$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa File: 2B658C44F9D911ECBC381559C4F9AE02.roa (raw, json) Hash identifier: RLoDGqQrLMN8RtNfib91dVRLKMKiKWs7GUo1oIVrybg= Subject key identifier: 23:CC:CF:5C:90:1B:C4:05:70:75:91:34:C1:3E:AC:23:B8:08:0C:4F Certificate issuer: /CN=A91E57C9/serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Certificate serial: 0341 Authority key identifier: 9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:11:37 +0000 ROA not before: Wed 07 May 2025 01:38:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149788 IP address blocks: 103.186.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57C9, serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Validity Not Before: May 7 01:38:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58c89-fe33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ba:7c:89:b8:1c:9d:7e:df:7e:83:11:ee:90: e7:a0:85:5d:e9:89:c4:01:01:60:dc:04:eb:75:b6: 77:92:71:84:05:0b:96:66:5f:89:e8:4d:19:9d:2a: da:17:fb:af:69:e4:e2:7d:40:87:aa:15:68:96:09: 35:3e:e0:e4:15:8a:d1:77:e4:d8:29:c9:d0:32:16: 0d:f2:08:cf:1e:91:83:10:f9:2a:c1:1f:42:b2:a3: de:dc:3c:f5:64:29:f0:e9:cf:30:75:d8:46:2d:1d: 34:1a:c9:17:cb:98:fa:52:75:3b:7e:e7:08:70:ae: c8:91:e9:cb:9c:07:1f:2f:0d:46:91:94:d3:cd:78: a1:85:2d:8d:be:5e:e4:cd:b3:c5:b9:00:75:e6:db: 3f:a5:1b:93:50:05:b1:61:32:d6:3e:72:ed:e6:d3: cb:36:58:86:5e:dd:81:23:b5:3d:af:d0:7f:b0:ca: 2f:08:5a:1f:60:a2:0d:47:87:a7:20:23:45:f4:42: fc:69:02:54:4b:14:9a:a3:34:0a:19:32:17:ba:71: 8e:85:7f:1f:85:3d:f1:19:ab:1d:2e:1a:7b:3c:47: ba:a2:1c:23:7b:76:11:d0:a5:ba:f2:81:50:3c:d5: 85:b4:49:6c:92:14:e1:9b:86:08:f0:b5:ac:0c:be: 77:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CC:CF:5C:90:1B:C4:05:70:75:91:34:C1:3E:AC:23:B8:08:0C:4F X509v3 Authority Key Identifier: keyid:9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.78.0/24 Signature Algorithm: sha256WithRSAEncryption 59:98:f5:4d:b5:11:8c:52:ac:59:f0:ae:8a:b4:bf:8c:90:f0: ae:d6:a7:e8:6e:88:ad:06:a3:26:d4:de:f6:de:39:8c:a4:3a: 62:3e:25:58:89:8a:8b:64:70:0c:05:9f:4b:7b:08:56:4d:49: 93:58:74:eb:df:37:95:e1:28:12:29:32:d0:68:cb:11:59:84: 4e:e7:5e:80:a3:37:9c:b4:4f:d4:0b:6d:2a:dc:3b:54:b7:61: 73:32:91:15:81:b2:ed:6d:b8:34:34:1c:e0:48:4c:06:ff:9e: fd:2c:59:03:18:8e:2c:59:5a:6b:65:ed:69:0f:6c:eb:65:f1: 10:df:96:29:2a:6b:6b:45:3b:58:41:8c:4d:9f:7d:f1:a4:53: a5:21:e1:bb:ab:1f:20:0a:47:a7:7b:55:64:e8:a9:52:9c:2c: 7a:c5:76:6b:23:94:92:40:20:81:94:4c:ce:70:41:d4:bc:0d: 36:96:1f:3a:d8:46:32:2f:6a:0f:7f:97:e1:33:8f:47:6a:46: 9f:02:ee:f1:45:41:ef:48:a8:56:7c:d5:b4:76:7c:f9:97:21: 51:eb:26:e5:5a:58:fc:7c:e7:a7:d4:52:a0:6a:09:fe:ab:23: 2f:70:28:e8:ef:2d:29:f8:b0:63:ab:94:ed:72:5d:dd:31:fe: 3c:28:c4:ce -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QzkxMTAvBgNVBAUTKDlBNTREMTAxNzUwMTlDRjgwODZCMzBCMzFFNjUyQUUw NjAyRkY2QkMwHhcNMjUwNTA3MDEzODQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGM4OS1mZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bp8ibgcnX7ffoMR7pDnoIVd6YnEAQFg3ATrdbZ3knGEBQuWZl+J6E0ZnSra F/uvaeTifUCHqhVolgk1PuDkFYrRd+TYKcnQMhYN8gjPHpGDEPkqwR9CsqPe3Dz1 ZCnw6c8wddhGLR00GskXy5j6UnU7fucIcK7IkenLnAcfLw1GkZTTzXihhS2Nvl7k zbPFuQB15ts/pRuTUAWxYTLWPnLt5tPLNliGXt2BI7U9r9B/sMovCFofYKINR4en ICNF9EL8aQJUSxSaozQKGTIXunGOhX8fhT3xGasdLhp7PEe6ohwje3YR0KW68oFQ PNWFtElskhThm4YI8LWsDL53oQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCPMz1yQ G8QFcHWRNME+rCO4CAxPMB8GA1UdIwQYMBaAFJpU0QF1AZz4CGswsx5lKuBgL/a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdDOS85QzZFRjc0RUY5 RDUxMUVDQjZEQ0FENTRDNEY5QUUwMi9tbFRSQVhVQm5QZ0lhekN6SG1VcTRHQXY5 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21sVFJBWFVCblBnSWF6Q3pIbVVxNEdBdjlydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QzkvOUM2RUY3NEVGOUQ1MTFFQ0I2RENBRDU0QzRGOUFFMDIvMkI2NThDNDRG OUQ5MTFFQ0JDMzgxNTU5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ7pOMA0GCSqGSIb3DQEBCwUAA4IBAQBZmPVNtRGMUqxZ8K6KtL+M kPCu1qfoboitBqMm1N723jmMpDpiPiVYiYqLZHAMBZ9LewhWTUmTWHTr3zeV4SgS KTLQaMsRWYRO516AozectE/UC20q3DtUt2FzMpEVgbLtbbg0NBzgSEwG/579LFkD GI4sWVprZe1pD2zrZfEQ35YpKmtrRTtYQYxNn33xpFOlIeG7qx8gCkene1Vk6KlS nCx6xXZrI5SSQCCBlEzOcEHUvA02lh862EYyL2oPf5fhM49HakafAu7xRUHvSKhW fNW0dnz5lyFR6yblWlj8fOen1FKgagn+qyMvcCjo7y0p+LBjq5Ttcl3dMf48KMTO -----END CERTIFICATE-----Generated at Thu Mar 26 04:04:15 2026 by rpki-client