$ rpki-client -vvf rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/33EA4CE055AE11EBA5EFA876C4F9AE02.roa File: 33EA4CE055AE11EBA5EFA876C4F9AE02.roa (raw, json) Hash identifier: k8q/QCoi7ppudqM+lCK1j9LgCA9wYcmPQRXDBnqHorc= Subject key identifier: C3:23:95:1F:30:38:DD:72:E1:4C:B7:86:A5:03:F2:9A:D9:E8:C5:E6 Certificate issuer: /CN=A91838AE/serialNumber=749427218111D2F2F5A570B99517CA08E5773724 Certificate serial: 076A Authority key identifier: 74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/33EA4CE055AE11EBA5EFA876C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:40:56 +0000 ROA not before: Mon 24 Feb 2025 23:11:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133084 IP address blocks: 103.233.180.0/23 maxlen: 24 2401:1680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91838AE, serialNumber=749427218111D2F2F5A570B99517CA08E5773724 Validity Not Before: Feb 24 23:11:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fb98-26a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3d:9a:39:0b:8e:ab:d8:69:ae:c0:93:6c:71: 46:54:f0:2d:0c:f0:32:5e:e2:a2:72:59:90:90:3a: 96:2e:26:54:59:ef:50:05:2f:df:55:31:19:1e:a8: 32:a3:7e:d2:14:00:eb:d4:65:ff:87:1e:81:68:93: 46:70:a2:a8:5b:a0:73:08:c8:51:80:66:f4:c4:c9: 2f:e0:5a:1d:b7:51:59:c0:e3:04:d2:35:bf:8a:64: 3f:a2:f8:f7:f6:09:33:78:34:aa:b2:e6:7e:56:cb: e8:d1:39:90:ca:f1:51:7e:87:43:42:62:35:eb:26: a1:d3:d7:1a:3f:16:ad:dc:c7:9e:e8:30:ba:a8:21: e6:16:b5:04:ed:23:de:c0:cf:b1:5d:7c:3c:c9:d5: 70:dc:10:ec:eb:f5:56:e3:be:e1:16:cf:22:00:7d: 1c:30:d0:7d:aa:0f:23:c1:d0:ca:36:67:6b:0b:d0: f5:fa:5f:0e:f0:14:83:36:11:54:b0:1c:54:03:e6: 76:01:3e:aa:8f:83:2b:1e:4e:51:36:c6:6e:30:99: 9d:ce:12:2b:ee:0d:1f:6b:53:00:2a:52:97:65:ca: 5c:d5:4e:9e:f3:1e:cc:87:45:07:19:6f:35:db:47: d4:47:35:bd:19:e5:df:54:d1:95:c1:4c:dc:fb:18: ae:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:23:95:1F:30:38:DD:72:E1:4C:B7:86:A5:03:F2:9A:D9:E8:C5:E6 X509v3 Authority Key Identifier: keyid:74:94:27:21:81:11:D2:F2:F5:A5:70:B9:95:17:CA:08:E5:77:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/dJQnIYER0vL1pXC5lRfKCOV3NyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dJQnIYER0vL1pXC5lRfKCOV3NyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91838AE/7070A0F0559B11EBBA117137C4F9AE02/33EA4CE055AE11EBA5EFA876C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.233.180.0/23 IPv6: 2401:1680::/32 Signature Algorithm: sha256WithRSAEncryption 