$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa File: CB16EA82FB6411EF90E1E429C4F9AE02.roa (raw, json) Hash identifier: +R/5D0gNthuky+t+krzTmhszjCbndQciERoN4WBmNy4= Subject key identifier: 0D:1C:34:25:42:32:98:D3:A0:53:B8:4D:95:81:74:68:84:92:BF:F2 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: BC Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:50:05 +0000 ROA not before: Fri 09 May 2025 07:01:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135357 IP address blocks: 103.234.96.0/22 maxlen: 22 103.234.96.0/24 maxlen: 24 103.234.97.0/24 maxlen: 24 103.234.98.0/24 maxlen: 24 103.234.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: May 9 07:01:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5a39d-4493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:14:f9:96:a1:65:70:95:60:1f:9c:e6:3e: f7:0b:06:5e:76:ae:c8:0b:7f:04:13:ac:f7:53:49: 1c:c7:39:01:43:44:dc:60:1b:57:e5:f9:56:2b:96: 92:ca:cf:50:0f:b8:15:12:40:24:12:e4:82:b4:de: b6:85:2e:1f:07:d2:8e:4c:2b:25:53:ce:94:fe:0e: f8:60:6d:97:cb:46:62:0f:0f:9b:c3:93:43:50:68: 25:85:f2:0b:4c:98:0e:9f:0a:49:2d:0a:d1:02:b0: 90:89:85:f5:2a:c0:fb:e9:bf:9c:bb:aa:6c:5c:09: c2:ff:48:8b:97:2a:17:b2:5c:fb:70:6c:d7:f4:c5: 3d:04:9e:12:e9:05:ac:e5:ea:0f:55:b0:75:ad:bb: d8:e2:85:9a:d0:7d:b1:dd:d2:4f:6a:a0:13:c2:1b: 4e:e6:06:90:d6:7a:37:cd:84:7c:41:c8:4c:e9:ca: 77:0e:ac:22:70:7e:9a:ba:ce:f8:df:35:dd:11:14: 0d:0b:b7:42:c2:10:b9:10:28:b3:c2:d9:37:02:9e: 41:0e:90:6f:33:91:a4:1d:4f:a7:1f:90:45:4d:c3: 62:42:3b:ed:29:17:32:27:fd:7e:ae:03:ab:72:32: 2d:76:3a:19:b8:84:be:2c:4c:38:e1:f5:82:a0:8d: 24:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1C:34:25:42:32:98:D3:A0:53:B8:4D:95:81:74:68:84:92:BF:F2 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/CB16EA82FB6411EF90E1E429C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.96.0/22 Signature Algorithm: sha256WithRSAEncryption 47:e7:87:93:36:03:89:9e:7a:e0:b2:dd:82:d2:62:47:1a:30: 6a:ac:a8:15:e1:7d:a5:e0:c8:6f:66:db:47:40:22:10:7d:f6: d0:db:61:0a:33:33:b7:3b:9e:f5:21:b6:65:f6:75:3a:dc:8b: 66:ff:78:c9:55:8c:70:31:9a:fe:32:6d:95:77:7d:ce:4a:2a: 2d:52:e8:b1:b9:6a:b2:8f:cf:2a:0d:74:5e:64:e2:58:99:ec: cd:e8:1b:30:31:3b:42:83:19:7a:01:3c:cc:12:de:f3:ed:a6: fc:03:7f:a1:24:e9:90:87:49:1e:04:7b:34:5b:a6:6d:18:64: 50:05:8b:46:7d:68:78:31:3e:39:55:a4:c6:c5:53:4f:03:a8: 74:4c:40:77:60:ea:88:ec:b0:46:c0:53:80:a3:08:d2:05:0e: 64:63:b0:b4:73:34:d9:17:52:a8:fd:3e:35:1e:03:25:f6:59: 9c:be:04:32:86:47:38:ce:bb:38:62:68:70:55:4d:f8:e5:c5: 6a:dc:6b:48:8c:7f:60:79:a8:eb:8f:b8:44:4e:80:45:1e:6d: ca:e7:4d:d2:fa:e5:9e:4e:d0:ac:68:6a:e8:44:07:dd:9c:35: f3:51:22:92:87:a8:e0:cc:3a:6a:26:b1:45:5b:a5:1d:85:ff: 92:dd:76:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwNjYxMTAvBgNVBAUTKDFENEVDNDI1MzMxM0I2MkM0ODQ0OTE2Qjg1REMwRkZF NEIwN0Q1MDgwHhcNMjUwNTA5MDcwMTEyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTM5ZC00NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsYU+ZahZXCVYB+c5j73CwZedq7IC38EE6z3U0kcxzkBQ0TcYBtX5flWK5aS ys9QD7gVEkAkEuSCtN62hS4fB9KOTCslU86U/g74YG2Xy0ZiDw+bw5NDUGglhfIL TJgOnwpJLQrRArCQiYX1KsD76b+cu6psXAnC/0iLlyoXslz7cGzX9MU9BJ4S6QWs 5eoPVbB1rbvY4oWa0H2x3dJPaqATwhtO5gaQ1no3zYR8QchM6cp3DqwicH6aus74 3zXdERQNC7dCwhC5ECizwtk3Ap5BDpBvM5GkHU+nH5BFTcNiQjvtKRcyJ/1+rgOr cjItdjoZuIS+LEw44fWCoI0kewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA0cNCVC MpjToFO4TZWBdGiEkr/yMB8GA1UdIwQYMBaAFB1OxCUzE7YsSESRa4XcD/5LB9UI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjA2Ni82NDhBODgzMkZC NjQxMUVGQkM5QjM1MjlDNEY5QUUwMi9IVTdFSlRNVHRpeElSSkZyaGR3UF9rc0gx UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwNjYvNjQ4QTg4MzJGQjY0MTFFRkJDOUIzNTI5QzRGOUFFMDIvQ0IxNkVBODJG QjY0MTFFRjkwRTFFNDI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+pgMA0GCSqGSIb3DQEBCwUAA4IBAQBH54eTNgOJnnrgst2C0mJH GjBqrKgV4X2l4MhvZttHQCIQffbQ22EKMzO3O571IbZl9nU63Itm/3jJVYxwMZr+ Mm2Vd33OSiotUuixuWqyj88qDXReZOJYmezN6BswMTtCgxl6ATzMEt7z7ab8A3+h JOmQh0keBHs0W6ZtGGRQBYtGfWh4MT45VaTGxVNPA6h0TEB3YOqI7LBGwFOAowjS BQ5kY7C0czTZF1Ko/T41HgMl9lmcvgQyhkc4zrs4YmhwVU345cVq3GtIjH9geajr j7hEToBFHm3K503S+uWeTtCsaGroRAfdnDXzUSKSh6jgzDpqJrFFW6Udhf+S3XZk -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:03 2026 by rpki-client