$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa File: A33A3E10755611ED9BD81B73C4F9AE02.roa (raw, json) Hash identifier: HI74k5B2IPO8Crq9wFkB+rXvAKPJqqEMv0OlFkE5qbA= Subject key identifier: CB:18:5D:F0:81:3C:4D:AD:6E:CC:A8:02:0A:5E:2A:43:B5:F9:77:F4 Certificate issuer: /CN=A91C66D4/serialNumber=15AF5EA83FDF289A0D661CF5DBB8B3888BC758EB Certificate serial: 0722 Authority key identifier: 15:AF:5E:A8:3F:DF:28:9A:0D:66:1C:F5:DB:B8:B3:88:8B:C7:58:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa Signing time: Thu 26 Mar 2026 22:29:02 +0000 ROA not before: Thu 26 Mar 2026 22:29:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 141745 IP address blocks: 103.163.116.0/23 maxlen: 23 103.163.116.0/24 maxlen: 24 103.163.117.0/24 maxlen: 24 2001:df6:1580::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.crl rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66D4, serialNumber=15AF5EA83FDF289A0D661CF5DBB8B3888BC758EB Validity Not Before: Mar 26 22:29:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c5b32e-fa39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:d3:c8:b9:84:bf:8f:a3:ef:d9:fa:c8:61: 96:7f:d0:7e:d4:a9:db:20:c1:4b:cc:03:4d:74:30: 0f:15:e1:4e:0e:99:2e:f3:b8:a5:6d:db:27:fd:49: 6f:c9:5f:54:f8:b2:3e:4e:89:7f:bf:c4:f9:b1:2a: e6:26:f4:7a:9a:ba:d8:a6:64:69:9c:22:e0:5d:63: f0:56:f7:63:0f:de:60:72:c2:bf:6d:b1:e7:2e:c5: 79:a4:a1:fd:32:d0:57:68:8a:f3:19:f0:fa:93:47: 61:9a:70:88:25:9e:b5:93:ff:b6:83:da:9d:c3:d0: 36:eb:74:d0:10:6c:46:da:2e:09:bb:73:33:50:9c: 07:de:46:fd:ed:3b:06:43:a7:0b:ea:13:24:f6:71: de:ba:5b:c1:08:1c:68:c3:29:f7:b6:36:c6:f0:62: 4a:c5:b6:94:e4:e9:6c:40:2c:b0:fa:3a:e0:3b:15: 26:90:ae:e9:86:dc:7e:55:52:9a:84:7d:80:08:96: 82:29:88:61:f5:30:4f:27:e8:f3:12:4c:88:96:25: 5c:38:97:25:d6:f9:ad:01:45:eb:c7:55:91:d0:64: 2e:7f:9e:d4:ee:c0:45:03:38:b7:45:95:2c:a6:b0: 1c:a2:dd:fb:9c:8f:8b:65:28:10:9f:10:83:33:d0: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:18:5D:F0:81:3C:4D:AD:6E:CC:A8:02:0A:5E:2A:43:B5:F9:77:F4 X509v3 Authority Key Identifier: keyid:15:AF:5E:A8:3F:DF:28:9A:0D:66:1C:F5:DB:B8:B3:88:8B:C7:58:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.116.0/23 IPv6: 2001:df6:1580::/48 Signature Algorithm: sha256WithRSAEncryption a6:e9:24:fd:34:c1:70:63:bc:ee:66:52:85:ac:d1:f3:e0:c0: bd:a2:e4:a7:aa:5b:95:ed:50:0c:0b:69:dc:67:aa:f9:2e:df: 