$ rpki-client -vvf rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/C1A8182646D011EE8BE5AE80C4F9AE02.roa File: C1A8182646D011EE8BE5AE80C4F9AE02.roa (raw, json) Hash identifier: GaiJN8sQVRxQhxF84N/8bkdFVJqBpd2e+8ULBvpRalM= Subject key identifier: A2:42:CA:FC:CD:92:4E:F5:75:69:64:AB:3B:6B:A5:FF:FB:F0:CA:33 Certificate issuer: /CN=A91316E5/serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Certificate serial: 01DD Authority key identifier: 73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/C1A8182646D011EE8BE5AE80C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:18:46 +0000 ROA not before: Sun 21 Dec 2025 02:24:00 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150403 IP address blocks: 103.89.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316E5, serialNumber=73987ECCE77E44EB36651E098D33750FA864E676 Validity Not Before: Dec 21 02:24:00 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a41286-887a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d8:d2:11:8d:ef:16:b5:41:2f:41:7a:63:3c: 84:34:db:24:a0:da:6e:9c:74:3f:af:3e:47:47:98: 7a:bd:64:ba:94:35:01:47:f5:09:8d:fd:0c:32:e2: 09:91:a2:21:14:35:20:30:ed:fc:ca:b0:c4:b0:bf: b4:18:4a:57:8e:e9:16:8c:fb:83:61:50:a9:af:f5: 37:a3:de:9e:4b:28:47:2e:74:ac:e4:bb:b4:25:ba: dc:b8:26:3d:43:1a:99:ec:cc:bc:6a:f9:50:e2:d4: 8e:4b:5f:99:9b:22:57:0b:ee:5b:38:2d:db:08:27: 8d:10:db:ea:2c:8a:db:9a:c3:a1:ac:e9:4c:7a:54: ea:1b:fb:42:7a:e9:ff:2f:20:95:84:80:e9:34:6f: 61:f2:ad:1c:f6:10:d8:d3:4b:04:3f:4b:d4:ce:12: 5e:de:cc:51:6c:e1:c3:67:41:91:92:64:15:ae:b7: 58:8e:0b:e4:d1:ec:f8:a4:a7:4e:6a:8b:57:db:44: 4e:df:1a:3c:5b:31:f0:7f:fc:02:51:3a:c9:07:34: e0:b3:89:1e:a0:54:e9:97:db:43:3e:a3:9d:b3:6f: d9:03:73:91:30:fe:72:2f:b9:b5:c6:48:87:8f:fd: 66:4a:c5:1d:bd:e3:df:50:09:61:72:4e:94:cf:2f: 33:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:42:CA:FC:CD:92:4E:F5:75:69:64:AB:3B:6B:A5:FF:FB:F0:CA:33 X509v3 Authority Key Identifier: keyid:73:98:7E:CC:E7:7E:44:EB:36:65:1E:09:8D:33:75:0F:A8:64:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5h-zOd-ROs2ZR4JjTN1D6hk5nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316E5/51F9835C46D011EE81F2073FC4F9AE02/C1A8182646D011EE8BE5AE80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.36.0/24 Signature Algorithm: sha256WithRSAEncryption 03:32:1a:33:f8:e6:f0:3e:f8:4a:55:51:bc:62:f2:a9:65:93: 38:25:3c:f3:c4:9a:b3:9b:99:94:ce:57:31:e2:fb:f2:cd:82: fd:3b:6f:a8:d5:c3:d6:61:0d:ce:1f:03:ab:33:96:00:0e:ea: b9:f8:4a:65:dc:e6:bd:fe:20:2f:84:a9:93:59:c9:1f:dd:73: 95:d2:ec:b6:72:ab:43:bf:60:62:b6:73:fa:70:22:44:0b:50: 87:07:da:b3:13:f7:b9:2b:da:3b:45:6f:9a:69:83:b6:5a:2b: e8:ff:05:92:5e:77:08:af:f6:10:57:6d:32:f2:63:18:15:1f: 39:fe:c7:a7:40:81:5d:d6:a8:01:66:0d:23:fb:9d:f2:70:c0: 23:41:60:71:fe:74:1f:b7:23:88:05:f3:06:80:2a:b6:a2:95: 11:5e:b0:6a:1f:1e:f7:68:a5:22:77:8b:9c:a2:95:7d:46:0e: b2:ee:b2:64:34:59:b8:f7:11:88:cb:6d:0b:f8:c1:60:a1:20: 87:ad:5d:aa:c7:92:6c:62:ab:17:db:e7:e6:69:52:b3:92:20: 3e:0a:da:a0:2e:8a:4e:f2:64:a4:90:9f:cd:74:f3:cf:31:12: fb:1e:c9:8a:b2:a4:2f:53:6b:6f:13:53:1b:80:ff:7e:3e:a3: 9c:4e:e0:01 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2RTUxMTAvBgNVBAUTKDczOTg3RUNDRTc3RTQ0RUIzNjY1MUUwOThEMzM3NTBG QTg2NEU2NzYwHhcNMjUxMjIxMDIyNDAwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTI4Ni04ODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjdjSEY3vFrVBL0F6YzyENNskoNpunHQ/rz5HR5h6vWS6lDUBR/UJjf0MMuIJ kaIhFDUgMO38yrDEsL+0GEpXjukWjPuDYVCpr/U3o96eSyhHLnSs5Lu0JbrcuCY9 QxqZ7My8avlQ4tSOS1+ZmyJXC+5bOC3bCCeNENvqLIrbmsOhrOlMelTqG/tCeun/ LyCVhIDpNG9h8q0c9hDY00sEP0vUzhJe3sxRbOHDZ0GRkmQVrrdYjgvk0ez4pKdO aotX20RO3xo8WzHwf/wCUTrJBzTgs4keoFTpl9tDPqOds2/ZA3ORMP5yL7m1xkiH j/1mSsUdvePfUAlhck6Uzy8zswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKJCyvzN kk71dWlkqztrpf/78MozMB8GA1UdIwQYMBaAFHOYfsznfkTrNmUeCY0zdQ+oZOZ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZFNS81MUY5ODM1QzQ2 RDAxMUVFODFGMjA3M0ZDNEY5QUUwMi9jNWgtek9kLVJPczJaUjRKalROMUQ2aGs1 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1aC16T2QtUk9zMlpSNEpqVE4xRDZoazVuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE2RTUvNTFGOTgzNUM0NkQwMTFFRTgxRjIwNzNGQzRGOUFFMDIvQzFBODE4MjY0 NkQwMTFFRThCRTVBRTgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1kkMA0GCSqGSIb3DQEBCwUAA4IBAQADMhoz+ObwPvhKVVG8YvKp ZZM4JTzzxJqzm5mUzlcx4vvyzYL9O2+o1cPWYQ3OHwOrM5YADuq5+Epl3Oa9/iAv hKmTWckf3XOV0uy2cqtDv2BitnP6cCJEC1CHB9qzE/e5K9o7RW+aaYO2Wivo/wWS XncIr/YQV20y8mMYFR85/senQIFd1qgBZg0j+53ycMAjQWBx/nQftyOIBfMGgCq2 opURXrBqHx73aKUid4ucopV9Rg6y7rJkNFm49xGIy20L+MFgoSCHrV2qx5JsYqsX 2+fmaVKzkiA+CtqgLopO8mSkkJ/NdPPPMRL7HsmKsqQvU2tvE1MbgP9+PqOcTuAB -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:35 2026 by rpki-client