$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa File: 331C6A2C66DF11F0A3F38136C4F9AE02.roa (raw, json) Hash identifier: 6Tuhqih7MtNX+V8xW8es5+lA2hoxb2UyOp9OtMhPJ5s= Subject key identifier: 1B:F3:55:8B:50:25:12:EF:FD:E2:C5:9B:39:63:16:D0:7F:45:20:BB Certificate issuer: /CN=A91B9E19/serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Certificate serial: 0E7A Authority key identifier: 25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:47:55 +0000 ROA not before: Tue 22 Jul 2025 09:35:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 401276 IP address blocks: 103.88.94.0/24 maxlen: 24 220.158.194.0/24 maxlen: 24 220.158.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3706 (0xe7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9E19, serialNumber=255290A01AA9B9118B66EEDA0F905F6D40DB05AE Validity Not Before: Jul 22 09:35:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4438b-2de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b5:9f:27:8c:d2:e9:fb:62:2a:f9:ea:2b:ec: 56:7f:79:fd:9b:a7:37:4d:68:11:61:1e:68:61:73: e7:0a:6a:6f:e7:33:38:e8:b4:90:ee:3b:a7:45:01: 8a:a7:01:49:95:dd:d8:5f:f2:28:11:27:96:87:04: ed:91:2f:1c:a9:c4:be:d3:b1:94:15:8f:c0:8b:b3: d2:ad:61:de:8b:2d:82:d8:10:d9:cd:87:df:c5:00: 3f:42:6e:f2:67:59:34:80:6f:46:9c:b9:16:cc:8e: 8f:11:d0:79:10:1f:13:89:36:6d:ef:27:25:0e:c3: a8:ea:b9:49:15:d1:d2:3d:f0:18:9a:e2:b3:c3:0c: 29:4d:a4:b9:51:3f:b5:8f:0c:b1:43:be:62:27:81: 48:67:0f:48:24:de:dc:5f:97:a7:be:41:f3:d9:26: 1e:76:ee:86:bf:9e:00:ab:99:70:37:c1:d3:32:ee: af:b1:4b:46:b4:d3:62:8c:56:c0:a8:7b:3a:90:22: 14:d2:b8:44:b4:40:ef:f2:fa:0e:78:42:6f:63:ab: ac:9d:c3:16:a1:14:58:b3:0a:0c:b7:9e:e7:82:92: 2b:d7:90:bb:64:c2:24:41:d6:b5:13:a8:9b:70:f1: ba:b7:32:72:1c:4b:05:59:fe:44:d1:52:05:45:16: 01:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F3:55:8B:50:25:12:EF:FD:E2:C5:9B:39:63:16:D0:7F:45:20:BB X509v3 Authority Key Identifier: keyid:25:52:90:A0:1A:A9:B9:11:8B:66:EE:DA:0F:90:5F:6D:40:DB:05:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/JVKQoBqpuRGLZu7aD5BfbUDbBa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JVKQoBqpuRGLZu7aD5BfbUDbBa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9E19/356F2F3EC1A511E9A8B8F336C4F9AE02/331C6A2C66DF11F0A3F38136C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.94.0/24 220.158.194.0/23 Signature Algorithm: sha256WithRSAEncryption 46:98:ab:c9:08:df:61:0e:bc:b3:77:3e:e4:ee:55:18:34:5b: 4f:99:b1:e8:c3:75:8e:27:3c:6b:cc:5b:3a:0e:4a:53:e5:0c: fd:35:f2:fc:70:72:ad:9b:e4:04:1e:21:e5:43:22:d3:c6:d7: e7:d8:22:d4:3e:da:7f:7b:cd:26:16:0d:24:7e:60:56:77:4c: 61:e0:ad:71:e6:82:86:0d:07:11:7e:e4:08:62:9b:54:bf:c2: aa:69:a1:a2:c3:e6:a8:5a:50:6e:5d:67:75:6b:a9:a0:d2:02: f8:82:c1:28:3a:bd:d4:8e:fb:8e:5f:c4:b5:e2:09:cf:7a:cd: 27:6b:b4:18:83:47:98:3f:bd:83:f4:f0:fe:b3:68:1d:23:11: 28:ba:3b:67:b2:1e:5a:b6:41:34:2e:0c:78:c7:a2:e3:67:57: eb:b8:b9:2f:8e:4b:47:4e:1a:6a:4a:21:56:b4:21:b7:f0:e2: 34:85:3f:92:8d:67:30:1b:c5:53:99:77:a6:da:8c:ce:73:bc: 96:8e:25:b4:9e:02:06:a5:82:dd:73:3d:b5:67:ea:62:2d:aa: 73:53:21:ee:78:01:66:47:18:c6:17:23:37:d5:4a:02:58:4c: 82:8a:27:b8:06:3a:db:ba:3d:61:a6:68:d3:86:80:33:e8:3f: e4:0f:e7:2a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFMTkxMTAvBgNVBAUTKDI1NTI5MEEwMUFBOUI5MTE4QjY2RUVEQTBGOTA1RjZE NDBEQjA1QUUwHhcNMjUwNzIyMDkzNTI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDM4Yi0yZGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrWfJ4zS6ftiKvnqK+xWf3n9m6c3TWgRYR5oYXPnCmpv5zM46LSQ7junRQGK pwFJld3YX/IoESeWhwTtkS8cqcS+07GUFY/Ai7PSrWHeiy2C2BDZzYffxQA/Qm7y Z1k0gG9GnLkWzI6PEdB5EB8TiTZt7yclDsOo6rlJFdHSPfAYmuKzwwwpTaS5UT+1 jwyxQ75iJ4FIZw9IJN7cX5envkHz2SYedu6Gv54Aq5lwN8HTMu6vsUtGtNNijFbA qHs6kCIU0rhEtEDv8voOeEJvY6usncMWoRRYswoMt57ngpIr15C7ZMIkQda1E6ib cPG6tzJyHEsFWf5E0VIFRRYBLwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBvzVYtQ JRLv/eLFmzljFtB/RSC7MB8GA1UdIwQYMBaAFCVSkKAaqbkRi2bu2g+QX21A2wWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUUxOS8zNTZGMkYzRUMx QTUxMUU5QThCOEYzMzZDNEY5QUUwMi9KVktRb0JxcHVSR0xadTdhRDVCZmJVRGJC YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pWS1FvQnFwdVJHTFp1N2FENUJmYlVEYkJhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFMTkvMzU2RjJGM0VDMUE1MTFFOUE4QjhGMzM2QzRGOUFFMDIvMzMxQzZBMkM2 NkRGMTFGMEEzRjM4MTM2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1heAwQB3J7CMA0GCSqGSIb3DQEBCwUAA4IBAQBGmKvJCN9hDryz dz7k7lUYNFtPmbHow3WOJzxrzFs6DkpT5Qz9NfL8cHKtm+QEHiHlQyLTxtfn2CLU Ptp/e80mFg0kfmBWd0xh4K1x5oKGDQcRfuQIYptUv8KqaaGiw+aoWlBuXWd1a6mg 0gL4gsEoOr3UjvuOX8S14gnPes0na7QYg0eYP72D9PD+s2gdIxEoujtnsh5atkE0 Lgx4x6LjZ1fruLkvjktHThpqSiFWtCG38OI0hT+SjWcwG8VTmXem2ozOc7yWjiW0 ngIGpYLdcz21Z+piLapzUyHueAFmRxjGFyM31UoCWEyCiie4Bjrbuj1hpmjThoAz 6D/kD+cq -----END CERTIFICATE-----Generated at Fri Mar 27 04:44:19 2026 by rpki-client