$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa File: D0F245E0D76711EE99C72C29C4F9AE02.roa (raw, json) Hash identifier: /nSONda3h8Q8eZ5jy2F36VmYz3WvK3T5pKue5DyH0zM= Subject key identifier: 3F:94:E1:A2:EB:BF:F3:81:41:10:0D:AD:73:96:14:E2:C3:29:37:E4 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 017B Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:33:32 +0000 ROA not before: Tue 23 Dec 2025 03:24:30 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149018 IP address blocks: 103.88.89.0/24 maxlen: 24 103.176.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA, serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Dec 23 03:24:30 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a415fc-970a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c9:f2:57:ce:90:9f:3d:35:d8:89:93:fc:a1: 01:fb:8e:38:fa:a5:eb:8d:01:d6:d8:e6:f6:87:5a: ba:ba:0e:be:43:60:ab:01:62:ad:30:51:15:0a:f2: 0c:c4:9d:2e:b6:c8:36:96:ac:f6:c6:e3:9f:77:44: 69:2e:89:ea:7d:82:37:2b:0d:65:2f:57:eb:31:21: 90:05:8a:64:39:c8:ef:52:dd:fa:5c:9c:80:a2:bd: a9:15:b4:c4:18:fa:cf:31:8f:a6:1c:36:90:b6:12: b3:32:19:9e:c1:ea:b5:93:44:f4:f8:c4:b8:dc:95: 0c:b3:c9:1c:e7:b5:c0:af:ff:a6:b2:25:6d:74:db: ec:c8:67:cc:6b:6e:79:94:54:62:30:33:d9:54:ec: ae:86:31:28:e9:ae:11:80:3c:30:d3:0d:56:09:56: ac:7b:1e:e3:fb:e5:58:98:ac:5e:c1:61:e6:67:5c: d3:b2:45:78:e6:b7:6f:9b:b1:b9:98:62:e9:6f:ad: d9:77:97:f0:b3:fd:a2:4d:f7:00:86:0b:93:6c:3a: 24:e8:04:83:24:47:95:2b:9f:cb:d9:f8:16:1e:4e: 5a:6e:b5:1f:22:07:dc:4e:46:65:f4:1a:08:40:28: 90:59:c6:d1:be:14:ac:84:90:e3:f5:41:d4:e4:66: 17:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:94:E1:A2:EB:BF:F3:81:41:10:0D:AD:73:96:14:E2:C3:29:37:E4 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.89.0/24 103.176.118.0/24 Signature Algorithm: sha256WithRSAEncryption 04:a2:2b:a9:d6:74:dd:94:19:b0:eb:44:aa:6f:c4:ef:90:be: 09:82:8f:e1:59:35:45:48:2a:6d:33:f3:77:71:c6:57:10:90: 9d:c4:04:bf:71:d0:4c:c3:61:a0:bf:5e:cb:88:c5:67:c8:0a: 59:1a:80:65:37:0a:38:cd:6e:e8:ba:6e:c6:59:2a:f0:70:47: df:a5:58:be:9f:89:2b:86:3b:d2:b2:30:89:01:0e:37:fc:71: a3:cb:17:67:17:e0:0a:df:36:65:ef:0a:9c:bc:03:b2:79:5a: 92:c5:3f:9c:6a:c2:ab:0c:34:23:7d:f7:7f:b0:3f:ac:3c:ca: b8:1b:0b:07:59:b4:5d:cf:d4:e4:60:79:d0:6e:8e:92:e6:98: e4:33:53:7f:00:63:ad:50:c7:98:9f:1b:90:e0:00:41:23:f4: 5c:7f:23:a2:d3:64:9a:01:e0:80:39:48:02:76:4a:d1:b6:05: eb:d8:17:28:2f:8b:3e:70:cf:0b:4b:cd:4f:db:3f:b4:69:d1: 62:58:fc:39:92:d4:14:32:32:14:2d:ef:0f:98:75:17:f2:85: d4:27:0e:00:01:6d:42:16:e7:d7:ae:e8:a3:0e:0a:4d:da:37: cb:f6:e2:5f:14:fa:79:88:8e:52:f9:a3:7a:b7:05:17:08:c4: c7:37:17:5c -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjUxMjIzMDMyNDMwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTVmYy05NzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycnyV86Qnz012ImT/KEB+444+qXrjQHW2Ob2h1q6ug6+Q2CrAWKtMFEVCvIM xJ0utsg2lqz2xuOfd0RpLonqfYI3Kw1lL1frMSGQBYpkOcjvUt36XJyAor2pFbTE GPrPMY+mHDaQthKzMhmeweq1k0T0+MS43JUMs8kc57XAr/+msiVtdNvsyGfMa255 lFRiMDPZVOyuhjEo6a4RgDww0w1WCVasex7j++VYmKxewWHmZ1zTskV45rdvm7G5 mGLpb63Zd5fws/2iTfcAhguTbDok6ASDJEeVK5/L2fgWHk5abrUfIgfcTkZl9BoI QCiQWcbRvhSshJDj9UHU5GYXLQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFD+U4aLr v/OBQRANrXOWFOLDKTfkMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwRUEvNTIxRDFBRDhENzY3MTFFRUFGMjJDMDY2QzRGOUFFMDIvRDBGMjQ1RTBE NzY3MTFFRTk5QzcyQzI5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1hZAwQAZ7B2MA0GCSqGSIb3DQEBCwUAA4IBAQAEoiup1nTdlBmw 60Sqb8TvkL4Jgo/hWTVFSCptM/N3ccZXEJCdxAS/cdBMw2Ggv17LiMVnyApZGoBl Nwo4zW7oum7GWSrwcEffpVi+n4krhjvSsjCJAQ43/HGjyxdnF+AK3zZl7wqcvAOy eVqSxT+casKrDDQjffd/sD+sPMq4GwsHWbRdz9TkYHnQbo6S5pjkM1N/AGOtUMeY nxuQ4ABBI/RcfyOi02SaAeCAOUgCdkrRtgXr2BcoL4s+cM8LS81P2z+0adFiWPw5 ktQUMjIULe8PmHUX8oXUJw4AAW1CFufXruijDgpN2jfL9uJfFPp5iI5S+aN6twUX CMTHNxdc -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:49 2026 by rpki-client