$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa File: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (raw, json) Hash identifier: 3wRVfI1zpk+cbpoO3lK5QYCwvSabow1kgGaBDb4LpII= Subject key identifier: 56:CC:71:22:18:8A:8E:51:C4:D2:11:F9:6C:17:A0:A4:F0:3E:6C:C9 Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: 0188 Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:56:21 +0000 ROA not before: Wed 27 Aug 2025 05:12:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137846 IP address blocks: 103.191.110.0/23 maxlen: 23 103.191.110.0/24 maxlen: 24 103.191.111.0/24 maxlen: 24 2001:df0:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF, serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Aug 27 05:12:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a588f5-8d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:69:71:01:4b:d2:51:19:c2:64:61:17:89:a9: 44:1b:50:5b:f2:51:13:25:ad:40:cd:68:1e:32:ad: d7:bb:41:16:0b:a6:93:83:30:c9:aa:9e:72:04:e3: 61:46:7d:43:e0:1f:44:5c:e1:ce:b8:ea:e3:c2:82: 95:6f:07:cc:d3:9d:57:2c:3f:8c:e0:64:c9:f7:66: 76:2e:a5:cf:e4:ff:71:78:40:7b:51:96:84:55:b4: eb:bc:67:c4:54:db:e6:a4:0b:f1:f6:4d:95:18:af: dc:58:43:9b:1f:68:5c:6c:e4:2c:c3:19:a7:4b:d9: 69:69:7d:85:71:bd:aa:1d:f5:57:a7:66:10:aa:0b: 84:87:2f:a6:3f:31:c2:2a:8e:82:bb:56:c2:68:07: 10:9f:04:b7:01:e5:2a:f2:ab:87:b2:4d:7e:d3:58: 76:d2:f6:a0:e0:16:ad:63:0e:ba:4f:42:71:26:8a: 18:87:5e:e2:c2:13:62:13:c7:15:08:11:5f:2f:5c: 07:c3:7c:57:92:ea:22:73:14:3d:99:c1:8a:dd:e5: b9:1f:f2:b1:8d:86:7c:6f:3c:97:a0:84:5f:0e:11: 64:f0:55:94:a1:fd:27:cc:2d:53:99:19:a1:26:bd: f0:d3:09:4f:25:32:d5:5b:97:3a:e3:da:da:68:ce: 30:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CC:71:22:18:8A:8E:51:C4:D2:11:F9:6C:17:A0:A4:F0:3E:6C:C9 X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.191.110.0/23 IPv6: 2001:df0:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 15:28:c1:f4:63:d2:c8:a8:b2:2c:1d:27:f4:8d:f7:d7:ad:4e: ab:84:bd:f2:24:61:0b:c1:6e:27:83:64:0d:27:6a:d8:a2:63: d5:78:b8:3c:a0:01:00:8c:6a:1d:ed:f3:36:61:9c:7e:66:31: fa:7c:dc:8b:67:3c:ff:f6:1c:52:4b:15:ed:ee:67:15:31:a8: 16:3e:6a:b4:1a:40:78:8a:6f:64:f2:82:18:f0:7f:b0:49:29: 27:c8:88:80:69:7b:c6:07:c9:6e:d6:59:ae:2e:fd:8d:44:73: 07:f3:5b:5b:36:df:01:76:4a:2c:be:a6:b4:81:a0:9b:cc:26: a1:91:38:a2:96:9a:6d:fa:38:0f:66:b0:d3:9e:e9:e0:e7:8a: 3b:b9:4e:b7:5f:dc:ce:13:8d:fc:a7:5d:5c:02:f3:53:07:fd: b1:ba:68:1b:58:26:df:dc:df:41:ea:61:54:c9:51:43:b6:1e: ed:cd:ac:2f:a2:f1:92:ec:da:6b:87:47:f9:eb:b1:80:b6:3c: 12:3f:a4:c5:02:47:4e:61:bb:e8:2b:74:2c:39:e5:36:28:52: 42:36:61:d4:e8:fc:b8:b6:62:71:71:60:f0:b3:90:21:b8:2c: 84:8f:a1:b1:4f:88:62:0d:ef:78:70:a8:c2:76:68:18:03:b0: 37:4e:24:bb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFREYxMTAvBgNVBAUTKDhCNjQxOTY4NjkxMTdCOTlCODc5QjREQ0JBRjA0Mjkw QkMxNjgxMEMwHhcNMjUwODI3MDUxMjI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODhmNS04ZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmlxAUvSURnCZGEXialEG1Bb8lETJa1AzWgeMq3Xu0EWC6aTgzDJqp5yBONh Rn1D4B9EXOHOuOrjwoKVbwfM051XLD+M4GTJ92Z2LqXP5P9xeEB7UZaEVbTrvGfE VNvmpAvx9k2VGK/cWEObH2hcbOQswxmnS9lpaX2Fcb2qHfVXp2YQqguEhy+mPzHC Ko6Cu1bCaAcQnwS3AeUq8quHsk1+01h20vag4BatYw66T0JxJooYh17iwhNiE8cV CBFfL1wHw3xXkuoicxQ9mcGK3eW5H/KxjYZ8bzyXoIRfDhFk8FWUof0nzC1TmRmh Jr3w0wlPJTLVW5c649raaM4wnQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFbMcSIY io5RxNIR+WwXoKTwPmzJMB8GA1UdIwQYMBaAFItkGWhpEXuZuHm03LrwQpC8FoEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEVERi8zREUzOUU4MkNG QUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1bTRlYlRjdXZCQ2tMd1dn UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFREYvM0RFMzlFODJDRkFEMTFFRUFDRkE0MjY4QzRGOUFFMDIvNTIzMzNFQjRD RkFFMTFFRUI5MjhDRDI1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ79uMA8EAgACMAkDBwAgAQ3w/sAwDQYJKoZIhvcNAQELBQADggEB ABUowfRj0siosiwdJ/SN99etTquEvfIkYQvBbieDZA0natiiY9V4uDygAQCMah3t 8zZhnH5mMfp83ItnPP/2HFJLFe3uZxUxqBY+arQaQHiKb2Tyghjwf7BJKSfIiIBp e8YHyW7WWa4u/Y1EcwfzW1s23wF2Siy+prSBoJvMJqGROKKWmm36OA9msNOe6eDn iju5Trdf3M4TjfynXVwC81MH/bG6aBtYJt/c30HqYVTJUUO2Hu3NrC+i8ZLs2muH R/nrsYC2PBI/pMUCR05hu+grdCw55TYoUkI2YdTo/Li2YnFxYPCzkCG4LISPobFP iGIN73hwqMJ2aBgDsDdOJLs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:24:56 2026 by rpki-client