$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa File: 8405155C69EB11EF933A993CC4F9AE02.roa (raw, json) Hash identifier: YKEugdm9rsY01M6dP0ApaIk6is8Gv0r2VHVKzoTHctg= Subject key identifier: 4A:3F:4B:CD:07:C7:5A:88:F5:0D:39:07:2C:52:0B:D6:D7:55:7C:4C Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: 020B Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:31:33 +0000 ROA not before: Fri 07 Mar 2025 03:20:09 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133053 IP address blocks: 103.120.219.0/24 maxlen: 24 103.251.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22, serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Mar 7 03:20:09 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3eb55-92a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:db:0c:11:61:0c:24:13:16:e3:7f:6e:e3:b5: e9:c0:e6:d8:e3:95:1b:a5:b5:b6:15:09:20:06:7b: 50:67:30:00:2e:a7:97:00:62:f8:34:62:f0:5f:6e: e4:2c:37:67:f8:19:05:18:35:29:f5:82:e4:12:b3: b5:8b:03:b0:e0:4e:65:1f:f9:f5:50:2c:d3:98:11: 81:f3:b9:f6:43:45:3f:6d:92:a3:9a:0a:22:2d:bc: 03:69:bc:7d:ec:19:5a:75:93:11:b8:88:9f:8e:3b: 9c:89:2f:b4:b8:47:1e:7e:d5:8f:61:ff:27:40:5d: bd:bb:c3:71:5b:4d:e0:03:16:29:1b:ce:e7:03:89: 81:f4:12:0e:85:f7:71:09:0b:41:4d:a0:95:2a:72: f0:44:e4:86:21:2b:50:6c:ac:9e:f0:62:4d:17:23: f9:b8:4f:89:42:02:31:6e:a2:f8:2b:00:41:9a:71: f3:9c:e8:f2:58:c8:af:e4:bb:03:5b:0f:57:6f:fb: 6a:89:6b:11:2c:56:3a:00:ed:a0:28:c7:a9:cb:3f: 89:ff:bd:86:4d:e0:73:e9:de:63:83:44:b1:93:7f: e5:f1:eb:a7:ce:9a:25:a7:06:e1:7b:35:ed:2a:81: de:43:56:2b:30:be:29:6b:5d:50:0f:51:55:63:03: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:4B:CD:07:C7:5A:88:F5:0D:39:07:2C:52:0B:D6:D7:55:7C:4C X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.219.0/24 103.251.171.0/24 Signature Algorithm: sha256WithRSAEncryption b1:8b:1a:fa:5f:aa:62:7d:f6:ca:be:ff:dd:47:7e:27:08:b9: 95:42:2f:83:87:cf:96:01:78:8e:4f:6e:80:6d:b8:e7:3f:0c: 7b:15:9f:e3:bb:08:ca:09:4e:7f:8b:7c:c8:8f:79:da:f8:a7: 85:40:36:05:1d:5a:f8:29:6e:49:3f:72:d8:64:44:8c:2b:bc: 04:a9:ad:87:a8:02:80:7e:df:62:b4:af:94:10:34:8c:ab:94: 82:8f:26:7b:06:d2:35:05:ed:02:3b:84:f2:0a:17:49:db:5b: 75:64:af:89:56:02:0e:af:4a:df:f4:61:83:d1:27:ba:9e:28: f7:b4:d3:7e:cb:68:18:56:f4:b6:b4:e1:6b:87:e4:89:97:4d: 25:b6:90:77:64:1d:68:ca:e3:7e:05:51:0e:a0:1d:b3:57:6f: e8:11:5c:3c:ae:50:62:59:c5:3e:c0:a1:51:87:9f:17:94:84: ca:f4:79:10:e0:72:89:77:98:39:44:a1:bd:cf:6a:25:46:7d: 85:af:83:34:8e:d6:66:6a:81:7d:e2:b3:7a:b8:88:76:71:9c: b2:f7:fe:bb:de:75:0f:31:50:2b:39:18:d2:db:74:24:eb:ea: 98:f8:07:f9:15:be:b6:75:6c:08:40:c9:7e:47:ef:df:45:cf: b6:5a:ab:3e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjUwMzA3MDMyMDA5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWI1NS05MmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NsMEWEMJBMW439u47XpwObY45UbpbW2FQkgBntQZzAALqeXAGL4NGLwX27k LDdn+BkFGDUp9YLkErO1iwOw4E5lH/n1UCzTmBGB87n2Q0U/bZKjmgoiLbwDabx9 7BladZMRuIifjjuciS+0uEceftWPYf8nQF29u8NxW03gAxYpG87nA4mB9BIOhfdx CQtBTaCVKnLwROSGIStQbKye8GJNFyP5uE+JQgIxbqL4KwBBmnHznOjyWMiv5LsD Ww9Xb/tqiWsRLFY6AO2gKMepyz+J/72GTeBz6d5jg0Sxk3/l8eunzpolpwbhezXt KoHeQ1YrML4pa11QD1FVYwPeHQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEo/S80H x1qI9Q05ByxSC9bXVXxMMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThEMjIvM0Y3RDY4QThGREU1MTFFRDg3ODQxNzcwQzRGOUFFMDIvODQwNTE1NUM2 OUVCMTFFRjkzM0E5OTNDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ3jbAwQAZ/urMA0GCSqGSIb3DQEBCwUAA4IBAQCxixr6X6piffbK vv/dR34nCLmVQi+Dh8+WAXiOT26AbbjnPwx7FZ/juwjKCU5/i3zIj3na+KeFQDYF HVr4KW5JP3LYZESMK7wEqa2HqAKAft9itK+UEDSMq5SCjyZ7BtI1Be0CO4TyChdJ 21t1ZK+JVgIOr0rf9GGD0Se6nij3tNN+y2gYVvS2tOFrh+SJl00ltpB3ZB1oyuN+ BVEOoB2zV2/oEVw8rlBiWcU+wKFRh58XlITK9HkQ4HKJd5g5RKG9z2olRn2Fr4M0 jtZmaoF94rN6uIh2cZyy9/673nUPMVArORjS23Qk6+qY+Af5Fb62dWwIQMl+R+/f Rc+2Wqs+ -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:11 2026 by rpki-client