$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa File: 28C2D6002BCB11F0A99C1E60C4F9AE02.roa (raw, json) Hash identifier: wZY9Z53hRF1cqshdzTDBoy+lSHOx94QEX/gy6wO+8wM= Subject key identifier: 49:3F:00:E1:65:48:6E:AF:E0:A4:ED:5C:8B:33:E9:9A:C0:C5:E0:DC Certificate issuer: /CN=A91BAA24/serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Certificate serial: A3 Authority key identifier: ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:24:56 +0000 ROA not before: Sun 21 Dec 2025 06:25:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140883 IP address blocks: 103.143.120.0/24 maxlen: 24 103.143.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA24, serialNumber=ED72C716BC0AF59D4306323FBAA474BD4B4DE71C Validity Not Before: Dec 21 06:25:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45a48-cc74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:72:e5:96:97:4e:15:08:07:95:31:5d:7e:04: d4:c3:13:03:b1:91:ef:3d:30:de:65:d8:f8:db:2f: b3:d8:99:c6:a7:14:fb:46:99:ce:3f:f6:8c:35:e6: 3b:ce:30:44:9b:68:b1:2a:52:bc:d5:b5:6f:85:f8: 1f:94:ea:3d:47:6b:8d:c3:df:0e:3f:27:b4:d4:6a: 49:13:30:7a:f3:be:6f:92:a2:17:a6:18:51:e6:e5: 58:49:77:a2:3e:3c:9e:2a:65:33:ec:25:37:c0:ff: 24:aa:4b:d4:2e:92:c5:29:89:22:78:1b:5f:89:2e: f9:20:ce:d3:17:9b:48:80:65:29:04:61:a7:68:10: 6d:e0:1e:0e:2a:87:1d:d3:48:18:d8:e2:88:4f:a4: 88:a5:0d:37:47:ae:98:70:0b:aa:a6:41:25:7e:5a: 6d:a1:12:e8:2b:99:58:a7:b0:d5:11:9f:ee:e3:73: 74:30:04:5c:62:f2:e3:d8:ec:46:af:6a:76:08:3e: 6b:2f:29:05:51:34:59:6d:14:56:64:17:19:0b:1b: f8:58:5b:7d:dc:16:6c:ca:5a:e8:07:fc:31:ce:e1: 1c:12:26:48:23:75:50:a0:6f:0b:ed:3b:45:52:6b: ca:4f:39:93:c9:fc:90:31:f9:9b:a6:6d:ea:e3:99: 27:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:3F:00:E1:65:48:6E:AF:E0:A4:ED:5C:8B:33:E9:9A:C0:C5:E0:DC X509v3 Authority Key Identifier: keyid:ED:72:C7:16:BC:0A:F5:9D:43:06:32:3F:BA:A4:74:BD:4B:4D:E7:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7XLHFrwK9Z1DBjI_uqR0vUtN5xw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA24/1739C35A2BC911F0B8BE3F3BC4F9AE02/28C2D6002BCB11F0A99C1E60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.143.120.0/23 Signature Algorithm: sha256WithRSAEncryption 97:69:e8:79:6a:f6:1e:9a:49:ec:e8:49:f3:40:7c:98:f4:19: 7b:a2:d6:5a:a5:3d:68:39:9c:cc:3a:70:77:94:a9:ca:b7:4e: aa:8c:c6:d8:25:c0:a4:ab:3d:0e:09:90:3d:b7:8f:7b:2e:5c: 30:56:50:ab:7c:1b:b3:89:b8:68:06:26:99:bc:f8:a0:b9:20: a7:c6:93:d4:f9:bb:5f:3e:2a:d4:a0:d4:4f:16:1d:9b:13:50: 3d:e0:a8:fa:b3:c6:05:61:cc:8f:cb:cc:da:76:6e:95:88:98: db:40:df:7c:54:d5:ad:8c:80:09:6e:da:10:f2:96:e7:2b:49: 68:e0:ba:36:02:70:ab:7d:f6:e7:d0:ad:31:d5:f7:bd:b6:39: 80:f4:76:d0:d8:5c:06:b6:8b:25:28:26:57:a5:4d:e4:2a:8c: a7:99:07:9b:fb:c0:0b:0c:2e:4b:86:e5:a3:3a:bc:c9:12:ff: e6:8c:90:0e:81:7c:e7:4b:df:aa:4a:30:dd:c0:b2:21:ea:de: e9:89:27:2c:a4:0e:71:22:d5:42:46:d9:f6:b4:f3:66:82:98: b5:87:79:fe:31:9e:00:47:fc:41:8f:17:4a:0f:ee:e5:85:77: 01:6b:00:96:aa:f6:0f:5b:af:02:7e:14:5e:6b:35:90:57:7c: 7e:52:f2:60 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBMjQxMTAvBgNVBAUTKEVENzJDNzE2QkMwQUY1OUQ0MzA2MzIzRkJBQTQ3NEJE NEI0REU3MUMwHhcNMjUxMjIxMDYyNTQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWE0OC1jYzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHLllpdOFQgHlTFdfgTUwxMDsZHvPTDeZdj42y+z2JnGpxT7RpnOP/aMNeY7 zjBEm2ixKlK81bVvhfgflOo9R2uNw98OPye01GpJEzB6875vkqIXphhR5uVYSXei PjyeKmUz7CU3wP8kqkvULpLFKYkieBtfiS75IM7TF5tIgGUpBGGnaBBt4B4OKocd 00gY2OKIT6SIpQ03R66YcAuqpkElflptoRLoK5lYp7DVEZ/u43N0MARcYvLj2OxG r2p2CD5rLykFUTRZbRRWZBcZCxv4WFt93BZsylroB/wxzuEcEiZII3VQoG8L7TtF UmvKTzmTyfyQMfmbpm3q45kncQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEk/AOFl SG6v4KTtXIsz6ZrAxeDcMB8GA1UdIwQYMBaAFO1yxxa8CvWdQwYyP7qkdL1LTecc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUEyNC8xNzM5QzM1QTJC QzkxMUYwQjhCRTNGM0JDNEY5QUUwMi83WExIRnJ3SzlaMURCaklfdXFSMHZVdE41 eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdYTEhGcndLOVoxREJqSV91cVIwdlV0TjV4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBMjQvMTczOUMzNUEyQkM5MTFGMEI4QkUzRjNCQzRGOUFFMDIvMjhDMkQ2MDAy QkNCMTFGMEE5OUMxRTYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ494MA0GCSqGSIb3DQEBCwUAA4IBAQCXaeh5avYemkns6EnzQHyY 9Bl7otZapT1oOZzMOnB3lKnKt06qjMbYJcCkqz0OCZA9t497LlwwVlCrfBuzibho BiaZvPiguSCnxpPU+btfPirUoNRPFh2bE1A94Kj6s8YFYcyPy8zadm6ViJjbQN98 VNWtjIAJbtoQ8pbnK0lo4Lo2AnCrffbn0K0x1fe9tjmA9HbQ2FwGtoslKCZXpU3k KoynmQeb+8ALDC5LhuWjOrzJEv/mjJAOgXznS9+qSjDdwLIh6t7piScspA5xItVC Rtn2tPNmgpi1h3n+MZ4AR/xBjxdKD+7lhXcBawCWqvYPW68CfhReazWQV3x+UvJg -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:15 2026 by rpki-client