQEBCwUAA4IBAQBEnpb0B3ecGpxcXGCzAtCA 3q4fqrLTOxxdAJHY4pRzxzaFGCxdODWKZ2cxI4oh4KQOk2AqiQbpPPt/7SUYxriO YjR+ISfOzq+k2huhZBpnfwEvSsSMBar+drBLloYTHMnER+ALXlwNUUE6niRLRAkW 2tAMw27gMrdphQb4JWemGM7+t0jkRIB124R4y4ICG2LURqmU72T1bfqRLOSPfEUR Yo5tcbEr20JuVWxhf+U/0fb0HLCBqy8uT+CJUMw31jeGKWh9gV+8++QZo7iQ3BWR hHsh9YOlTsuxSSb3nIh+UcgU2n+ZMzvUnptILJTMOzhztfQRWi6uZ3uX6xDlY/Of -----END CERTIFICATE-----Generated at Thu Mar 26 16:46:22 2026 by rpki-client