$ rpki-client -vvf rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa File: 4B95A58630B111ECAC3FE61DC4F9AE02.roa (raw, json) Hash identifier: Chq3dYly7My4Q8PklpLWnHQt3rosp5Ahuq1dGPO+d4M= Subject key identifier: 55:91:69:5D:F9:29:5F:EE:DE:7C:C2:F1:13:F9:23:25:90:04:76:C5 Certificate issuer: /CN=A91D025A/serialNumber=734090EFC37983FD175BE02F4949668A21437221 Certificate serial: 0553 Authority key identifier: 73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:06:00 +0000 ROA not before: Tue 19 Aug 2025 00:36:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142575 IP address blocks: 103.174.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D025A, serialNumber=734090EFC37983FD175BE02F4949668A21437221 Validity Not Before: Aug 19 00:36:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a471f8-a4da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e2:94:47:fa:9a:a9:a9:82:de:92:3b:52:aa: 30:a2:15:e7:f0:61:cc:4d:f5:c9:75:23:80:19:aa: 55:d4:03:f7:66:96:d3:5e:2d:7e:22:d1:36:7f:68: a6:76:a5:43:66:fd:e3:b1:00:bf:27:35:3d:75:58: 9b:86:40:4d:4d:61:3a:d5:e6:4a:86:60:3f:07:48: 7c:b0:a5:54:75:7c:19:4a:5c:0f:91:3e:91:69:25: 42:bf:c6:c0:c4:10:db:d7:29:e2:df:3c:01:ad:5f: f9:28:3a:77:c4:81:f2:d6:c5:fe:91:f8:ce:96:f8: f4:08:11:b6:76:ec:d3:94:28:10:9d:e6:7e:e5:c4: db:53:d1:65:34:9b:87:3e:84:3b:cd:62:2e:c7:1d: a0:c0:0b:3b:13:30:16:97:e2:41:87:5a:44:38:af: 27:9e:ca:fa:08:24:85:79:dd:4a:88:eb:fc:af:f7: f9:10:33:1a:55:86:37:ee:84:81:99:29:bf:25:68: 8f:14:ce:87:d5:1c:1f:41:01:3e:0b:36:7a:c2:27: 00:ec:5e:f7:56:3b:53:69:2c:3d:ea:41:45:ea:3d: 25:2a:18:70:a5:bc:63:93:6b:f0:f1:92:ce:35:65: ef:d8:a8:65:8b:23:04:b2:8e:b8:00:93:ad:84:12: d8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:91:69:5D:F9:29:5F:EE:DE:7C:C2:F1:13:F9:23:25:90:04:76:C5 X509v3 Authority Key Identifier: keyid:73:40:90:EF:C3:79:83:FD:17:5B:E0:2F:49:49:66:8A:21:43:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/c0CQ78N5g_0XW-AvSUlmiiFDciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0CQ78N5g_0XW-AvSUlmiiFDciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D025A/D5EF1A9030AD11EC95B15D18C4F9AE02/4B95A58630B111ECAC3FE61DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.174.125.0/24 Signature Algorithm: sha256WithRSAEncryption 48:eb:c3:af:a8:46:da:c4:eb:d0:52:2a:e6:75:2a:60:8a:85: 7e:14:3d:56:22:32:29:eb:82:15:2f:52:ca:42:ea:38:e5:1a: 0f:54:ff:0d:d5:ce:0b:21:40:20:49:bd:7f:69:2f:70:56:e9: 01:da:64:02:57:3c:bf:52:98:24:fb:dc:eb:58:74:76:51:6d: 78:3e:50:d3:46:81:80:53:32:3e:24:e0:4a:8e:82:a0:92:4a: ab:a3:38:29:6d:c2:90:bf:2b:f4:4b:53:f5:db:3f:86:12:29: 5e:62:43:af:4b:d0:02:f7:da:8f:4f:a1:8f:2a:bc:c0:27:36: 5f:09:5e:d0:a0:bd:d9:b7:66:a9:75:8f:92:e9:b3:b7:c5:ef: da:90:ab:e0:f6:3a:18:81:1d:8b:8f:b3:a6:91:60:bb:04:80: 29:b5:40:2b:fe:4d:62:7a:b8:8c:fb:ba:6e:66:1f:10:ab:c9: 21:8f:da:a3:3a:3f:6b:15:54:df:e6:c4:9e:f9:e5:2a:3c:b9: bd:91:4f:61:eb:54:0f:fa:6d:8c:c4:51:25:6a:54:f4:0c:ba: ca:eb:24:77:7c:82:f9:c9:93:a9:ae:a5:5a:96:3f:a1:aa:24: f6:70:e0:18:25:75:7d:c0:46:bf:4a:5d:af:2f:56:c8:b2:85: cb:be:b7:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAyNUExMTAvBgNVBAUTKDczNDA5MEVGQzM3OTgzRkQxNzVCRTAyRjQ5NDk2NjhB MjE0MzcyMjEwHhcNMjUwODE5MDAzNjMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFmOC1hNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreKUR/qaqamC3pI7UqowohXn8GHMTfXJdSOAGapV1AP3ZpbTXi1+ItE2f2im dqVDZv3jsQC/JzU9dVibhkBNTWE61eZKhmA/B0h8sKVUdXwZSlwPkT6RaSVCv8bA xBDb1yni3zwBrV/5KDp3xIHy1sX+kfjOlvj0CBG2duzTlCgQneZ+5cTbU9FlNJuH PoQ7zWIuxx2gwAs7EzAWl+JBh1pEOK8nnsr6CCSFed1KiOv8r/f5EDMaVYY37oSB mSm/JWiPFM6H1RwfQQE+CzZ6wicA7F73VjtTaSw96kFF6j0lKhhwpbxjk2vw8ZLO NWXv2KhliyMEso64AJOthBLYVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFWRaV35 KV/u3nzC8RP5IyWQBHbFMB8GA1UdIwQYMBaAFHNAkO/DeYP9F1vgL0lJZoohQ3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDI1QS9ENUVGMUE5MDMw QUQxMUVDOTVCMTVEMThDNEY5QUUwMi9jMENRNzhONWdfMFhXLUF2U1VsbWlpRkRj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwQ1E3OE41Z18wWFctQXZTVWxtaWlGRGNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAyNUEvRDVFRjFBOTAzMEFEMTFFQzk1QjE1RDE4QzRGOUFFMDIvNEI5NUE1ODYz MEIxMTFFQ0FDM0ZFNjFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ659MA0GCSqGSIb3DQEBCwUAA4IBAQBI68OvqEbaxOvQUirmdSpg ioV+FD1WIjIp64IVL1LKQuo45RoPVP8N1c4LIUAgSb1/aS9wVukB2mQCVzy/Upgk +9zrWHR2UW14PlDTRoGAUzI+JOBKjoKgkkqrozgpbcKQvyv0S1P12z+GEileYkOv S9AC99qPT6GPKrzAJzZfCV7QoL3Zt2apdY+S6bO3xe/akKvg9joYgR2Lj7OmkWC7 BIAptUAr/k1ieriM+7puZh8Qq8khj9qjOj9rFVTf5sSe+eUqPLm9kU9h61QP+m2M xFElalT0DLrK6yR3fIL5yZOprqValj+hqiT2cOAYJXV9wEa/Sl2vL1bIsoXLvrdM -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:01 2026 by rpki-client