$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa File: A8A44B84F13511ECB096F867C4F9AE02.roa (raw, json) Hash identifier: 1UM0zzO1Qgt86BQ5nOPIG0SOHvOKriG0v7quuhyaytc= Subject key identifier: D1:AB:BD:D6:EA:2C:48:50:D6:D1:4B:39:4B:C6:69:82:19:52:E7:A4 Certificate issuer: /CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Certificate serial: 0357 Authority key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:22:26 +0000 ROA not before: Sat 31 May 2025 01:47:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133012 IP address blocks: 103.187.10.0/24 maxlen: 24 103.187.11.0/24 maxlen: 24 2400:7860:100::/40 maxlen: 40 2400:7860:200::/40 maxlen: 40 2400:7860:200::/48 maxlen: 48 2400:7860:200:1::/64 maxlen: 64 2400:7860:300::/40 maxlen: 40 2400:7860:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 855 (0x357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDF83, serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Validity Not Before: May 31 01:47:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e931-a3d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1c:1c:93:4e:42:1f:06:05:a0:bd:20:00:38: c7:1c:a7:90:3a:d7:3d:e3:c8:5d:8e:d7:a9:b1:3a: 84:36:13:76:bd:43:b6:db:b4:07:18:43:f0:64:f0: 45:36:95:16:39:05:7b:17:af:d5:4f:52:75:4a:d8: d9:69:ef:36:3c:d2:3e:0f:9a:dd:ed:35:5a:19:08: 05:61:9b:68:bd:ec:37:5d:a8:eb:25:84:9f:61:90: 93:5a:9e:7c:31:93:6f:70:b3:33:4d:bc:96:72:8f: 46:32:a2:28:21:3d:e6:5f:5f:bf:11:3a:d6:42:23: 50:9e:1f:92:5e:f1:cf:b1:61:f7:c5:c3:13:11:b3: d2:11:d1:40:54:9a:b8:01:9e:2e:b4:32:2b:f9:f6: 2a:ae:5b:9a:6f:09:ef:55:0b:b5:75:8e:07:73:09: 83:40:ca:fa:10:97:83:a1:f2:da:9d:7e:fc:ce:5c: 14:d5:75:91:35:86:05:9f:f4:c7:51:b2:d8:b6:2c: 84:62:dd:e7:b8:d6:db:6a:f3:52:2c:e4:ff:e0:51: 80:47:9e:54:3e:e7:bc:0c:2c:21:4a:b8:c9:dc:f3: 94:ea:ad:83:ee:ce:54:99:ae:9e:dd:e1:07:ed:8f: d9:ec:af:42:36:04:63:e7:44:f5:a4:f1:7b:87:e6: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AB:BD:D6:EA:2C:48:50:D6:D1:4B:39:4B:C6:69:82:19:52:E7:A4 X509v3 Authority Key Identifier: keyid:2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.187.10.0/23 IPv6: 2400:7860:100::-2400:7860:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 54:27:21:dc:86:a8:e7:3e:5f:03:f3:4e:2f:d2:06:4e:f2:26: e5:b8:36:65:3b:af:e4:ba:32:9c:d9:4d:db:b7:55:ad:d7:8e: e6:f6:6b:38:f5:e6:5b:b7:41:cb:3d:10:29:79:24:35:f4:9e: 8a:cf:03:e6:9a:7e:a4:85:27:9a:48:39:c5:b3:3b:ff:8b:b7: 77:f2:9c:2b:76:5b:c9:a9:13:e8:67:fc:d5:e0:2a:dc:c7:13: f6:86:b5:f1:8d:65:ee:6a:12:fd:7d:95:66:18:db:37:f0:7e: 74:7a:b9:ec:0a:dd:2f:c3:eb:62:61:1c:ce:88:dc:91:c4:74: f7:5c:6d:36:cb:23:62:0d:45:30:bf:8f:39:73:24:33:20:70: c1:3a:54:57:b5:91:af:7a:73:5e:7e:12:38:bc:ce:6e:c8:d4: 39:68:14:02:ec:dd:bc:38:2a:66:a1:3d:00:d7:bb:cf:4d:0d: 82:a5:dc:13:6d:cd:ae:4e:fb:24:a5:4d:6c:63:59:a8:a7:c8: 69:a1:8d:68:70:71:d1:cd:d6:e2:10:82:65:f0:dd:32:65:3b: e4:f8:eb:85:4b:95:1b:78:d1:7b:9f:ed:ae:92:6e:db:4f:77: 22:c1:95:63:c9:15:52:a3:11:a3:50:ad:8b:6b:d9:b4:f3:e4: 8e:04:15:d4 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICA1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGODMxMTAvBgNVBAUTKDJFRjg3NkE2NjRFNUQ4QjZDREUwMUNGMDg0MTBEQkFE OTZCQzQ5OTgwHhcNMjUwNTMxMDE0NzUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTkzMS1hM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRwck05CHwYFoL0gADjHHKeQOtc948hdjtepsTqENhN2vUO227QHGEPwZPBF NpUWOQV7F6/VT1J1StjZae82PNI+D5rd7TVaGQgFYZtovew3XajrJYSfYZCTWp58 MZNvcLMzTbyWco9GMqIoIT3mX1+/ETrWQiNQnh+SXvHPsWH3xcMTEbPSEdFAVJq4 AZ4utDIr+fYqrluabwnvVQu1dY4HcwmDQMr6EJeDofLanX78zlwU1XWRNYYFn/TH UbLYtiyEYt3nuNbbavNSLOT/4FGAR55UPue8DCwhSrjJ3POU6q2D7s5Uma6e3eEH 7Y/Z7K9CNgRj50T1pPF7h+aUEwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFNGrvdbq LEhQ1tFLOUvGaYIZUuekMB8GA1UdIwQYMBaAFC74dqZk5di2zeAc8IQQ262WvEmY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREY4My9FMkFFM0IwQUYx MzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJMYk40Qnp3aEJEYnJaYThT WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x2aDJwbVRsMkxiTjRCendoQkRiclphOFNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGODMvRTJBRTNCMEFGMTMwMTFFQzg2REU3RDYzQzRGOUFFMDIvQThBNDRCODRG MTM1MTFFQ0IwOTZGODY3QzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQBZ7sKMBgEAgACMBIwEAMGACQAeGABAwYAJAB4YAQwDQYJKoZIhvcN AQELBQADggEBAFQnIdyGqOc+XwPzTi/SBk7yJuW4NmU7r+S6MpzZTdu3Va3Xjub2 azj15lu3Qcs9ECl5JDX0norPA+aafqSFJ5pIOcWzO/+Lt3fynCt2W8mpE+hn/NXg KtzHE/aGtfGNZe5qEv19lWYY2zfwfnR6uewK3S/D62JhHM6I3JHEdPdcbTbLI2IN RTC/jzlzJDMgcME6VFe1ka96c15+Eji8zm7I1DloFALs3bw4KmahPQDXu89NDYKl 3BNtza5O+ySlTWxjWainyGmhjWhwcdHN1uIQgmXw3TJlO+T464VLlRt40Xuf7a6S bttPdyLBlWPJFVKjEaNQrYtr2bTz5I4EFdQ= -----END CERTIFICATE-----Generated at Thu Mar 26 06:45:58 2026 by rpki-client