2c:90:19:35:b3:97:a7:7a:6a:29:07:53:74:ef:37:9a:2b:e0: 34:48:19:49:5c:84:a6:f1:ef:67:ba:cf:0b:55:f7:78:81:40: d5:ed:c4:ca:6e:9d:09:9d:bb:28:74:2a:c6:0c:84:98:ea:e8: 9d:b8:b9:4f:e2:0b:f1:70:c1:1e:f5:cd:8c:bd:27:a6:3b:fb: 2b:ec:f9:cc:70:5d:ff:e2:80:67:60:26:c4:4a:6a:f4:6f:c4: 7e:f1:86:f9:99:b3:5d:ad:33:4c:19:54:df:06:e0:a5:4b:93: db:ba:65:e8:6e:a8:7f:cb:d5:03:53:43:71:9c:d2:54:94:11: a7:ed:fd:db:21:a2:cc:58:07:b6:77:7b:e7:92:48:4f:f4:68: b3:6e:00:d7:d0:b0:20:d6:96:49:51:c5:b5:31:72:98:4f:ce: 6d:86:fc:f0:6b:9a:8a:da:b2:db:2f:69:d0:c8:ad:f1:98:ef: 9d:bd:ac:2b:47:83:1b:48:31:d8:c3:1a:4f:b7:72:d4:36:e0: 71:b1:5c:41:9a:3d:9b:ba:41:ad:6b:6e:7b:0a:bc:4d:c6:ad: 4f:56:cf:8c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2RDQxMTAvBgNVBAUTKDE1QUY1RUE4M0ZERjI4OUEwRDY2MUNGNURCQjhCMzg4 OEJDNzU4RUIwHhcNMjYwMzI2MjIyOTAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1YjMyZS1mYTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyvTyLmEv4+j79n6yGGWf9B+1KnbIMFLzANNdDAPFeFODpku87ilbdsn/Ulv yV9U+LI+Tol/v8T5sSrmJvR6mrrYpmRpnCLgXWPwVvdjD95gcsK/bbHnLsV5pKH9 MtBXaIrzGfD6k0dhmnCIJZ61k/+2g9qdw9A263TQEGxG2i4Ju3MzUJwH3kb97TsG Q6cL6hMk9nHeulvBCBxowyn3tjbG8GJKxbaU5OlsQCyw+jrgOxUmkK7phtx+VVKa hH2ACJaCKYhh9TBPJ+jzEkyIliVcOJcl1vmtAUXrx1WR0GQuf57U7sBFAzi3RZUs prAcot37nI+LZSgQnxCDM9BqSwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMsYXfCB PE2tbsyoAgpeKkO1+Xf0MB8GA1UdIwQYMBaAFBWvXqg/3yiaDWYc9du4s4iLx1jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZENC9CRDk4NzUwMjdB OEUxMUVCQTkwQ0NFMjJDNEY5QUUwMi9GYTllcURfZktKb05aaHoxMjdpemlJdkhX T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZhOWVxRF9mS0pvTlpoejEyN2l6aUl2SFdPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY2RDQvQkQ5ODc1MDI3QThFMTFFQkE5MENDRTIyQzRGOUFFMDIvQTMzQTNFMTA3 NTU2MTFFRDlCRDgxQjczQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6N0MA8EAgACMAkDBwAgAQ32FYAwDQYJKoZIhvcNAQELBQADggEB AKbpJP00wXBjvO5mUoWs0fPgwL2i5KeqW5XtUAwLadxnqvku3yyQGTWzl6d6aikH U3TvN5or4DRIGUlchKbx72e6zwtV93iBQNXtxMpunQmduyh0KsYMhJjq6J24uU/i C/FwwR71zYy9J6Y7+yvs+cxwXf/igGdgJsRKavRvxH7xhvmZs12tM0wZVN8G4KVL k9u6ZehuqH/L1QNTQ3Gc0lSUEaft/dshosxYB7Z3e+eSSE/0aLNuANfQsCDWlklR xbUxcphPzm2G/PBrmorastsvadDIrfGY7529rCtHgxtIMdjDGk+3ctQ24HGxXEGa PZu6Qa1rbnsKvE3GrU9Wz4w= -----END CERTIFICATE-----Generated at Fri Mar 27 02:34:18 2026 by rpki-client