$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa File: E0FCE614425811EAADEA3B45C4F9AE02.roa (raw, json) Hash identifier: 7oG02MBB/SRXLUOCXgCbbBEuZX5luY+3kV7hTOcxtSk= Subject key identifier: DA:59:1E:3E:1C:FD:18:2C:22:5C:9E:EE:76:06:35:09:E0:99:10:0B Certificate issuer: /CN=A91288D9/serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Certificate serial: 0B9C Authority key identifier: 54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:45:10 +0000 ROA not before: Tue 24 Jun 2025 19:14:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58935 IP address blocks: 103.249.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=541E0A66FE60F3AAC02502CEF1E48E627A62F741 Validity Not Before: Jun 24 19:14:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a426c6-3ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b0:be:4d:d7:4f:a5:33:42:44:02:2e:e3:b2: 02:b4:11:80:2e:5e:19:bc:83:21:36:6a:b0:41:11: f5:78:ad:3e:1e:3a:4f:4c:ee:2d:1c:25:c3:66:ad: a1:b5:bb:15:c4:e3:5f:36:6c:cb:2d:c1:c4:ed:dc: 16:ae:7e:b7:35:cd:08:a4:ee:3c:0c:7f:2b:72:9a: 14:9a:41:10:a7:18:17:6e:9d:6f:f8:f0:d1:84:81: ed:94:ac:14:f5:2e:35:c3:4f:68:30:74:f9:49:9d: ff:b2:4e:5b:12:af:47:31:6d:ac:d0:ff:1e:03:36: 1f:1c:f3:53:5f:2d:6e:c3:65:78:90:c5:99:c8:19: 40:3b:3b:f4:ea:5a:b1:8b:1e:64:59:bf:fe:92:0b: b8:b7:a9:35:d6:97:8c:09:9c:f2:25:28:5b:02:71: 00:fb:5a:c9:4b:ed:ff:3e:6a:62:c9:c3:53:df:7e: df:a1:f8:53:68:06:63:ab:12:e0:c8:9e:27:e9:38: 7d:a2:56:b2:7b:be:a7:35:b6:c6:52:53:82:4d:a5: ca:e5:0f:0c:da:86:98:50:f4:ff:06:21:fe:83:0a: 36:d8:ca:27:a3:cc:11:22:32:c6:28:ba:86:5d:17: 20:93:38:ed:c5:8d:35:07:6b:aa:3a:c4:4c:c0:e7: ad:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:59:1E:3E:1C:FD:18:2C:22:5C:9E:EE:76:06:35:09:E0:99:10:0B X509v3 Authority Key Identifier: keyid:54:1E:0A:66:FE:60:F3:AA:C0:25:02:CE:F1:E4:8E:62:7A:62:F7:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/VB4KZv5g86rAJQLO8eSOYnpi90E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VB4KZv5g86rAJQLO8eSOYnpi90E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/BA59535E425711EA8F838A43C4F9AE02/E0FCE614425811EAADEA3B45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.249.56.0/24 Signature Algorithm: sha256WithRSAEncryption b5:ba:0b:b1:ba:33:94:31:77:53:cc:f7:d7:8d:b2:a0:79:37: 98:d2:90:f4:54:7d:e8:66:60:11:17:59:96:38:e7:93:23:a7: 30:0c:8f:11:48:28:cb:82:c3:ab:44:09:67:76:58:e2:75:58: 32:49:92:e7:11:05:89:10:53:4f:e9:61:65:6d:e4:93:2f:f9: ab:f9:33:54:88:6b:3c:22:6e:13:3c:12:4e:4d:52:37:8b:2e: 15:c4:c9:4c:7c:14:cc:e6:87:3b:6c:f7:25:af:5b:ca:94:71: 3b:68:d4:ae:c4:a5:7e:6e:da:36:cf:af:f4:f4:46:74:6c:7a: 06:84:30:67:fe:c5:26:88:91:d9:76:82:c1:b6:94:0f:8a:ea: da:26:09:20:7b:59:5d:fb:b5:c1:5d:cc:e6:46:5e:4e:6f:44: d0:fe:8c:ed:ce:ed:02:13:50:55:bb:6c:4c:8a:71:29:34:1c: 26:48:e3:28:ae:d4:b0:33:91:b2:b1:4e:f7:25:fe:8d:b0:ac: 7b:88:b1:d8:9b:36:22:dd:fd:ba:77:ae:77:51:36:25:5d:87: 7e:9d:eb:52:a4:09:8e:79:bb:c5:b3:c5:99:7e:96:7a:24:24: 7c:3d:05:40:eb:2b:9f:4e:17:f3:a1:e6:15:f3:2f:5d:7c:3e: dc:8c:b7:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKDU0MUUwQTY2RkU2MEYzQUFDMDI1MDJDRUYxRTQ4RTYy N0E2MkY3NDEwHhcNMjUwNjI0MTkxNDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjZjNi0zZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7C+TddPpTNCRAIu47ICtBGALl4ZvIMhNmqwQRH1eK0+HjpPTO4tHCXDZq2h tbsVxONfNmzLLcHE7dwWrn63Nc0IpO48DH8rcpoUmkEQpxgXbp1v+PDRhIHtlKwU 9S41w09oMHT5SZ3/sk5bEq9HMW2s0P8eAzYfHPNTXy1uw2V4kMWZyBlAOzv06lqx ix5kWb/+kgu4t6k11peMCZzyJShbAnEA+1rJS+3/PmpiycNT337fofhTaAZjqxLg yJ4n6Th9olaye76nNbbGUlOCTaXK5Q8M2oaYUPT/BiH+gwo22Mono8wRIjLGKLqG XRcgkzjtxY01B2uqOsRMwOetSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNpZHj4c /RgsIlye7nYGNQngmRALMB8GA1UdIwQYMBaAFFQeCmb+YPOqwCUCzvHkjmJ6YvdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9CQTU5NTM1RTQy NTcxMUVBOEY4MzhBNDNDNEY5QUUwMi9WQjRLWnY1Zzg2ckFKUUxPOGVTT1lucGk5 MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZCNEtadjVnODZyQUpRTE84ZVNPWW5waTkwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4RDkvQkE1OTUzNUU0MjU3MTFFQThGODM4QTQzQzRGOUFFMDIvRTBGQ0U2MTQ0 MjU4MTFFQUFERUEzQjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ/k4MA0GCSqGSIb3DQEBCwUAA4IBAQC1uguxujOUMXdTzPfXjbKg eTeY0pD0VH3oZmARF1mWOOeTI6cwDI8RSCjLgsOrRAlndljidVgySZLnEQWJEFNP 6WFlbeSTL/mr+TNUiGs8Im4TPBJOTVI3iy4VxMlMfBTM5oc7bPclr1vKlHE7aNSu xKV+bto2z6/09EZ0bHoGhDBn/sUmiJHZdoLBtpQPiuraJgkge1ld+7XBXczmRl5O b0TQ/oztzu0CE1BVu2xMinEpNBwmSOMortSwM5GysU73Jf6NsKx7iLHYmzYi3f26 d653UTYlXYd+netSpAmOebvFs8WZfpZ6JCR8PQVA6yufThfzoeYV8y9dfD7cjLdC -----END CERTIFICATE-----Generated at Mon Mar 2 15:10:37 2026 by rpki-client