$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/2340D07AF2F111ED91F08A4FC4F9AE02.roa File: 2340D07AF2F111ED91F08A4FC4F9AE02.roa (raw, json) Hash identifier: 93lqVQhsdgkNqe+QLKSt6rzwX0cHhLHTkYfLV3iVFU8= Subject key identifier: 73:0B:DB:9F:78:D5:8D:EF:99:0E:DD:14:E2:85:6B:E1:A7:90:B3:C4 Certificate issuer: /CN=A91C72E6/serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Certificate serial: 0214 Authority key identifier: 75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/2340D07AF2F111ED91F08A4FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:50 +0000 ROA not before: Tue 01 Jul 2025 04:08:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132823 IP address blocks: 103.254.231.0/24 maxlen: 24 2001:df2:6d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72E6, serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Validity Not Before: Jul 1 04:08:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a591be-d9e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:01:66:d5:f0:f7:3c:ec:11:10:12:14:d7: 79:4b:c8:f8:3b:db:1e:99:3b:e2:e2:1b:4b:b8:7f: 38:92:4b:6a:be:93:25:6c:de:23:3a:59:4d:05:19: ec:5a:1f:f8:9b:23:8a:98:d9:ef:3d:c4:2a:95:1d: 1f:82:6d:50:1e:c7:59:39:3c:e7:f8:dc:1d:54:fa: ef:39:92:3e:89:89:8c:ec:64:3d:c2:0b:98:a7:f6: 18:ca:3b:72:a0:7e:d3:e4:9b:fc:4c:6f:ca:0e:31: cf:85:52:d3:aa:5a:4d:40:35:52:53:39:14:1e:ef: c6:72:f2:69:e4:17:6b:b3:29:28:0b:a1:5c:10:2c: 7d:7e:0a:4a:3f:a7:71:6e:76:35:fe:7e:e6:01:f0: 0d:7d:1c:29:07:2d:3c:30:ea:ea:d9:3c:83:f6:fd: 4e:de:f3:e6:fa:c1:1d:2f:6c:06:87:b7:e3:84:b5: d2:c6:2a:8b:02:9c:09:c7:e6:a0:11:10:65:18:26: 02:27:4f:1a:74:71:d0:f0:90:37:85:98:c9:bd:63: 7b:ab:b0:84:4d:f8:70:1f:59:27:74:d8:1b:71:0b: 15:9e:05:b1:de:83:8b:95:c3:ca:4c:7b:4c:b4:d3: d7:01:ef:9d:4d:28:d0:2a:21:4b:3a:44:e8:47:32: a0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0B:DB:9F:78:D5:8D:EF:99:0E:DD:14:E2:85:6B:E1:A7:90:B3:C4 X509v3 Authority Key Identifier: keyid:75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/2340D07AF2F111ED91F08A4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.231.0/24 IPv6: 2001:df2:6d40::/48 Signature Algorithm: sha256WithRSAEncryption 3a:a5:af:e5:69:ac:e5:8b:ca:f3:ce:b8:fe:40:c6:bc:33:19: ed:b4:e0:ad:60:7c:5f:a7:f1:61:10:37:0a:58:51:27:b0:b2: 15:35:93:90:8f:c3:9e:ac:76:ba:1f:92:20:fd:b5:84:a6:19: 9c:25:cb:1e:7c:78:ca:e6:05:c8:4b:e7:82:92:c1:d9:7d:df: 23:d4:62:53:5d:f9:66:95:d5:19:b9:11:d2:55:f9:33:8f:10: bd:25:6c:68:e5:84:69:87:5b:b4:ae:77:a7:96:48:30:19:a6: ee:df:c3:64:75:80:2e:17:08:e5:28:a9:33:a3:bd:14:23:f8: c8:ed:2c:63:9f:89:a7:4d:13:45:1f:b4:3f:f5:c0:82:7e:81: b1:10:a4:82:16:14:eb:e3:b8:3b:f0:90:d1:a7:bd:d6:e3:25: 79:bd:d5:cd:1a:1b:e2:65:79:61:ee:26:29:73:59:36:9e:6e: c1:fa:05:1b:0d:cc:a6:6a:52:0d:d7:d3:69:2b:43:28:7e:07: b7:91:75:bd:49:52:1a:96:49:32:12:a5:f5:49:00:7d:3e:49: 4d:08:85:aa:b1:5b:42:38:d0:f8:29:50:db:d3:15:68:b5:93: 46:44:2d:9d:2e:6a:8d:27:39:a4:77:72:ea:fc:ca:6e:3f:2e: 9d:d4:66:72 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyRTYxMTAvBgNVBAUTKDc1MjUzM0IxODUyRjdEMkFDNkU3MERDREVCRkQ1NDdE REM0MzhGOTQwHhcNMjUwNzAxMDQwODU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFiZS1kOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZoBZtXw9zzsERASFNd5S8j4O9semTvi4htLuH84kktqvpMlbN4jOllNBRns Wh/4myOKmNnvPcQqlR0fgm1QHsdZOTzn+NwdVPrvOZI+iYmM7GQ9wguYp/YYyjty oH7T5Jv8TG/KDjHPhVLTqlpNQDVSUzkUHu/GcvJp5BdrsykoC6FcECx9fgpKP6dx bnY1/n7mAfANfRwpBy08MOrq2TyD9v1O3vPm+sEdL2wGh7fjhLXSxiqLApwJx+ag ERBlGCYCJ08adHHQ8JA3hZjJvWN7q7CETfhwH1kndNgbcQsVngWx3oOLlcPKTHtM tNPXAe+dTSjQKiFLOkToRzKg1wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHML2594 1Y3vmQ7dFOKFa+GnkLPEMB8GA1UdIwQYMBaAFHUlM7GFL30qxucNzev9VH3cQ4+U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzJFNi9FNkU2RkIzMkYy RUExMUVEOTA5OTAwNEFDNEY5QUUwMi9kU1V6c1lVdmZTckc1dzNONl8xVWZkeERq NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RTVXpzWVV2ZlNyRzV3M042XzFVZmR4RGo1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcyRTYvRTZFNkZCMzJGMkVBMTFFRDkwOTkwMDRBQzRGOUFFMDIvMjM0MEQwN0FG MkYxMTFFRDkxRjA4QTRGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/7nMA8EAgACMAkDBwAgAQ3ybUAwDQYJKoZIhvcNAQELBQADggEB ADqlr+VprOWLyvPOuP5AxrwzGe204K1gfF+n8WEQNwpYUSewshU1k5CPw56sdrof kiD9tYSmGZwlyx58eMrmBchL54KSwdl93yPUYlNd+WaV1Rm5EdJV+TOPEL0lbGjl hGmHW7Sud6eWSDAZpu7fw2R1gC4XCOUoqTOjvRQj+MjtLGOfiadNE0UftD/1wIJ+ gbEQpIIWFOvjuDvwkNGnvdbjJXm91c0aG+JleWHuJilzWTaebsH6BRsNzKZqUg3X 02krQyh+B7eRdb1JUhqWSTISpfVJAH0+SU0IhaqxW0I40PgpUNvTFWi1k0ZELZ0u ao0nOaR3cur8ym4/Lp3UZnI= -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:55 2026 by rpki-client