$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa File: 71DBA2E6D28811EAB7D79A47C4F9AE02.roa (raw, json) Hash identifier: U4HdV/PDUa6khnwJGf56kPZWlaze7/9evihtQtzPYLs= Subject key identifier: FD:21:6D:C8:51:DE:B2:AD:06:D3:AC:40:D7:A2:72:02:B1:E8:FB:0D Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 08CE Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:54:45 +0000 ROA not before: Sat 21 Jun 2025 07:24:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24038 IP address blocks: 103.231.54.0/24 maxlen: 24 202.68.208.0/24 maxlen: 24 202.68.210.0/24 maxlen: 24 202.68.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2254 (0x8ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Jun 21 07:24:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a42905-6874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:6c:f5:51:16:f8:bf:1a:9e:76:3e:e7:8e: d5:d4:60:8f:09:94:cc:b1:3c:7d:2a:8d:27:4b:06: c8:6e:3a:58:0d:d6:76:86:6d:b7:61:bf:1e:12:25: 48:07:38:bb:5b:e2:6a:75:cc:dd:5e:e2:5d:1e:e7: d5:83:08:97:b6:95:f4:53:a5:e0:23:7f:fd:8c:b6: 6c:9e:fc:14:3d:9e:aa:c1:c1:16:d0:a1:c1:1e:89: a2:c9:9e:d6:28:bd:e6:63:25:68:56:52:69:5c:0d: 96:32:55:77:b8:aa:46:6d:3b:03:6f:d5:9a:3b:dc: fa:2d:94:d1:aa:1a:d1:ea:db:88:98:14:85:f6:20: 71:f0:82:22:b4:2c:f6:8c:21:b4:ee:dc:46:66:64: 84:1d:66:87:fc:66:89:e4:5f:87:29:05:d4:e8:73: 16:e2:8a:8c:94:8f:fe:51:d8:c6:3b:74:a6:40:1a: 2f:43:ab:3f:39:9a:da:f2:f0:c9:d6:76:2b:6e:f9: 5c:64:d2:ba:5e:3a:a1:81:10:78:19:27:3b:bb:00: 8f:a8:ea:e7:59:2e:bc:1c:72:80:7e:2f:12:e0:f0: e7:a4:31:64:81:d2:40:d7:0c:8d:3e:76:14:e1:b6: fc:b4:44:4a:ed:77:e3:ad:a6:df:a4:1b:05:b6:30: 91:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:21:6D:C8:51:DE:B2:AD:06:D3:AC:40:D7:A2:72:02:B1:E8:FB:0D X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/71DBA2E6D28811EAB7D79A47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.54.0/24 202.68.208.0/24 202.68.210.0/24 202.68.221.0/24 Signature Algorithm: sha256WithRSAEncryption 35:05:6a:0c:fc:8f:a6:95:99:c5:0b:4d:7d:b6:a1:d1:dc:74: 22:34:14:a0:c2:8b:2d:45:51:9d:a8:04:44:53:62:23:de:7f: 13:d8:a5:1b:35:5a:6e:46:2d:0b:b0:13:d4:d6:a8:b1:71:22: 0b:09:f1:52:08:59:cf:61:8b:15:3b:b3:18:2a:8f:de:37:a3: 11:67:fc:54:aa:f8:42:3a:41:33:f0:ea:9b:7b:a6:c5:1a:93: 63:0e:b7:c7:3a:40:aa:5d:8f:b7:fc:98:bb:ac:12:9b:99:ee: 13:78:02:8e:25:5c:01:8a:05:62:18:6c:10:f7:18:98:c5:a1: 11:22:de:34:06:dd:6c:0f:09:fc:ac:99:46:f0:88:05:d6:03: f8:9b:2d:92:c3:d3:be:a6:ec:28:b5:9a:d3:48:43:80:a0:f8: 2c:56:f6:4a:36:b3:88:7d:85:f8:28:54:2c:5d:34:ef:75:c1: f0:3f:77:a7:f1:ec:d1:8d:89:42:d1:41:b9:de:c3:8a:a3:b5: 2a:6c:41:5f:dc:99:cf:3d:48:78:ac:6c:67:d7:91:15:5a:fe: b4:b1:94:2b:45:6d:9b:ed:20:45:bb:c3:a2:38:82:9a:70:39: 35:68:ed:b7:b7:4f:e3:13:f1:0a:f1:5a:0c:4e:78:14:26:ae: 17:54:5d:b7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUwNjIxMDcyNDM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjkwNS02ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyhs9VEW+L8annY+547V1GCPCZTMsTx9Ko0nSwbIbjpYDdZ2hm23Yb8eEiVI Bzi7W+JqdczdXuJdHufVgwiXtpX0U6XgI3/9jLZsnvwUPZ6qwcEW0KHBHomiyZ7W KL3mYyVoVlJpXA2WMlV3uKpGbTsDb9WaO9z6LZTRqhrR6tuImBSF9iBx8IIitCz2 jCG07txGZmSEHWaH/GaJ5F+HKQXU6HMW4oqMlI/+UdjGO3SmQBovQ6s/OZra8vDJ 1nYrbvlcZNK6XjqhgRB4GSc7uwCPqOrnWS68HHKAfi8S4PDnpDFkgdJA1wyNPnYU 4bb8tERK7XfjrabfpBsFtjCROQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFP0hbchR 3rKtBtOsQNeicgKx6PsNMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzRTgvM0YxRjBEREFEMjg3MTFFQTlFNzNFNjQ2QzRGOUFFMDIvNzFEQkEyRTZE Mjg4MTFFQUI3RDc5QTQ3QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAZ+c2AwQAykTQAwQAykTSAwQAykTdMA0GCSqGSIb3DQEBCwUAA4IB AQA1BWoM/I+mlZnFC019tqHR3HQiNBSgwostRVGdqAREU2Ij3n8T2KUbNVpuRi0L sBPU1qixcSILCfFSCFnPYYsVO7MYKo/eN6MRZ/xUqvhCOkEz8Oqbe6bFGpNjDrfH OkCqXY+3/Ji7rBKbme4TeAKOJVwBigViGGwQ9xiYxaERIt40Bt1sDwn8rJlG8IgF 1gP4my2Sw9O+puwotZrTSEOAoPgsVvZKNrOIfYX4KFQsXTTvdcHwP3en8ezRjYlC 0UG53sOKo7UqbEFf3JnPPUh4rGxn15EVWv60sZQrRW2b7SBFu8OiOIKacDk1aO23 t0/jE/EK8VoMTngUJq4XVF23 -----END CERTIFICATE-----Generated at Mon Mar 2 21:24:19 2026 by rpki-client