$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/1E018994AEBF11E993F33C65C4F9AE02.roa File: 1E018994AEBF11E993F33C65C4F9AE02.roa (raw, json) Hash identifier: p2jKeuuPMWcoayA0pIuriaFGmnccV6V7R/MlEdyNE3M= Subject key identifier: 19:56:68:5E:92:68:46:6F:0C:A8:F6:4D:B2:A0:8E:2B:17:E9:1F:C4 Certificate issuer: /CN=A91F4294/serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Certificate serial: 0E91 Authority key identifier: 63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/1E018994AEBF11E993F33C65C4F9AE02.roa Signing time: Mon 02 Mar 2026 18:21:19 +0000 ROA not before: Mon 02 Mar 2026 18:21:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63526 IP address blocks: 103.106.236.0/22 maxlen: 22 103.106.236.0/23 maxlen: 23 103.106.236.0/24 maxlen: 24 103.106.237.0/24 maxlen: 24 103.106.238.0/23 maxlen: 23 103.106.238.0/24 maxlen: 24 103.106.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3729 (0xe91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4294, serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Validity Not Before: Mar 2 18:21:19 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5d51f-8489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b8:ba:c1:b6:06:ea:df:a9:ea:74:1f:0f:83: 31:b9:48:1c:fd:4d:1d:d5:4a:df:06:c6:54:95:e8: 40:70:ef:0c:09:dc:f4:5f:9e:71:ed:15:56:38:a4: 39:41:2f:44:78:01:c0:da:98:fd:2d:9b:7d:68:c3: e7:4b:ce:47:a4:c3:35:48:6b:86:5d:d3:e5:3e:2e: 7c:68:12:95:0e:cc:9b:81:bf:a0:96:5d:70:49:37: 4a:a5:51:26:65:69:ad:e4:8b:2e:d3:d3:25:f8:62: 01:b5:12:dc:93:19:e7:47:78:12:92:17:58:77:0e: 6f:e3:6e:b4:6e:f1:72:c0:b1:67:e9:c4:4c:af:89: 7a:7d:58:31:1d:2a:fa:77:1c:1b:4f:b8:13:13:83: 65:94:3f:17:df:04:f9:c5:6d:11:fe:5d:e6:5d:11: d6:92:84:cb:50:aa:6b:38:0a:4a:c7:bf:d2:7c:16: 8e:64:21:e6:0a:79:f8:40:d1:16:6a:b8:5f:80:6d: 3e:f1:16:54:fa:ca:74:d3:ce:2f:69:98:b2:06:02: 99:90:1a:65:69:6a:b9:b2:0b:40:0f:0e:45:9c:18: 1f:fc:a9:b6:78:0c:00:ea:bd:6b:d1:d7:3a:2b:94: 96:de:b5:0c:38:6d:9a:ba:e7:d9:6d:29:c9:2f:75: 47:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:56:68:5E:92:68:46:6F:0C:A8:F6:4D:B2:A0:8E:2B:17:E9:1F:C4 X509v3 Authority Key Identifier: keyid:63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/1E018994AEBF11E993F33C65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.106.236.0/22 Signature Algorithm: sha256WithRSAEncryption 23:9c:6c:b4:f8:c1:c1:7b:3b:80:c1:85:75:c0:f2:e1:d7:2f: 66:f7:94:5e:65:75:9e:4b:c1:b0:48:74:2c:66:25:7a:ba:7b: 7b:b6:4a:dc:07:93:6f:7f:57:c7:07:d5:96:d1:64:1b:98:02: 95:38:66:8f:67:1c:77:ab:cf:75:e8:c7:46:5c:6b:77:6a:a5: 4c:5f:e1:f9:3d:99:ec:83:ad:92:ce:26:55:2e:94:c1:28:0c: f2:e8:d5:b0:a3:53:7f:55:ac:35:c2:0d:9b:0b:6e:a2:13:b5: 1a:78:4a:68:d6:ec:9a:1c:2b:91:0a:f4:5d:51:75:fe:66:9a: 2f:be:50:2d:dc:64:f6:c3:87:18:80:db:1e:b5:7f:fb:6d:80: b6:a7:01:bb:a7:8c:81:66:b0:02:2f:de:fa:38:81:5a:28:0b: f5:e3:f3:e1:cb:a5:90:ac:b8:4c:b2:a5:66:82:03:a0:56:6a: 63:3c:6f:fc:c2:b0:03:12:69:dc:85:45:4f:52:98:9c:9a:9d: ae:a9:09:98:fc:37:6c:39:8f:71:30:be:5e:2b:ae:23:17:af: 69:0c:56:ba:bf:bd:97:b5:e4:fb:25:f8:9b:1c:ce:2e:dd:d9: 33:de:dc:ea:6d:38:e2:1b:b2:e7:f1:3b:46:e0:cc:81:98:8a: 3e:7e:02:ac -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOTQxMTAvBgNVBAUTKDYzNUY1NzlDRTA1NTk3MEUwMUExQzNCNzc1MDIxQzhF M0UyMjc4ODcwHhcNMjYwMzAyMTgyMTE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZDUxZi04NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ri6wbYG6t+p6nQfD4MxuUgc/U0d1UrfBsZUlehAcO8MCdz0X55x7RVWOKQ5 QS9EeAHA2pj9LZt9aMPnS85HpMM1SGuGXdPlPi58aBKVDsybgb+gll1wSTdKpVEm ZWmt5Isu09Ml+GIBtRLckxnnR3gSkhdYdw5v4260bvFywLFn6cRMr4l6fVgxHSr6 dxwbT7gTE4NllD8X3wT5xW0R/l3mXRHWkoTLUKprOApKx7/SfBaOZCHmCnn4QNEW arhfgG0+8RZU+sp0084vaZiyBgKZkBplaWq5sgtADw5FnBgf/Km2eAwA6r1r0dc6 K5SW3rUMOG2auufZbSnJL3VHtwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBlWaF6S aEZvDKj2TbKgjisX6R/EMB8GA1UdIwQYMBaAFGNfV5zgVZcOAaHDt3UCHI4+IniH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI5NC8wQ0I1RUFGQUFF QkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3NEJvY08zZFFJY2pqNGll SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxOVhuT0JWbHc0Qm9jTzNkUUljamo0aWVJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyOTQvMENCNUVBRkFBRUJFMTFFOTgwRkI0RTYzQzRGOUFFMDIvMUUwMTg5OTRB RUJGMTFFOTkzRjMzQzY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2rsMA0GCSqGSIb3DQEBCwUAA4IBAQAjnGy0+MHBezuAwYV1wPLh 1y9m95ReZXWeS8GwSHQsZiV6unt7tkrcB5Nvf1fHB9WW0WQbmAKVOGaPZxx3q891 6MdGXGt3aqVMX+H5PZnsg62SziZVLpTBKAzy6NWwo1N/Vaw1wg2bC26iE7UaeEpo 1uyaHCuRCvRdUXX+ZpovvlAt3GT2w4cYgNsetX/7bYC2pwG7p4yBZrACL976OIFa KAv14/Phy6WQrLhMsqVmggOgVmpjPG/8wrADEmnchUVPUpicmp2uqQmY/DdsOY9x ML5eK64jF69pDFa6v72XteT7JfibHM4u3dkz3tzqbTjiG7Ln8TtG4MyBmIo+fgKs -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:00 2026 by rpki-client