$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa File: 354314309C0F11EBAEFB6225C4F9AE02.roa (raw, json) Hash identifier: rLlQIkqX6i6uF1WhXyQfGL611IaLuncbJA4wjowGJl8= Subject key identifier: 93:71:71:5A:BF:8B:8D:FD:49:A7:47:26:0C:20:06:00:F1:A3:77:6D Certificate issuer: /CN=A91F59DF/serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Certificate serial: 06C0 Authority key identifier: 60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:34:16 +0000 ROA not before: Tue 12 Aug 2025 23:04:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135345 IP address blocks: 103.214.12.0/24 maxlen: 24 103.214.13.0/24 maxlen: 24 103.214.14.0/24 maxlen: 24 103.214.15.0/24 maxlen: 24 115.42.120.0/24 maxlen: 24 115.42.121.0/24 maxlen: 24 115.42.122.0/24 maxlen: 24 115.42.123.0/24 maxlen: 24 115.42.124.0/24 maxlen: 24 115.42.125.0/24 maxlen: 24 115.42.126.0/24 maxlen: 24 115.42.127.0/24 maxlen: 24 144.48.28.0/24 maxlen: 24 144.48.29.0/24 maxlen: 24 144.48.30.0/24 maxlen: 24 144.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59DF, serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Validity Not Before: Aug 12 23:04:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43248-bf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:11:2d:75:7f:65:f8:e6:e9:71:f7:e0:0f: 1a:3a:88:bb:16:25:ed:3c:f7:c5:41:f4:ab:60:85: f7:83:c2:6b:51:b0:e1:78:89:e2:5b:39:b9:fa:e4: 9f:90:36:52:0a:79:08:75:bd:78:c2:4a:98:2b:e4: bc:cd:3a:4d:61:8b:3c:0a:11:55:36:fb:f5:45:27: db:6c:b6:a5:a9:1f:d7:28:20:33:ea:d3:77:cd:fd: 7a:42:b1:82:75:b7:21:9b:ef:c1:6d:ca:3f:f5:8c: c0:85:3b:65:05:05:bb:c0:2f:ee:61:23:e1:69:26: 69:23:c5:34:c6:a9:b8:58:9e:95:dd:9c:05:14:cb: da:1d:91:9f:0f:72:7b:4e:16:2c:a1:49:39:80:82: 9d:dd:ae:29:71:d6:20:a8:ec:ce:51:20:2a:38:06: cb:e3:3b:91:3e:be:e7:5e:0a:36:b7:8e:62:fd:5a: 77:83:2c:08:e0:28:40:bb:63:c3:ef:69:cf:35:17: f7:a1:26:8d:e0:8d:03:83:8c:2f:65:29:7f:9d:42: 0c:cb:e3:9b:91:c5:a3:9f:e2:54:76:d3:d3:e6:83: f3:fd:f7:d7:60:ef:9e:31:fd:75:f6:d3:29:cf:33: 13:4d:30:19:8f:2c:8c:03:ba:4f:75:3b:44:de:9d: 25:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:71:71:5A:BF:8B:8D:FD:49:A7:47:26:0C:20:06:00:F1:A3:77:6D X509v3 Authority Key Identifier: keyid:60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.214.12.0/22 115.42.120.0/21 144.48.28.0/22 Signature Algorithm: sha256WithRSAEncryption 37:35:9f:ea:1f:eb:ec:a0:e0:d1:97:40:80:32:37:e0:0d:c1: