$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa File: 386FD4FCB37D11EF8D6EAF63C4F9AE02.roa (raw, json) Hash identifier: IetKqAIBooa+U8zye1p9cy/XtE+vQXfntEYYvrxJfuk= Subject key identifier: 7E:84:56:67:37:7A:8D:01:2A:22:4E:69:62:70:BB:64:D8:43:05:36 Certificate issuer: /CN=A91DF233/serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Certificate serial: FC Authority key identifier: B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa Signing time: Tue 17 Mar 2026 11:40:23 +0000 ROA not before: Tue 17 Mar 2026 11:40:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 151660 IP address blocks: 103.158.243.0/24 maxlen: 24 2401:dc20::/32 maxlen: 32 2401:dc20:cafe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=B1BA1868BA7CEB94CDD64F0574139A01A50B90D5 Validity Not Before: Mar 17 11:40:23 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69b93da7-678a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:c7:e3:7b:80:d2:b2:36:5f:32:73:ab:f6: db:78:fb:2a:30:a5:a4:2f:04:33:71:22:ac:2f:8e: 34:7e:c9:a5:3f:94:16:37:61:d8:45:b2:ab:99:68: 37:e1:4e:9b:03:72:2b:c0:4e:0b:e2:8f:b7:a0:bc: 9e:9f:7c:77:4b:31:8a:ee:41:84:51:b1:93:ac:a6: 38:b2:27:57:93:70:8b:9c:33:b2:03:dc:43:10:22: 8f:6a:bf:6e:7a:b2:72:60:8e:ac:04:29:6e:f5:9f: b6:47:ee:61:01:dc:a7:23:ef:5c:10:2e:61:97:eb: 90:2b:57:b2:d7:35:a4:00:af:76:03:a1:5b:e4:b5: 03:3c:98:b3:4c:50:01:ee:0d:47:f9:ce:ce:70:47: 82:3d:54:ec:c9:3f:6d:26:f8:3b:c1:96:ed:7f:2a: 27:5b:a3:c1:d8:05:41:fd:c8:e9:29:28:2c:86:88: a5:59:85:8a:34:1f:89:75:44:16:a1:47:08:49:1a: 53:45:70:57:e5:ee:e4:99:66:26:b7:e5:98:5a:dc: ab:95:a0:7a:17:3b:0b:a9:c9:cc:48:a4:0a:ad:b1: 75:38:a2:15:23:c8:a1:d7:fe:cb:c8:bb:6b:0c:18: 23:0a:a2:0f:d8:eb:e9:60:87:e0:af:a9:e8:7e:fd: f8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:84:56:67:37:7A:8D:01:2A:22:4E:69:62:70:BB:64:D8:43:05:36 X509v3 Authority Key Identifier: keyid:B1:BA:18:68:BA:7C:EB:94:CD:D6:4F:05:74:13:9A:01:A5:0B:90:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/sboYaLp865TN1k8FdBOaAaULkNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sboYaLp865TN1k8FdBOaAaULkNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/114E7DBAB37811EF88322B0FC4F9AE02/386FD4FCB37D11EF8D6EAF63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.243.0/24 IPv6: 2401:dc20::/32 Signature Algorithm: sha256WithRSAEncryption 8a:5d:38:ac:ef:61:96:38:fb:dc:f1:f0:4f:e6:1b:fc:9c:ba: 1f:ef:cf:ea:fb:00:1c:64:d3:74:b5:4a:84:30:f1:cd:7c:cf: 2e:24:31:bc:8e:40:b8:02:06:41:37:63:6d:82:1c:7c:fa:e1: d6:0a:97:fa:9a:70:ed:d6:fd:fc:3d:81:76:cf:9f:01:59:6e: 4d:9b:27:57:8d:e3:be:83:d0:ef:5d:2a:18:95:46:3a:56:71: df:3f:b3:51:58:16:88:60:1c:1c:6e:12:63:c7:65:df:a4:a5: 25:cc:06:98:51:9a:7a:48:72:4f:0b:e4:b3:eb:6f:52:3a:15: 98:16:dc:2c:c1:aa:61:fc:da:76:d7:21:87:e4:ec:02:ea:49: 7c:1f:af:7f:a4:5c:15:26:d5:e9:ad:50:bb:f6:08:e0:e2:f9: cb:5e:23:20:8a:c3:c9:13:0a:2c:93:e4:2f:61:69:ea:39:cb: bb:d9:da:1e:f7:14:06:57:98:e8:9a:88:9a:e1:a8:13:d0:b2: 7c:b8:24:16:3a:c2:3a:da:53:61:a0:b4:b7:88:42:d8:f8:a0: c4:00:e5:69:6a:bc:93:a6:77:3f:aa:ef:31:6c:9d:f9:2b:71: e1:ce:9c:6d:e2:37:f2:e5:56:7c:aa:87:8f:af:e2:ad:41:ee: 98:9d:e3:81 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyMzMxMTAvBgNVBAUTKEIxQkExODY4QkE3Q0VCOTRDREQ2NEYwNTc0MTM5QTAx QTUwQjkwRDUwHhcNMjYwMzE3MTE0MDIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI5M2RhNy02NzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBbH43uA0rI2XzJzq/bbePsqMKWkLwQzcSKsL440fsmlP5QWN2HYRbKrmWg3 4U6bA3IrwE4L4o+3oLyen3x3SzGK7kGEUbGTrKY4sidXk3CLnDOyA9xDECKPar9u erJyYI6sBClu9Z+2R+5hAdynI+9cEC5hl+uQK1ey1zWkAK92A6Fb5LUDPJizTFAB 7g1H+c7OcEeCPVTsyT9tJvg7wZbtfyonW6PB2AVB/cjpKSgshoilWYWKNB+JdUQW oUcISRpTRXBX5e7kmWYmt+WYWtyrlaB6FzsLqcnMSKQKrbF1OKIVI8ih1/7LyLtr DBgjCqIP2OvpYIfgr6nofv34aQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFH6EVmc3 eo0BKiJOaWJwu2TYQwU2MB8GA1UdIwQYMBaAFLG6GGi6fOuUzdZPBXQTmgGlC5DV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjIzMy8xMTRFN0RCQUIz NzgxMUVGODgzMjJCMEZDNEY5QUUwMi9zYm9ZYUxwODY1VE4xazhGZEJPYUFhVUxr TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib1lhTHA4NjVUTjFrOEZkQk9hQWFVTGtOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYyMzMvMTE0RTdEQkFCMzc4MTFFRjg4MzIyQjBGQzRGOUFFMDIvMzg2RkQ0RkNC MzdEMTFFRjhENkVBRjYzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ57zMA0EAgACMAcDBQAkAdwgMA0GCSqGSIb3DQEBCwUAA4IBAQCK XTis72GWOPvc8fBP5hv8nLof78/q+wAcZNN0tUqEMPHNfM8uJDG8jkC4AgZBN2Nt ghx8+uHWCpf6mnDt1v38PYF2z58BWW5NmydXjeO+g9DvXSoYlUY6VnHfP7NRWBaI YBwcbhJjx2XfpKUlzAaYUZp6SHJPC+Sz629SOhWYFtwswaph/Np21yGH5OwC6kl8 H69/pFwVJtXprVC79gjg4vnLXiMgisPJEwosk+QvYWnqOcu72doe9xQGV5jomoia 4agT0LJ8uCQWOsI62lNhoLS3iELY+KDEAOVparyTpnc/qu8xbJ35K3Hhzpxt4jfy 5VZ8qoePr+KtQe6YneOB -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:18 2026 by rpki-client