$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa File: 304D6C7E24C211EBAC07F90DC4F9AE02.roa (raw, json) Hash identifier: jMr4N89qOZyKi9q+aLu8Ip1ELJIMw1+M2FfLhwkNI7o= Subject key identifier: F5:58:56:0F:11:A3:07:43:51:41:B3:82:DD:80:53:EB:EC:C4:59:43 Certificate issuer: /CN=A91BFD87/serialNumber=AC9F95B7D478E98285CF44BFC57D81595534566F Certificate serial: 07E9 Authority key identifier: AC:9F:95:B7:D4:78:E9:82:85:CF:44:BF:C5:7D:81:59:55:34:56:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:26:17 +0000 ROA not before: Sun 26 Oct 2025 22:40:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141194 IP address blocks: 103.156.56.0/24 maxlen: 24 103.161.226.0/24 maxlen: 24 2001:df5:5a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.crl rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFD87, serialNumber=AC9F95B7D478E98285CF44BFC57D81595534566F Validity Not Before: Oct 26 22:40:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43069-7f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d3:6f:64:6a:e8:2f:6a:02:8f:c6:d9:bd:10: d9:14:6f:54:2b:51:85:01:ee:1d:82:80:a7:54:60: ba:86:69:77:f3:f9:51:3f:04:f3:52:b0:3a:f1:75: 3e:c9:88:22:e5:06:3e:91:a9:60:6b:10:d4:02:28: 67:82:dd:0f:a5:2a:7e:a2:b8:d1:5b:5c:3d:f2:43: 03:4d:0c:2c:b2:4f:6b:91:c0:b4:10:92:a8:f0:13: d8:d4:80:db:c1:3f:e6:21:1a:dd:fc:81:6a:81:c5: 2c:c9:ef:57:b8:c0:1d:83:7f:ad:ac:04:82:45:70: 54:95:bb:fe:6e:33:80:ea:9c:60:af:37:66:ce:a9: fc:6e:87:e9:e2:18:97:97:11:ef:dc:32:7e:c8:f4: 9a:d4:45:5e:d5:24:4b:23:79:00:38:28:df:40:20: 52:b2:6e:68:b2:58:44:2f:eb:b4:cb:21:bd:cd:2a: ea:39:a3:3c:23:95:d5:01:9c:0f:18:cd:3a:27:98: bf:c2:92:23:8c:81:d6:60:c5:a2:fe:7b:96:33:08: 6b:04:c3:79:75:e5:ed:61:bd:65:96:d1:45:25:ff: 43:66:6a:2b:35:58:1d:80:67:63:21:cc:46:d8:16: 4e:ec:6e:93:4c:c1:96:64:a8:b5:ee:55:22:9a:8a: c4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:58:56:0F:11:A3:07:43:51:41:B3:82:DD:80:53:EB:EC:C4:59:43 X509v3 Authority Key Identifier: keyid:AC:9F:95:B7:D4:78:E9:82:85:CF:44:BF:C5:7D:81:59:55:34:56:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.56.0/24 103.161.226.0/24 IPv6: 2001:df5:5a80::/48 Signature Algorithm: sha256WithRSAEncryption 58:7d:7c:a1:38:e3:74:14:6b:6c:3e:22:04:a2:b5:83:75:4a: 99:96:b7:21:e0:d5:81:fb:92:a5:f3:bc:63:12:00:9c:7e:88: 41:2f:d2:1a:c2:4e:69:4b:f7:5f:9a:4a:59:68:e2:ae:f4:96: 56:30:6a:8e:39:9d:3c:cc:ec:9a:2e:a1:b1:63:bf:64:8e:18: 90:d1:3f:b2:0f:d1:e2:db:9e:27:76:d3:3f:29:46:14:04:3b: 3a:19:ba:84:02:e5:f6:67:b4:a7:1a:41:5d:85:d9:b7:f9:e0: 8b:bc:73:c5:7e:fa:5f:9d:20:f7:27:b6:8a:f3:f7:40:c7:92: 18:1f:b6:94:1e:be:f7:df:9e:88:26:8b:45:bd:4f:a3:74:e4: 06:32:9a:dd:b0:65:69:f3:8c:e2:ca:11:74:f6:f8:66:c7:fb: 45:c2:60:14:90:5b:b2:cb:47:c1:6c:4d:a8:9c:e6:c6:5b:17: dc:34:7b:12:e9:02:46:34:da:53:bc:0b:2f:00:3e:f5:0a:16: c2:e3:24:3f:83:8c:85:ab:92:99:06:17:88:04:3c:4e:22:c4: 4a:3a:8d:d7:12:16:4f:0c:e5:2e:ff:e6:36:1b:95:63:01:00: 15:1b:d8:fc:60:09:8b:1f:03:e4:32:00:78:cf:bc:5f:87:bf: e2:ba:84:03 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZEODcxMTAvBgNVBAUTKEFDOUY5NUI3RDQ3OEU5ODI4NUNGNDRCRkM1N0Q4MTU5 NTUzNDU2NkYwHhcNMjUxMDI2MjI0MDM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzA2OS03ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdNvZGroL2oCj8bZvRDZFG9UK1GFAe4dgoCnVGC6hml38/lRPwTzUrA68XU+ yYgi5QY+kalgaxDUAihngt0PpSp+orjRW1w98kMDTQwssk9rkcC0EJKo8BPY1IDb wT/mIRrd/IFqgcUsye9XuMAdg3+trASCRXBUlbv+bjOA6pxgrzdmzqn8bofp4hiX lxHv3DJ+yPSa1EVe1SRLI3kAOCjfQCBSsm5oslhEL+u0yyG9zSrqOaM8I5XVAZwP GM06J5i/wpIjjIHWYMWi/nuWMwhrBMN5deXtYb1lltFFJf9DZmorNVgdgGdjIcxG 2BZO7G6TTMGWZKi17lUimorExwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPVYVg8R owdDUUGzgt2AU+vsxFlDMB8GA1UdIwQYMBaAFKyflbfUeOmChc9Ev8V9gVlVNFZv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkQ4Ny9EREU3M0IyODI0 QzAxMUVCQkQ0NzA1MERDNEY5QUUwMi9ySi1WdDlSNDZZS0Z6MFNfeFgyQldWVTBW bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKLVZ0OVI0NllLRnowU194WDJCV1ZVMFZtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZEODcvRERFNzNCMjgyNEMwMTFFQkJENDcwNTBEQzRGOUFFMDIvMzA0RDZDN0Uy NEMyMTFFQkFDMDdGOTBEQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ5w4AwQAZ6HiMA8EAgACMAkDBwAgAQ31WoAwDQYJKoZIhvcNAQEL BQADggEBAFh9fKE443QUa2w+IgSitYN1SpmWtyHg1YH7kqXzvGMSAJx+iEEv0hrC TmlL91+aSllo4q70llYwao45nTzM7JouobFjv2SOGJDRP7IP0eLbnid20z8pRhQE OzoZuoQC5fZntKcaQV2F2bf54Iu8c8V++l+dIPcntorz90DHkhgftpQevvffnogm i0W9T6N05AYymt2wZWnzjOLKEXT2+GbH+0XCYBSQW7LLR8FsTaic5sZbF9w0exLp AkY02lO8Cy8APvUKFsLjJD+DjIWrkpkGF4gEPE4ixEo6jdcSFk8M5S7/5jYblWMB ABUb2PxgCYsfA+QyAHjPvF+Hv+K6hAM= -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:29 2026 by rpki-client