$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa File: E20C4942DC7D11EDA2F7B651C4F9AE02.roa (raw, json) Hash identifier: 3uK7LIocZY1KKcS8GQ6KgahhSJgZOAsqGwqMz242E8g= Subject key identifier: 28:F0:33:31:E4:1C:AC:3D:5E:2A:D2:AF:D1:D7:6B:36:8E:88:AE:DA Certificate issuer: /CN=A91DD42F/serialNumber=87A55061B75F1DC2C5C5BB87D2898E83307D870F Certificate serial: 07E4 Authority key identifier: 87:A5:50:61:B7:5F:1D:C2:C5:C5:BB:87:D2:89:8E:83:30:7D:87:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:41:07 +0000 ROA not before: Tue 26 Aug 2025 22:02:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 59381 IP address blocks: 103.235.176.0/22 maxlen: 22 103.235.176.0/24 maxlen: 24 103.235.177.0/24 maxlen: 24 103.235.178.0/24 maxlen: 24 103.235.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.crl rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD42F, serialNumber=87A55061B75F1DC2C5C5BB87D2898E83307D870F Validity Not Before: Aug 26 22:02:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a409b3-e083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:35:af:f5:ac:fd:69:7d:b7:5f:86:02:4a:0e: 02:cc:e2:4f:63:dc:e4:e1:86:2c:6e:74:b2:fc:e7: fc:f1:8d:3c:27:81:67:d7:6b:c5:57:c5:c5:fb:28: 8a:53:48:2c:16:53:10:22:55:f8:26:31:2c:09:88: 4c:e9:0c:1f:50:e1:b1:34:1b:8b:13:d6:08:39:23: 42:b5:54:6c:98:b2:96:a6:4e:fa:de:fe:14:fe:89: ee:64:a1:31:7a:32:a0:42:92:1b:5d:66:48:ce:ab: 45:89:c0:a9:74:4f:b8:a7:56:0f:2b:0a:27:b7:c6: 97:06:d8:da:8f:56:f9:ae:6d:0b:fa:73:69:9b:61: 0d:d5:43:6d:78:33:24:35:42:16:1e:44:37:1b:0a: 7a:4d:8f:f6:b9:18:f9:64:01:bb:aa:97:6d:32:1b: 4c:76:e7:d7:fa:82:c9:61:aa:2a:a3:ae:a8:8c:22: 93:05:bf:15:38:d4:9b:57:96:33:e4:bb:9b:4a:ec: 13:14:aa:89:56:61:3c:a1:f5:47:77:cd:f4:fd:8a: ef:c0:75:51:99:a9:7e:f0:ff:ce:22:df:f5:b7:e9: 4c:ed:64:7f:cf:1f:9c:11:6f:0c:ca:4b:6c:4d:94: 5d:98:bb:09:97:89:13:13:04:e2:50:9b:b2:38:8f: 35:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:33:31:E4:1C:AC:3D:5E:2A:D2:AF:D1:D7:6B:36:8E:88:AE:DA X509v3 Authority Key Identifier: keyid:87:A5:50:61:B7:5F:1D:C2:C5:C5:BB:87:D2:89:8E:83:30:7D:87:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/h6VQYbdfHcLFxbuH0omOgzB9hw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6VQYbdfHcLFxbuH0omOgzB9hw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD42F/C8BA01BC2E2B11EB80EB7080C4F9AE02/E20C4942DC7D11EDA2F7B651C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.235.176.