$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa File: 25B9F9C454BE11EE810E4C27C4F9AE02.roa (raw, json) Hash identifier: iJfAgLJy+g3Oehdiw4mUqVHSdHvhiECeSkPYC9Jkfxo= Subject key identifier: 65:3E:B3:49:40:0C:0D:DB:E1:01:D3:A0:3E:DF:13:9A:DC:F2:76:70 Certificate issuer: /CN=A91FB92B/serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Certificate serial: 01D1 Authority key identifier: F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:38:55 +0000 ROA not before: Sun 15 Jun 2025 03:32:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59217 IP address blocks: 103.114.44.0/22 maxlen: 24 2402:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB92B, serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Validity Not Before: Jun 15 03:32:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3deff-2ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:98:76:6b:0e:6c:e5:cd:09:cb:08:60:8f:22: 33:83:64:1a:64:e9:f3:61:6d:ad:89:19:39:4f:3a: 96:f5:1a:cc:5e:15:06:93:3e:a1:07:41:e2:61:4b: 34:b1:e3:83:8e:3e:b9:78:f0:5e:71:c9:4d:fd:48: 2b:8c:23:43:0c:91:e2:6a:8a:b2:17:15:fa:7a:cb: 59:e1:a6:55:61:b6:b6:81:84:66:ba:6a:9d:58:28: bb:09:bd:dd:14:7a:18:d2:da:a5:8f:10:40:c0:d1: d8:f4:ed:ca:79:fe:22:92:dc:6c:17:eb:69:80:3c: 95:78:63:81:8e:56:d4:76:99:28:ec:da:86:2d:dd: 7b:30:61:45:6a:4e:e6:9a:9e:76:0d:67:53:bf:16: 8b:7f:65:44:25:2b:c4:68:66:fd:97:6c:91:bb:5c: 52:bc:ef:b4:86:d2:29:2b:75:76:32:f4:69:5d:02: 3e:6d:d8:8a:c0:44:29:85:0e:f7:55:49:d7:55:03: d6:d7:38:b3:d7:12:db:7e:80:1a:a3:93:30:02:d9: 8e:8a:65:ba:21:5d:b7:3f:72:a8:73:71:ac:36:1c: d0:ab:3e:79:d4:e2:04:25:5a:e5:eb:ff:0f:2b:0a: ae:e7:2d:8d:ab:b6:e9:b2:47:13:81:9a:45:c1:d2: 5c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3E:B3:49:40:0C:0D:DB:E1:01:D3:A0:3E:DF:13:9A:DC:F2:76:70 X509v3 Authority Key Identifier: keyid:F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.114.44.0/22 IPv6: 2402:cac0::/32 Signature Algorithm: sha256WithRSAEncryption c4:04:24:0a:1b:81:19:21:bf:5e:f8:5d:90:10:e4:40:46:22: ea:71:e4:7f:8c:53:0d:b4:d9:77:b2:61:9a:e9:db:e9:8a:bd: 78:b2:56:ba:72:2a:ba:30:20:79:fe:0a:a9:19:02:32:48:fd: ac:eb:6f:ff:de:4b:d5:4a:36:33:2e:c3:ad:79:94:85:9e:d3: 8a:18:68:df:99:79:34:3c:a1:c5:45:30:cb:01:ea:df:42:26: 99:d7:a3:ab:3b:b6:5f:df:2a:94:4c:0a:10:c8:31:71:e5:3e: e2:17:cb:3f:69:df:a8:f0:7b:56:73:ca:a3:80:b5:36:0e:4d: e1:96:99:86:6c:f6:4e:69:ba:0f:d6:b5:bc:51:40:ec:a0:b5: 1e:6f:54:35:fa:49:05:f0:c9:5c:71:9e:fb:68:b4:18:2d:c0: 4e:78:28:79:83:2d:db:a3:12:9f:68:e6:6d:da:93:8b:e4:7a: 7c:37:fb:24:47:a8:d1:77:e8:d2:41:5b:39:14:d2:9c:6a:47: ad:06:df:9d:2a:ea:ff:07:09:35:32:01:78:81:90:69:ee:8d: 81:9b:c9:bc:0c:6c:ae:7f:8e:f6:8c:d2:46:db:9d:e7:e7:7b: e0:f7:f4:72:27:f0:19:9b:ed:4d:c0:cd:9f:25:49:1d:4c:84: 37:f6:27:13 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI5MkIxMTAvBgNVBAUTKEY1NDE0MjkyNDI5RjUzREFCMTg2QjQyRTU2NDE0OTU5 QTgwQkVBMDgwHhcNMjUwNjE1MDMzMjE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGVmZi0yY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJh2aw5s5c0JywhgjyIzg2QaZOnzYW2tiRk5TzqW9RrMXhUGkz6hB0HiYUs0 seODjj65ePBecclN/UgrjCNDDJHiaoqyFxX6estZ4aZVYba2gYRmumqdWCi7Cb3d FHoY0tqljxBAwNHY9O3Kef4iktxsF+tpgDyVeGOBjlbUdpko7NqGLd17MGFFak7m mp52DWdTvxaLf2VEJSvEaGb9l2yRu1xSvO+0htIpK3V2MvRpXQI+bdiKwEQphQ73 VUnXVQPW1ziz1xLbfoAao5MwAtmOimW6IV23P3Koc3GsNhzQqz551OIEJVrl6/8P Kwqu5y2Nq7bpskcTgZpFwdJc/wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGU+s0lA DA3b4QHToD7fE5rc8nZwMB8GA1UdIwQYMBaAFPVBQpJCn1PasYa0LlZBSVmoC+oI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjkyQi9DNDYwODFGMjU0 QkQxMUVFODEwMkYwN0ZDNEY5QUUwMi85VUZDa2tLZlU5cXhoclF1VmtGSldhZ0w2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVRkNra0tmVTlxeGhyUXVWa0ZKV2FnTDZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI5MkIvQzQ2MDgxRjI1NEJEMTFFRTgxMDJGMDdGQzRGOUFFMDIvMjVCOUY5QzQ1 NEJFMTFFRTgxMEU0QzI3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3IsMA0EAgACMAcDBQAkAsrAMA0GCSqGSIb3DQEBCwUAA4IBAQDE BCQKG4EZIb9e+F2QEORARiLqceR/jFMNtNl3smGa6dvpir14sla6ciq6MCB5/gqp GQIySP2s62//3kvVSjYzLsOteZSFntOKGGjfmXk0PKHFRTDLAerfQiaZ16OrO7Zf 3yqUTAoQyDFx5T7iF8s/ad+o8HtWc8qjgLU2Dk3hlpmGbPZOaboP1rW8UUDsoLUe b1Q1+kkF8MlccZ77aLQYLcBOeCh5gy3boxKfaOZt2pOL5Hp8N/skR6jRd+jSQVs5 FNKcaketBt+dKur/Bwk1MgF4gZBp7o2Bm8m8DGyuf472jNJG253n53vg9/RyJ/AZ m+1NwM2fJUkdTIQ39icT -----END CERTIFICATE-----Generated at Thu Mar 26 07:36:51 2026 by rpki-client