$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa File: 23EE2B76F2F111ED91F08A4FC4F9AE02.roa (raw, json) Hash identifier: 5THegraPgMqqp6VrhQyR4hOqJ9d+jYAhvqCx1inYwhs= Subject key identifier: 4B:07:BB:83:24:89:60:7F:F0:2F:59:83:F9:DB:BD:CE:84:DC:D2:66 Certificate issuer: /CN=A91C72E6/serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Certificate serial: 0215 Authority key identifier: 75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:51 +0000 ROA not before: Tue 01 Jul 2025 04:08:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 148968 IP address blocks: 103.254.231.0/24 maxlen: 24 2001:df2:6d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72E6, serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Validity Not Before: Jul 1 04:08:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a591be-bc62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:53:a8:b4:d4:33:63:a8:24:16:08:dd:98: 0c:52:9f:8e:33:74:3b:9d:ee:e5:e9:ff:f3:be:35: 96:bc:48:62:5d:2b:17:47:33:d5:22:64:68:93:a1: cc:0a:70:d8:dc:c8:29:26:ea:d9:19:84:df:a5:0f: 2c:c1:9c:f0:ee:0d:98:65:c2:b9:e6:90:10:0b:72: 58:47:9f:41:b5:53:7f:6f:0e:69:22:14:6b:e8:69: 5f:05:2b:5c:0a:c0:93:29:75:62:a5:ec:09:e4:a7: 83:98:eb:95:cf:be:75:f2:74:d1:2e:5b:19:da:3c: cd:6d:16:f6:ac:c5:ff:46:bd:1a:92:1f:d2:c7:39: 49:9a:ca:fc:09:69:06:e5:14:7d:89:eb:1a:1a:15: 7f:69:46:6e:9d:01:d7:8d:9c:f5:b3:26:36:07:48: 9d:be:7c:6e:ef:e6:c9:28:ca:ae:0b:83:48:2a:53: c2:ef:c8:d5:81:dc:98:8e:bc:ec:4d:88:e1:cd:1e: cf:39:42:e7:e4:41:5a:e6:96:16:e8:fe:7b:84:69: 5c:1d:8a:f1:d6:c2:1f:95:0a:34:98:03:63:67:81: ce:6c:83:10:28:bb:96:5a:e6:88:de:75:29:1a:25: f3:b5:0a:08:da:a6:f6:bf:73:e4:6e:75:59:08:ad: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:07:BB:83:24:89:60:7F:F0:2F:59:83:F9:DB:BD:CE:84:DC:D2:66 X509v3 Authority Key Identifier: keyid:75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.254.231.0/24 IPv6: 2001:df2:6d40::/48 Signature Algorithm: sha256WithRSAEncryption 7f:b9:8d:ee:74:ea:43:fd:0e:ff:07:3d:ff:64:6c:08:0e:ef: d6:d0:1c:4f:9f:5d:a9:04:e8:13:72:de:8d:75:14:f4:28:e5: 05:26:94:d7:a4:f8:c9:15:13:60:1f:67:e6:56:c4:ca:cf:5c: 48:53:d1:74:f4:b9:21:6e:4b:bb:e0:eb:fe:16:34:6d:27:21: 71:45:61:65:15:fd:e1:11:b9:0e:c7:c3:8a:b7:7f:c3:a1:00: f5:42:31:73:12:91:8d:81:7c:b9:b7:47:9c:c7:b1:0f:5f:e1: 16:c8:56:3b:27:67:45:a4:a1:50:68:d4:42:ee:1b:f8:e1:5d: 35:7c:14:cb:5c:8c:28:c9:8a:bb:90:a9:ba:5f:8c:f8:65:b7: 4b:74:42:a6:10:60:0f:69:73:49:2e:89:92:be:c4:04:76:ea: 9e:c2:13:64:cf:cc:24:da:8a:4b:4b:7e:c3:03:29:a2:df:18: 46:69:df:0d:97:5c:10:5d:e5:e6:10:39:44:8d:5a:3c:71:07: 8f:c4:42:6d:57:85:f4:14:b5:66:e1:3d:9f:3e:90:23:04:26: 62:6a:3d:b6:71:e7:0c:86:f2:46:a7:89:83:06:c8:95:08:4c: b5:fa:20:15:0f:cb:a8:44:14:a6:d6:b8:0e:ba:50:b0:4c:b4: a9:7d:97:0d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyRTYxMTAvBgNVBAUTKDc1MjUzM0IxODUyRjdEMkFDNkU3MERDREVCRkQ1NDdE REM0MzhGOTQwHhcNMjUwNzAxMDQwODU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFiZS1iYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9FTqLTUM2OoJBYI3ZgMUp+OM3Q7ne7l6f/zvjWWvEhiXSsXRzPVImRok6HM CnDY3MgpJurZGYTfpQ8swZzw7g2YZcK55pAQC3JYR59BtVN/bw5pIhRr6GlfBStc CsCTKXVipewJ5KeDmOuVz7518nTRLlsZ2jzNbRb2rMX/Rr0akh/SxzlJmsr8CWkG 5RR9iesaGhV/aUZunQHXjZz1syY2B0idvnxu7+bJKMquC4NIKlPC78jVgdyYjrzs TYjhzR7POULn5EFa5pYW6P57hGlcHYrx1sIflQo0mANjZ4HObIMQKLuWWuaI3nUp GiXztQoI2qb2v3PkbnVZCK2sfQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEsHu4Mk iWB/8C9Zg/nbvc6E3NJmMB8GA1UdIwQYMBaAFHUlM7GFL30qxucNzev9VH3cQ4+U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzJFNi9FNkU2RkIzMkYy RUExMUVEOTA5OTAwNEFDNEY5QUUwMi9kU1V6c1lVdmZTckc1dzNONl8xVWZkeERq NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RTVXpzWVV2ZlNyRzV3M042XzFVZmR4RGo1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcyRTYvRTZFNkZCMzJGMkVBMTFFRDkwOTkwMDRBQzRGOUFFMDIvMjNFRTJCNzZG MkYxMTFFRDkxRjA4QTRGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/7nMA8EAgACMAkDBwAgAQ3ybUAwDQYJKoZIhvcNAQELBQADggEB AH+5je506kP9Dv8HPf9kbAgO79bQHE+fXakE6BNy3o11FPQo5QUmlNek+MkVE2Af Z+ZWxMrPXEhT0XT0uSFuS7vg6/4WNG0nIXFFYWUV/eERuQ7Hw4q3f8OhAPVCMXMS kY2BfLm3R5zHsQ9f4RbIVjsnZ0WkoVBo1ELuG/jhXTV8FMtcjCjJiruQqbpfjPhl t0t0QqYQYA9pc0kuiZK+xAR26p7CE2TPzCTaiktLfsMDKaLfGEZp3w2XXBBd5eYQ OUSNWjxxB4/EQm1XhfQUtWbhPZ8+kCMEJmJqPbZx5wyG8kaniYMGyJUITLX6IBUP y6hEFKbWuA66ULBMtKl9lw0= -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:00 2026 by rpki-client