$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa File: F8B64B2A97BB11EF9D4C9647C4F9AE02.roa (raw, json) Hash identifier: 4/nBHOA25vAMqwUgab8qc39twLNBg0xZb9rqex0mT0Q= Subject key identifier: 28:EB:58:96:B9:30:31:68:F4:3A:59:CE:22:11:61:BA:36:62:51:B5 Certificate issuer: /CN=A91D3F8E/serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Certificate serial: 0236 Authority key identifier: D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:16:26 +0000 ROA not before: Fri 11 Jul 2025 04:09:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.238.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F8E, serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Validity Not Before: Jul 11 04:09:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a411fa-fac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cc:bf:86:2a:1d:fc:33:fb:81:81:3b:c7:07: ba:1f:3b:e2:f2:2c:9d:e1:7a:8d:34:d2:5f:4c:61: be:e4:65:20:07:fa:8f:49:ad:41:90:f9:95:f2:0c: b6:30:ba:cc:4e:c1:66:52:c1:6e:f5:d0:ff:45:38: d8:dd:7e:ec:e5:71:d9:1a:09:27:8f:40:70:9d:cf: 13:f8:ea:82:75:f3:af:ee:a1:f3:ea:1b:29:18:b2: 5e:d1:d8:58:82:3d:34:c4:5e:63:c3:19:27:93:82: f6:0d:79:24:31:6f:ab:94:07:5c:9b:3f:11:a9:23: d1:1b:ba:81:d4:de:5d:7f:b5:a7:fe:5d:eb:b3:8a: 18:c5:2d:16:bf:6f:40:70:1a:b5:3d:a2:83:22:bd: 11:5d:17:73:82:b3:1e:51:ce:12:20:7a:bb:72:c7: 08:07:03:50:a8:b8:d0:b2:be:f6:77:bc:2c:54:82: 3f:54:da:9f:f7:c8:15:b2:06:00:08:09:c0:86:32: 90:17:ad:40:47:a8:e4:23:0c:27:84:eb:c9:d7:32: 84:1d:50:fe:e0:c0:32:e6:81:a6:04:b9:d8:78:19: 6a:a7:a3:95:06:3d:f2:e7:82:9e:58:d1:0d:9f:41: 53:bc:6d:ea:04:12:8c:38:df:1d:dd:1c:27:3b:6f: 21:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EB:58:96:B9:30:31:68:F4:3A:59:CE:22:11:61:BA:36:62:51:B5 X509v3 Authority Key Identifier: keyid:D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.238.114.0/24 Signature Algorithm: sha256WithRSAEncryption a4:d4:1b:0e:7a:16:6d:1d:dc:7a:e3:23:6d:92:7d:ac:1b:5b: f1:7d:6a:29:1a:3d:d7:7a:4d:0b:39:dc:c8:54:b0:31:3f:7d: b7:9b:c3:d6:ca:4e:e0:10:93:13:f0:07:11:f6:9b:d5:98:c2: 4b:27:0c:1c:f9:8a:12:40:e2:f4:38:84:ec:66:ab:75:86:10: 36:ea:50:5f:f0:e2:a0:03:69:13:be:fb:70:6a:1d:eb:52:af: e7:61:7e:20:9b:d5:91:50:77:a1:28:89:1c:d9:b7:90:a9:60: 4e:e7:7a:ca:3f:44:5b:22:4b:98:eb:e5:3c:70:4e:15:87:63: 1c:11:bb:c7:5b:ee:f5:36:65:00:c1:e3:97:49:e6:55:72:76: 89:aa:ef:05:42:f1:22:ff:d5:c0:a4:cb:4c:52:1a:9f:05:f7: 1f:4d:00:ff:65:2d:4e:70:bc:7c:80:30:3e:42:69:8e:c8:90: c1:9f:d7:86:ab:e9:12:67:94:58:36:e3:f9:65:37:5b:a8:ca: d2:e1:42:a5:10:10:27:9b:47:31:93:28:2e:66:db:50:66:24: 15:3f:8a:a5:08:69:bb:4e:ac:5b:2e:73:9c:10:a1:c5:a5:96: 9f:60:04:98:5f:f6:0b:d6:f2:0e:d5:e4:69:62:d6:86:e9:83: 2f:b0:99:6b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGOEUxMTAvBgNVBAUTKEQ0MDA1MUJDOEREQTYwQzkzMkVFMDc3NjlBQjg2N0JF RkE4RDQyRjYwHhcNMjUwNzExMDQwOTUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTFmYS1mYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMy/hiod/DP7gYE7xwe6Hzvi8iyd4XqNNNJfTGG+5GUgB/qPSa1BkPmV8gy2 MLrMTsFmUsFu9dD/RTjY3X7s5XHZGgknj0Bwnc8T+OqCdfOv7qHz6hspGLJe0dhY gj00xF5jwxknk4L2DXkkMW+rlAdcmz8RqSPRG7qB1N5df7Wn/l3rs4oYxS0Wv29A cBq1PaKDIr0RXRdzgrMeUc4SIHq7cscIBwNQqLjQsr72d7wsVII/VNqf98gVsgYA CAnAhjKQF61AR6jkIwwnhOvJ1zKEHVD+4MAy5oGmBLnYeBlqp6OVBj3y54KeWNEN n0FTvG3qBBKMON8d3RwnO28hbQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCjrWJa5 MDFo9DpZziIRYbo2YlG1MB8GA1UdIwQYMBaAFNQAUbyN2mDJMu4Hdpq4Z776jUL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y4RS82QzQwODlCQTIx NkMxMUVFQjI4QkYyNENDNEY5QUUwMi8xQUJSdkkzYVlNa3k3Z2QybXJobnZ2cU5R dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBQlJ2STNhWU1reTdnZDJtcmhudnZxTlF2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNGOEUvNkM0MDg5QkEyMTZDMTFFRUIyOEJGMjRDQzRGOUFFMDIvRjhCNjRCMkE5 N0JCMTFFRjlENEM5NjQ3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+5yMA0GCSqGSIb3DQEBCwUAA4IBAQCk1BsOehZtHdx64yNtkn2s G1vxfWopGj3Xek0LOdzIVLAxP323m8PWyk7gEJMT8AcR9pvVmMJLJwwc+YoSQOL0 OITsZqt1hhA26lBf8OKgA2kTvvtwah3rUq/nYX4gm9WRUHehKIkc2beQqWBO53rK P0RbIkuY6+U8cE4Vh2McEbvHW+71NmUAweOXSeZVcnaJqu8FQvEi/9XApMtMUhqf BfcfTQD/ZS1OcLx8gDA+QmmOyJDBn9eGq+kSZ5RYNuP5ZTdbqMrS4UKlEBAnm0cx kyguZttQZiQVP4qlCGm7TqxbLnOcEKHFpZafYASYX/YL1vIO1eRpYtaG6YMvsJlr -----END CERTIFICATE-----Generated at Thu Mar 26 08:51:13 2026 by rpki-client