$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/433917A83D8211EEA0E4DD46C4F9AE02.roa File: 433917A83D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: i3lNMYsCEQ7EVRpurO9/d15VIL5I80raSGImmBhJGG8= Subject key identifier: 4B:35:F9:B4:7B:C2:A6:6D:7E:80:97:EC:DA:93:E6:11:60:DB:05:C6 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0F39 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/433917A83D8211EEA0E4DD46C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:01:27 +0000 ROA not before: Sat 30 Aug 2025 18:08:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151465 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3897 (0xf39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Aug 30 18:08:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a470e7-14b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:99:af:14:51:5b:ac:88:34:71:6b:10:cf:b8: 10:fa:89:86:d1:ee:5f:4c:51:05:96:af:bd:1c:ea: ce:98:1c:ed:0b:34:d0:7c:f9:dc:69:87:72:ca:2c: 1f:fc:60:bc:d9:81:52:e4:72:29:ec:23:a4:81:ac: 97:ef:d6:b7:f8:ab:74:ae:fd:89:75:97:f7:fc:33: ef:ce:f6:46:6f:41:15:61:a7:33:f3:63:2a:a6:24: 7a:c7:b1:b2:7c:02:ac:12:ab:0f:c9:e5:fb:f2:5d: 09:6c:0f:e1:d4:65:82:74:1f:08:ae:ab:06:1a:3a: 2d:0c:b0:fa:04:1d:ed:38:aa:6b:5e:f6:84:75:d9: 81:bd:4a:92:10:67:f9:5d:a0:a4:d9:2a:b3:f8:b5: 7c:54:df:48:db:85:7d:18:b7:97:5d:06:06:d5:30: d1:e1:f8:b3:71:7e:e4:7c:62:90:6e:eb:1c:2c:a7: e4:c6:6e:f3:0a:1a:4e:54:ff:da:84:62:37:61:4b: ba:05:e3:13:69:b1:50:6a:ca:42:f8:2e:a5:7b:91: 89:d0:01:24:6f:19:e2:40:82:31:38:7f:1a:3e:9f: 45:01:21:46:13:6d:46:ed:e3:50:63:51:70:51:09: 04:47:6c:88:12:78:6a:02:6c:df:fb:93:ba:81:3f: ac:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:35:F9:B4:7B:C2:A6:6D:7E:80:97:EC:DA:93:E6:11:60:DB:05:C6 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/433917A83D8211EEA0E4DD46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption 08:55:86:2f:ec:6d:b1:13:5a:2a:e6:bb:0d:9d:8a:52:00:52: 86:ec:2e:d3:53:d5:43:f4:2a:dd:1e:a5:55:8a:9c:e8:69:0a: 20:d9:49:ef:c5:32:e1:4d:9b:34:52:4c:6e:34:de:03:9b:c8: 0f:38:b1:70:b8:78:a1:7f:77:f0:3d:ee:0e:23:90:c3:64:99: 9a:03:66:f8:e3:52:05:4a:38:4c:5e:3f:b6:35:2c:0b:50:d9: 50:02:f5:6e:21:3f:20:9e:6e:f7:dd:03:1e:c8:a2:b7:4a:f0: 5c:2a:db:f9:bb:01:e7:28:bf:45:0a:2b:f4:4b:68:18:75:16: ff:0f:12:fb:41:a7:3c:0d:57:9d:af:d3:40:6a:3d:a2:f8:41: ea:05:f3:01:11:2f:ea:a3:fa:84:d7:0f:ab:4e:24:e2:e0:9b: 25:65:37:41:ef:f2:8c:80:e9:6d:40:79:60:dd:8d:62:56:5f: a5:72:45:01:54:84:fe:c4:14:7d:c5:ba:f8:e3:70:85:c4:d7: a4:8e:87:b1:71:7f:1b:5c:b4:76:a0:c1:14:10:c5:69:94:d7: 17:c4:a3:48:70:1b:2a:63:3b:c8:e0:b1:0b:76:1f:bc:0e:8d: 51:e9:83:b9:82:fa:cc:7b:92:b5:a3:60:db:fd:ed:2a:e8:29: 80:e9:f1:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwODMwMTgwODUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBlNy0xNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpmvFFFbrIg0cWsQz7gQ+omG0e5fTFEFlq+9HOrOmBztCzTQfPncaYdyyiwf /GC82YFS5HIp7COkgayX79a3+Kt0rv2JdZf3/DPvzvZGb0EVYacz82MqpiR6x7Gy fAKsEqsPyeX78l0JbA/h1GWCdB8IrqsGGjotDLD6BB3tOKprXvaEddmBvUqSEGf5 XaCk2Sqz+LV8VN9I24V9GLeXXQYG1TDR4fizcX7kfGKQbuscLKfkxm7zChpOVP/a hGI3YUu6BeMTabFQaspC+C6le5GJ0AEkbxniQIIxOH8aPp9FASFGE21G7eNQY1Fw UQkER2yIEnhqAmzf+5O6gT+sgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEs1+bR7 wqZtfoCX7NqT5hFg2wXGMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDMzOTE3QTgz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwUAMA0GCSqGSIb3DQEBCwUAA4IBAQAIVYYv7G2xE1oq5rsNnYpS AFKG7C7TU9VD9CrdHqVVipzoaQog2UnvxTLhTZs0UkxuNN4Dm8gPOLFwuHihf3fw Pe4OI5DDZJmaA2b441IFSjhMXj+2NSwLUNlQAvVuIT8gnm733QMeyKK3SvBcKtv5 uwHnKL9FCiv0S2gYdRb/DxL7Qac8DVedr9NAaj2i+EHqBfMBES/qo/qE1w+rTiTi 4JslZTdB7/KMgOltQHlg3Y1iVl+lckUBVIT+xBR9xbr443CFxNekjoexcX8bXLR2 oMEUEMVplNcXxKNIcBsqYzvI4LELdh+8Do1R6YO5gvrMe5K1o2Db/e0q6CmA6fFE -----END CERTIFICATE-----Generated at Thu Mar 26 13:05:37 2026 by rpki-client