$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa File: C33EB0EC7C4211EB933D233EC4F9AE02.roa (raw, json) Hash identifier: WROApDsBqYFj1tmEilpH4EMP+4m9uNYaD0No6ZndRwQ= Subject key identifier: F2:6A:56:F5:BC:92:89:15:96:6A:0F:2B:AA:E9:12:79:8F:E3:16:64 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 08EC Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:14 +0000 ROA not before: Thu 22 May 2025 20:57:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139039 IP address blocks: 103.138.212.0/23 maxlen: 23 103.138.212.0/24 maxlen: 24 103.138.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 22 20:57:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42f3a-be6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:a2:c9:df:9c:74:56:a2:0d:2c:b2:b6:dd:dc: e1:07:5b:96:24:ec:16:0a:0b:28:a3:50:ad:55:49: eb:b0:19:d0:73:c2:85:24:a1:f4:2e:43:62:e2:da: 01:96:71:0f:6b:56:05:c2:be:70:18:a1:4c:20:f2: 32:59:87:6d:f7:ca:97:34:37:d4:c1:71:5f:59:82: 1c:5f:5d:d1:04:42:68:df:40:54:ac:59:ba:b7:eb: 64:cb:3a:d0:3f:c3:0c:56:59:c1:76:f1:e8:0a:91: d1:c7:7d:ef:b3:30:cf:ca:15:1f:09:33:58:a6:7d: 76:99:27:9b:95:e7:8b:26:2c:7a:03:42:d8:0b:19: d3:f8:2d:2c:48:be:25:69:84:e1:14:34:0a:66:c7: 9f:9d:e4:cf:77:3f:f7:9e:92:72:10:8b:81:1b:3e: f5:b2:82:7c:33:10:a7:5c:b0:3b:36:00:da:7f:70: f8:3c:ac:76:07:1f:73:40:e6:c6:61:c5:b1:b6:f6: 2a:7f:ac:d8:8d:08:8b:65:1f:8f:76:50:53:a2:94: 6b:c5:7e:0d:05:c7:11:f7:6c:3d:05:58:87:b0:dc: 7f:25:4f:df:99:9f:e3:81:ea:a2:8b:79:7d:a1:0b: c5:6f:2d:42:04:dd:ef:42:4a:f9:ce:7f:79:b0:74: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6A:56:F5:BC:92:89:15:96:6A:0F:2B:AA:E9:12:79:8F:E3:16:64 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/C33EB0EC7C4211EB933D233EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.212.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:ab:f6:79:8f:94:bb:11:fe:0c:b6:2a:fa:dd:1e:f6:d5:77: ca:17:dd:b0:fc:2d:19:33:49:ae:07:ed:4c:32:e1:fc:c7:27: e6:67:72:61:7c:49:8b:de:72:ee:ad:ef:dc:64:c8:76:4b:cd: 0d:73:f9:6f:da:36:10:c4:b4:08:f7:15:71:e7:05:6b:86:57: a8:fc:0e:63:da:da:67:e7:12:b7:c9:8c:ba:a9:6b:7c:32:1b: ae:8f:f2:4a:4f:cf:4a:45:78:c3:6f:ae:92:72:49:2f:ec:d2: 86:11:47:b7:1e:94:04:50:d2:e4:ae:f9:de:94:c0:ec:1e:1d: d0:8a:7e:85:3c:41:7f:23:b7:49:5a:de:fd:ae:e5:ba:82:cc: 1a:55:d4:c2:d0:0f:8e:52:16:00:d9:19:7f:b6:6a:da:d2:d1: 01:1d:c9:c9:93:5c:6f:c6:16:53:0d:cc:cc:6e:9b:61:4e:7c: 06:75:e1:20:37:c0:0e:9d:b8:57:04:87:f3:06:84:51:f1:52: 69:39:0f:99:e9:a4:e0:df:fe:e8:08:b8:7f:63:cd:3f:ad:7e: 62:9e:52:32:83:33:30:1c:3f:a8:f5:bb:0f:0b:bc:b1:0b:3d: ed:1a:d9:d8:67:03:f7:35:4e:c1:7f:34:c2:df:c1:aa:36:74: ce:5b:8f:99 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNTIyMjA1NzU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmYzYS1iZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg6LJ35x0VqINLLK23dzhB1uWJOwWCgsoo1CtVUnrsBnQc8KFJKH0LkNi4toB lnEPa1YFwr5wGKFMIPIyWYdt98qXNDfUwXFfWYIcX13RBEJo30BUrFm6t+tkyzrQ P8MMVlnBdvHoCpHRx33vszDPyhUfCTNYpn12mSebleeLJix6A0LYCxnT+C0sSL4l aYThFDQKZsefneTPdz/3npJyEIuBGz71soJ8MxCnXLA7NgDaf3D4PKx2Bx9zQObG YcWxtvYqf6zYjQiLZR+PdlBTopRrxX4NBccR92w9BViHsNx/JU/fmZ/jgeqii3l9 oQvFby1CBN3vQkr5zn95sHQs8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPJqVvW8 kokVlmoPK6rpEnmP4xZkMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvQzMzRUIwRUM3 QzQyMTFFQjkzM0QyMzNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4rUMA0GCSqGSIb3DQEBCwUAA4IBAQAPq/Z5j5S7Ef4Mtir63R72 1XfKF92w/C0ZM0muB+1MMuH8xyfmZ3JhfEmL3nLure/cZMh2S80Nc/lv2jYQxLQI 9xVx5wVrhleo/A5j2tpn5xK3yYy6qWt8Mhuuj/JKT89KRXjDb66Sckkv7NKGEUe3 HpQEUNLkrvnelMDsHh3Qin6FPEF/I7dJWt79ruW6gswaVdTC0A+OUhYA2Rl/tmra 0tEBHcnJk1xvxhZTDczMbpthTnwGdeEgN8AOnbhXBIfzBoRR8VJpOQ+Z6aTg3/7o CLh/Y80/rX5inlIygzMwHD+o9bsPC7yxCz3tGtnYZwP3NU7BfzTC38GqNnTOW4+Z -----END CERTIFICATE-----Generated at Thu Mar 26 05:33:09 2026 by rpki-client