$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa File: 28BD1EFC3B4311EDAB5E6382C4F9AE02.roa (raw, json) Hash identifier: x/yz1V4NDuS6R8Q19YYrXkxZ59RztmqTLn+CKfG3QlQ= Subject key identifier: 5D:43:CD:18:16:3E:7C:B4:A4:07:3E:39:C9:DB:2F:28:3E:D8:B6:59 Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: 02C2 Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:40:05 +0000 ROA not before: Mon 13 Oct 2025 04:29:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140499 IP address blocks: 103.57.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0, serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Oct 13 04:29:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46be5-32db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:f9:d7:36:d3:8c:a1:13:93:02:3a:f6:d7: 01:f3:84:4b:2c:58:c2:da:f7:23:9c:19:34:72:ea: ed:97:19:07:d1:c6:4e:7b:22:9b:57:5e:db:4c:59: fb:4d:57:94:b2:ec:05:d5:26:4c:4d:bc:8c:87:21: ff:9a:dd:e1:14:aa:a2:fe:ee:18:49:b7:57:87:74: 3f:71:78:40:52:3c:9d:c9:10:06:a8:42:ea:71:ed: 78:cf:45:fe:80:fc:1f:73:58:1d:30:44:f8:40:f1: 05:7e:c1:d7:0f:5c:45:42:1f:f4:6e:f8:7a:37:70: 52:68:62:4b:2a:c0:58:c3:ab:c2:45:50:f2:29:33: fb:f9:f8:61:25:b4:21:c5:37:da:85:24:07:c5:7e: 36:af:73:c7:4e:9c:47:f9:39:24:6c:5a:99:f9:45: 74:2c:ad:d4:f7:56:10:0f:7a:cf:a7:52:15:62:c9: 0e:00:de:ae:55:9e:33:23:81:55:91:5f:95:d0:e0: fb:d6:13:59:69:9c:b5:f8:64:6b:6b:42:65:a2:13: 7c:f5:d1:94:88:7e:23:39:7a:80:c5:a1:05:cf:c9: 3f:25:58:de:4b:7a:6c:ad:0e:d1:df:40:c2:96:a2: 48:9c:8e:de:d4:22:af:9a:bf:b9:64:1b:57:92:a2: d8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:43:CD:18:16:3E:7C:B4:A4:07:3E:39:C9:DB:2F:28:3E:D8:B6:59 X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/28BD1EFC3B4311EDAB5E6382C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.57.225.0/24 Signature Algorithm: sha256WithRSAEncryption 60:4e:60:ef:84:fc:7b:37:d0:40:8f:b3:1e:eb:da:9b:33:0f: 35:50:1e:93:56:92:67:62:e7:48:f9:60:74:e2:e2:6e:41:d8: 2b:2d:79:02:e3:66:df:47:20:05:fb:07:15:4b:5e:d3:ee:37: dc:cb:17:bf:25:9d:16:9b:d9:e4:75:f0:13:3a:87:49:9f:37: 2e:c0:80:a0:e3:46:45:e5:00:49:38:1e:a8:fe:1c:fe:bd:70: 82:de:e6:6d:5e:9d:37:35:f7:ff:b2:a6:bf:54:e2:b4:71:cb: aa:64:28:41:06:c2:e6:ee:90:cc:54:17:86:c9:71:93:2f:4d: 41:f2:7f:eb:28:ad:86:a0:f4:0c:bd:26:21:8d:51:f2:e9:3b: bc:c1:37:63:13:c6:20:4f:4f:21:45:35:b0:83:0d:8c:b3:ab: d8:cb:9b:f7:7b:7a:36:3f:ac:33:58:3b:f6:be:1f:fd:5c:53: 5e:8e:b6:53:3c:de:6d:5a:72:52:ea:c1:85:74:cf:22:44:f1: 0a:90:40:44:23:86:74:28:aa:ff:f6:3a:56:4f:20:e6:2f:df: 93:d6:8a:35:e5:50:53:22:df:0f:b7:a0:0c:b3:14:ca:20:1c: 05:cf:84:d4:dd:ab:c9:90:78:34:3d:fc:cb:a9:8b:ab:f6:19: f4:08:10:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjUxMDEzMDQyOTI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJlNS0zMmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5X51zbTjKETkwI69tcB84RLLFjC2vcjnBk0curtlxkH0cZOeyKbV17bTFn7 TVeUsuwF1SZMTbyMhyH/mt3hFKqi/u4YSbdXh3Q/cXhAUjydyRAGqELqce14z0X+ gPwfc1gdMET4QPEFfsHXD1xFQh/0bvh6N3BSaGJLKsBYw6vCRVDyKTP7+fhhJbQh xTfahSQHxX42r3PHTpxH+TkkbFqZ+UV0LK3U91YQD3rPp1IVYskOAN6uVZ4zI4FV kV+V0OD71hNZaZy1+GRra0JlohN89dGUiH4jOXqAxaEFz8k/JVjeS3psrQ7R30DC lqJInI7e1CKvmr+5ZBtXkqLYHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF1DzRgW Pny0pAc+OcnbLyg+2LZZMB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RDAvQjg5RkEzQzYzMDMyMTFFRDlCREMwQTgzQzRGOUFFMDIvMjhCRDFFRkMz QjQzMTFFREFCNUU2MzgyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZznhMA0GCSqGSIb3DQEBCwUAA4IBAQBgTmDvhPx7N9BAj7Me69qb Mw81UB6TVpJnYudI+WB04uJuQdgrLXkC42bfRyAF+wcVS17T7jfcyxe/JZ0Wm9nk dfATOodJnzcuwICg40ZF5QBJOB6o/hz+vXCC3uZtXp03Nff/sqa/VOK0ccuqZChB BsLm7pDMVBeGyXGTL01B8n/rKK2GoPQMvSYhjVHy6Tu8wTdjE8YgT08hRTWwgw2M s6vYy5v3e3o2P6wzWDv2vh/9XFNejrZTPN5tWnJS6sGFdM8iRPEKkEBEI4Z0KKr/ 9jpWTyDmL9+T1oo15VBTIt8Pt6AMsxTKIBwFz4TU3avJkHg0PfzLqYur9hn0CBAU -----END CERTIFICATE-----Generated at Thu Mar 26 10:20:19 2026 by rpki-client