$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/29D6DCB2849211EE8F9C5870C4F9AE02.roa File: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (raw, json) Hash identifier: F6LSRzHnrTo7J01sXjb7AoMVO+sTd3XP3ZGtjca+Bu8= Subject key identifier: 4C:79:15:E3:29:78:79:C6:DC:9C:0B:9F:F1:F4:73:08:D5:B9:90:41 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 086A Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/29D6DCB2849211EE8F9C5870C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:22:31 +0000 ROA not before: Wed 02 Jul 2025 22:01:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 20473 IP address blocks: 103.100.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2154 (0x86a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Jul 2 22:01:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a459b7-7bdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:81:4b:05:ad:0a:66:d5:c9:7c:6e:1b:da: df:bd:a8:bb:37:a4:f3:7b:ff:c2:e4:18:c5:25:e4: 21:f7:42:19:64:10:3a:71:bc:56:0a:b7:f3:24:06: ff:78:03:f0:06:10:2e:60:0f:b0:3d:e7:35:a8:0d: 8d:95:d1:a3:43:e1:50:23:7f:b4:02:db:4f:7d:33: e7:4e:b2:af:63:d6:0a:b7:16:8d:14:06:a8:46:60: 3f:c0:72:41:46:f3:1b:34:17:6b:e1:db:ad:36:1c: 6d:9e:4c:dc:61:0a:6b:f1:3f:4b:eb:a0:33:c2:3b: 12:1a:67:e4:a8:73:bd:41:38:95:97:16:df:7c:ce: 38:b8:98:fc:c8:61:6a:0c:66:bc:55:d2:3b:05:dc: bb:71:28:6e:a7:27:8e:76:82:d0:0f:42:fb:b0:77: 2a:73:35:9c:a1:0d:c7:fe:4c:61:c2:ff:d9:de:17: 01:41:7b:c5:3e:69:50:b5:82:cb:45:81:8e:e7:5c: c0:4d:eb:3f:8f:05:92:4f:f0:c7:ea:6e:14:a8:90: 19:15:4e:b1:d5:fa:d9:20:ba:cd:74:b6:c2:58:dc: 56:4c:ed:41:58:b6:5c:80:10:97:ea:d1:67:1d:0a: 0f:a7:e2:6c:1d:9e:f8:ab:a6:93:18:41:cb:ce:99: ee:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:79:15:E3:29:78:79:C6:DC:9C:0B:9F:F1:F4:73:08:D5:B9:90:41 X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/29D6DCB2849211EE8F9C5870C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.154.0/24 Signature Algorithm: sha256WithRSAEncryption 63:96:17:43:aa:c1:ab:ef:31:13:47:17:3b:40:42:f2:be:20: e2:56:54:30:72:b3:d6:ab:0c:39:78:0d:35:88:cb:8f:9b:ce: 07:1a:af:5e:9c:08:fc:be:f5:d5:52:18:dd:56:81:a6:98:30: 6e:ab:6a:32:9a:2a:d3:02:46:cb:bc:e1:48:c9:6d:73:62:fe: d5:1a:b3:06:58:b1:1f:b4:9d:a2:85:9a:df:3d:a3:2a:ce:60: 04:32:79:92:f7:ff:9f:e8:07:6a:60:9e:3b:34:6e:15:b3:d3: 18:65:ad:46:c7:cc:d5:e9:f7:6b:60:05:46:ab:16:31:56:36: 3f:51:36:01:90:a9:fd:91:00:6d:86:15:24:0b:24:aa:63:ed: a0:41:22:44:5e:ea:eb:3c:11:c7:24:3a:96:45:77:ae:e9:27: 9a:26:bf:a4:94:2d:11:90:c4:1f:d3:cd:da:46:58:24:b6:b3: d8:0f:35:f4:20:6d:4d:f4:71:0d:b9:8e:03:84:21:78:33:f3: 7b:1d:a7:fd:f6:7d:9b:b0:a1:4f:0e:8b:5b:cc:d4:4d:ca:a6: 48:37:85:05:9e:36:37:fa:22:a0:77:53:60:ef:e1:c3:bc:d1: 65:22:85:19:46:5f:0b:f8:30:47:90:51:11:99:4f:b9:4b:33: 5a:74:a1:da -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjUwNzAyMjIwMTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTliNy03YmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcCBSwWtCmbVyXxuG9rfvai7N6Tze//C5BjFJeQh90IZZBA6cbxWCrfzJAb/ eAPwBhAuYA+wPec1qA2NldGjQ+FQI3+0AttPfTPnTrKvY9YKtxaNFAaoRmA/wHJB RvMbNBdr4dutNhxtnkzcYQpr8T9L66AzwjsSGmfkqHO9QTiVlxbffM44uJj8yGFq DGa8VdI7Bdy7cShupyeOdoLQD0L7sHcqczWcoQ3H/kxhwv/Z3hcBQXvFPmlQtYLL RYGO51zATes/jwWST/DH6m4UqJAZFU6x1frZILrNdLbCWNxWTO1BWLZcgBCX6tFn HQoPp+JsHZ74q6aTGEHLzpnuWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEx5FeMp eHnG3JwLn/H0cwjVuZBBMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNTRENkE1MEUwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvMjlENkRDQjI4 NDkyMTFFRThGOUM1ODcwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2SaMA0GCSqGSIb3DQEBCwUAA4IBAQBjlhdDqsGr7zETRxc7QELy viDiVlQwcrPWqww5eA01iMuPm84HGq9enAj8vvXVUhjdVoGmmDBuq2oymirTAkbL vOFIyW1zYv7VGrMGWLEftJ2ihZrfPaMqzmAEMnmS9/+f6AdqYJ47NG4Vs9MYZa1G x8zV6fdrYAVGqxYxVjY/UTYBkKn9kQBthhUkCySqY+2gQSJEXurrPBHHJDqWRXeu 6SeaJr+klC0RkMQf083aRlgktrPYDzX0IG1N9HENuY4DhCF4M/N7Haf99n2bsKFP DotbzNRNyqZIN4UFnjY3+iKgd1Ng7+HDvNFlIoUZRl8L+DBHkFERmU+5SzNadKHa -----END CERTIFICATE-----Generated at Thu Mar 26 07:45:37 2026 by rpki-client