$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa File: 8F7DDD8889B811EE9E7ABE26C4F9AE02.roa (raw, json) Hash identifier: bJa45JxM0BM6SHPylrF6iczdI3TR6YwWJGhmk5n+6Co= Subject key identifier: 6B:96:32:AA:85:D8:85:74:EF:17:DE:CA:1F:A2:BB:A5:20:E0:8D:C7 Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0E35 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:27:45 +0000 ROA not before: Tue 06 May 2025 18:27:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 21859 IP address blocks: 103.38.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3637 (0xe35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 6 18:27:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46901-942a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:82:3c:55:d0:64:de:75:94:aa:e8:20:e5:07: c0:e0:e5:8c:61:c1:6f:6f:7b:5d:73:ac:2d:00:2f: 8b:ed:e9:ef:a1:ea:ed:ca:10:62:24:5d:5e:9a:9c: 0c:bc:0a:0c:4b:34:e6:f8:b5:f4:2b:74:a3:26:52: 06:f1:0a:a7:a9:0d:bf:d2:92:ed:45:d0:23:a6:f9: de:19:e7:4a:39:0b:b1:b3:6e:6b:ce:68:d2:d1:09: e6:95:49:95:7b:7d:82:8a:eb:54:58:9f:a7:99:f4: 8b:b1:4a:eb:12:4b:f3:ee:d8:1f:f4:89:73:73:04: 24:fa:ac:c4:f0:ac:8b:8d:27:e2:9a:07:d0:c7:e5: a6:e9:c8:4d:11:3f:9a:bb:0c:25:20:67:b8:22:a9: 1f:b6:29:5e:bc:d6:23:bc:24:05:38:37:d3:b4:01: e6:5f:2f:10:d2:b1:0c:50:1d:52:4e:43:71:19:34: 87:2a:69:40:f2:74:50:dc:5b:43:ee:cd:4b:a5:55: 72:65:16:b4:6b:3e:ec:a3:ed:d2:43:f8:1b:f5:50: 41:c3:66:f2:fb:41:18:5a:f8:24:0c:2d:14:6d:c7: fc:93:3c:4f:b9:a7:24:01:67:c0:24:48:0e:dd:a9: 93:a5:7e:2f:be:c2:d0:66:3f:06:b8:9a:22:da:2c: 78:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:96:32:AA:85:D8:85:74:EF:17:DE:CA:1F:A2:BB:A5:20:E0:8D:C7 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/8F7DDD8889B811EE9E7ABE26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.38.255.0/24 Signature Algorithm: sha256WithRSAEncryption 74:ea:cf:be:87:a1:d4:8f:6f:14:4a:84:1d:65:f5:59:0b:40: e0:ca:63:ca:40:17:24:9c:a0:17:70:4d:72:b2:f1:c5:29:fb: 14:ca:a4:8f:5d:49:6e:a7:16:e4:43:68:cd:85:88:fb:4c:bc: 81:4a:a1:28:36:cd:52:e9:b1:63:6a:67:42:54:54:e4:ae:11: e5:23:3a:42:f6:18:42:f4:b1:f1:32:03:a8:ea:eb:13:de:1c: 9e:73:2c:94:29:94:3e:48:ac:50:91:a9:f1:a7:29:12:55:51: dd:74:49:c4:3e:0e:63:1d:46:75:76:57:e3:76:80:16:3a:9a: 92:d4:76:bd:3f:08:1f:4b:01:b4:40:09:fc:da:57:4e:bf:52: 8d:91:a4:ef:8f:9c:3e:ec:63:64:35:af:4a:65:fb:d1:f7:19: 9e:68:73:c6:db:f9:04:4b:19:77:05:b2:81:98:5b:7f:7d:97: fd:66:cb:5a:70:48:02:ee:9e:e2:07:98:3e:fe:41:5a:44:bf: ea:55:59:8a:67:4f:f2:af:7f:8f:07:0c:08:a6:ca:e5:0a:b8: c6:f3:5a:72:03:31:47:16:cd:ed:ef:63:e4:3c:d0:81:15:c0: 30:ce:ae:a8:c5:2f:9f:6a:eb:5f:6e:64:93:8c:6e:e8:12:c1: 82:77:0b:fd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTA2MTgyNzM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkwMS05NDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4I8VdBk3nWUqugg5QfA4OWMYcFvb3tdc6wtAC+L7envoertyhBiJF1empwM vAoMSzTm+LX0K3SjJlIG8QqnqQ2/0pLtRdAjpvneGedKOQuxs25rzmjS0QnmlUmV e32CiutUWJ+nmfSLsUrrEkvz7tgf9IlzcwQk+qzE8KyLjSfimgfQx+Wm6chNET+a uwwlIGe4IqkftilevNYjvCQFODfTtAHmXy8Q0rEMUB1STkNxGTSHKmlA8nRQ3FtD 7s1LpVVyZRa0az7so+3SQ/gb9VBBw2by+0EYWvgkDC0Ubcf8kzxPuackAWfAJEgO 3amTpX4vvsLQZj8GuJoi2ix44QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGuWMqqF 2IV07xfeyh+iu6Ug4I3HMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvOEY3REREODg4 OUI4MTFFRTlFN0FCRTI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZyb/MA0GCSqGSIb3DQEBCwUAA4IBAQB06s++h6HUj28USoQdZfVZ C0DgymPKQBcknKAXcE1ysvHFKfsUyqSPXUlupxbkQ2jNhYj7TLyBSqEoNs1S6bFj amdCVFTkrhHlIzpC9hhC9LHxMgOo6usT3hyecyyUKZQ+SKxQkanxpykSVVHddEnE Pg5jHUZ1dlfjdoAWOpqS1Ha9PwgfSwG0QAn82ldOv1KNkaTvj5w+7GNkNa9KZfvR 9xmeaHPG2/kESxl3BbKBmFt/fZf9ZstacEgC7p7iB5g+/kFaRL/qVVmKZ0/yr3+P BwwIpsrlCrjG81pyAzFHFs3t72PkPNCBFcAwzq6oxS+fautfbmSTjG7oEsGCdwv9 -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:20 2026 by rpki-client