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:a4:3a:51:1f:19:0e:ac:7d:11:2b:f5:d9:19:25:bb:f2:35: af:66:0f:98:2d:d2:f7:b3:96:ab:aa:75:6c:7a:2b:7d:fe:1c: 51:e4:fc:14:12:fd:cf:ed:a2:e1:c0:b0:56:27:ae:41:0a:60: 4f:10:d2:96:03:1f:cd:32:64:49:37:1f:f7:bd:31:1a:ed:f2: 7b:53:cc:b0:8c:bc:58:9d:ec:80:82:e0:09:72:a2:7c:f9:75: 1f:4d:33:7a:5f:f2:18:e5:1b:9c:df:bd:17:7e:6c:88:2d:a5: b2:61:ad:a7:e9:d6:10:81:ab:52:13:08:fa:aa:ec:51:6c:62: c2:92:cd:d3:e3:64:59:55:d4:ee:59:38:55:9d:d7:8d:03:39: 09:79:3a:c2:9c:f3:03:a2:76:95:e5:a3:b9:77:ac:da:97:56: fa:83:25:3f:5b:25:4e:6e:f4:6f:7c:a7:24:c6:2d:81:a5:71: 0f:c3:07:17:d1:ce:91:35:ec:81:1c:50:7a:be:e5:3e:1a:e5: ba:d9:08:f8:ca:40:8d:85:32:5d:15:78:8e:55:68:45:8f:53: 4d:3a:3b:36:55:80:2f:48:1d:66:73:47:be:b1:e3:d2:a0:bf: 8a:5d:49:18:7b:89:18:ef:e9:97:51:81:e4:c1:ce:bb:43:3e: 35:c4:df:6e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0MkYxMTAvBgNVBAUTKDg3QTU1MDYxQjc1RjFEQzJDNUM1QkI4N0QyODk4RTgz MzA3RDg3MEYwHhcNMjUwODI2MjIwMjEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDliMy1lMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4TWv9az9aX23X4YCSg4CzOJPY9zk4YYsbnSy/Of88Y08J4Fn12vFV8XF+yiK U0gsFlMQIlX4JjEsCYhM6QwfUOGxNBuLE9YIOSNCtVRsmLKWpk763v4U/onuZKEx ejKgQpIbXWZIzqtFicCpdE+4p1YPKwont8aXBtjaj1b5rm0L+nNpm2EN1UNteDMk NUIWHkQ3Gwp6TY/2uRj5ZAG7qpdtMhtMdufX+oLJYaoqo66ojCKTBb8VONSbV5Yz 5LubSuwTFKqJVmE8ofVHd830/YrvwHVRmal+8P/OIt/1t+lM7WR/zx+cEW8Mykts TZRdmLsJl4kTEwTiUJuyOI812QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCjwMzHk HKw9XirSr9HXazaOiK7aMB8GA1UdIwQYMBaAFIelUGG3Xx3CxcW7h9KJjoMwfYcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQyRi9DOEJBMDFCQzJF MkIxMUVCODBFQjcwODBDNEY5QUUwMi9oNlZRWWJkZkhjTEZ4YnVIMG9tT2d6Qjlo dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2VlFZYmRmSGNMRnhidUgwb21PZ3pCOWh3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ0MkYvQzhCQTAxQkMyRTJCMTFFQjgwRUI3MDgwQzRGOUFFMDIvRTIwQzQ5NDJE QzdEMTFFREEyRjdCNjUxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+uwMA0GCSqGSIb3DQEBCwUAA4IBAQAbpDpRHxkOrH0RK/XZGSW7 8jWvZg+YLdL3s5arqnVseit9/hxR5PwUEv3P7aLhwLBWJ65BCmBPENKWAx/NMmRJ Nx/3vTEa7fJ7U8ywjLxYneyAguAJcqJ8+XUfTTN6X/IY5Ruc370XfmyILaWyYa2n 6dYQgatSEwj6quxRbGLCks3T42RZVdTuWThVndeNAzkJeTrCnPMDonaV5aO5d6za l1b6gyU/WyVObvRvfKckxi2BpXEPwwcX0c6RNeyBHFB6vuU+GuW62Qj4ykCNhTJd FXiOVWhFj1NNOjs2VYAvSB1mc0e+sePSoL+KXUkYe4kY7+mXUYHkwc67Qz41xN9u -----END CERTIFICATE-----Generated at Thu Mar 26 19:04:01 2026 by rpki-client