58:af:e7:7e:6d:63:28:c8:b5:e9:b4:b8:99:af:bd:ec:3d:d2: 9d:75:11:9d:10:b4:1d:15:db:17:4e:f9:95:47:cb:41:a8:4a: c6:58:91:04:11:98:af:b5:0e:57:f0:d0:2b:e2:ee:fd:6f:9c: fd:76:3c:7e:50:8a:f9:5f:bf:96:0a:78:e5:26:95:90:4a:d1: 7e:97:c1:47:fb:87:76:45:c0:07:0e:23:30:c5:98:9c:a1:7c: 9a:6c:2a:29:46:3e:2b:84:51:65:40:d6:a2:35:08:f7:b7:66: 31:78:34:5a:0a:df:4a:df:c8:a8:7a:52:62:51:3a:9a:d7:41: a9:1c:be:dd:4f:7f:00:29:0f:33:70:d2:f3:08:8d:51:7b:1b: f9:49:ac:01:7c:5c:d5:88:11:b9:89:55:44:a2:e8:5a:29:c6: c3:f3:93:48:07:a0:b8:0e:02:9d:f8:78:61:c5:5b:98:02:ab: 38:38:07:dc:88:07:99:2a:32:a6:1f:67:ef:70:d6:99:d0:72: ca:71:c4:05:48:15:f7:99:10:b3:7a:a9:29:f5:af:b2:94:1a: 1c:5d:67:93:47:0c:e8:9d:b9:7d:5b:8c:4e:aa:f0:af:e9:4b: 7b:39:57:a3:52:dc:f9:a4:5a:d5:17:bc:9b:36:90:95:0e:00: a1:59:ab:93 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM4QUUxMTAvBgNVBAUTKDc0OTQyNzIxODExMUQyRjJGNUE1NzBCOTk1MTdDQTA4 RTU3NzM3MjQwHhcNMjUwMjI0MjMxMTAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmI5OC0yNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyz2aOQuOq9hprsCTbHFGVPAtDPAyXuKiclmQkDqWLiZUWe9QBS/fVTEZHqgy o37SFADr1GX/hx6BaJNGcKKoW6BzCMhRgGb0xMkv4Fodt1FZwOME0jW/imQ/ovj3 9gkzeDSqsuZ+Vsvo0TmQyvFRfodDQmI16yah09caPxat3Mee6DC6qCHmFrUE7SPe wM+xXXw8ydVw3BDs6/VW477hFs8iAH0cMNB9qg8jwdDKNmdrC9D1+l8O8BSDNhFU sBxUA+Z2AT6qj4MrHk5RNsZuMJmdzhIr7g0fa1MAKlKXZcpc1U6e8x7Mh0UHGW81 20fURzW9GeXfVNGVwUzc+xiuAwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMMjlR8w ON1y4Uy3hqUD8prZ6MXmMB8GA1UdIwQYMBaAFHSUJyGBEdLy9aVwuZUXygjldzck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzhBRS83MDcwQTBGMDU1 OUIxMUVCQkExMTcxMzdDNEY5QUUwMi9kSlFuSVlFUjB2TDFwWEM1bFJmS0NPVjNO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RKUW5JWUVSMHZMMXBYQzVsUmZLQ09WM055US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM4QUUvNzA3MEEwRjA1NTlCMTFFQkJBMTE3MTM3QzRGOUFFMDIvMzNFQTRDRTA1 NUFFMTFFQkE1RUZBODc2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ+m0MA0EAgACMAcDBQAkARaAMA0GCSqGSIb3DQEBCwUAA4IBAQBY r+d+bWMoyLXptLiZr73sPdKddRGdELQdFdsXTvmVR8tBqErGWJEEEZivtQ5X8NAr 4u79b5z9djx+UIr5X7+WCnjlJpWQStF+l8FH+4d2RcAHDiMwxZicoXyabCopRj4r hFFlQNaiNQj3t2YxeDRaCt9K38ioelJiUTqa10GpHL7dT38AKQ8zcNLzCI1Rexv5 SawBfFzViBG5iVVEouhaKcbD85NIB6C4DgKd+HhhxVuYAqs4OAfciAeZKjKmH2fv cNaZ0HLKccQFSBX3mRCzeqkp9a+ylBocXWeTRwzonbl9W4xOqvCv6Ut7OVejUtz5 pFrVF7ybNpCVDgChWauT -----END CERTIFICATE-----Generated at Mon Mar 2 13:19:52 2026 by rpki-client