$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa File: 21333DA69B2E11E8908CC50FC4F9AE02.roa (raw, json) Hash identifier: MDlcdzXufvKhGOKFUxldUFZUq6m6mjYUqAENV0y3O3o= Subject key identifier: 98:B6:C1:87:E8:DD:42:CB:FC:16:F5:B9:A1:1B:0C:D0:EB:87:41:2B Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 1409 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:33:18 +0000 ROA not before: Tue 26 Aug 2025 17:26:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7415 IP address blocks: 103.120.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5129 (0x1409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: Aug 26 17:26:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a423fe-c9ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:3a:f3:e6:cb:37:ed:ef:51:e5:a5:7c:2d: 7a:e8:5d:5c:6f:5f:54:47:d5:fa:01:72:71:a6:8b: f4:54:bd:97:cf:2d:21:09:80:22:bb:22:28:ee:e7: e6:a1:3e:e9:c8:7d:71:98:ef:17:a7:8a:ca:e4:85: 04:7b:19:5c:a9:91:f4:06:af:62:53:aa:d4:e2:4a: 14:e4:a3:6b:3d:f1:7f:cc:f7:e2:57:08:79:e6:89: d2:92:57:38:0c:69:df:e9:ad:d8:b5:76:37:ac:91: 01:e5:94:02:5d:81:b1:06:45:ff:98:c7:f7:42:c5: 8f:39:f6:92:30:6c:26:1b:0e:90:d9:b7:0e:d6:fc: 1d:f0:76:fa:46:d8:cf:45:0b:29:00:df:cb:a0:79: ba:98:4a:86:a3:77:ab:71:0e:07:40:75:2e:62:f9: 70:17:67:75:d2:80:af:d4:39:60:43:8c:57:30:f0: cc:78:e2:1f:87:96:40:44:a0:b7:f1:89:68:cd:9f: 0b:53:c4:f4:3d:35:eb:c4:c2:d0:43:aa:5d:5a:dc: cd:ab:24:90:92:9a:71:dc:7b:69:69:69:83:d9:5b: e4:ee:b3:eb:d0:23:96:19:4f:7a:c8:19:12:8b:aa: e3:91:70:ac:76:51:12:c5:40:84:e9:1d:28:15:97: 86:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B6:C1:87:E8:DD:42:CB:FC:16:F5:B9:A1:1B:0C:D0:EB:87:41:2B X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/21333DA69B2E11E8908CC50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.137.0/24 Signature Algorithm: sha256WithRSAEncryption 09:68:35:77:ed:6f:41:f8:c2:23:57:6e:d7:bc:e3:6c:cf:cb: 35:b2:6a:65:d2:c9:f8:e2:ed:02:a7:67:49:cc:b7:3c:14:83: c1:1b:3c:14:2a:37:79:9b:78:5b:c0:ba:c7:07:2f:bd:44:98: 19:94:aa:3a:02:dc:99:29:94:ff:3d:e0:9a:57:35:25:09:06: f6:94:81:0a:10:3e:b6:c4:40:2e:7f:fc:e9:82:16:d7:4e:d5: 19:4e:8a:a0:a4:d8:38:51:95:e4:de:89:db:35:25:bb:5e:a6: 5d:e1:bd:af:be:f9:05:9c:99:75:59:7d:61:d8:2e:07:be:39: 8b:1d:23:84:8f:a8:44:53:c3:f9:a0:d1:83:cf:ad:25:55:83: 31:89:1d:de:39:38:65:7a:81:7c:36:79:ca:76:ff:93:40:55: 9b:2b:72:61:33:5e:ff:e2:0c:0e:6b:0f:f2:d6:4d:6c:66:18: 23:fa:28:f0:d8:44:15:f9:3d:d5:d0:9e:71:91:b8:a7:8f:0b: 85:47:c8:ea:6f:a3:f9:a3:57:fe:91:1b:9c:9c:65:b0:2f:f7: 4e:d4:35:34:aa:ae:85:1a:78:0e:e6:51:ae:ed:05:ff:53:c1: 3e:3a:ed:3c:72:34:79:99:d5:8a:11:b9:5a:79:24:bf:7d:17: de:b0:b4:de -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjUwODI2MTcyNjEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjNmZS1jOWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiQ68+bLN+3vUeWlfC166F1cb19UR9X6AXJxpov0VL2Xzy0hCYAiuyIo7ufm oT7pyH1xmO8Xp4rK5IUEexlcqZH0Bq9iU6rU4koU5KNrPfF/zPfiVwh55onSklc4 DGnf6a3YtXY3rJEB5ZQCXYGxBkX/mMf3QsWPOfaSMGwmGw6Q2bcO1vwd8Hb6RtjP RQspAN/LoHm6mEqGo3ercQ4HQHUuYvlwF2d10oCv1DlgQ4xXMPDMeOIfh5ZARKC3 8YlozZ8LU8T0PTXrxMLQQ6pdWtzNqySQkppx3HtpaWmD2Vvk7rPr0COWGU96yBkS i6rjkXCsdlESxUCE6R0oFZeGIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJi2wYfo 3ULL/Bb1uaEbDNDrh0ErMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJCQTUvRTY0ODRBQ0U5QjJEMTFFOEI0NjVEODBGQzRGOUFFMDIvMjEzMzNEQTY5 QjJFMTFFODkwOENDNTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ3iJMA0GCSqGSIb3DQEBCwUAA4IBAQAJaDV37W9B+MIjV27XvONs z8s1smpl0sn44u0Cp2dJzLc8FIPBGzwUKjd5m3hbwLrHBy+9RJgZlKo6AtyZKZT/ PeCaVzUlCQb2lIEKED62xEAuf/zpghbXTtUZToqgpNg4UZXk3onbNSW7XqZd4b2v vvkFnJl1WX1h2C4HvjmLHSOEj6hEU8P5oNGDz60lVYMxiR3eOThleoF8NnnKdv+T QFWbK3JhM17/4gwOaw/y1k1sZhgj+ijw2EQV+T3V0J5xkbinjwuFR8jqb6P5o1f+ kRucnGWwL/dO1DU0qq6FGngO5lGu7QX/U8E+Ou08cjR5mdWKEblaeSS/fRfesLTe -----END CERTIFICATE-----Generated at Sat Mar 28 12:07:36 2026 by rpki-client