$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/33B3C60425FD11EDA4097785C4F9AE02.roa File: 33B3C60425FD11EDA4097785C4F9AE02.roa (raw, json) Hash identifier: LePw4oHq3VvyRQRlYtEqQW4K8VJQ5Ypp/eZ7/7VVj38= Subject key identifier: B1:6F:81:4B:3D:5D:49:70:EB:56:03:C5:38:E0:28:F5:F9:90:08:D1 Certificate issuer: /CN=A91B0D39/serialNumber=97388EFC45D496EEEEAE94847DA60ACCE5D117F9 Certificate serial: 0680 Authority key identifier: 97:38:8E:FC:45:D4:96:EE:EE:AE:94:84:7D:A6:0A:CC:E5:D1:17:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/33B3C60425FD11EDA4097785C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:36:02 +0000 ROA not before: Tue 22 Apr 2025 12:53:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38254 IP address blocks: 103.167.250.0/24 maxlen: 24 103.167.251.0/24 maxlen: 24 2001:df6:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.crl rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0D39, serialNumber=97388EFC45D496EEEEAE94847DA60ACCE5D117F9 Validity Not Before: Apr 22 12:53:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58431-4923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bc:ff:41:a0:8c:7d:96:19:79:cd:6b:ec:05: 37:cf:c0:b6:44:9e:5c:4e:2b:c7:3d:5b:ab:fd:56: 10:16:79:2f:2f:b4:e7:d5:8c:93:bc:70:5c:1f:b4: 5d:7f:10:7d:24:2f:1d:a9:44:12:45:a3:d3:27:3b: 5f:25:56:34:52:6d:3a:0f:b6:72:2c:90:37:bf:51: 2e:ec:f6:d0:35:66:ad:12:2e:26:b2:97:b8:fb:1a: 0e:e8:54:c4:00:90:49:cb:ad:a4:66:56:c9:60:6c: 56:49:69:05:02:c7:3a:21:5f:98:44:54:cc:3d:a1: b0:8c:14:4c:e5:5b:09:ee:c8:66:1f:63:17:3c:94: 0d:89:30:ed:8e:a9:2c:4a:10:10:f7:c0:8a:cc:f5: b4:2a:3b:c4:75:aa:11:eb:9c:14:f7:7c:48:61:8d: 1d:b7:e8:64:f7:ee:39:19:40:59:43:ca:a3:5d:3d: ec:55:ed:62:33:e3:ef:96:49:09:e2:64:1e:8e:6f: a1:ae:d2:b0:f7:40:40:97:ac:c6:49:f0:3c:80:0e: 3b:85:33:56:fe:ba:5d:43:c1:9d:96:ad:94:ee:82: b1:d4:93:29:08:42:0c:e1:98:31:55:73:1c:29:f6: 89:f1:db:7e:22:8b:6d:fe:b7:cc:20:57:2a:88:7d: e1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6F:81:4B:3D:5D:49:70:EB:56:03:C5:38:E0:28:F5:F9:90:08:D1 X509v3 Authority Key Identifier: keyid:97:38:8E:FC:45:D4:96:EE:EE:AE:94:84:7D:A6:0A:CC:E5:D1:17:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/lziO_EXUlu7urpSEfaYKzOXRF_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lziO_EXUlu7urpSEfaYKzOXRF_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0D39/7F24FFD0C85811EBBE0EF834C4F9AE02/33B3C60425FD11EDA4097785C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.167.250.0/23 IPv6: 