$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa File: 2DE1069C050311EA93648E33C4F9AE02.roa (raw, json) Hash identifier: mAWGAZYLLIP3Y6WhqMok7bqseMlhVIGtAozjDaFZhow= Subject key identifier: 8B:8E:0E:0B:90:29:DC:DE:64:42:26:92:B0:8E:A8:CD:AA:6B:B2:2A Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0CE4 Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:44 +0000 ROA not before: Mon 28 Apr 2025 18:58:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135895 IP address blocks: 103.17.232.0/22 maxlen: 24 103.220.225.0/24 maxlen: 24 116.206.216.0/22 maxlen: 24 2402:4280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3300 (0xce4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: Apr 28 18:58:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a591b7-30ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:70:7a:72:b5:3a:72:5e:26:30:83:cb:28:e6: 00:e4:e7:6d:8e:b3:3b:35:4b:3e:f8:44:40:5f:0b: 77:4f:40:25:58:3b:c1:33:c8:e6:8a:37:9f:06:11: ed:e6:1f:63:a9:f1:f1:3f:6c:01:8e:4e:96:56:8a: fa:b4:46:7d:32:77:de:a8:71:a3:49:b2:b0:6c:7a: 9c:c0:0e:98:23:00:20:61:b5:a6:e6:d4:78:6c:dd: 05:a2:49:aa:a0:f3:45:1d:c5:2a:f5:ba:42:cf:b7: 55:f4:e5:28:ae:46:4a:09:c9:c8:fb:01:36:3a:54: 10:4d:55:ac:db:1c:c6:2c:fb:68:0e:a7:9a:fe:d6: 6d:1f:87:d8:5c:45:15:c7:11:4d:f6:56:74:82:c8: 87:55:3d:35:be:2c:ef:9c:a0:11:73:5a:41:14:92: d7:ea:29:d6:fc:a5:66:72:16:86:18:b3:23:31:00: 0e:7f:6f:86:cc:7e:a5:36:02:a2:1a:76:97:66:88: 1e:9a:74:9b:57:d5:01:ea:34:c5:f7:78:9f:c3:93: fd:92:09:b8:6d:9e:9d:a9:e3:60:e5:9b:72:6d:47: 67:47:3e:9f:3d:d3:56:70:fc:87:a6:ff:48:9b:76: 1b:ac:7b:ad:b1:53:63:77:06:17:d0:72:9f:f4:4a: 96:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8E:0E:0B:90:29:DC:DE:64:42:26:92:B0:8E:A8:CD:AA:6B:B2:2A X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/2DE1069C050311EA93648E33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.17.232.0/22 103.220.225.0/24 116.206.216.0/22 IPv6: 2402:4280::/32 Signature Algorithm: sha256WithRSAEncryption c6:e7:31:ad:0c:a3:64:a1:2f:b2:ba:1c:67:9e:0a:29:01:8b: 77:27:e4:ae:5c:3d:1f:ff:6f:21:c1:09:29:a9:9e:28:97:72: 3c:ba:f2:2c:71:64:41:95:e6:9c:14:0f:b0:80:b4:73:d4:6d: 45:10:d5:34:42:9d:84:12:8b:f2:e2:44:04:e0:94:1d:5a:d1: 40:df:20:5e:5b:a9:0e:15:c0:5e:c2:ab:02:da:d2:cd:1c:5e: 9e:bb:b9:f6:c8:e6:27:c9:c2:9c:8a:91:62:6d:d8:fc:77:57: e2:83:c1:5c:88:a5:3e:73:94:3d:52:53:65:72:e6:db:b8:30: 8f:7e:04:8e:e6:dd:f1:a1:6c:d1:b2:c8:cd:b1:c1:4f:29:35: 50:86:8b:bc:a6:df:5a:b1:9f:cd:88:47:9e:9f:33:46:5e:56: a2:92:f9:2c:ab:ca:61:ce:01:27:f1:ef:35:10:21:9a:76:5e: d4:b3:d9:75:7c:eb:d6:11:5e:cb:84:51:27:64:8f:ff:0d:11: 1f:ab:0e:80:cd:e3:f8:50:bb:5d:0d:8a:05:5a:fa:c2:6f:8e: b8:d1:8d:4c:ae:3b:68:57:29:25:c8:4a:c7:da:d9:ab:22:fa: 02:94:50:03:7b:90:f3:d7:11:93:95:24:91:4f:b8:aa:a1:f3: 00:45:98:64 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICDOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjUwNDI4MTg1ODEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFiNy0zMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3B6crU6cl4mMIPLKOYA5OdtjrM7NUs++ERAXwt3T0AlWDvBM8jmijefBhHt 5h9jqfHxP2wBjk6WVor6tEZ9MnfeqHGjSbKwbHqcwA6YIwAgYbWm5tR4bN0Fokmq oPNFHcUq9bpCz7dV9OUorkZKCcnI+wE2OlQQTVWs2xzGLPtoDqea/tZtH4fYXEUV xxFN9lZ0gsiHVT01vizvnKARc1pBFJLX6inW/KVmchaGGLMjMQAOf2+GzH6lNgKi GnaXZogemnSbV9UB6jTF93ifw5P9kgm4bZ6dqeNg5ZtybUdnRz6fPdNWcPyHpv9I m3YbrHutsVNjdwYX0HKf9EqWLwIDAQABo4ICezCCAncwHQYDVR0OBBYEFIuODguQ KdzeZEImkrCOqM2qa7IqMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNENTAvMTU0NjRGRDYwNTAxMTFFQUFEOTcyNTJDQzRGOUFFMDIvMkRFMTA2OUMw NTAzMTFFQTkzNjQ4RTMzQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZxHoAwQAZ9zhAwQCdM7YMA0EAgACMAcDBQAkAkKAMA0GCSqGSIb3 DQEBCwUAA4IBAQDG5zGtDKNkoS+yuhxnngopAYt3J+SuXD0f/28hwQkpqZ4ol3I8 uvIscWRBleacFA+wgLRz1G1FENU0Qp2EEovy4kQE4JQdWtFA3yBeW6kOFcBewqsC 2tLNHF6eu7n2yOYnycKcipFibdj8d1fig8FciKU+c5Q9UlNlcubbuDCPfgSO5t3x oWzRssjNscFPKTVQhou8pt9asZ/NiEeenzNGXlaikvksq8phzgEn8e81ECGadl7U s9l1fOvWEV7LhFEnZI//DREfqw6AzeP4ULtdDYoFWvrCb4640Y1MrjtoVyklyErH 2tmrIvoClFADe5Dz1xGTlSSRT7iqofMARZhk -----END CERTIFICATE-----Generated at Thu Mar 26 10:08:11 2026 by rpki-client