$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa File: EF44A44E51EB11EABC11800DC4F9AE02.roa (raw, json) Hash identifier: +aYHCdKpTUqPrKwnjjH4Hbnxa+6NoXo2+s7Ijz7iypQ= Subject key identifier: 43:F2:3F:F9:9A:3F:71:A0:A4:EE:8A:F0:32:D8:3E:0B:58:FC:29:86 Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 0B5A Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:45:36 +0000 ROA not before: Wed 28 Jan 2026 19:16:19 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133192 IP address blocks: 103.255.24.0/24 maxlen: 24 103.255.25.0/24 maxlen: 24 103.255.26.0/24 maxlen: 24 103.255.27.0/24 maxlen: 24 163.47.164.0/24 maxlen: 24 163.47.165.0/24 maxlen: 24 163.47.166.0/24 maxlen: 24 163.47.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378, serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Jan 28 19:16:19 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45110-6afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7c:ec:c3:e9:4f:6c:69:a0:f4:d1:f9:26:65: 9c:69:98:ea:77:c3:d5:6c:f1:22:64:fa:e0:89:39: ac:f8:16:ea:9f:fc:cf:9f:3d:83:9f:e3:c3:5c:f3: a4:44:d3:7c:5b:68:a8:0c:42:38:bb:cc:9d:eb:43: 97:ac:91:3e:06:5f:bb:41:51:21:e1:e1:5e:7a:91: ff:1b:bd:b6:99:8d:7a:08:73:84:c9:10:dc:05:a8: c6:16:34:af:55:94:3e:5b:24:16:35:35:35:b8:6b: 3c:99:a2:61:93:a0:fd:88:a0:33:7f:ac:20:a0:fc: 3f:3e:82:95:47:ee:a7:f2:24:54:c2:6c:f7:04:1d: d8:19:2d:e0:a9:f7:be:01:bb:a9:8b:80:49:df:a2: 68:27:50:68:f8:8d:a3:51:5c:79:ab:bf:63:26:42: f7:a8:e9:67:fd:e2:7d:11:b5:4c:f5:5a:22:e3:f9: ba:e1:a4:39:df:7b:2b:b6:c6:7c:9c:a8:02:06:67: ca:73:20:5f:d5:e6:92:ff:53:4b:38:ee:9f:50:bd: 75:38:3c:10:f2:d5:eb:5d:3b:2f:59:ea:5d:8a:7f: 04:5f:0d:f3:8a:30:62:a4:99:3e:6b:0f:88:a1:a5: cd:a1:d2:37:7b:64:33:54:69:4e:a6:c8:7c:72:e2: 77:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F2:3F:F9:9A:3F:71:A0:A4:EE:8A:F0:32:D8:3E:0B:58:FC:29:86 X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/EF44A44E51EB11EABC11800DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.24.0/22 163.47.164.0/22 Signature Algorithm: sha256WithRSAEncryption 91:5e:6f:d4:74:10:32:8a:88:18:59:18:a3:2f:ca:70:2e:ae: 54:0e:6f:79:a3:53:83:82:d9:f8:60:23:98:9a:0e:a1:fb:5b: 02:fe:0a:dc:d2:03:6f:df:e6:21:80:ee:6a:1c:c0:26:1f:38: 43:4f:90:95:d2:74:cd:7c:c1:c0:90:61:b3:82:15:e0:47:36: ef:6a:b2:ae:aa:dc:fd:90:e8:c9:5a:9b:96:04:79:88:30:9e: ce:d1:90:49:b3:f8:7f:43:78:01:57:03:8f:80:67:39:9e:83: a5:b5:55:ea:85:67:57:1f:72:13:73:a0:dd:21:47:55:ed:fd: 00:ec:cc:da:d4:87:c7:fa:89:4d:1f:85:8a:6d:ed:64:12:83: 9e:6a:0c:44:c5:59:29:82:e4:db:dd:fa:7d:c6:dc:b0:67:42: 58:9a:24:4c:91:28:63:3e:7a:37:72:d7:40:83:41:6e:42:07: 49:37:0d:87:ce:93:07:5e:39:d2:38:f7:81:08:71:72:a7:6a: 89:33:48:ee:b1:f0:7c:56:81:58:6d:a9:10:5d:95:55:02:fb: f0:e0:c6:4e:a2:be:83:e3:4f:40:96:79:74:a7:dc:5d:e9:c4: e2:e2:67:ba:f7:64:81:c9:43:b5:f2:21:b5:66:53:54:d2:d3: 2c:3d:40:73 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjYwMTI4MTkxNjE5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTExMC02YWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3zsw+lPbGmg9NH5JmWcaZjqd8PVbPEiZPrgiTms+Bbqn/zPnz2Dn+PDXPOk RNN8W2ioDEI4u8yd60OXrJE+Bl+7QVEh4eFeepH/G722mY16CHOEyRDcBajGFjSv VZQ+WyQWNTU1uGs8maJhk6D9iKAzf6wgoPw/PoKVR+6n8iRUwmz3BB3YGS3gqfe+ Abupi4BJ36JoJ1Bo+I2jUVx5q79jJkL3qOln/eJ9EbVM9Voi4/m64aQ533srtsZ8 nKgCBmfKcyBf1eaS/1NLOO6fUL11ODwQ8tXrXTsvWepdin8EXw3zijBipJk+aw+I oaXNodI3e2QzVGlOpsh8cuJ3BQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFEPyP/ma P3GgpO6K8DLYPgtY/CmGMB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQzNzgvNjMyRkE4Q0U1MUVBMTFFQUI2QTVDRDg2QzRGOUFFMDIvRUY0NEE0NEU1 MUVCMTFFQUJDMTE4MDBEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/8YAwQCoy+kMA0GCSqGSIb3DQEBCwUAA4IBAQCRXm/UdBAyiogY WRijL8pwLq5UDm95o1ODgtn4YCOYmg6h+1sC/grc0gNv3+YhgO5qHMAmHzhDT5CV 0nTNfMHAkGGzghXgRzbvarKuqtz9kOjJWpuWBHmIMJ7O0ZBJs/h/Q3gBVwOPgGc5 noOltVXqhWdXH3ITc6DdIUdV7f0A7Mza1IfH+olNH4WKbe1kEoOeagxExVkpguTb 3fp9xtywZ0JYmiRMkShjPno3ctdAg0FuQgdJNw2HzpMHXjnSOPeBCHFyp2qJM0ju sfB8VoFYbakQXZVVAvvw4MZOor6D409Alnl0p9xd6cTi4me692SByUO18iG1ZlNU 0tMsPUBz -----END CERTIFICATE-----Generated at Sat Mar 28 12:20:20 2026 by rpki-client