$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa File: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (raw, json) Hash identifier: GUsLBn574ELIPHrzNZ8A3QgbJIsg7VbDm7V6sVO40ak= Subject key identifier: AA:45:2A:A9:A4:98:43:09:A2:73:6B:1D:6D:B1:35:CD:32:0A:05:8E Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 082D Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:24:46 +0000 ROA not before: Mon 08 Dec 2025 06:42:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153038 IP address blocks: 103.83.233.0/24 maxlen: 24 203.89.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:13:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Dec 8 06:42:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4927e-f060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ed:80:ab:ef:be:6e:2a:6d:c5:17:d1:b3:ba: f2:18:2f:3f:ea:39:45:31:dd:9e:8b:56:97:62:5c: 83:21:00:a4:77:9a:b3:92:44:04:68:3e:0c:e3:5c: 51:83:c6:7c:c5:75:27:ac:a3:86:17:b6:b3:d7:d6: df:18:ef:41:88:bf:9d:27:a7:a3:c9:41:3d:f3:e9: 61:0b:b4:d4:1a:c7:ea:29:69:bd:e7:b2:44:ab:24: fd:f1:64:0f:13:8a:3a:43:a4:4b:08:4c:f6:6f:fd: ce:da:53:eb:f1:b4:f8:d1:f5:bf:5e:12:6c:f4:de: cc:2f:71:0b:d1:d5:14:b2:c9:0f:55:74:7f:c6:8b: d5:64:d3:10:f6:3d:00:61:4f:e4:62:3b:76:0f:2f: 99:d9:31:ce:12:d4:d3:10:d0:c8:0c:ce:67:b0:5d: 5b:c9:0b:71:f9:71:67:03:77:ae:b2:23:93:a3:58: c4:58:88:15:79:14:7e:59:f1:da:56:1d:3c:f5:52: 3c:cf:58:fb:fc:7e:c3:55:c7:59:66:80:f7:54:61: 7e:ac:41:04:77:94:43:2a:df:31:72:a2:40:e9:d3: a2:83:3a:16:c0:10:1f:d0:cb:21:cd:40:54:d1:d2: f3:de:24:60:23:c8:a8:ec:30:d7:93:b8:8e:00:9e: 97:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:45:2A:A9:A4:98:43:09:A2:73:6B:1D:6D:B1:35:CD:32:0A:05:8E X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.83.233.0/24 203.89.126.0/24 Signature Algorithm: sha256WithRSAEncryption 74:56:75:7c:a1:ac:30:0c:45:db:fa:66:a8:ca:95:e6:3c:79: b7:30:a4:e3:03:b2:fa:52:88:9a:d2:f9:17:f4:8e:e6:ae:ed: b4:04:2a:e6:43:46:41:7f:43:90:9f:de:fa:97:dd:b4:46:ac: 8c:dd:c6:28:98:d7:d2:c1:e4:61:63:75:a2:46:6b:27:75:e9: c2:d6:c6:11:ab:52:54:e8:87:d1:f8:74:4c:33:13:56:b9:78: ac:8c:a7:99:bd:1d:fa:61:6e:6e:01:fd:46:c8:51:9d:b7:c1: 0f:2f:cb:05:7c:d1:ff:be:c6:9f:17:d3:56:77:2a:57:ab:11: 82:90:22:fb:0d:ef:e4:32:55:ba:a0:d9:e9:f4:8c:04:88:21: f6:0d:70:fe:bb:48:1b:dd:37:95:f3:4c:86:99:d8:d2:07:58: 3d:97:10:a9:a5:6d:84:84:8f:34:ce:17:7c:8d:28:30:34:1d: b6:89:6e:dd:31:1a:a9:fb:ab:73:0f:5d:35:e9:4a:a6:37:dd: ab:bd:76:aa:5c:e1:4e:ee:ad:a3:8c:ad:a4:03:6a:5e:c5:3f: 66:75:0c:7f:b4:e5:ad:90:04:1a:33:c0:c9:1f:d0:e1:5b:4a: 2a:f7:10:3d:1b:65:19:e1:06:e9:5d:20:24:f0:d7:d9:9e:52: 3f:a4:d8:c1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjUxMjA4MDY0MjEzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTI3ZS1mMDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+2Aq+++biptxRfRs7ryGC8/6jlFMd2ei1aXYlyDIQCkd5qzkkQEaD4M41xR g8Z8xXUnrKOGF7az19bfGO9BiL+dJ6ejyUE98+lhC7TUGsfqKWm957JEqyT98WQP E4o6Q6RLCEz2b/3O2lPr8bT40fW/XhJs9N7ML3EL0dUUsskPVXR/xovVZNMQ9j0A YU/kYjt2Dy+Z2THOEtTTENDIDM5nsF1byQtx+XFnA3eusiOTo1jEWIgVeRR+WfHa Vh089VI8z1j7/H7DVcdZZoD3VGF+rEEEd5RDKt8xcqJA6dOigzoWwBAf0MshzUBU 0dLz3iRgI8io7DDXk7iOAJ6XkwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKpFKqmk mEMJonNrHW2xNc0yCgWOMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU4RUYvRDI0MzM3OTY0QUVDMTFFODg0MTdGMzRBQzRGOUFFMDIvQ0QwQUNDM0FE OUNFMTFFRkEzOTNCQzZBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1PpAwQAy1l+MA0GCSqGSIb3DQEBCwUAA4IBAQB0VnV8oawwDEXb +maoypXmPHm3MKTjA7L6Uoia0vkX9I7mru20BCrmQ0ZBf0OQn976l920RqyM3cYo mNfSweRhY3WiRmsndenC1sYRq1JU6IfR+HRMMxNWuXisjKeZvR36YW5uAf1GyFGd t8EPL8sFfNH/vsafF9NWdypXqxGCkCL7De/kMlW6oNnp9IwEiCH2DXD+u0gb3TeV 80yGmdjSB1g9lxCppW2EhI80zhd8jSgwNB22iW7dMRqp+6tzD1016UqmN92rvXaq XOFO7q2jjK2kA2pexT9mdQx/tOWtkAQaM8DJH9DhW0oq9xA9G2UZ4QbpXSAk8NfZ nlI/pNjB -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:59 2026 by rpki-client