$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa File: 2F581CEA33F311EEABFC7410C4F9AE02.roa (raw, json) Hash identifier: F9EcEQA+HmBdtnZV4TQMHFa8YoL9P87Gx491WL3HtyA= Subject key identifier: 62:11:C0:DD:FE:02:73:32:0D:92:63:4F:5D:E2:49:43:7A:7D:37:4D Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 065C Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:13 +0000 ROA not before: Thu 10 Jul 2025 23:35:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151634 IP address blocks: 103.168.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:25:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8, serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Jul 10 23:35:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46e09-f0f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:64:3a:42:14:34:02:6c:f6:68:7e:bc:19:05: 23:79:d7:85:71:38:22:df:87:89:18:79:54:3d:66: 7d:60:bf:54:9a:b2:43:20:a4:f3:8c:5a:f5:8c:7c: 7f:28:44:c0:2f:81:23:7d:3b:21:69:e5:c2:42:9e: b8:47:72:df:a4:5e:28:8c:d8:e4:7b:62:d0:c0:8d: 5e:e3:81:c9:72:05:e1:1c:ea:3b:e1:22:f8:06:a2: 56:41:fa:d8:eb:2c:09:07:7e:73:b5:fa:19:e7:5a: 4a:42:a7:21:d7:d8:a6:0c:2a:24:c0:f4:0e:08:ba: f0:c8:ca:2e:9d:df:c7:e0:51:4d:37:d9:99:95:3b: f1:1b:19:23:40:d2:87:74:37:3b:e4:f2:42:b6:52: cc:0f:15:46:96:24:97:27:f1:72:24:9f:d0:b4:35: 2e:87:82:2a:5e:54:1e:dd:47:ef:07:cd:2e:db:da: ba:c3:05:5d:c8:10:62:0d:5b:32:8d:e4:08:88:20: 99:e1:d8:26:0a:47:9e:9a:96:58:a1:d9:41:ad:d1: 9d:ff:c5:50:fb:30:e6:5a:01:6d:d3:2a:ca:ad:59: 38:a6:ee:46:5b:d4:f2:5d:81:ca:e8:27:1b:31:f1: 5d:1b:1a:ea:fe:d8:28:23:db:e6:bc:46:bf:bf:f8: e3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:11:C0:DD:FE:02:73:32:0D:92:63:4F:5D:E2:49:43:7A:7D:37:4D X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/2F581CEA33F311EEABFC7410C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.168.43.0/24 Signature Algorithm: sha256WithRSAEncryption 64:bd:2d:0e:25:4f:b9:06:ea:6a:f8:18:bf:f8:0a:75:c9:64: 01:1f:c0:79:6b:86:b7:e9:14:ac:9a:6e:4b:ea:47:68:ee:30: a9:00:33:5d:3c:00:9b:1f:a7:bb:55:0f:d8:a1:ac:fd:f9:35: 73:86:94:c2:c5:f3:92:ea:6f:97:2b:f7:6d:a7:50:77:59:9a: 71:6b:60:f7:94:fc:43:b2:8d:0f:6a:ef:0a:3b:17:6c:68:2d: 1f:d8:2b:84:be:8d:1d:fe:cc:07:68:58:5a:fe:13:3f:1b:1f: 3c:f9:8c:aa:98:b6:4d:a9:66:3b:2f:36:25:44:b0:17:44:79: ce:52:a5:3f:8d:66:8b:2d:e6:7a:d2:31:c3:1e:90:c7:5c:75: a3:e4:e5:f6:e3:f1:a0:a0:da:35:c5:48:0e:8a:6f:a9:f0:86: 2a:7d:2b:2e:1b:e8:1b:a8:58:52:7c:40:0f:53:5a:6a:03:72: 18:43:a9:43:84:61:24:ca:df:75:f8:99:02:9b:06:e1:a4:74: 49:09:52:a7:75:3f:2c:76:b2:57:8c:95:95:1a:b0:51:de:85: af:30:e3:9e:0c:75:ed:1b:96:a1:b5:5c:dc:60:fc:3d:ae:71: 0d:72:97:d2:80:d5:d6:07:fd:94:49:aa:eb:f8:12:17:ad:5e: 10:34:2e:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjUwNzEwMjMzNTI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUwOS1mMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGQ6QhQ0Amz2aH68GQUjedeFcTgi34eJGHlUPWZ9YL9UmrJDIKTzjFr1jHx/ KETAL4EjfTshaeXCQp64R3LfpF4ojNjke2LQwI1e44HJcgXhHOo74SL4BqJWQfrY 6ywJB35ztfoZ51pKQqch19imDCokwPQOCLrwyMound/H4FFNN9mZlTvxGxkjQNKH dDc75PJCtlLMDxVGliSXJ/FyJJ/QtDUuh4IqXlQe3UfvB80u29q6wwVdyBBiDVsy jeQIiCCZ4dgmCkeempZYodlBrdGd/8VQ+zDmWgFt0yrKrVk4pu5GW9TyXYHK6Ccb MfFdGxrq/tgoI9vmvEa/v/jjAQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGIRwN3+ AnMyDZJjT13iSUN6fTdNMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMkY1ODFDRUEz M0YzMTFFRUFCRkM3NDEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6grMA0GCSqGSIb3DQEBCwUAA4IBAQBkvS0OJU+5Bupq+Bi/+Ap1 yWQBH8B5a4a36RSsmm5L6kdo7jCpADNdPACbH6e7VQ/Yoaz9+TVzhpTCxfOS6m+X K/dtp1B3WZpxa2D3lPxDso0Pau8KOxdsaC0f2CuEvo0d/swHaFha/hM/Gx88+Yyq mLZNqWY7LzYlRLAXRHnOUqU/jWaLLeZ60jHDHpDHXHWj5OX24/GgoNo1xUgOim+p 8IYqfSsuG+gbqFhSfEAPU1pqA3IYQ6lDhGEkyt91+JkCmwbhpHRJCVKndT8sdrJX jJWVGrBR3oWvMOOeDHXtG5ahtVzcYPw9rnENcpfSgNXWB/2USarr+BIXrV4QNC5w -----END CERTIFICATE-----Generated at Thu Mar 26 14:51:59 2026 by rpki-client