$ rpki-client -vvf rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa File: 7F29585EC43011F09039384AC4F9AE02.roa (raw, json) Hash identifier: RzqxKvmQcOshBo/Ug1Mj842tyGjNfSYs0TkOvcUwxSs= Subject key identifier: FF:35:27:97:76:77:57:D3:36:F4:80:FB:8B:1C:C8:BD:F2:C9:6C:66 Certificate issuer: /CN=A91F231C/serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Certificate serial: 45 Authority key identifier: 68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa Signing time: Tue 03 Mar 2026 08:44:57 +0000 ROA not before: Tue 03 Mar 2026 08:44:57 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135359 IP address blocks: 103.208.188.0/24 maxlen: 24 103.208.189.0/24 maxlen: 24 103.208.190.0/24 maxlen: 24 103.208.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F231C, serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Validity Not Before: Mar 3 08:44:57 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a69f89-9847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c6:80:93:e8:9a:d4:a1:d8:a2:3e:fb:d8:d1: e1:f2:4e:b1:fa:d1:98:f1:f9:ae:80:cd:30:f6:e7: 15:39:f6:a7:d0:fc:d8:be:05:a6:37:d7:81:2c:57: 7a:70:a0:f3:fa:22:30:d4:45:c3:25:22:18:2a:00: 5a:52:f7:0e:94:da:8d:73:ed:48:e6:0f:bf:f0:e4: 1d:6c:48:60:f5:e1:4f:61:4e:b6:bf:d9:b7:be:01: 97:bf:51:87:70:3c:3f:f3:f8:bf:16:c3:b9:91:5f: d3:fa:00:ac:87:61:27:a8:82:44:bc:7f:a8:55:37: bc:18:04:0d:12:2c:53:fb:f6:93:0b:6f:27:de:98: 7b:72:08:c9:58:2c:38:85:93:3f:39:58:07:a8:51: 3b:ee:81:ab:e7:21:ae:03:a3:6d:04:6e:0e:51:42: 10:ab:b8:3b:82:67:1a:ae:57:6f:3d:ac:73:25:c2: 8e:35:c4:f0:ab:c0:74:d3:72:f1:2c:16:39:55:b8: dc:c4:58:b6:de:3f:37:87:a3:d3:0e:db:21:8b:70: c3:5c:f0:11:4e:25:ee:40:c2:8e:1b:c1:30:1f:ec: ab:ef:d9:67:56:bf:84:83:28:bb:a1:fd:a7:a7:d0: bf:a9:a2:f6:8e:68:80:ff:32:60:de:48:22:d0:19: 60:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:35:27:97:76:77:57:D3:36:F4:80:FB:8B:1C:C8:BD:F2:C9:6C:66 X509v3 Authority Key Identifier: keyid:68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.208.188.0/22 Signature Algorithm: sha256WithRSAEncryption d7:4d:84:51:c2:a3:67:7d:87:08:8d:4a:c9:69:58:fb:88:95: 97:0f:79:af:d0:90:0a:ed:f4:d4:3f:59:29:ac:07:71:04:44: 5f:f8:6d:a5:cc:d4:3f:13:39:f6:af:83:d0:64:fc:6a:f6:3d: bd:ae:68:ae:72:13:87:8a:21:6b:ee:00:39:1c:b6:2b:44:34: 42:8d:10:4e:59:c2:50:7d:12:1e:be:18:26:aa:2d:57:48:77: 21:e0:c6:12:91:e1:9b:c4:55:d1:c6:d6:8d:98:a4:65:bb:9c: e4:0f:25:6d:c4:12:c8:63:e3:a3:c6:44:d5:f1:fa:6f:42:70: b1:a4:e9:fa:63:f4:5f:92:87:af:ad:a0:7b:74:2c:57:e8:74: c6:db:6d:77:0b:d8:12:4d:b3:4d:86:2d:40:6a:cd:33:07:19: f2:d0:42:95:84:29:fa:72:a8:54:64:09:1a:05:ce:59:24:c4: 2a:5e:5b:f9:18:3c:e9:e2:a7:ee:21:18:8e:8d:86:9d:e7:50: c5:28:2a:71:f7:d3:7d:fc:83:d2:5e:93:74:4f:a7:b6:b5:f8: d7:4b:54:fe:53:3d:50:29:46:c3:c7:a3:6a:5d:73:22:44:2f: d8:04:73:0e:39:35:c2:f0:ce:1e:86:5b:02:97:ab:45:45:62: a4:fc:0e:ce -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjMxQzExMC8GA1UEBRMoNjhEMTQ2NjQzMzk1ODQxNkREODFBN0Q0QUJGMkIyNDNF RTdEOEI1NjAeFw0yNjAzMDMwODQ0NTdaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTY5Zjg5LTk4NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUxoCT6JrUodiiPvvY0eHyTrH60Zjx+a6AzTD25xU59qfQ/Ni+BaY314EsV3pw oPP6IjDURcMlIhgqAFpS9w6U2o1z7UjmD7/w5B1sSGD14U9hTra/2be+AZe/UYdw PD/z+L8Ww7mRX9P6AKyHYSeogkS8f6hVN7wYBA0SLFP79pMLbyfemHtyCMlYLDiF kz85WAeoUTvugavnIa4Do20Ebg5RQhCruDuCZxquV289rHMlwo41xPCrwHTTcvEs FjlVuNzEWLbePzeHo9MO2yGLcMNc8BFOJe5Awo4bwTAf7Kvv2WdWv4SDKLuh/aen 0L+povaOaID/MmDeSCLQGWD/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/zUnl3Z3 V9M29ID7ixzIvfLJbGYwHwYDVR0jBBgwFoAUaNFGZDOVhBbdgafUq/KyQ+59i1Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyMzFDLzI4RTgzRTZBQzQz MDExRjA5NkNFOUM0OUM0RjlBRTAyL2FORkdaRE9WaEJiZGdhZlVxX0t5US01OWkx WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU5GR1pET1ZoQmJkZ2FmVXFfS3lRLTU5aTFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjMxQy8yOEU4M0U2QUM0MzAxMUYwOTZDRTlDNDlDNEY5QUUwMi83RjI5NTg1RUM0 MzAxMUYwOTAzOTM4NEFDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn0LwwDQYJKoZIhvcNAQELBQADggEBANdNhFHCo2d9hwiNSslpWPuI lZcPea/QkArt9NQ/WSmsB3EERF/4baXM1D8TOfavg9Bk/Gr2Pb2uaK5yE4eKIWvu ADkctitENEKNEE5ZwlB9Eh6+GCaqLVdIdyHgxhKR4ZvEVdHG1o2YpGW7nOQPJW3E Eshj46PGRNXx+m9CcLGk6fpj9F+Sh6+toHt0LFfodMbbbXcL2BJNs02GLUBqzTMH GfLQQpWEKfpyqFRkCRoFzlkkxCpeW/kYPOnip+4hGI6Nhp3nUMUoKnH30338g9Je k3RPp7a1+NdLVP5TPVApRsPHo2pdcyJEL9gEcw45NcLwzh6GWwKXq0VFYqT8Ds4= -----END CERTIFICATE-----Generated at Thu Mar 26 21:15:06 2026 by rpki-client