$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa File: 28FC424AA93711EE91871F0AC4F9AE02.roa (raw, json) Hash identifier: 341ByImzn/WsspGGEhwYJpQ72ArO+/p3lUbnRz/LSbI= Subject key identifier: 01:BE:0B:62:51:BF:33:08:AA:B3:BE:DE:54:61:03:6C:E0:1B:C8:AE Certificate issuer: /CN=A91BA1D4/serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Certificate serial: 01A5 Authority key identifier: 2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:29:50 +0000 ROA not before: Mon 01 Dec 2025 02:31:08 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151983 IP address blocks: 103.253.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA1D4, serialNumber=2C2C5C9A785F2EA734079C140E3A4719B386D383 Validity Not Before: Dec 1 02:31:08 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4151e-39bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:67:76:24:10:39:31:e9:b6:07:42:4b:22:01: bc:68:93:ed:81:ed:23:c3:96:f0:eb:ce:aa:c7:00: 82:b5:b0:4f:6b:f9:5b:0c:ea:96:12:45:c1:f1:ed: 00:60:76:29:ae:68:e4:6c:e2:e0:a8:c4:4d:c3:d8: 5d:6f:21:8a:f3:bd:3b:e3:7e:45:25:89:42:e0:d2: 8a:12:19:36:00:e6:a7:e3:29:66:7f:75:e8:44:12: c0:b6:ee:3f:d8:5a:29:ce:83:97:a6:4b:6c:02:0e: 60:9f:0a:df:51:cb:81:6d:61:4c:41:57:05:e2:0f: 9c:0d:6c:8b:68:0f:26:a2:23:21:6b:4d:da:97:11: 0e:0b:22:1c:da:7c:2d:00:6a:25:d4:df:ac:8b:9c: 31:ee:2e:1b:e9:62:fd:95:0c:40:3e:12:af:e4:3d: 42:b1:d4:72:56:fe:40:3e:65:95:ce:a3:32:35:dd: 3f:c6:32:cf:8a:81:d3:f7:57:c5:b4:38:31:ce:b8: 3c:3a:0c:67:16:40:c9:20:63:a6:28:87:6c:94:e7: 8b:2a:6f:ae:f7:de:7a:64:be:c2:d1:5b:b9:77:66: 8c:ce:96:10:09:b3:04:2d:ca:b7:49:1f:a4:64:f9: 70:84:1d:ff:94:19:03:84:e8:e9:1c:91:74:af:0d: bb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:BE:0B:62:51:BF:33:08:AA:B3:BE:DE:54:61:03:6C:E0:1B:C8:AE X509v3 Authority Key Identifier: keyid:2C:2C:5C:9A:78:5F:2E:A7:34:07:9C:14:0E:3A:47:19:B3:86:D3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/LCxcmnhfLqc0B5wUDjpHGbOG04M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LCxcmnhfLqc0B5wUDjpHGbOG04M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA1D4/5545E21CA93611EE884AB159C4F9AE02/28FC424AA93711EE91871F0AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.253.18.0/23 Signature Algorithm: sha256WithRSAEncryption 50:64:40:a4:e8:ab:bd:4f:cc:aa:09:63:04:52:fb:bf:e7:77: ef:c4:48:05:52:34:10:ad:e7:f5:96:66:7e:ec:54:9d:b3:8c: 3b:ca:ea:d9:6e:13:5d:ef:2b:22:ea:19:0a:a4:26:21:f5:6a: e5:e6:9a:b9:4b:c8:35:3d:7f:53:ce:e3:9b:65:86:69:3b:df: 4f:4d:11:82:1f:12:a7:e4:3a:69:9e:19:8d:c9:0c:01:f9:1f: 18:42:11:1f:65:ea:e5:b4:ed:b5:86:36:27:96:8d:37:12:98: cc:a1:67:92:29:e2:29:0e:e0:c0:ed:a5:81:5d:18:a2:73:fa: 14:92:33:73:88:00:5f:f0:03:6a:89:7b:83:1d:3d:4e:b8:e0: 05:c6:c6:53:86:24:aa:84:f9:42:10:8e:64:01:80:6d:61:e0: 8a:89:43:48:b4:31:2a:92:53:88:0f:1e:95:4b:9a:9a:d3:db: 70:95:13:9b:12:c4:07:02:37:84:5a:0b:09:d9:5e:b0:7a:e2: 41:9f:60:c9:7d:5d:c2:c8:0f:45:41:a0:2a:28:cf:32:8c:52: 72:95:3e:fb:c6:f5:c8:49:bd:57:1e:22:4f:a4:d6:53:d8:21: c0:6f:ab:af:3c:83:8b:d5:bb:b6:43:6f:09:77:80:88:29:e4: 61:7e:43:35 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExRDQxMTAvBgNVBAUTKDJDMkM1QzlBNzg1RjJFQTczNDA3OUMxNDBFM0E0NzE5 QjM4NkQzODMwHhcNMjUxMjAxMDIzMTA4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTUxZS0zOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjmd2JBA5Mem2B0JLIgG8aJPtge0jw5bw686qxwCCtbBPa/lbDOqWEkXB8e0A YHYprmjkbOLgqMRNw9hdbyGK8707435FJYlC4NKKEhk2AOan4ylmf3XoRBLAtu4/ 2FopzoOXpktsAg5gnwrfUcuBbWFMQVcF4g+cDWyLaA8moiMha03alxEOCyIc2nwt AGol1N+si5wx7i4b6WL9lQxAPhKv5D1CsdRyVv5APmWVzqMyNd0/xjLPioHT91fF tDgxzrg8OgxnFkDJIGOmKIdslOeLKm+u9956ZL7C0Vu5d2aMzpYQCbMELcq3SR+k ZPlwhB3/lBkDhOjpHJF0rw27twIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAG+C2JR vzMIqrO+3lRhA2zgG8iuMB8GA1UdIwQYMBaAFCwsXJp4Xy6nNAecFA46RxmzhtOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTFENC81NTQ1RTIxQ0E5 MzYxMUVFODg0QUIxNTlDNEY5QUUwMi9MQ3hjbW5oZkxxYzBCNXdVRGpwSEdiT0cw NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xDeGNtbmhmTHFjMEI1d1VEanBIR2JPRzA0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkExRDQvNTU0NUUyMUNBOTM2MTFFRTg4NEFCMTU5QzRGOUFFMDIvMjhGQzQyNEFB OTM3MTFFRTkxODcxRjBBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/0SMA0GCSqGSIb3DQEBCwUAA4IBAQBQZECk6Ku9T8yqCWMEUvu/ 53fvxEgFUjQQref1lmZ+7FSds4w7yurZbhNd7ysi6hkKpCYh9Wrl5pq5S8g1PX9T zuObZYZpO99PTRGCHxKn5DppnhmNyQwB+R8YQhEfZerltO21hjYnlo03EpjMoWeS KeIpDuDA7aWBXRiic/oUkjNziABf8ANqiXuDHT1OuOAFxsZThiSqhPlCEI5kAYBt YeCKiUNItDEqklOIDx6VS5qa09twlRObEsQHAjeEWgsJ2V6weuJBn2DJfV3CyA9F QaAqKM8yjFJylT77xvXISb1XHiJPpNZT2CHAb6uvPIOL1bu2Q28Jd4CIKeRhfkM1 -----END CERTIFICATE-----Generated at Thu Mar 26 08:34:22 2026 by rpki-client