$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa File: D55CBB8CEC5B11F0861F235B4C6F56BC.roa (raw, json) Hash identifier: X2mW8d4gWle9XPYHVI48nFGyQ3IGCnMTUVMj8AEeyGw= Subject key identifier: 44:70:26:CE:DD:F5:A8:A0:50:B6:4F:27:63:9A:4D:D5:C1:77:69:A0 Certificate issuer: /CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Certificate serial: 0938 Authority key identifier: 57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa Signing time: Sun 01 Mar 2026 17:11:05 +0000 ROA not before: Mon 02 Feb 2026 20:17:04 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 2914 IP address blocks: 103.224.253.0/24 maxlen: 24 103.224.254.0/24 maxlen: 24 103.224.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2360 (0x938) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA297, serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Validity Not Before: Feb 2 20:17:04 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a47329-6dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8b:c9:61:57:f0:52:7a:92:9e:15:e3:ef:51: d0:f0:54:b0:5d:97:98:3a:a8:fc:e0:66:43:8c:df: 3c:f0:bb:7b:ba:84:76:ae:1a:02:4e:c5:2c:99:20: 14:f9:bb:be:33:87:cb:d4:ec:ec:02:14:12:44:90: c7:e0:bf:05:59:94:23:27:d3:9a:1e:a7:9b:83:ee: d2:cf:0a:8f:b5:11:fa:7c:87:79:60:63:cb:25:04: ef:58:e4:ea:82:e7:36:a5:e8:50:17:07:5f:f0:59: ee:fe:b8:61:58:2f:f9:55:10:98:1e:ec:ba:a6:74: 70:7d:05:01:0e:33:dc:0d:05:63:32:b3:02:df:5c: d9:18:13:65:6d:81:8c:d2:3d:47:ba:34:ec:ee:49: ce:8e:16:e5:fc:e4:d2:ed:26:6e:cb:41:f0:94:f9: 78:26:66:af:34:86:18:39:9c:ae:a5:8f:c6:39:d9: ec:92:72:b9:9a:b7:d5:49:ac:96:d4:5d:ef:48:62: 9e:34:74:e9:fc:4d:2e:8c:28:17:a8:73:c3:86:96: 9c:cf:0e:58:c1:b7:c5:30:98:c5:fd:43:13:2c:52: d4:12:b1:fe:d9:a5:a8:75:09:6d:30:80:ab:c4:e0: 93:53:33:b4:20:3f:b8:c3:58:3c:96:74:b0:2e:f9: 40:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:70:26:CE:DD:F5:A8:A0:50:B6:4F:27:63:9A:4D:D5:C1:77:69:A0 X509v3 Authority Key Identifier: keyid:57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/D55CBB8CEC5B11F0861F235B4C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.224.253.0-103.224.255.255 Signature Algorithm: sha256WithRSAEncryption 3c:12:b7:26:58:8a:46:43:38:63:bb:fa:9e:d1:5d:e4:4b:30: 95:29:ae:cb:90:72:bd:6f:9f:4a:a1:39:35:67:ea:6d:19:ed: e6:f8:bf:48:45:3b:e1:92:12:8f:85:68:7d:90:45:9a:b5:ec: 87:d4:26:c5:ee:f7:c4:0c:a3:6e:cb:b7:0c:7b:3c:3c:89:48: a6:50:2b:58:15:e8:5d:c4:17:9d:7e:3a:99:db:86:f0:fd:a1: f1:a7:7c:0d:b2:42:ba:3a:c7:41:38:56:58:a5:bc:e1:95:d6: 51:63:88:c2:4c:0d:b3:4d:5c:9d:88:f3:80:1d:0a:41:7c:64: d6:f7:25:0a:b3:74:d3:9a:c1:0c:0d:c0:66:f3:0c:35:7f:85: 73:e7:a0:dc:ac:fd:5c:f8:96:d8:d5:7f:85:15:8a:bf:da:42: 70:c9:f6:4c:ad:85:b9:06:32:88:b1:d9:56:16:4d:71:6d:06: 36:d5:6a:5c:e9:4a:04:d9:5d:bf:56:9f:a7:af:4f:91:10:b9: 7b:9d:c6:8c:f1:28:dd:56:cf:45:57:63:84:dc:e3:62:ae:80: 64:c1:33:69:20:96:82:77:6f:c2:79:cd:54:ba:b1:7d:ae:41: b5:1b:c5:2d:0c:14:9e:45:22:32:59:37:d5:d3:ce:42:7b:08: 6f:cc:e4:1e -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgICCTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EyOTcxMTAvBgNVBAUTKDU3REI0MkFCOUVCQkVGQkZFMjEwNzNGNTAwN0ZDMzc2 MkM1RkJCMDgwHhcNMjYwMjAyMjAxNzA0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzMyOS02ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YvJYVfwUnqSnhXj71HQ8FSwXZeYOqj84GZDjN888Lt7uoR2rhoCTsUsmSAU +bu+M4fL1OzsAhQSRJDH4L8FWZQjJ9OaHqebg+7SzwqPtRH6fId5YGPLJQTvWOTq guc2pehQFwdf8Fnu/rhhWC/5VRCYHuy6pnRwfQUBDjPcDQVjMrMC31zZGBNlbYGM 0j1HujTs7knOjhbl/OTS7SZuy0HwlPl4JmavNIYYOZyupY/GOdnsknK5mrfVSayW 1F3vSGKeNHTp/E0ujCgXqHPDhpaczw5YwbfFMJjF/UMTLFLUErH+2aWodQltMICr xOCTUzO0ID+4w1g8lnSwLvlA+wIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFERwJs7d 9aigULZPJ2OaTdXBd2mgMB8GA1UdIwQYMBaAFFfbQqueu++/4hBz9QB/w3YsX7sI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTI5Ny8yNEVEMjE1NkJD MjgxMUVBOTdGOTZENDFDNEY5QUUwMi9WOXRDcTU2Nzc3X2lFSFAxQUhfRGRpeGZ1 d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y5dENxNTY3NzdfaUVIUDFBSF9EZGl4ZnV3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0EyOTcvMjRFRDIxNTZCQzI4MTFFQTk3Rjk2RDQxQzRGOUFFMDIvRDU1Q0JCOENF QzVCMTFGMDg2MUYyMzVCNEM2RjU2QkMucm9hMCYGCCsGAQUFBwEHAQH/BBcwFTAT BAIAATANMAsDBABn4P0DAwBn4DANBgkqhkiG9w0BAQsFAAOCAQEAPBK3JliKRkM4 Y7v6ntFd5EswlSmuy5ByvW+fSqE5NWfqbRnt5vi/SEU74ZISj4VofZBFmrXsh9Qm xe73xAyjbsu3DHs8PIlIplArWBXoXcQXnX46mduG8P2h8ad8DbJCujrHQThWWKW8 4ZXWUWOIwkwNs01cnYjzgB0KQXxk1vclCrN005rBDA3AZvMMNX+Fc+eg3Kz9XPiW 2NV/hRWKv9pCcMn2TK2FuQYyiLHZVhZNcW0GNtVqXOlKBNldv1afp69PkRC5e53G jPEo3VbPRVdjhNzjYq6AZMEzaSCWgndvwnnNVLqxfa5BtRvFLQwUnkUiMlk31dPO QnsIb8zkHg== -----END CERTIFICATE-----Generated at Thu Mar 26 03:07:04 2026 by rpki-client