ed:10:e5:1e:58:34:0c:8a:b8:c7:b6:cc:3c:75:fb:c8:78:b3: 6a:35:b4:73:7c:3c:fb:9a:df:39:33:a3:6b:a2:87:3d:05:98: da:c2:74:77:5c:ec:26:4a:0a:e0:bd:4f:66:9c:2f:b8:d9:6b: 62:e9:d3:e1:68:e6:3a:be:98:06:f6:21:cb:fa:34:1d:2b:0a: a3:0c:d1:b7:5c:07:da:f8:7a:13:ee:77:09:08:16:50:28:22: 32:3f:71:4d:98:c3:c6:c4:16:53:a8:d8:a8:08:7f:0a:32:9d: 75:b4:24:da:e7:e5:5e:ed:be:d2:01:8e:ed:0f:e2:f0:58:28: e2:c4:ca:52:f2:82:60:d8:77:b4:80:e2:32:cd:39:32:6d:c7: dc:a6:34:56:83:95:3c:56:70:42:5c:f2:cd:ff:cb:ef:5d:17: a3:d0:c7:de:63:55:af:a8:c6:c5:28:4a:2c:e0:7d:48:84:f3: 85:8e:0d:d4:15:39:41:1f:3f:38:0e:0b:9b:b9:cd:4e:6a:c9: b3:9a:cd:36:84:96:71:3f:5b:e0:70:b7:71:9e:26:7d:1c:b8: 31:c6:eb:da:a1:70:21:0a:1b:5f:a7:a1:67:51:ac:e8:f3:93: ae:bf:ec:1c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5REYxMTAvBgNVBAUTKDYwOUEzMTI2RTIzNjlBOTdENDdGRDY0NDk4RDgxNjVF MjFFNTI1QzUwHhcNMjUwODEyMjMwNDQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzI0OC1iZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCIRLXV/Zfjm6XH34A8aOoi7FiXtPPfFQfSrYIX3g8JrUbDheIniWzm5+uSf kDZSCnkIdb14wkqYK+S8zTpNYYs8ChFVNvv1RSfbbLalqR/XKCAz6tN3zf16QrGC dbchm+/Bbco/9YzAhTtlBQW7wC/uYSPhaSZpI8U0xqm4WJ6V3ZwFFMvaHZGfD3J7 ThYsoUk5gIKd3a4pcdYgqOzOUSAqOAbL4zuRPr7nXgo2t45i/Vp3gywI4ChAu2PD 72nPNRf3oSaN4I0Dg4wvZSl/nUIMy+ObkcWjn+JUdtPT5oPz/ffXYO+eMf119tMp zzMTTTAZjyyMA7pPdTtE3p0lKwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFJNxcVq/ i439SadHJgwgBgDxo3dtMB8GA1UdIwQYMBaAFGCaMSbiNpqX1H/WRJjYFl4h5SXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlERi9CQjUyRjRBQzlD MEQxMUVCQUVEODRCMjRDNEY5QUUwMi9ZSm94SnVJMm1wZlVmOVpFbU5nV1hpSGxK Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKb3hKdUkybXBmVWY5WkVtTmdXWGlIbEpjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5REYvQkI1MkY0QUM5QzBEMTFFQkFFRDg0QjI0QzRGOUFFMDIvMzU0MzE0MzA5 QzBGMTFFQkFFRkI2MjI1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ9YMAwQDcyp4AwQCkDAcMA0GCSqGSIb3DQEBCwUAA4IBAQA3NZ/q H+vsoODRl0CAMjfgDcHtEOUeWDQMirjHtsw8dfvIeLNqNbRzfDz7mt85M6Nrooc9 BZjawnR3XOwmSgrgvU9mnC+42Wti6dPhaOY6vpgG9iHL+jQdKwqjDNG3XAfa+HoT 7ncJCBZQKCIyP3FNmMPGxBZTqNioCH8KMp11tCTa5+Ve7b7SAY7tD+LwWCjixMpS 8oJg2He0gOIyzTkybcfcpjRWg5U8VnBCXPLN/8vvXRej0MfeY1WvqMbFKEos4H1I hPOFjg3UFTlBHz84Dgubuc1Oasmzms02hJZxP1vgcLdxniZ9HLgxxuvaoXAhChtf p6FnUazo85Ouv+wc -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:47 2026 by rpki-client