$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa File: 4231A1AA1B1711EEA5566A23C4F9AE02.roa (raw, json) Hash identifier: f29LIF15y9c4pRVyaia3pQoiL6xkSmloi7OnCo+ktB8= Subject key identifier: 9A:0C:F0:45:8B:48:19:2D:E5:B0:4B:77:A4:6C:58:E6:DF:96:6E:B8 Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Certificate serial: 020D Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa Signing time: Thu 19 Mar 2026 02:37:53 +0000 ROA not before: Thu 19 Mar 2026 02:37:53 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138331 IP address blocks: 103.247.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4957, serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Validity Not Before: Mar 19 02:37:53 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69bb6181-72bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a7:4b:bf:ee:ca:ac:95:28:70:99:7a:8e:9a: 1b:58:96:0a:7a:91:53:21:06:93:c3:ef:2e:bc:14: ca:da:e5:ba:79:1b:b9:1d:c1:45:b2:b0:87:8c:f1: ad:3e:52:9b:5d:6f:66:da:6b:ca:25:6a:f0:1e:2c: 61:ad:af:46:7f:ff:f7:c7:d3:14:f5:ca:39:5c:47: 94:af:7e:34:8d:07:02:b2:e2:47:0c:32:b1:c8:fe: 90:77:c1:7f:20:02:c4:7f:59:5b:58:dd:4b:14:ca: 81:5c:4c:4a:f5:f3:96:5e:67:d2:8d:d1:cd:ca:20: ec:8f:30:b4:02:b5:a9:44:f2:95:21:1f:cc:a9:1a: 6b:21:c1:21:86:33:d1:dc:17:4a:61:ed:2c:e6:a9: 44:3c:1b:ce:0b:cd:1b:9a:3f:64:22:92:c6:95:a4: 17:6c:13:7b:e4:48:d3:8b:1e:26:0b:41:22:74:d1: 36:c2:7d:7f:2a:f3:72:f3:1f:8d:54:c5:6a:94:3a: 78:51:66:0e:b9:d7:0e:4b:32:5f:46:2b:34:b3:78: 42:7d:18:3e:2e:b4:26:fe:7a:fd:e0:e1:67:0c:13: 83:ef:f7:db:6d:db:8a:fc:0d:eb:0e:1a:13:d4:db: fa:44:67:c2:2f:d6:04:80:91:aa:d8:52:0e:f6:fa: 2c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0C:F0:45:8B:48:19:2D:E5:B0:4B:77:A4:6C:58:E6:DF:96:6E:B8 X509v3 Authority Key Identifier: keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.136.0/23 Signature Algorithm: sha256WithRSAEncryption 64:97:d6:e2:78:da:36:32:9e:f5:ed:b3:93:50:7f:87:5e:ff: ba:f4:39:68:fa:6a:eb:35:ef:65:aa:1f:59:ec:30:9c:e3:67: 26:dc:73:c4:ca:5d:c5:82:a6:7b:c7:3f:1a:69:c7:9e:8e:d4: 17:7f:d2:b3:9e:dc:e9:b7:53:99:59:04:7f:d9:52:39:8f:5b: 7f:e3:33:24:91:be:27:5e:32:f9:35:95:60:2b:fd:5d:9c:af: 2b:d9:a6:29:88:f7:6c:e0:c3:8b:3b:07:da:a9:01:55:13:d2: 17:76:dd:d8:55:86:a6:e2:6d:d5:a2:ca:52:22:bb:c2:21:cc: ca:d8:26:03:a7:93:a3:5a:4d:d1:bc:1e:5b:50:56:eb:e3:00: 55:37:38:78:4f:50:29:9c:f7:38:e4:79:94:2c:ae:56:7f:e5: 93:63:95:e6:d8:93:2e:0b:42:c7:d1:d2:36:32:b7:83:db:a2: 98:29:c6:8f:26:e9:c5:3f:96:01:e3:79:e2:cc:e6:f7:7f:ed: 9c:43:bc:27:9e:97:7c:65:d3:43:27:be:38:b1:ea:c7:7f:1f: 6f:cb:ca:77:7d:9e:44:d3:9b:ab:aa:c9:3a:39:18:67:90:3b: 27:ff:f2:c4:c3:69:72:55:cb:08:6b:dd:66:01:b9:bb:46:bb: a9:ec:23:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NTcxMTAvBgNVBAUTKEJGMkQxQjM5RDNDMkU5QUUwQUE4RkFCOTRCQUM1NDBD QzUyNjUyNEYwHhcNMjYwMzE5MDIzNzUzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJiNjE4MS03MmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qdLv+7KrJUocJl6jpobWJYKepFTIQaTw+8uvBTK2uW6eRu5HcFFsrCHjPGt PlKbXW9m2mvKJWrwHixhra9Gf//3x9MU9co5XEeUr340jQcCsuJHDDKxyP6Qd8F/ IALEf1lbWN1LFMqBXExK9fOWXmfSjdHNyiDsjzC0ArWpRPKVIR/MqRprIcEhhjPR 3BdKYe0s5qlEPBvOC80bmj9kIpLGlaQXbBN75EjTix4mC0EidNE2wn1/KvNy8x+N VMVqlDp4UWYOudcOSzJfRis0s3hCfRg+LrQm/nr94OFnDBOD7/fbbduK/A3rDhoT 1Nv6RGfCL9YEgJGq2FIO9vos/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJoM8EWL SBkt5bBLd6RsWObflm64MB8GA1UdIwQYMBaAFL8tGznTwumuCqj6uUusVAzFJlJP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Ny81NzFCMjIxMDFB RTcxMUVFOERENEI5NDlDNEY5QUUwMi92eTBiT2RQQzZhNEtxUHE1UzZ4VURNVW1V azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z5MGJPZFBDNmE0S3FQcTVTNnhVRE1VbVVrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NTcvNTcxQjIyMTAxQUU3MTFFRThERDRCOTQ5QzRGOUFFMDIvNDIzMUExQUEx QjE3MTFFRUE1NTY2QTIzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/eIMA0GCSqGSIb3DQEBCwUAA4IBAQBkl9bieNo2Mp717bOTUH+H Xv+69Dlo+mrrNe9lqh9Z7DCc42cm3HPEyl3FgqZ7xz8aaceejtQXf9Kzntzpt1OZ WQR/2VI5j1t/4zMkkb4nXjL5NZVgK/1dnK8r2aYpiPds4MOLOwfaqQFVE9IXdt3Y VYam4m3VospSIrvCIczK2CYDp5OjWk3RvB5bUFbr4wBVNzh4T1ApnPc45HmULK5W f+WTY5Xm2JMuC0LH0dI2MreD26KYKcaPJunFP5YB43nizOb3f+2cQ7wnnpd8ZdND J744serHfx9vy8p3fZ5E05urqsk6ORhnkDsn//LEw2lyVcsIa91mAbm7Rrup7COV -----END CERTIFICATE-----Generated at Sat Mar 28 12:15:58 2026 by rpki-client