2001:df6:c480::/48 Signature Algorithm: sha256WithRSAEncryption 08:57:fc:8f:70:75:7d:24:7f:4a:05:a0:09:f5:01:51:b4:05: 66:9c:3f:9a:f3:65:53:ac:ae:6b:17:f5:4f:ef:09:a8:56:ad: 7f:25:54:4b:97:ad:f5:6d:24:44:7a:d4:7b:79:75:a4:e6:84: 13:20:5a:da:13:22:6a:08:a9:57:1d:c4:c3:f5:52:6e:58:50: 08:ef:ec:87:b7:fa:19:70:c3:a2:3c:ce:10:2e:f7:fc:88:dc: 18:af:b4:ff:c5:0d:70:9f:81:4e:6a:89:9c:7e:17:f9:03:9c: 4a:ec:42:54:87:8d:24:bf:8b:3a:a2:cb:9c:80:a6:55:d4:68: fe:a9:5e:db:41:79:25:bd:16:ad:18:5a:0a:f5:2d:45:f3:87: 6b:38:fc:45:e0:ea:47:ec:95:bc:c1:44:b6:3e:d3:65:f6:86: 9a:5f:de:aa:01:03:2f:97:03:6a:b9:5c:fa:da:bd:e4:62:6f: 1b:b9:3a:a5:45:19:b3:67:7c:1c:23:d5:ff:ed:bd:6a:f8:00: 32:7b:0b:bf:1c:07:99:84:7c:92:f7:d8:ef:3c:c4:f2:96:81: 69:f3:27:4d:ac:1b:96:fa:c9:c0:46:eb:4f:58:11:6b:79:7b: c4:f6:5e:df:06:0e:c9:32:ff:51:cc:5c:86:c2:10:97:18:fe: 7e:f4:30:79 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBEMzkxMTAvBgNVBAUTKDk3Mzg4RUZDNDVENDk2RUVFRUFFOTQ4NDdEQTYwQUND RTVEMTE3RjkwHhcNMjUwNDIyMTI1MzA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODQzMS00OTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLz/QaCMfZYZec1r7AU3z8C2RJ5cTivHPVur/VYQFnkvL7Tn1YyTvHBcH7Rd fxB9JC8dqUQSRaPTJztfJVY0Um06D7ZyLJA3v1Eu7PbQNWatEi4mspe4+xoO6FTE AJBJy62kZlbJYGxWSWkFAsc6IV+YRFTMPaGwjBRM5VsJ7shmH2MXPJQNiTDtjqks ShAQ98CKzPW0KjvEdaoR65wU93xIYY0dt+hk9+45GUBZQ8qjXT3sVe1iM+PvlkkJ 4mQejm+hrtKw90BAl6zGSfA8gA47hTNW/rpdQ8Gdlq2U7oKx1JMpCEIM4ZgxVXMc KfaJ8dt+Iott/rfMIFcqiH3hOQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLFvgUs9 XUlw61YDxTjgKPX5kAjRMB8GA1UdIwQYMBaAFJc4jvxF1Jbu7q6UhH2mCszl0Rf5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEQzOS83RjI0RkZEMEM4 NTgxMUVCQkUwRUY4MzRDNEY5QUUwMi9semlPX0VYVWx1N3VycFNFZmFZS3pPWFJG X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6aU9fRVhVbHU3dXJwU0VmYVlLek9YUkZfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBEMzkvN0YyNEZGRDBDODU4MTFFQkJFMEVGODM0QzRGOUFFMDIvMzNCM0M2MDQy NUZEMTFFREE0MDk3Nzg1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6f6MA8EAgACMAkDBwAgAQ32xIAwDQYJKoZIhvcNAQELBQADggEB AAhX/I9wdX0kf0oFoAn1AVG0BWacP5rzZVOsrmsX9U/vCahWrX8lVEuXrfVtJER6 1Ht5daTmhBMgWtoTImoIqVcdxMP1Um5YUAjv7Ie3+hlww6I8zhAu9/yI3BivtP/F DXCfgU5qiZx+F/kDnErsQlSHjSS/izqiy5yAplXUaP6pXttBeSW9Fq0YWgr1LUXz h2s4/EXg6kfslbzBRLY+02X2hppf3qoBAy+XA2q5XPraveRibxu5OqVFGbNnfBwj 1f/tvWr4ADJ7C78cB5mEfJL32O88xPKWgWnzJ02sG5b6ycBG609YEWt5e8T2Xt8G Dsky/1HMXIbCEJcY/n70MHk= -----END CERTIFICATE-----Generated at Thu Mar 26 15:57:53 2026 by rpki-client