$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa File: 653C22F441C311F0999A9935C4F9AE02.roa (raw, json) Hash identifier: iIlQkxBmgXt47gVpNAYfQJLsTOog95JafpEPwLPUz/0= Subject key identifier: AB:C2:CF:9F:40:36:C4:ED:27:66:94:97:AD:79:AF:16:5D:CA:B7:FE Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 90 Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:13:30 +0000 ROA not before: Tue 09 Sep 2025 08:14:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63126 IP address blocks: 103.60.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Sep 9 08:14:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a59b09-4fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:c5:b8:ad:10:f1:db:8e:6d:b1:f4:b1:7d: 1a:a4:b3:d9:af:39:95:24:ca:43:85:de:1d:0e:d5: 61:ec:dd:bc:51:d4:6c:d7:0d:6e:2b:6b:79:a2:73: c3:74:fb:b8:f0:98:2e:33:58:5e:b0:09:46:02:41: ad:06:c4:51:2e:af:f9:6b:12:9d:ee:96:1a:70:ea: f1:60:4e:7d:f1:1f:4d:26:82:84:12:62:ab:34:77: c6:15:d6:3e:c4:d7:cd:6b:db:a5:c6:8c:bf:e1:3c: c9:82:78:51:6c:f8:3f:b6:0f:6d:61:55:20:88:77: 26:ce:20:e2:03:69:f8:de:2f:ac:f2:78:49:41:7f: b3:11:62:c3:45:a4:e8:b4:b4:c9:9b:fb:4e:b3:02: 68:f9:9a:3b:6e:34:32:b2:fb:ac:6e:46:43:60:6a: e9:43:b5:f3:c9:b0:01:26:ec:4a:5d:fd:9a:cf:4c: ba:67:2f:c4:95:b6:a4:ae:ed:82:34:69:88:10:7c: 21:7a:40:15:16:10:00:e8:c5:0d:2f:d5:56:37:e8: 75:92:74:28:f6:0e:ee:6e:aa:b1:be:b8:2c:df:25: 99:43:c4:d0:01:07:cc:41:5c:ce:63:f4:b5:58:4a: d6:4f:00:9a:dd:76:71:64:3b:60:1d:b9:56:3c:18: fb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C2:CF:9F:40:36:C4:ED:27:66:94:97:AD:79:AF:16:5D:CA:B7:FE X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.60.91.0/24 Signature Algorithm: sha256WithRSAEncryption 71:b3:9e:b1:47:78:4b:d8:89:7d:14:85:87:0a:e9:38:c9:ad: a5:42:47:b7:9f:49:e6:2d:8c:05:0e:45:b6:7c:b0:6f:df:d8: bb:d1:2b:44:7b:6c:c2:67:b3:64:9c:27:9b:6d:98:99:a7:b7: d3:8b:83:af:8a:0d:eb:c2:f0:50:a5:c1:c3:a7:e1:67:1b:38: a6:01:e7:1e:c1:74:e5:ce:6c:39:f6:07:c0:b2:93:bd:9e:0c: 80:28:38:8e:35:a5:45:94:c6:48:63:43:fd:d9:3c:cb:74:b7: ea:c2:8e:da:15:e4:04:6b:cd:06:88:cf:4a:e6:4e:f2:d3:fb: c8:78:d7:0a:be:4e:6e:3c:c4:1d:34:a3:b7:9c:33:84:74:70: ce:ed:e1:78:f4:fe:ab:24:9e:cd:0d:ff:f2:5a:db:e7:20:bb: b0:2f:64:3d:19:cc:94:72:22:3d:e2:a2:ba:06:58:cf:c4:5e: 2b:ba:e0:0a:4e:a8:a3:a9:69:83:e3:b1:e5:40:c6:0b:d1:90: e0:2f:fc:4d:aa:0a:3a:2b:11:f3:38:85:f2:44:6f:bd:52:36: b3:c5:46:3a:20:a5:11:df:80:08:f7:d8:41:7e:54:d9:d3:42: 75:3d:82:30:4b:b3:9d:46:17:2e:c3:46:44:cd:f9:cd:a1:a2: a2:d0:32:e4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRGMkIxMTAvBgNVBAUTKDhDRDE5MEExNDNBQTJFMUU0ODczMDNCMTNEQzA1M0VE MTdCQ0VCMUUwHhcNMjUwOTA5MDgxNDE2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWIwOS00ZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfPFuK0Q8duObbH0sX0apLPZrzmVJMpDhd4dDtVh7N28UdRs1w1uK2t5onPD dPu48JguM1hesAlGAkGtBsRRLq/5axKd7pYacOrxYE598R9NJoKEEmKrNHfGFdY+ xNfNa9ulxoy/4TzJgnhRbPg/tg9tYVUgiHcmziDiA2n43i+s8nhJQX+zEWLDRaTo tLTJm/tOswJo+Zo7bjQysvusbkZDYGrpQ7XzybABJuxKXf2az0y6Zy/Elbakru2C NGmIEHwhekAVFhAA6MUNL9VWN+h1knQo9g7ubqqxvrgs3yWZQ8TQAQfMQVzOY/S1 WErWTwCa3XZxZDtgHblWPBj7LwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKvCz59A NsTtJ2aUl615rxZdyrf+MB8GA1UdIwQYMBaAFIzRkKFDqi4eSHMDsT3AU+0XvOse MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREYyQi82QzJCN0IxQzQx QkIxMUYwQjQ1NkQ4NTdDNEY5QUUwMi9qTkdRb1VPcUxoNUljd094UGNCVDdSZTg2 eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRGMkIvNkMyQjdCMUM0MUJCMTFGMEI0NTZEODU3QzRGOUFFMDIvNjUzQzIyRjQ0 MUMzMTFGMDk5OUE5OTM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZzxbMA0GCSqGSIb3DQEBCwUAA4IBAQBxs56xR3hL2Il9FIWHCuk4 ya2lQke3n0nmLYwFDkW2fLBv39i70StEe2zCZ7NknCebbZiZp7fTi4Ovig3rwvBQ pcHDp+FnGzimAecewXTlzmw59gfAspO9ngyAKDiONaVFlMZIY0P92TzLdLfqwo7a FeQEa80GiM9K5k7y0/vIeNcKvk5uPMQdNKO3nDOEdHDO7eF49P6rJJ7NDf/yWtvn ILuwL2Q9GcyUciI94qK6BljPxF4ruuAKTqijqWmD47HlQMYL0ZDgL/xNqgo6KxHz OIXyRG+9UjazxUY6IKUR34AI99hBflTZ00J1PYIwS7OdRhcuw0ZEzfnNoaKi0DLk -----END CERTIFICATE-----Generated at Thu Mar 26 11:58:15 2026 by rpki-client