$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/A280C1FCA06D11EB92FB3739C4F9AE02.roa File: A280C1FCA06D11EB92FB3739C4F9AE02.roa (raw, json) Hash identifier: S1LxRGAyN75MGVrx7zsjehrxoECJoknKKiFKcBA+GMU= Subject key identifier: 41:27:FC:8B:08:1F:42:AD:1E:92:8D:FC:E7:DE:90:6A:D6:38:8E:16 Certificate issuer: /CN=A91FF4FC/serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Certificate serial: 0E6F Authority key identifier: F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/A280C1FCA06D11EB92FB3739C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:21:26 +0000 ROA not before: Sat 31 May 2025 18:20:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 59355 IP address blocks: 103.230.252.0/22 maxlen: 22 103.230.252.0/23 maxlen: 24 103.230.254.0/24 maxlen: 24 103.230.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3695 (0xe6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF4FC, serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Validity Not Before: May 31 18:20:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40516-35fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:91:cc:fb:49:7a:c7:72:c1:c4:30:1e:7d:69: bf:69:e1:4c:3a:16:87:95:12:7a:bc:88:af:fd:53: 3c:26:9c:1a:9b:fe:f4:03:9e:aa:12:18:99:4e:ed: 8c:79:7b:f6:3f:12:92:01:16:d6:94:10:33:2b:e2: 82:37:ce:16:f7:c8:8c:a8:7b:9a:41:99:0d:1e:4c: 47:da:54:91:76:91:1b:14:6f:3b:e9:0c:cc:19:fb: 5d:1e:46:84:b5:af:3a:52:22:ac:ef:f2:35:dc:4a: 12:4e:7a:e4:78:de:d2:94:24:70:a7:de:49:c0:e8: af:4a:27:f9:33:29:75:42:3a:48:49:98:26:d8:af: 53:fa:f1:7c:06:8b:92:31:9a:a2:c6:a1:e2:56:68: 2d:9b:2a:9e:d1:04:bb:e7:47:04:58:58:ae:af:94: 08:08:3e:79:0f:a2:66:d1:cf:d2:9d:80:d1:48:44: 23:b5:f8:22:c2:1c:ff:d6:b1:1b:4c:92:4b:63:1c: 1f:1b:98:df:87:75:71:d1:25:3a:28:29:29:df:d6: e4:a6:67:ce:96:ce:1f:ce:50:9c:a0:eb:b4:fa:95: 7f:b6:c4:87:d7:9e:09:2a:13:79:92:4a:40:22:7c: f1:22:81:3a:a8:ce:fe:03:41:93:ab:7d:8d:3c:fb: e7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:27:FC:8B:08:1F:42:AD:1E:92:8D:FC:E7:DE:90:6A:D6:38:8E:16 X509v3 Authority Key Identifier: keyid:F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/A280C1FCA06D11EB92FB3739C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.230.252.0/22 Signature Algorithm: sha256WithRSAEncryption 33:80:e4:65:4c:e2:6a:b6:5c:c5:e9:ea:7e:eb:2c:1a:48:26: ef:ba:e4:01:12:a8:20:92:68:23:50:97:7b:f9:b6:8e:52:26: ed:81:7e:d0:d0:a3:bb:6f:ca:40:71:83:74:66:a7:cf:30:f0: ee:f2:83:2e:ca:74:70:39:46:09:e8:2b:29:c1:dd:98:68:d3: 12:58:d9:6f:e5:d7:40:4f:13:b1:46:21:c7:09:9d:74:58:a5: 57:87:c5:55:5d:2b:fc:b3:cb:94:70:4d:22:2d:eb:1a:40:18: 4a:c7:8c:03:6e:a0:12:41:12:37:f4:b9:80:ac:aa:4e:d1:74: b6:27:fb:ca:55:2a:ae:aa:48:64:86:6a:91:e6:a6:c9:7f:0b: 7f:2f:b9:07:f3:e4:a4:66:d3:6f:be:d1:b4:6e:b5:fb:96:83: 22:e7:f0:f3:a6:c3:c0:5c:82:27:7f:8a:df:e8:52:96:23:6f: 6d:6e:70:23:f0:09:fc:bb:2f:d1:60:8a:f7:12:28:b4:80:d3: c5:72:d0:4e:52:bb:48:38:ca:3e:b6:f5:0a:4e:33:4b:e7:23: e5:2a:c7:77:26:b7:f7:83:f0:8d:e8:04:fe:d5:74:fc:7c:c3: fc:8f:8b:3a:ad:09:7a:31:f0:b7:71:af:26:5b:8d:a2:63:25: 80:1c:36:2b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0RkMxMTAvBgNVBAUTKEYxRTAyQjM5NDZGRUZCRTZGNDY0RjQzNDhFRjIxNTVG NjFEMDdBMUIwHhcNMjUwNTMxMTgyMDMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDUxNi0zNWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65HM+0l6x3LBxDAefWm/aeFMOhaHlRJ6vIiv/VM8Jpwam/70A56qEhiZTu2M eXv2PxKSARbWlBAzK+KCN84W98iMqHuaQZkNHkxH2lSRdpEbFG876QzMGftdHkaE ta86UiKs7/I13EoSTnrkeN7SlCRwp95JwOivSif5Myl1QjpISZgm2K9T+vF8BouS MZqixqHiVmgtmyqe0QS750cEWFiur5QICD55D6Jm0c/SnYDRSEQjtfgiwhz/1rEb TJJLYxwfG5jfh3Vx0SU6KCkp39bkpmfOls4fzlCcoOu0+pV/tsSH154JKhN5kkpA InzxIoE6qM7+A0GTq32NPPvnPwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEEn/IsI H0KtHpKN/OfekGrWOI4WMB8GA1UdIwQYMBaAFPHgKzlG/vvm9GT0NI7yFV9h0Hob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjRGQy8zQjYzNEJCRUI0 NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0tYjBaUFEwanZJVlgySFFl aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhlQXJPVWItLS1iMFpQUTBqdklWWDJIUWVocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY0RkMvM0I2MzRCQkVCNDQ0MTFFOTg2NzEzRDFEQzRGOUFFMDIvQTI4MEMxRkNB MDZEMTFFQjkyRkIzNzM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+b8MA0GCSqGSIb3DQEBCwUAA4IBAQAzgORlTOJqtlzF6ep+6ywa SCbvuuQBEqggkmgjUJd7+baOUibtgX7Q0KO7b8pAcYN0ZqfPMPDu8oMuynRwOUYJ 6Cspwd2YaNMSWNlv5ddATxOxRiHHCZ10WKVXh8VVXSv8s8uUcE0iLesaQBhKx4wD bqASQRI39LmArKpO0XS2J/vKVSquqkhkhmqR5qbJfwt/L7kH8+SkZtNvvtG0brX7 loMi5/DzpsPAXIInf4rf6FKWI29tbnAj8An8uy/RYIr3Eii0gNPFctBOUrtIOMo+ tvUKTjNL5yPlKsd3Jrf3g/CN6AT+1XT8fMP8j4s6rQl6MfC3ca8mW42iYyWAHDYr -----END CERTIFICATE-----Generated at Thu Mar 26 16:54:12 2026 by rpki-client