$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa File: CE6FBAEE813111EBA15FAC34C4F9AE02.roa (raw, json) Hash identifier: pR+witKEaHLec5ZO4Q8OowFN1JAjkZbNoIWVOSAfes0= Subject key identifier: 09:06:20:ED:DE:4D:F0:68:74:52:F2:44:E4:AE:90:37:D9:29:06:7C Certificate issuer: /CN=A91D4325/serialNumber=25FD5AC999B0395E6C0EBD561E1B1B88E0D60763 Certificate serial: 06FE Authority key identifier: 25:FD:5A:C9:99:B0:39:5E:6C:0E:BD:56:1E:1B:1B:88:E0:D6:07:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:32:17 +0000 ROA not before: Tue 04 Nov 2025 22:42:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141397 IP address blocks: 103.198.24.0/24 maxlen: 24 103.198.25.0/24 maxlen: 24 2403:1280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.crl rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4325, serialNumber=25FD5AC999B0395E6C0EBD561E1B1B88E0D60763 Validity Not Before: Nov 4 22:42:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a431d1-8159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:1f:04:0a:af:24:ce:47:6c:15:9d:32:57: 7e:02:5b:3c:0a:43:a3:c9:06:2c:0d:e1:93:3a:ab: a3:8f:84:66:bd:54:bc:a3:b6:86:de:7a:a1:04:9e: 79:c6:96:61:b6:24:c3:3a:60:8e:05:bc:02:57:dd: 07:75:fe:98:03:93:f3:7a:39:85:ee:8a:cc:2a:27: 49:87:c5:f1:ab:47:da:8e:fe:21:0c:89:fc:9f:bf: da:98:d3:c4:01:08:a0:52:b6:80:fd:27:a2:ec:fb: 18:2d:70:4e:f9:80:ce:d7:50:9f:66:33:39:49:1b: df:2e:34:e4:1e:32:d2:3a:ff:36:6b:8a:09:8e:df: 68:3e:d1:f4:52:a3:1b:82:fe:00:c5:22:2f:42:5d: eb:88:94:57:4e:23:a7:a6:a5:95:0d:8c:a3:a8:96: a4:00:c3:f9:83:ab:b4:ff:c5:62:a6:4d:4d:91:dd: 28:a5:78:bb:47:2b:b4:7c:ac:fb:08:83:81:12:3d: e9:ce:b3:38:49:c6:c5:27:55:5d:28:ec:09:2f:93: c3:37:3f:45:41:c2:36:13:77:fc:27:e6:66:b2:a0: 26:16:dc:5c:bc:eb:68:f0:46:80:cc:e7:99:65:34: 83:24:57:9a:d1:ba:62:30:ae:19:04:b3:14:63:c5: 98:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:06:20:ED:DE:4D:F0:68:74:52:F2:44:E4:AE:90:37:D9:29:06:7C X509v3 Authority Key Identifier: keyid:25:FD:5A:C9:99:B0:39:5E:6C:0E:BD:56:1E:1B:1B:88:E0:D6:07:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.24.0/23 IPv6: 2403:1280::/32 Signature Algorithm: sha256WithRSAEncryption 6d:d1:ac:d6:a5:f6:46:48:01:a8:92:d4:58:f4:6a:8f:4e:03: 1d:fb:76:98:c1:3d:44:93:f3:e5:61:85:e3:f1:20:f2:cf:57: 87:64:70:e3:80:4e:e6:05:88:ef:22:45:d2:c8:bc:ba:58:df: a0:c2:e1:30:77:df:59:64:d0:12:a7:d5:df:51:dc:bd:a4:68: d6:55:79:8f:2c:48:f4:fd:d6:3d:71:b6:3c:94:9d:d3:cb:66: 14:06:c9:be:07:69:c3:99:cf:5d:4d:dc:aa:1a:5a:62:55:3d: c6:5d:6c:a4:f1:a7:0f:db:49:01:a3:71:cf:a0:58:99:fd:68: 62:e2:96:45:32:5e:1b:15:92:81:33:e2:49:dd:f4:82:3c:34: 2b:39:a0:bd:64:4d:ae:64:4b:b9:71:3a:ab:17:1c:42:5e:a2: 86:34:8d:17:46:4b:5b:c6:c5:ae:b7:2d:e2:0a:8b:76:60:16: cc:0d:06:64:1d:9c:dd:53:04:cf:a6:4b:38:d0:07:2d:44:43: 24:a1:20:d6:cc:51:d9:68:df:c7:d1:09:a0:04:65:76:a9:1a: 71:64:e2:2b:90:c3:83:49:0a:0e:60:52:28:a8:03:a0:19:dd: 6e:a7:be:82:72:b9:7d:53:5c:3d:ca:76:ce:43:1e:87:8d:39: 1b:b3:4c:38 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzMjUxMTAvBgNVBAUTKDI1RkQ1QUM5OTlCMDM5NUU2QzBFQkQ1NjFFMUIxQjg4 RTBENjA3NjMwHhcNMjUxMTA0MjI0MjAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzFkMS04MTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz8fBAqvJM5HbBWdMld+Als8CkOjyQYsDeGTOqujj4RmvVS8o7aG3nqhBJ55 xpZhtiTDOmCOBbwCV90Hdf6YA5PzejmF7orMKidJh8Xxq0fajv4hDIn8n7/amNPE AQigUraA/Sei7PsYLXBO+YDO11CfZjM5SRvfLjTkHjLSOv82a4oJjt9oPtH0UqMb gv4AxSIvQl3riJRXTiOnpqWVDYyjqJakAMP5g6u0/8Vipk1Nkd0opXi7Ryu0fKz7 CIOBEj3pzrM4ScbFJ1VdKOwJL5PDNz9FQcI2E3f8J+ZmsqAmFtxcvOto8EaAzOeZ ZTSDJFea0bpiMK4ZBLMUY8WYKQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAkGIO3e TfBodFLyROSukDfZKQZ8MB8GA1UdIwQYMBaAFCX9WsmZsDlebA69Vh4bG4jg1gdj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDMyNS9FRDg1NjVFODgx MkYxMUVCOTREMzgxMzJDNEY5QUUwMi9KZjFheVptd09WNXNEcjFXSGhzYmlPRFdC Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmMWF5Wm13T1Y1c0RyMVdIaHNiaU9EV0IyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzMjUvRUQ4NTY1RTg4MTJGMTFFQjk0RDM4MTMyQzRGOUFFMDIvQ0U2RkJBRUU4 MTMxMTFFQkExNUZBQzM0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ8YYMA0EAgACMAcDBQAkAxKAMA0GCSqGSIb3DQEBCwUAA4IBAQBt 0azWpfZGSAGoktRY9GqPTgMd+3aYwT1Ek/PlYYXj8SDyz1eHZHDjgE7mBYjvIkXS yLy6WN+gwuEwd99ZZNASp9XfUdy9pGjWVXmPLEj0/dY9cbY8lJ3Ty2YUBsm+B2nD mc9dTdyqGlpiVT3GXWyk8acP20kBo3HPoFiZ/Whi4pZFMl4bFZKBM+JJ3fSCPDQr OaC9ZE2uZEu5cTqrFxxCXqKGNI0XRktbxsWuty3iCot2YBbMDQZkHZzdUwTPpks4 0ActREMkoSDWzFHZaN/H0QmgBGV2qRpxZOIrkMODSQoOYFIoqAOgGd1up76Ccrl9 U1w9ynbOQx6HjTkbs0w4 -----END CERTIFICATE-----Generated at Thu Mar 26 08:51:16 2026 by rpki-client