$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa File: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (raw, json) Hash identifier: T91CehV6Kilx5jipNUIxpW+jqQ75yMZ3U6hoSABekhI= Subject key identifier: 26:2C:A7:22:D7:5C:45:E1:9C:EB:FB:73:FD:CA:59:BF:D0:65:96:83 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0CCA Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa Signing time: Thu 12 Mar 2026 18:24:29 +0000 ROA not before: Thu 12 Mar 2026 18:24:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133430 IP address blocks: 103.228.120.0/22 maxlen: 22 103.228.120.0/23 maxlen: 23 103.228.120.0/24 maxlen: 24 103.228.121.0/24 maxlen: 24 103.228.122.0/23 maxlen: 23 103.228.122.0/24 maxlen: 24 103.228.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Mar 12 18:24:29 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b304dc-f17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:54:ef:82:ca:5d:f1:9d:3f:68:af:6a:d4: de:5d:8a:c1:f1:b4:95:25:ce:85:c9:f1:86:98:f9: 88:b6:fa:50:fa:0c:5c:bc:04:13:b3:e5:0b:cc:78: c7:9b:dd:3e:84:36:8c:07:29:a5:2d:6f:83:70:ef: e7:2d:6a:07:40:a5:12:5d:04:28:d4:0a:44:fb:6f: 0c:13:fb:06:7f:31:96:f3:73:66:17:65:c0:19:8a: 86:38:9f:eb:f9:3f:ca:ce:e6:fe:8c:ef:b3:1b:a3: f1:89:ad:60:61:d7:4d:63:40:35:7a:45:a7:50:3a: be:d0:4c:be:8f:d5:51:3f:35:54:43:47:8e:7f:ba: 4b:79:12:23:63:4d:ef:1e:ed:1b:0e:a4:28:8b:d4: 63:0c:c8:e8:d5:e7:95:c2:3e:cf:57:df:47:42:01: 31:bd:67:36:d0:15:ed:09:46:b6:84:1c:de:31:e6: 2a:4a:b6:4d:a0:b3:f6:bf:9c:29:f6:14:ae:8e:98: 37:f1:8e:e2:51:24:33:b0:98:f8:3f:7b:d1:ba:12: 8c:b8:0a:3c:b4:c7:76:37:d2:91:56:a9:72:6a:0e: 52:6f:22:84:81:65:aa:2a:87:12:6f:da:fc:2e:43: b2:36:7e:6c:7a:9a:e7:db:8f:a6:a0:14:da:5f:4d: d4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:2C:A7:22:D7:5C:45:E1:9C:EB:FB:73:FD:CA:59:BF:D0:65:96:83 X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.228.120.0/22 Signature Algorithm: sha256WithRSAEncryption 77:ab:d9:88:46:e0:df:3f:55:4e:27:7c:e9:89:7b:8c:48:35: f1:ee:df:f2:97:67:4b:16:f6:e2:1e:a9:d4:be:33:21:a9:59: a7:37:a5:66:71:60:c1:7a:4f:61:bd:d5:23:c3:cf:c6:83:cc: b5:91:12:37:31:82:e9:08:2e:f2:ad:14:1a:13:fa:0d:d1:be: e2:20:7b:56:26:ba:dc:fe:bd:cc:4c:76:bc:aa:87:c2:dc:6c: ef:98:b9:a2:22:93:e2:08:ae:a2:4f:38:6d:e1:06:25:46:06: 04:bd:52:97:87:49:a3:8a:69:bc:93:e6:0c:41:e8:c3:9d:c1: 51:d7:30:ce:46:b4:7c:51:cd:02:96:d9:b1:6b:c4:7c:03:4b: 12:d3:28:4c:02:20:82:76:e3:d0:0a:11:da:43:7e:fc:10:ba: c7:08:ae:e3:9d:84:e7:84:b0:94:9b:5a:59:4c:69:da:97:74: 3e:ea:b4:41:71:36:ef:bd:da:f6:71:f7:93:23:e1:9a:2b:61: af:0a:54:e7:5c:6b:ff:68:a3:77:cc:74:8b:ce:99:17:98:9c: 3a:1f:dd:25:a2:a3:d9:1b:67:07:53:82:b0:97:85:ca:c6:62: 25:90:c9:ac:0b:ba:0d:a7:e4:5d:12:f6:98:06:2a:23:57:f3: cd:3b:ba:c2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjYwMzEyMTgyNDI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzMDRkYy1mMTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhxU74LKXfGdP2ivatTeXYrB8bSVJc6FyfGGmPmItvpQ+gxcvAQTs+ULzHjH m90+hDaMBymlLW+DcO/nLWoHQKUSXQQo1ApE+28ME/sGfzGW83NmF2XAGYqGOJ/r +T/Kzub+jO+zG6Pxia1gYddNY0A1ekWnUDq+0Ey+j9VRPzVUQ0eOf7pLeRIjY03v Hu0bDqQoi9RjDMjo1eeVwj7PV99HQgExvWc20BXtCUa2hBzeMeYqSrZNoLP2v5wp 9hSujpg38Y7iUSQzsJj4P3vRuhKMuAo8tMd2N9KRVqlyag5SbyKEgWWqKocSb9r8 LkOyNn5seprn24+moBTaX03U3wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCYspyLX XEXhnOv7c/3KWb/QZZaDMB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QxNzQvNTFDM0U1NDgwQjREMTFFQTkyQzI4RjIwQzRGOUFFMDIvNTRBRDYwQUUw QzJFMTFFQUJCQkZBMTU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+R4MA0GCSqGSIb3DQEBCwUAA4IBAQB3q9mIRuDfP1VOJ3zpiXuM SDXx7t/yl2dLFvbiHqnUvjMhqVmnN6VmcWDBek9hvdUjw8/Gg8y1kRI3MYLpCC7y rRQaE/oN0b7iIHtWJrrc/r3MTHa8qofC3GzvmLmiIpPiCK6iTzht4QYlRgYEvVKX h0mjimm8k+YMQejDncFR1zDORrR8Uc0Cltmxa8R8A0sS0yhMAiCCduPQChHaQ378 ELrHCK7jnYTnhLCUm1pZTGnal3Q+6rRBcTbvvdr2cfeTI+GaK2GvClTnXGv/aKN3 zHSLzpkXmJw6H90loqPZG2cHU4Kwl4XKxmIlkMmsC7oNp+RdEvaYBiojV/PNO7rC -----END CERTIFICATE-----Generated at Sat Mar 28 15:14:37 2026 by rpki-client