$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa File: 728139D62FA311F0A9129814C4F9AE02.roa (raw, json) Hash identifier: eWlYnOj+XzRjYM0rC0+ZAzd4ERRZ2swjPOnqLD6EJ/Y= Subject key identifier: 4A:D6:ED:99:BF:52:F6:91:0C:A5:7C:35:8E:57:4E:15:5E:21:DE:86 Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 0440 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:39:22 +0000 ROA not before: Fri 27 Feb 2026 00:20:17 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 214143 IP address blocks: 103.163.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Feb 27 00:20:17 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a46bba-0ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:dd:bf:65:73:c0:3a:a2:ce:2c:53:5b:14: a3:11:88:be:dd:22:ac:db:55:61:e9:1d:b9:82:59: 44:ea:fe:03:b4:2a:16:3e:d8:96:20:bd:ef:e6:0b: 52:0c:4b:18:4d:72:db:9f:a4:2c:72:95:62:2a:30: 57:8d:cf:2a:27:fb:6a:81:ec:54:32:34:1f:bd:cc: 62:bc:95:c4:c8:89:21:5f:f3:42:87:c0:10:5b:77: f3:d5:5e:d4:59:34:fe:7a:d6:93:63:75:e4:05:bb: 2e:2c:4f:33:96:7c:7b:05:4c:fd:a9:db:c8:cf:ce: 46:c1:89:c5:dc:6f:2f:28:b2:18:00:06:f7:05:32: db:f4:10:d8:02:e4:95:2f:67:27:39:47:b1:4e:23: ab:fa:22:98:fa:26:a4:33:c7:46:60:f9:f6:b8:82: 42:fb:70:71:52:2e:d2:6e:93:ee:3a:65:eb:45:19: 7f:e1:c8:66:c8:ef:fc:af:25:6f:9f:40:ad:ad:84: ed:69:ea:a9:51:ff:6d:04:0e:68:9b:c2:e3:e8:bd: 5f:26:a9:7e:8f:17:d2:39:d0:44:05:81:7f:74:8b: 99:df:f6:89:41:8f:ec:05:9f:0b:a9:3b:de:9b:f2: b3:d6:3d:b8:a5:22:64:cc:9c:0c:61:fa:84:c9:6d: aa:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D6:ED:99:BF:52:F6:91:0C:A5:7C:35:8E:57:4E:15:5E:21:DE:86 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.155.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:38:f1:e0:69:7a:76:49:98:36:a8:e4:5c:2a:10:25:e2:7b: 06:d2:37:24:2c:20:67:1e:26:bf:46:a3:43:c6:18:0f:a6:4a: fd:79:75:ec:ae:ff:73:93:b3:1b:70:74:cb:ff:81:39:27:55: 2f:f6:3c:d5:32:9d:92:b7:4c:61:42:78:a6:ec:e0:a0:9b:bb: 3a:7f:67:0d:aa:2b:c7:15:1e:7a:75:51:ed:d3:6f:7c:af:82: 34:04:8c:b9:36:25:ee:d4:0c:20:aa:73:15:0c:9a:88:a0:24: 85:84:18:d1:6b:8b:92:f1:ab:a5:22:2c:e2:e9:fe:ee:66:2b: 65:3b:e9:74:5b:9f:2a:fa:bc:29:52:de:9c:e5:4d:0c:65:76: bd:ff:5f:76:92:2a:ef:64:77:a9:a2:8e:dc:3a:c6:14:8b:2b: 72:6c:a0:08:50:33:fc:07:26:5c:2a:ee:f8:35:65:dd:22:17: 5f:de:88:82:34:8d:41:66:a0:00:4e:13:d7:18:84:a4:77:81: a9:31:f2:58:62:c2:84:ec:12:a1:b3:2b:44:8a:cd:ce:2d:12: f6:d0:88:35:5e:5d:7a:b1:94:a2:e3:d2:13:05:44:49:f0:60: 54:fb:9b:cf:08:d3:8c:7b:6a:0f:18:55:2e:f4:54:5b:2f:cf: 33:ab:89:fc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjYwMjI3MDAyMDE3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJiYS0wY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJ3dv2VzwDqizixTWxSjEYi+3SKs21Vh6R25gllE6v4DtCoWPtiWIL3v5gtS DEsYTXLbn6QscpViKjBXjc8qJ/tqgexUMjQfvcxivJXEyIkhX/NCh8AQW3fz1V7U WTT+etaTY3XkBbsuLE8zlnx7BUz9qdvIz85GwYnF3G8vKLIYAAb3BTLb9BDYAuSV L2cnOUexTiOr+iKY+iakM8dGYPn2uIJC+3BxUi7SbpPuOmXrRRl/4chmyO/8ryVv n0CtrYTtaeqpUf9tBA5om8Lj6L1fJql+jxfSOdBEBYF/dIuZ3/aJQY/sBZ8LqTve m/Kz1j24pSJkzJwMYfqEyW2qWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFErW7Zm/ UvaRDKV8NY5XThVeId6GMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI4RDkvOEIwMDIzNzY5QTAyMTFFQzhCODE3Nzg1QzRGOUFFMDIvNzI4MTM5RDYy RkEzMTFGMEE5MTI5ODE0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6ObMA0GCSqGSIb3DQEBCwUAA4IBAQBfOPHgaXp2SZg2qORcKhAl 4nsG0jckLCBnHia/RqNDxhgPpkr9eXXsrv9zk7MbcHTL/4E5J1Uv9jzVMp2St0xh Qnim7OCgm7s6f2cNqivHFR56dVHt0298r4I0BIy5NiXu1AwgqnMVDJqIoCSFhBjR a4uS8aulIizi6f7uZitlO+l0W58q+rwpUt6c5U0MZXa9/192kirvZHepoo7cOsYU iytybKAIUDP8ByZcKu74NWXdIhdf3oiCNI1BZqAAThPXGISkd4GpMfJYYsKE7BKh sytEis3OLRL20Ig1Xl16sZSi49ITBURJ8GBU+5vPCNOMe2oPGFUu9FRbL88zq4n8 -----END CERTIFICATE-----Generated at Thu Mar 26 06:13:51 2026 by rpki-client