$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa File: 545EDE9C140911EF8520A25BC4F9AE02.roa (raw, json) Hash identifier: /BZUmLi+tmRANpipkr295WYxkHJvgSpDNND0oQHBar8= Subject key identifier: F3:65:B7:F8:B2:49:16:1C:2A:DE:FE:8F:59:BF:B7:A3:B6:A4:6A:4B Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 023E Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:27:57 +0000 ROA not before: Thu 01 May 2025 02:39:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135517 IP address blocks: 103.101.98.0/23 maxlen: 23 103.101.98.0/24 maxlen: 24 103.101.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 1 02:39:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ea7c-6059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:48:f7:5f:1b:2e:d7:83:ca:1a:f3:8d:b9:85: 85:3d:e7:e3:93:5a:4a:64:7f:f2:cc:76:b2:b9:92: c9:c9:db:01:a0:0e:d4:d3:9d:50:8e:f8:b9:36:ef: 8f:08:5c:31:5d:86:41:9c:b4:e7:bc:0b:45:be:3c: 09:93:74:21:bc:1e:82:ec:23:ff:15:6e:5a:65:d1: 52:07:03:42:9b:f8:04:13:1a:87:40:cf:36:5b:cf: 47:92:cc:61:6d:52:b6:15:1d:c0:6a:7a:43:91:49: b9:89:28:ed:59:5e:28:6e:eb:a6:a6:28:ec:ea:25: 81:6c:5e:3f:d2:db:26:67:7c:ab:e0:f2:8d:77:b5: a0:67:14:92:5a:6d:dd:67:c2:9d:1f:df:70:7b:c4: d7:f0:e8:28:1f:bd:a8:27:a6:23:80:4c:02:b5:de: 38:69:11:97:56:41:34:45:a0:d3:3d:af:ee:e7:75: a4:81:f1:87:00:ba:ef:64:7c:16:8b:59:49:93:f6: 8a:35:f5:c7:05:8e:18:36:b8:dd:65:0f:e2:38:4e: 8b:73:cc:5c:2f:47:f9:af:9d:44:e2:06:07:20:a8: 11:63:fb:48:77:29:96:2a:b3:20:ff:83:3f:98:ff: ee:08:9f:be:c4:16:41:d4:01:99:95:16:04:96:90: 35:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:65:B7:F8:B2:49:16:1C:2A:DE:FE:8F:59:BF:B7:A3:B6:A4:6A:4B X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.98.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:57:e2:49:cb:34:67:bf:db:7d:13:be:30:08:32:af:e7:a9: e3:83:51:eb:64:46:19:7d:91:33:1c:91:46:f9:b0:83:5a:7c: 81:b7:59:9f:08:df:f0:c2:d8:0c:2d:c2:01:6a:e7:40:3b:3d: 75:8f:9c:68:fe:53:c9:53:f8:df:2f:6e:40:5a:9a:ee:45:35: 8c:07:56:9e:b6:47:7d:f4:55:c6:b7:a3:3b:ba:aa:08:2c:d5: e6:70:1e:f2:b6:fa:ee:85:5b:73:39:12:b7:5d:dd:46:73:7a: 86:1c:b9:ce:09:9f:e0:4b:55:2a:45:22:17:1b:28:e4:c3:db: 0b:de:29:4a:e1:f5:cb:97:3d:3c:82:3e:d4:d6:78:67:3d:7d: 82:af:11:29:c5:3c:a6:7c:0a:d2:88:e0:ae:0a:ff:ab:5e:c3: 2d:6a:d7:16:da:cc:a6:d8:be:3a:67:99:87:89:b3:80:7f:b3: 47:3d:31:31:b7:3c:e4:c4:79:50:a7:2d:33:57:ea:a5:fa:af: 86:3c:52:fa:bd:d3:32:6a:fb:2c:e9:c6:59:fe:12:6d:96:2b: 84:cd:48:4c:5f:bd:08:1f:06:67:9d:7e:fb:71:25:d8:8d:32: de:22:78:16:c5:f6:4b:ec:d4:38:85:6b:01:dd:9f:6e:93:a3: d5:4d:cd:f0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNTAxMDIzOTI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWE3Yy02MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEj3Xxsu14PKGvONuYWFPefjk1pKZH/yzHayuZLJydsBoA7U051Qjvi5Nu+P CFwxXYZBnLTnvAtFvjwJk3QhvB6C7CP/FW5aZdFSBwNCm/gEExqHQM82W89Hksxh bVK2FR3AanpDkUm5iSjtWV4obuumpijs6iWBbF4/0tsmZ3yr4PKNd7WgZxSSWm3d Z8KdH99we8TX8OgoH72oJ6YjgEwCtd44aRGXVkE0RaDTPa/u53WkgfGHALrvZHwW i1lJk/aKNfXHBY4YNrjdZQ/iOE6Lc8xcL0f5r51E4gYHIKgRY/tIdymWKrMg/4M/ mP/uCJ++xBZB1AGZlRYElpA18QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPNlt/iy SRYcKt7+j1m/t6O2pGpLMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBNDAvOTZGMEQ3MENCQkRBMTFFRDg4NzhFRjQ3QzRGOUFFMDIvNTQ1RURFOUMx NDA5MTFFRjg1MjBBMjVCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2ViMA0GCSqGSIb3DQEBCwUAA4IBAQBuV+JJyzRnv9t9E74wCDKv 56njg1HrZEYZfZEzHJFG+bCDWnyBt1mfCN/wwtgMLcIBaudAOz11j5xo/lPJU/jf L25AWpruRTWMB1aetkd99FXGt6M7uqoILNXmcB7ytvruhVtzORK3Xd1Gc3qGHLnO CZ/gS1UqRSIXGyjkw9sL3ilK4fXLlz08gj7U1nhnPX2CrxEpxTymfArSiOCuCv+r XsMtatcW2sym2L46Z5mHibOAf7NHPTExtzzkxHlQpy0zV+ql+q+GPFL6vdMyavss 6cZZ/hJtliuEzUhMX70IHwZnnX77cSXYjTLeIngWxfZL7NQ4hWsB3Z9uk6PVTc3w -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:38 2026 by rpki-client