$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/68C425FC1BBF11ED9F87C083C4F9AE02.roa File: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (raw, json) Hash identifier: M4qhU2Zwkz7gIyGByvUikqF53mhF5gT1cR8+NUKeRsA= Subject key identifier: 38:C6:7F:08:4E:56:82:13:C4:70:00:29:B0:AF:5D:D0:4B:1E:EC:CC Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 02E8 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/68C425FC1BBF11ED9F87C083C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:22:11 +0000 ROA not before: Thu 21 Aug 2025 02:08:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150152 IP address blocks: 103.95.108.0/23 maxlen: 23 103.95.108.0/24 maxlen: 24 103.95.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753, serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: Aug 21 02:08:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59d13-b68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:3b:f4:75:6f:da:8e:c7:4a:a2:ee:b7:51: 7c:78:7a:dd:2a:0d:70:58:74:65:2d:49:f6:63:fa: 67:e2:29:ef:f3:a9:b6:0c:f8:2d:fe:08:93:f3:d7: 0b:91:b1:a1:e1:60:c8:08:fd:3d:4a:8b:41:57:d7: 85:80:9e:19:cc:96:15:0a:fa:eb:97:16:ae:76:a4: 07:2a:db:4b:fe:ec:0e:4b:58:b8:92:fd:e6:03:68: 70:e9:af:03:3a:1a:d2:49:a5:88:3e:a3:e0:36:19: 35:37:ce:a8:ea:94:20:9c:b6:38:73:52:40:05:25: 33:73:4c:ea:6b:49:20:54:8b:65:61:08:0f:cd:65: 30:55:85:e0:6f:de:27:95:f2:a8:e1:f4:0d:e2:c1: 5b:8b:59:78:13:07:37:65:82:d0:5b:6e:7a:95:a9: d5:4f:4a:74:ac:84:d1:9f:ee:5d:ac:c9:10:74:87: 0b:99:5a:7b:23:f0:dd:5c:67:82:c2:0f:ce:1d:b9: 49:df:7b:df:54:b8:54:c6:36:98:e0:12:d6:b9:7a: 10:6e:6c:bd:6f:9c:22:0f:7d:f6:05:eb:b2:8a:dd: 33:b1:ab:94:6a:07:c3:61:2e:b4:bf:68:8d:9c:d1: e8:1b:be:b1:10:a4:23:8b:72:68:15:e0:76:e0:ac: f2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C6:7F:08:4E:56:82:13:C4:70:00:29:B0:AF:5D:D0:4B:1E:EC:CC X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/68C425FC1BBF11ED9F87C083C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.95.108.0/23 Signature Algorithm: sha256WithRSAEncryption af:63:10:16:1e:8e:9e:0f:b3:6c:79:70:6a:eb:85:42:69:e3: 0b:32:ea:6e:f6:da:14:a6:d0:ab:0a:d1:d7:90:c1:e9:ce:2e: 48:15:fc:52:92:53:8d:c6:e6:b6:65:41:a3:50:a1:1f:26:6a: 8a:62:81:7e:b3:bd:aa:b2:dc:5e:3b:a4:a7:15:8e:d9:9c:fa: d3:6e:b4:87:af:65:30:9e:60:24:e4:e1:9e:32:24:70:79:4f: 97:32:0b:db:00:4f:19:5b:7b:1b:eb:3e:bd:28:4f:b7:fd:f7: f2:72:77:e6:38:b6:5b:05:ab:ba:cb:ae:41:f9:b0:65:43:b7: 7d:04:bc:51:3f:2a:83:af:a9:68:28:5d:6b:35:f3:eb:87:02: e2:15:01:c3:15:06:b9:54:40:ee:3d:48:a7:65:8f:8b:4c:49: ce:97:d9:75:fd:f8:69:86:ed:56:1c:2b:5b:ae:47:1d:4c:12: 02:b0:78:71:91:94:a5:55:60:08:69:37:ff:8a:4b:b4:ef:b2: 79:45:15:04:e1:f2:95:75:23:18:8f:4d:71:0c:9f:d9:01:35: 81:d4:ed:3c:88:e4:0f:ac:fe:8d:c6:07:f5:0c:d0:71:4f:be: c4:f2:a3:fc:3e:da:4a:d2:7f:c1:1d:52:81:6f:c3:f2:ac:a5: b4:3b:2c:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjUwODIxMDIwODQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWQxMy1iNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9079HVv2o7HSqLut1F8eHrdKg1wWHRlLUn2Y/pn4inv86m2DPgt/giT89cL kbGh4WDICP09SotBV9eFgJ4ZzJYVCvrrlxaudqQHKttL/uwOS1i4kv3mA2hw6a8D OhrSSaWIPqPgNhk1N86o6pQgnLY4c1JABSUzc0zqa0kgVItlYQgPzWUwVYXgb94n lfKo4fQN4sFbi1l4Ewc3ZYLQW256lanVT0p0rITRn+5drMkQdIcLmVp7I/DdXGeC wg/OHblJ33vfVLhUxjaY4BLWuXoQbmy9b5wiD332Beuyit0zsauUagfDYS60v2iN nNHoG76xEKQji3JoFeB24KzyewIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDjGfwhO VoITxHAAKbCvXdBLHuzMMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU3NTMvN0I1NjI0NDQxQkJCMTFFREE4N0Y2RTY3QzRGOUFFMDIvNjhDNDI1RkMx QkJGMTFFRDlGODdDMDgzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ19sMA0GCSqGSIb3DQEBCwUAA4IBAQCvYxAWHo6eD7NseXBq64VC aeMLMupu9toUptCrCtHXkMHpzi5IFfxSklONxua2ZUGjUKEfJmqKYoF+s72qstxe O6SnFY7ZnPrTbrSHr2UwnmAk5OGeMiRweU+XMgvbAE8ZW3sb6z69KE+3/ffycnfm OLZbBau6y65B+bBlQ7d9BLxRPyqDr6loKF1rNfPrhwLiFQHDFQa5VEDuPUinZY+L TEnOl9l1/fhphu1WHCtbrkcdTBICsHhxkZSlVWAIaTf/iku077J5RRUE4fKVdSMY j01xDJ/ZATWB1O08iOQPrP6Nxgf1DNBxT77E8qP8PtpK0n/BHVKBb8PyrKW0Oyyk -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:32 2026 by rpki-client