$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa File: E9399E722E7211EDAE100C3DC4F9AE02.roa (raw, json) Hash identifier: 41XnV0Dfd97uGyPbDbqHHH2dJuzZIdcHH6ek0SjFVbQ= Subject key identifier: 5F:62:53:07:50:30:95:13:73:3D:94:35:2E:19:1D:30:81:41:26:FF Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 02BB Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:07:53 +0000 ROA not before: Tue 25 Nov 2025 00:17:22 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 150304 IP address blocks: 103.217.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848, serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: Nov 25 00:17:22 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42c19-6893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:32:73:09:20:5d:5c:93:77:7d:24:d2:d2: 88:1a:a9:f4:12:ce:ec:df:3a:cc:65:2b:10:b7:a1: fc:38:c9:4b:ba:74:a8:00:31:ea:bd:b0:84:5e:a2: b8:1d:7a:6f:db:c6:b2:c8:f2:03:d9:9e:b6:09:2d: 03:5e:9e:e9:64:93:0c:79:e7:6b:0d:46:e0:59:af: 46:24:da:9e:19:09:57:ab:d9:85:72:3f:1f:e8:62: 67:00:ec:81:f1:2c:36:b5:88:6f:56:2c:8c:04:7e: a3:30:d7:dd:2f:fd:85:04:09:f7:d7:3c:3b:18:16: 4b:51:13:a8:f5:4d:87:e6:31:29:39:e7:33:78:8f: 5c:cc:51:3a:68:99:94:9a:a0:8e:b7:7e:30:64:f3: d7:0a:52:9c:dd:60:04:08:82:2f:7f:e2:e6:76:45: ff:3e:b8:a1:c7:ef:63:d5:11:b0:c3:a6:19:ea:d8: 3a:45:a0:e2:58:dd:db:3c:57:f0:8f:95:b8:ab:3c: ee:42:28:3b:17:24:f3:da:91:90:17:b0:f1:96:73: df:e8:1e:0f:2b:2f:ed:24:2c:14:ab:3e:8c:a6:a6: b2:bd:4f:50:c5:dd:51:61:b9:f1:58:0b:dc:fc:d9: ee:3d:87:6f:50:d6:ef:de:dc:86:8f:68:56:84:75: 97:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:62:53:07:50:30:95:13:73:3D:94:35:2E:19:1D:30:81:41:26:FF X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.217.250.0/23 Signature Algorithm: sha256WithRSAEncryption 33:f4:1d:f8:92:15:ba:fa:74:74:32:46:8e:bb:5e:22:32:9c: 9f:f7:99:71:a7:74:43:b7:e2:7d:4c:82:fb:ca:c9:b8:66:71: 4c:44:40:ec:7c:22:f6:5d:24:bb:3b:d9:33:03:1b:8e:ef:42: dd:c3:73:7c:9b:97:e1:8c:28:ab:d5:44:ad:12:b9:65:ba:60: 99:5d:a6:26:e5:78:2a:a1:2c:b5:0a:a8:c0:df:74:40:4e:c7: 12:ce:c9:43:ca:32:96:ea:7d:a1:05:2c:b1:a2:46:53:4d:f7: 62:9a:c6:63:ce:2e:1f:37:55:13:4f:e9:82:b1:25:8c:b9:55: 43:fe:43:bc:7b:3d:a6:24:58:b4:98:00:3c:ab:94:b5:54:d9: 68:e4:20:23:1d:cf:f7:92:6c:e6:ed:45:f8:06:d7:91:1b:13: 01:b5:b5:08:64:23:dd:3e:2f:67:1d:de:b7:55:d2:9d:d3:c1: 51:10:7b:ea:fd:2c:d0:2f:8c:79:18:d4:af:5d:a4:5f:48:35: df:e6:89:01:e3:93:8c:6c:a3:25:3c:b8:aa:44:1c:fd:97:5f: 99:af:ea:06:28:5d:df:40:ea:7d:7f:3a:c5:07:9e:b7:87:8f: f8:92:ea:ac:9a:27:a4:93:57:ae:5c:a3:c4:95:d9:66:3e:52: e5:62:be:21 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjUxMTI1MDAxNzIyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmMxOS02ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7gycwkgXVyTd30k0tKIGqn0Es7s3zrMZSsQt6H8OMlLunSoADHqvbCEXqK4 HXpv28ayyPID2Z62CS0DXp7pZJMMeedrDUbgWa9GJNqeGQlXq9mFcj8f6GJnAOyB 8Sw2tYhvViyMBH6jMNfdL/2FBAn31zw7GBZLUROo9U2H5jEpOeczeI9czFE6aJmU mqCOt34wZPPXClKc3WAECIIvf+LmdkX/Prihx+9j1RGww6YZ6tg6RaDiWN3bPFfw j5W4qzzuQig7FyTz2pGQF7DxlnPf6B4PKy/tJCwUqz6MpqayvU9Qxd1RYbnxWAvc /NnuPYdvUNbv3tyGj2hWhHWXhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF9iUwdQ MJUTcz2UNS4ZHTCBQSb/MB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y4NDgvQ0FEQUI3QjIyRTZFMTFFREFFQUIzRTM2QzRGOUFFMDIvRTkzOTlFNzIy RTcyMTFFREFFMTAwQzNEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9n6MA0GCSqGSIb3DQEBCwUAA4IBAQAz9B34khW6+nR0MkaOu14i Mpyf95lxp3RDt+J9TIL7ysm4ZnFMREDsfCL2XSS7O9kzAxuO70Ldw3N8m5fhjCir 1UStErllumCZXaYm5XgqoSy1CqjA33RATscSzslDyjKW6n2hBSyxokZTTfdimsZj zi4fN1UTT+mCsSWMuVVD/kO8ez2mJFi0mAA8q5S1VNlo5CAjHc/3kmzm7UX4BteR GxMBtbUIZCPdPi9nHd63VdKd08FREHvq/SzQL4x5GNSvXaRfSDXf5okB45OMbKMl PLiqRBz9l1+Zr+oGKF3fQOp9fzrFB563h4/4kuqsmiekk1euXKPEldlmPlLlYr4h -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:50 2026 by rpki-client