$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa File: 0F0824DED28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: YxBTBicabikn08Aqg/dvf+PsgRQVrImZt4AAt8rvHnc= Subject key identifier: 2C:A5:FC:4E:C0:0E:CC:11:D4:5E:CA:1C:10:73:57:43:56:24:77:AC Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2257 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa Signing time: Wed 04 Mar 2026 16:19:32 +0000 ROA not before: Wed 04 Mar 2026 16:19:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132791 IP address blocks: 103.227.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8791 (0x2257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Validity Not Before: Mar 4 16:19:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a85b94-c6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:a9:49:2c:e7:57:51:aa:63:95:41:70:58: 70:44:f0:3c:93:68:c1:de:73:fd:d6:81:1f:aa:ce: a2:60:a0:e7:9f:75:a4:89:eb:ee:be:2d:97:eb:c7: 18:c4:87:af:2e:26:50:e0:d2:0d:d6:27:51:df:ef: a6:2a:0e:3c:30:a6:ae:f4:0c:15:2b:2c:4c:3b:c7: 1d:75:f6:ef:61:e6:4a:04:e5:d0:b4:cc:d4:54:a2: 82:dc:37:37:24:06:97:b3:1a:02:80:4b:be:a3:9e: 71:43:9d:d1:64:2f:f3:0f:64:96:63:72:f2:5e:e7: b7:b5:84:a6:1b:1a:4f:26:90:16:82:57:7d:5c:c0: ff:13:1c:3c:b8:31:16:d3:b7:a5:ae:fc:93:fd:22: 20:ec:39:26:3c:f9:d6:6f:f6:5a:5e:83:19:3b:97: b8:74:7f:c3:f2:30:00:3c:49:d3:36:95:d8:e6:1b: e8:8e:88:4a:7a:d7:f3:e3:d0:e9:20:64:01:de:5b: a4:f3:1e:29:69:c2:03:99:cf:d2:ba:84:13:fb:a7: a3:f0:8d:78:9c:57:d0:9c:b0:e3:1b:f7:e6:b3:71: a5:a8:02:a5:f4:5c:2f:a1:64:8c:43:1f:8c:1f:d8: a0:a7:64:9a:40:5f:5a:75:a3:88:b9:60:00:6b:b9: 14:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A5:FC:4E:C0:0E:CC:11:D4:5E:CA:1C:10:73:57:43:56:24:77:AC X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.227.67.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:26:c5:f1:cb:b2:48:f2:b6:93:6e:35:a6:7f:89:60:c0:87: fe:13:aa:12:e9:02:71:2e:78:93:95:e1:b9:b3:af:37:fc:f9: 41:c6:9a:26:ff:b6:80:70:53:70:7d:bc:62:05:41:8a:38:29: 2c:de:67:8c:e1:f8:52:9a:90:00:8a:5b:a8:01:45:e3:bb:c3: 5d:68:a4:a2:1a:fc:fd:3a:fa:05:60:9c:fa:e8:44:18:fe:26: bd:c2:5d:40:c9:3d:4f:d1:71:0c:c3:e6:09:2d:32:61:4e:ef: b3:f9:3f:4a:0f:b6:73:d3:c5:a0:58:c5:46:f2:e7:9f:18:6b: a0:50:16:69:cb:58:f9:50:ad:d7:6f:48:5e:9a:91:fd:2b:d4: f0:d8:8a:6e:9f:26:51:7b:9f:7e:0d:d9:bf:2c:cd:5d:41:6d: 8c:09:09:30:3a:85:44:d6:21:6c:81:b1:13:9f:dc:d6:43:ef: 38:fa:fd:1e:f8:19:7b:50:ca:29:07:a9:96:26:12:a9:c2:f3: 70:2d:74:5d:ad:ac:4b:87:5b:57:d2:1d:93:fa:81:3b:32:ec: 08:0e:3f:f1:bf:a6:49:a8:42:59:f5:42:98:d1:ed:b3:53:25: 95:87:6c:ed:ac:99:dd:8e:9f:85:4d:62:c0:7f:34:03:1e:4c: 93:c7:c7:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjYwMzA0MTYxOTMyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NWI5NC1jNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0CpSSznV1GqY5VBcFhwRPA8k2jB3nP91oEfqs6iYKDnn3Wkievuvi2X68cY xIevLiZQ4NIN1idR3++mKg48MKau9AwVKyxMO8cddfbvYeZKBOXQtMzUVKKC3Dc3 JAaXsxoCgEu+o55xQ53RZC/zD2SWY3LyXue3tYSmGxpPJpAWgld9XMD/Exw8uDEW 07elrvyT/SIg7DkmPPnWb/ZaXoMZO5e4dH/D8jAAPEnTNpXY5hvojohKetfz49Dp IGQB3luk8x4pacIDmc/SuoQT+6ej8I14nFfQnLDjG/fms3GlqAKl9FwvoWSMQx+M H9igp2SaQF9adaOIuWAAa7kUNQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCyl/E7A DswR1F7KHBBzV0NWJHesMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvQkFFMTA4QzRFQTYwMTFFNTg4MTU3NzBDQzRGOUFFMDIvMEYwODI0REVE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+NDMA0GCSqGSIb3DQEBCwUAA4IBAQBsJsXxy7JI8raTbjWmf4lg wIf+E6oS6QJxLniTleG5s683/PlBxpom/7aAcFNwfbxiBUGKOCks3meM4fhSmpAA iluoAUXju8NdaKSiGvz9OvoFYJz66EQY/ia9wl1AyT1P0XEMw+YJLTJhTu+z+T9K D7Zz08WgWMVG8uefGGugUBZpy1j5UK3Xb0hempH9K9Tw2IpunyZRe59+Ddm/LM1d QW2MCQkwOoVE1iFsgbETn9zWQ+84+v0e+Bl7UMopB6mWJhKpwvNwLXRdraxLh1tX 0h2T+oE7MuwIDj/xv6ZJqEJZ9UKY0e2zUyWVh2ztrJndjp+FTWLAfzQDHkyTx8ek -----END CERTIFICATE-----Generated at Thu Mar 26 10:29:34 2026 by rpki-client