$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa File: 08CA5724E2B111E9A73CAB51C4F9AE02.roa (raw, json) Hash identifier: MYKqvULX7sXfTJUr2ml9eske8tIUX3fTGa4dZYux9w0= Subject key identifier: 80:4D:9C:28:8B:E6:7E:BA:07:50:A4:41:ED:4C:6A:98:77:0E:97:30 Certificate issuer: /CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Certificate serial: 0D98 Authority key identifier: 72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:51:20 +0000 ROA not before: Thu 10 Jul 2025 18:27:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132341 IP address blocks: 103.14.73.0/24 maxlen: 24 103.59.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3480 (0xd98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B61, serialNumber=728A824092E5741254BB92D597723361A04BF292 Validity Not Before: Jul 10 18:27:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a44458-199c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:47:2b:c9:d6:80:3a:6f:bb:d0:37:89:9b:16: 82:bf:a7:ac:32:e7:f8:6d:ab:b0:7e:f2:96:33:a1: a9:f4:a9:2c:d6:8b:1c:ae:3a:bd:b1:55:f9:47:92: 0a:dd:8b:69:37:91:c9:2c:b5:f4:ed:3d:28:25:8c: 55:1b:3d:b0:9e:ea:16:b1:45:71:2d:60:ee:18:2d: 87:97:8c:41:dc:a2:40:b7:81:8d:17:b3:02:70:c2: 87:7d:db:24:bf:b1:2b:3d:4a:c5:62:d0:d3:11:7f: 86:a5:a0:64:5e:24:91:a7:05:67:6b:a4:46:39:82: 1f:8c:70:b2:b7:ab:b2:b5:d8:8a:64:2b:0e:4b:b7: 38:9a:79:46:67:31:d2:8f:92:47:40:32:f7:1b:12: 6a:e3:6d:1c:81:24:c3:a2:42:90:1e:b8:48:df:e1: 42:ef:1d:ea:7f:f7:bf:01:08:4b:b1:30:57:5d:60: 42:72:ba:88:fb:b3:83:7d:b6:10:7f:44:1f:68:d4: e7:f0:dc:4c:e3:af:fc:c4:08:91:3d:aa:bc:d6:36: b0:39:75:df:f9:f4:d7:1e:5b:74:94:bb:75:d8:54: 50:94:e9:13:2f:d7:2a:1f:a8:e5:d7:6e:e9:d5:31: e0:be:36:f2:fb:a9:1d:a8:30:9c:4f:a7:0c:a2:2e: 8a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:4D:9C:28:8B:E6:7E:BA:07:50:A4:41:ED:4C:6A:98:77:0E:97:30 X509v3 Authority Key Identifier: keyid:72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/08CA5724E2B111E9A73CAB51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.73.0/24 103.59.233.0/24 Signature Algorithm: sha256WithRSAEncryption 14:73:3a:51:6e:76:d7:11:36:7b:3b:25:16:30:20:7a:e2:42: 4c:78:60:4b:a8:b4:a2:1a:2f:3f:7d:29:39:1b:b8:d2:0d:e0: 44:07:e1:6a:d8:4b:9f:92:6b:04:75:05:e1:32:73:ba:59:40: 16:2e:e4:10:10:f7:0f:03:cf:b5:2a:bf:ed:e7:10:8d:cb:29: 1c:4f:de:e6:60:54:e5:7c:e9:f1:b2:4e:77:4a:fd:fa:f8:33: 2d:e3:60:54:42:4c:3d:da:6f:94:be:e0:f6:1b:44:89:8d:44: 8e:54:4e:33:26:03:5a:3d:bf:f4:c2:55:79:68:a6:57:9a:83: 3d:27:1b:2c:9d:f8:0c:3d:8d:d8:83:e0:cf:af:a1:e0:17:15: cb:56:98:0b:37:d4:0c:20:e5:8f:23:a2:53:d7:72:2b:87:7e: bf:f7:b1:ea:6d:06:27:09:be:c4:5c:25:98:c1:e8:ce:f4:30: f4:83:1a:26:13:b9:be:56:a3:68:67:48:91:19:96:06:e4:0f: 43:68:58:48:28:fb:42:ec:48:14:9c:4c:f0:2b:44:d0:fa:c1: 98:39:3c:8f:d8:10:0b:f1:44:6c:60:37:ba:af:d3:55:28:f6: ef:ca:60:75:9f:ee:b3:01:07:0b:73:ea:19:92:b0:31:7d:5e: 0e:1c:bb:29 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJENTk3NzIzMzYx QTA0QkYyOTIwHhcNMjUwNzEwMTgyNzQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDQ1OC0xOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kcrydaAOm+70DeJmxaCv6esMuf4bauwfvKWM6Gp9Kks1oscrjq9sVX5R5IK 3YtpN5HJLLX07T0oJYxVGz2wnuoWsUVxLWDuGC2Hl4xB3KJAt4GNF7MCcMKHfdsk v7ErPUrFYtDTEX+GpaBkXiSRpwVna6RGOYIfjHCyt6uytdiKZCsOS7c4mnlGZzHS j5JHQDL3GxJq420cgSTDokKQHrhI3+FC7x3qf/e/AQhLsTBXXWBCcrqI+7ODfbYQ f0QfaNTn8NxM46/8xAiRPaq81jawOXXf+fTXHlt0lLt12FRQlOkTL9cqH6jl127p 1THgvjby+6kdqDCcT6cMoi6K8wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIBNnCiL 5n66B1CkQe1Maph3DpcwMB8GA1UdIwQYMBaAFHKKgkCS5XQSVLuS1ZdyM2GgS/KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUI2MS8zRjAwRDc1Q0Uy QUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpMbGRCSlV1NUxWbDNJellhQkw4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NvcUNRSkxsZEJKVXU1TFZsM0l6WWFCTDhwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFCNjEvM0YwMEQ3NUNFMkFGMTFFOUJCMDFGQzREQzRGOUFFMDIvMDhDQTU3MjRF MkIxMTFFOUE3M0NBQjUxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZw5JAwQAZzvpMA0GCSqGSIb3DQEBCwUAA4IBAQAUczpRbnbXETZ7 OyUWMCB64kJMeGBLqLSiGi8/fSk5G7jSDeBEB+Fq2EufkmsEdQXhMnO6WUAWLuQQ EPcPA8+1Kr/t5xCNyykcT97mYFTlfOnxsk53Sv36+DMt42BUQkw92m+UvuD2G0SJ jUSOVE4zJgNaPb/0wlV5aKZXmoM9JxssnfgMPY3Yg+DPr6HgFxXLVpgLN9QMIOWP I6JT13Irh36/97HqbQYnCb7EXCWYwejO9DD0gxomE7m+VqNoZ0iRGZYG5A9DaFhI KPtC7EgUnEzwK0TQ+sGYOTyP2BAL8URsYDe6r9NVKPbvymB1n+6zAQcLc+oZkrAx fV4OHLsp -----END CERTIFICATE-----Generated at Thu Mar 26 10:30:35 2026 by rpki-client