$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa File: C0C268B8441C11EF9E110F1EC4F9AE02.roa (raw, json) Hash identifier: wTvqX5lh+hQgLml0mergBNQIB7VUtx22kJjyPfNulFg= Subject key identifier: 2F:27:26:88:10:22:E7:67:1B:E2:6C:B7:E3:7B:06:8B:75:AB:2A:E7 Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0291 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa Signing time: Tue 28 Apr 2026 09:09:46 +0000 ROA not before: Tue 28 Apr 2026 09:09:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 401254 IP address blocks: 103.251.236.0/24 maxlen: 24 103.251.237.0/24 maxlen: 24 103.251.238.0/24 maxlen: 24 103.251.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Apr 28 09:09:46 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69f0795a-ea15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:40:f0:e8:f9:6e:bb:8c:bf:57:16:e5:a1:24: 0c:56:29:f0:e6:37:7c:60:c6:26:5a:32:0b:d1:1a: b8:f6:93:16:30:cf:86:bd:71:8c:54:cf:9c:34:6d: 90:a3:c4:f6:2e:02:54:a6:dc:f2:32:b7:7f:d1:b6: 00:af:87:96:70:4d:e1:70:19:f1:66:ea:38:e9:e4: 81:af:b0:39:81:28:7e:10:9e:8a:90:a4:8f:3b:ac: a6:10:d8:83:f1:52:57:f0:dc:a3:3c:14:cb:65:e8: 10:10:c6:aa:42:6e:74:a8:e6:5b:79:17:fe:a2:c5: 22:20:4b:9d:14:bf:60:b2:2c:00:16:ec:cd:72:c8: e5:5e:eb:9a:28:55:b8:6a:84:b6:26:b4:a7:68:36: d6:20:cf:ad:29:e8:ed:bc:e9:24:40:22:41:b9:7b: bd:55:0d:ac:17:1e:13:46:7c:12:53:e1:97:82:6b: 7a:f4:b0:ec:fa:99:cb:b7:60:01:8a:67:7a:c1:6b: 39:7a:6d:cc:2b:72:15:99:b9:44:87:23:46:7b:88: 1d:e0:c5:4b:e2:a0:57:0e:33:51:0e:48:fe:8a:d4: 7d:45:0f:3a:2c:98:08:f3:31:5e:46:38:e7:70:e5: 31:f5:c2:f2:45:8f:82:e6:a1:1d:e5:c5:d5:d8:16: 64:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:27:26:88:10:22:E7:67:1B:E2:6C:B7:E3:7B:06:8B:75:AB:2A:E7 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.251.236.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:7e:05:fe:ad:bd:fa:08:c7:8f:d2:87:82:1d:5f:26:43:7d: 1b:71:c6:11:59:85:d6:84:db:3d:3b:9e:16:9c:c6:ce:ad:76: 3c:f3:f3:4f:06:69:7d:5b:4d:85:a7:60:81:23:99:20:9d:56: cc:2b:4a:77:45:09:50:0d:37:7d:3e:0b:8b:08:9c:8c:94:1a: 45:c9:1a:87:fc:80:04:7f:f0:79:64:27:9a:08:1f:1c:69:62: de:db:b0:54:f6:d6:d6:59:da:06:df:e0:90:86:18:77:19:cb: 0a:59:b9:e0:a8:5d:0b:15:80:35:2c:6d:fd:ee:f3:27:a5:6b: 0c:c4:a4:86:7d:80:ab:80:e9:8d:60:bf:c8:74:4e:08:35:7d: 2b:23:a8:73:fb:c1:e6:f3:4a:03:be:2e:3f:d7:c2:dd:cd:87: 73:3f:68:c5:31:c5:b0:96:19:fb:13:e1:88:74:59:58:d9:40: e7:c5:20:57:ac:30:69:dd:35:15:2a:dc:5c:0d:e5:8c:0d:28: 29:da:2b:83:41:a3:d2:15:1e:43:25:62:13:2d:36:2e:0e:5d: 98:91:0d:84:e4:8c:69:d8:05:97:71:3a:2c:77:85:2d:12:23: 19:84:4b:e1:c4:70:57:6e:3c:09:ab:07:41:fa:4e:0a:64:c5: 48:72:cd:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjYwNDI4MDkwOTQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwNzk1YS1lYTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUDw6Pluu4y/VxbloSQMVinw5jd8YMYmWjIL0Rq49pMWMM+GvXGMVM+cNG2Q o8T2LgJUptzyMrd/0bYAr4eWcE3hcBnxZuo46eSBr7A5gSh+EJ6KkKSPO6ymENiD 8VJX8NyjPBTLZegQEMaqQm50qOZbeRf+osUiIEudFL9gsiwAFuzNcsjlXuuaKFW4 aoS2JrSnaDbWIM+tKejtvOkkQCJBuXu9VQ2sFx4TRnwSU+GXgmt69LDs+pnLt2AB imd6wWs5em3MK3IVmblEhyNGe4gd4MVL4qBXDjNRDkj+itR9RQ86LJgI8zFeRjjn cOUx9cLyRY+C5qEd5cXV2BZk6wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC8nJogQ IudnG+Jst+N7Bot1qyrnMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMTcvMTA1QUM4RkM5MEMzMTFFREJBMURDQzIzQzRGOUFFMDIvQzBDMjY4Qjg0 NDFDMTFFRjlFMTEwRjFFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/vsMA0GCSqGSIb3DQEBCwUAA4IBAQA7fgX+rb36CMeP0oeCHV8m Q30bccYRWYXWhNs9O54WnMbOrXY88/NPBml9W02Fp2CBI5kgnVbMK0p3RQlQDTd9 PguLCJyMlBpFyRqH/IAEf/B5ZCeaCB8caWLe27BU9tbWWdoG3+CQhhh3GcsKWbng qF0LFYA1LG397vMnpWsMxKSGfYCrgOmNYL/IdE4INX0rI6hz+8Hm80oDvi4/18Ld zYdzP2jFMcWwlhn7E+GIdFlY2UDnxSBXrDBp3TUVKtxcDeWMDSgp2iuDQaPSFR5D JWITLTYuDl2YkQ2E5Ixp2AWXcTosd4UtEiMZhEvhxHBXbjwJqwdB+k4KZMVIcs1w -----END CERTIFICATE-----Generated at Wed May 13 03:56:58 2026 by rpki-client