$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa File: 67F6AC6C2BD911F09AF6B821C4F9AE02.roa (raw, json) Hash identifier: GMRoxaiJwQd4I9blwc313RSuAiLyK99JqZt/L1LzUaQ= Subject key identifier: 5B:CF:7D:36:3D:9C:0E:F3:EE:19:61:63:0D:C8:25:1F:6B:F0:4A:70 Certificate issuer: /CN=A91E5481/serialNumber=F4B7D0443B8CFF9B4098BB8CECBED87FCEA9BAD2 Certificate serial: AA Authority key identifier: F4:B7:D0:44:3B:8C:FF:9B:40:98:BB:8C:EC:BE:D8:7F:CE:A9:BA:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:49:55 +0000 ROA not before: Mon 13 Oct 2025 11:04:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 30058 IP address blocks: 103.173.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.crl rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5481, serialNumber=F4B7D0443B8CFF9B4098BB8CECBED87FCEA9BAD2 Validity Not Before: Oct 13 11:04:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a393-a222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:81:d8:9e:03:b3:05:c6:03:3e:f0:5d:90:01: 78:ad:ec:4a:e5:c1:93:f5:c7:75:71:ce:6a:77:0d: 12:20:fa:b0:95:ee:f2:d5:4d:e4:2e:0b:61:e8:e8: bb:da:b5:de:8a:b4:0a:bd:fb:63:e3:21:b6:21:98: 7a:91:c9:08:72:f4:3e:54:13:cd:e2:63:25:ff:87: 71:40:dc:ca:13:4a:a0:42:b5:7a:d7:c9:b0:14:1f: 1c:88:16:44:71:a4:98:1d:a9:2c:8a:c1:ec:6e:34: c0:e3:c8:8f:27:c2:60:95:aa:5e:16:e4:9d:96:d2: e9:44:f7:d2:56:d2:b3:0e:6c:15:d1:cc:de:25:4f: 4b:95:8e:77:10:4e:af:22:f2:79:55:04:07:1e:be: 11:47:bd:85:5f:95:40:76:77:32:09:c3:d4:db:87: 8c:17:bc:6d:1b:23:6b:25:82:fc:6a:e6:84:5a:53: 7f:d4:1b:56:8c:78:5f:3e:3c:00:2e:16:8c:63:1a: 1a:19:96:b4:70:f7:57:ff:38:c6:97:7d:ea:bd:53: 43:ab:c1:28:42:2d:81:ef:88:3c:f0:ed:56:c5:32: 7a:d6:88:d4:fb:3c:a3:3f:6d:29:8f:52:f3:b2:b1: 18:23:08:43:90:47:ba:57:57:af:f9:7f:e5:13:a3: 21:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CF:7D:36:3D:9C:0E:F3:EE:19:61:63:0D:C8:25:1F:6B:F0:4A:70 X509v3 Authority Key Identifier: keyid:F4:B7:D0:44:3B:8C:FF:9B:40:98:BB:8C:EC:BE:D8:7F:CE:A9:BA:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.225.0/24 Signature Algorithm: sha256WithRSAEncryption 93:18:66:06:40:63:24:e1:0a:ef:c7:b5:32:be:f9:61:2e:2a: 0c:ad:9e:7f:da:4e:d0:63:2f:04:b3:38:cf:29:6a:75:7f:ec: 95:78:fd:d5:dc:10:53:5c:0b:4a:21:3b:44:fe:63:31:c9:86: b8:2c:5f:6c:90:d5:85:ba:b3:a0:b6:18:19:1a:86:2d:75:23: 0f:24:ab:61:ed:20:94:55:05:5f:e2:aa:02:22:df:c2:38:ef: fc:31:78:3b:57:84:e0:14:40:6d:73:14:8d:68:cd:6e:30:70: c3:81:70:e9:c9:94:88:95:01:c6:7d:92:66:44:c2:d9:13:ac: e1:a7:82:f0:9f:5f:d9:f0:f7:88:d9:fb:35:f0:3c:23:51:a2: 3a:37:18:74:9a:64:3c:45:ce:0e:72:70:3c:5a:f0:15:1e:65: 75:de:3d:c3:57:40:3a:45:61:d6:4f:bd:c7:5b:be:dd:c0:f2: a5:64:58:80:16:1d:5d:fd:e9:49:48:71:ad:0b:a9:93:8e:b9: 06:ca:2b:29:be:55:be:d1:ff:8d:a7:64:9d:68:5c:90:18:72: a4:e1:30:8f:d1:4d:b5:68:69:40:cf:05:77:05:fb:3a:66:95: b9:96:27:26:99:53:59:58:8c:f9:64:cb:0e:47:42:b5:07:3a: 7f:51:41:3c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0ODExMTAvBgNVBAUTKEY0QjdEMDQ0M0I4Q0ZGOUI0MDk4QkI4Q0VDQkVEODdG Q0VBOUJBRDIwHhcNMjUxMDEzMTEwNDIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTM5My1hMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YHYngOzBcYDPvBdkAF4rexK5cGT9cd1cc5qdw0SIPqwle7y1U3kLgth6Oi7 2rXeirQKvftj4yG2IZh6kckIcvQ+VBPN4mMl/4dxQNzKE0qgQrV618mwFB8ciBZE caSYHaksisHsbjTA48iPJ8JglapeFuSdltLpRPfSVtKzDmwV0czeJU9LlY53EE6v IvJ5VQQHHr4RR72FX5VAdncyCcPU24eMF7xtGyNrJYL8auaEWlN/1BtWjHhfPjwA LhaMYxoaGZa0cPdX/zjGl33qvVNDq8EoQi2B74g88O1WxTJ61ojU+zyjP20pj1Lz srEYIwhDkEe6V1ev+X/lE6MhQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFvPfTY9 nA7z7hlhYw3IJR9r8EpwMB8GA1UdIwQYMBaAFPS30EQ7jP+bQJi7jOy+2H/OqbrS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ4MS9BMTg1NERFMDJC RDgxMUYwQUI2MTczMjBDNEY5QUUwMi85TGZRUkR1TV81dEFtTHVNN0w3WWY4NnB1 dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlMZlFSRHVNXzV0QW1MdU03TDdZZjg2cHV0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0ODEvQTE4NTRERTAyQkQ4MTFGMEFCNjE3MzIwQzRGOUFFMDIvNjdGNkFDNkMy QkQ5MTFGMDlBRjZCODIxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ63hMA0GCSqGSIb3DQEBCwUAA4IBAQCTGGYGQGMk4Qrvx7Uyvvlh LioMrZ5/2k7QYy8EszjPKWp1f+yVeP3V3BBTXAtKITtE/mMxyYa4LF9skNWFurOg thgZGoYtdSMPJKth7SCUVQVf4qoCIt/COO/8MXg7V4TgFEBtcxSNaM1uMHDDgXDp yZSIlQHGfZJmRMLZE6zhp4Lwn1/Z8PeI2fs18DwjUaI6Nxh0mmQ8Rc4OcnA8WvAV HmV13j3DV0A6RWHWT73HW77dwPKlZFiAFh1d/elJSHGtC6mTjrkGyispvlW+0f+N p2SdaFyQGHKk4TCP0U21aGlAzwV3Bfs6ZpW5licmmVNZWIz5ZMsOR0K1Bzp/UUE8 -----END CERTIFICATE-----Generated at Thu Mar 26 07:29:41 2026 by rpki-client