$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa File: E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa (raw, json) Hash identifier: ZvW50NxBS75UluAXlHVMuxFqxEWVEP7STBY/nxFqOto= Subject key identifier: 89:40:A9:78:1B:9A:CD:DD:9C:66:45:E6:EF:CE:94:A7:EA:89:AC:B1 Certificate issuer: /CN=A91C6744/serialNumber=963C20B7D3804DB801CAE2574C31D760D53D3344 Certificate serial: 08A8 Authority key identifier: 96:3C:20:B7:D3:80:4D:B8:01:CA:E2:57:4C:31:D7:60:D5:3D:33:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa Signing time: Fri 06 Mar 2026 20:27:53 +0000 ROA not before: Fri 06 Mar 2026 20:27:53 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132299 IP address blocks: 103.247.236.0/24 maxlen: 24 103.247.237.0/24 maxlen: 24 203.5.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.crl rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2216 (0x8a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6744, serialNumber=963C20B7D3804DB801CAE2574C31D760D53D3344 Validity Not Before: Mar 6 20:27:53 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ab38c9-7d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c8:38:8b:7d:db:b3:fa:8d:33:7a:e0:b8:e7: 33:72:7c:54:ba:0b:cc:ae:8d:b4:65:15:c1:2e:07: bb:ec:41:70:ec:6a:95:cd:98:49:0c:19:26:1b:07: 53:28:a8:3d:a3:11:98:f1:26:b1:d7:c8:4c:9c:4a: 45:7f:75:ac:03:af:72:31:8a:05:b9:a7:3a:67:e2: db:50:64:d3:b3:5c:44:15:83:32:49:7a:34:44:14: 39:21:f4:30:8f:e2:c0:92:90:16:5e:43:d1:40:5b: af:e0:ec:05:9f:fd:8b:96:7c:59:8f:ac:53:8d:50: 92:8c:93:88:a5:49:a4:78:10:38:5f:a2:40:b5:dd: 2d:08:ea:ca:0b:2d:54:95:ce:0a:67:a4:ba:48:24: 85:bc:72:85:68:c4:c3:4a:55:ea:9a:e5:31:4e:7d: ae:13:ae:6b:b6:9e:e8:0c:01:88:df:21:2c:43:8f: 6d:ef:0f:52:0c:e9:88:9d:b0:ae:5a:25:be:42:20: 97:4d:16:19:0e:e6:13:ec:32:17:42:02:2d:9c:f1: 2e:39:1d:8c:2b:72:bb:e8:00:ca:4e:0e:f9:94:80: 29:b0:63:b9:7a:ed:7d:65:33:0b:0c:61:5b:15:21: 64:e9:cc:6f:20:73:be:63:31:dc:b0:41:ea:3e:4a: 25:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:40:A9:78:1B:9A:CD:DD:9C:66:45:E6:EF:CE:94:A7:EA:89:AC:B1 X509v3 Authority Key Identifier: keyid:96:3C:20:B7:D3:80:4D:B8:01:CA:E2:57:4C:31:D7:60:D5:3D:33:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.236.0/23 203.5.16.0/23 Signature Algorithm: sha256WithRSAEncryption 61:f7:97:19:c7:ba:5c:fa:5b:29:85:3c:71:dc:7b:17:12:3f: 2f:fa:03:9c:dc:9f:b6:70:61:85:08:e8:94:ce:95:f6:2a:b8: ee:93:34:e2:1a:fa:71:30:3e:b0:08:e2:66:11:29:03:1e:e9: 18:15:11:1b:1a:b0:f9:1f:dc:d5:e0:cf:66:75:1e:ea:cd:9c: 75:e9:f1:6a:4b:b5:80:82:a7:83:c5:50:63:07:0b:3d:70:2c: 25:d0:52:1c:1a:53:84:32:a8:e6:d1:f8:a5:d1:01:7b:c0:dc: 53:20:49:26:f2:3f:b1:0a:fa:ff:77:ab:8e:1e:d6:62:97:e2: 28:32:a5:96:0a:6a:fd:07:10:b5:cc:5e:53:65:3d:1a:71:1c: 3e:f4:39:dd:65:6c:5e:49:ac:97:9e:f7:dd:80:f9:6f:33:92: 71:2a:06:9a:f3:1f:83:53:d5:20:04:2b:55:51:ca:79:cb:03: e7:44:1d:80:a8:bd:a8:ae:f5:2f:3c:7f:83:96:7a:d4:4b:0e: a9:74:e6:2a:c6:c1:44:a8:dc:24:28:4c:30:1f:0d:27:11:76: e8:a9:57:8a:97:51:48:fe:36:4b:a2:32:71:f5:a7:eb:1e:8b: d5:08:01:f9:a0:2d:02:fc:e3:4c:c1:ad:e1:98:11:47:65:8f: fa:02:d3:41 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY3NDQxMTAvBgNVBAUTKDk2M0MyMEI3RDM4MDREQjgwMUNBRTI1NzRDMzFENzYw RDUzRDMzNDQwHhcNMjYwMzA2MjAyNzUzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiMzhjOS03ZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMg4i33bs/qNM3rguOczcnxUugvMro20ZRXBLge77EFw7GqVzZhJDBkmGwdT KKg9oxGY8Sax18hMnEpFf3WsA69yMYoFuac6Z+LbUGTTs1xEFYMySXo0RBQ5IfQw j+LAkpAWXkPRQFuv4OwFn/2LlnxZj6xTjVCSjJOIpUmkeBA4X6JAtd0tCOrKCy1U lc4KZ6S6SCSFvHKFaMTDSlXqmuUxTn2uE65rtp7oDAGI3yEsQ49t7w9SDOmInbCu WiW+QiCXTRYZDuYT7DIXQgItnPEuOR2MK3K76ADKTg75lIApsGO5eu19ZTMLDGFb FSFk6cxvIHO+YzHcsEHqPkoljQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIlAqXgb ms3dnGZF5u/OlKfqiayxMB8GA1UdIwQYMBaAFJY8ILfTgE24AcriV0wx12DVPTNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjc0NC8zM0U3OEZBQ0RC QUUxMUVBQUQ5NjY3MjNDNEY5QUUwMi9sandndDlPQVRiZ0J5dUpYVERIWFlOVTlN MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xqd2d0OU9BVGJnQnl1SlhUREhYWU5VOU0wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY3NDQvMzNFNzhGQUNEQkFFMTFFQUFEOTY2NzIzQzRGOUFFMDIvRTA4OEI0RThF NDFCMTFFRDhCMEVGQzBEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ/fsAwQBywUQMA0GCSqGSIb3DQEBCwUAA4IBAQBh95cZx7pc+lsp hTxx3HsXEj8v+gOc3J+2cGGFCOiUzpX2KrjukzTiGvpxMD6wCOJmESkDHukYFREb GrD5H9zV4M9mdR7qzZx16fFqS7WAgqeDxVBjBws9cCwl0FIcGlOEMqjm0fil0QF7 wNxTIEkm8j+xCvr/d6uOHtZil+IoMqWWCmr9BxC1zF5TZT0acRw+9DndZWxeSayX nvfdgPlvM5JxKgaa8x+DU9UgBCtVUcp5ywPnRB2AqL2orvUvPH+DlnrUSw6pdOYq xsFEqNwkKEwwHw0nEXboqVeKl1FI/jZLojJx9afrHovVCAH5oC0C/ONMwa3hmBFH ZY/6AtNB -----END CERTIFICATE-----Generated at Fri Mar 27 05:20:36 2026 by rpki-client