$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa File: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (raw, json) Hash identifier: D3QE+K/fDpz/3eSAi1rPfAFHFlOdI3dak+hzzYghHZo= Subject key identifier: 69:BD:B2:BE:FB:F3:37:1A:82:BE:14:81:68:6A:5D:98:F2:EA:6A:C0 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 028E Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:10:27 +0000 ROA not before: Mon 03 Nov 2025 02:17:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151373 IP address blocks: 103.101.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Nov 3 02:17:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48113-8a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:1e:16:1c:15:12:17:e1:59:bc:86:81:cb:32: 86:b7:ec:f1:e0:f2:21:6b:63:11:e8:e0:be:55:cd: 02:a5:42:d5:39:6c:cf:11:dd:2f:17:9f:00:be:7e: 2d:2b:90:72:21:2e:a2:ae:fc:7c:2b:68:42:2d:a6: 46:cc:42:06:35:68:73:70:3b:09:cc:12:22:07:a2: 31:fa:c0:f9:df:b6:e5:d4:7c:27:42:25:b2:e7:0e: b9:27:78:9a:bd:f2:6e:55:50:d5:d0:e1:7e:fa:f5: 6b:06:e7:52:76:95:97:93:59:a2:6b:d1:10:d7:77: 44:35:92:1e:ba:50:b0:cf:65:3e:a7:91:62:5f:64: c4:77:0f:82:42:98:1e:1c:f8:63:78:01:38:42:6f: 27:01:6f:8a:11:c1:7c:6a:9d:89:88:25:3f:de:1e: 87:80:b2:8e:0a:ca:1b:7d:57:06:2c:58:fe:f7:e8: aa:78:cd:17:4e:a5:17:10:09:03:c7:30:47:e6:76: 8e:44:d4:cc:8e:21:2c:92:c6:dd:02:35:96:09:dd: 3c:cc:08:ec:93:87:65:47:d8:1d:f8:f4:e6:af:54: 80:ed:c8:02:a7:3f:fb:2f:4d:0c:c5:68:fe:45:47: 68:6f:0b:66:db:23:ae:8d:19:2d:77:8d:9e:89:d7: 35:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BD:B2:BE:FB:F3:37:1A:82:BE:14:81:68:6A:5D:98:F2:EA:6A:C0 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.221.0/24 Signature Algorithm: sha256WithRSAEncryption c7:01:82:60:4d:9b:30:6e:af:63:fe:d9:7b:93:53:f3:f4:e1: 81:42:97:9a:51:68:bc:48:4e:3d:ba:06:e0:6d:d0:6e:92:b6: 62:97:b1:42:5f:e3:02:5d:d4:07:e4:f0:30:c2:d9:ab:f2:45: 7e:6c:c8:73:b5:89:c1:89:a7:8b:47:e9:53:d4:d2:78:ce:40: 6e:30:0a:17:17:4b:d2:57:d1:e0:bf:5a:84:23:7f:5b:93:15: 89:62:ac:54:b1:ba:6a:c6:4c:99:1f:e5:31:77:a2:5b:2a:fa: 7d:b4:b8:1f:3a:35:41:28:c0:9b:c9:22:36:9c:b0:b0:53:98: 8e:c7:c8:77:0f:d6:c8:9a:c5:47:15:d9:54:95:25:a2:e9:79: 09:45:42:64:90:26:fa:2f:0f:13:69:e7:99:e9:cf:20:a1:d1: de:75:3d:03:5e:95:9c:80:8a:5b:e7:d0:3a:09:ec:49:15:76: a2:7e:86:8d:dd:84:b2:55:c8:f9:bc:ef:8a:4b:7f:78:b0:f9: 30:7a:97:1d:46:73:7d:1a:8c:6a:7f:46:8d:af:c3:c5:d3:bf: 38:63:4b:84:af:00:6d:a5:55:6b:87:5d:43:65:98:42:d6:50: 81:f4:21:c4:39:f4:5e:45:ab:18:24:ca:e9:e9:61:03:ec:cc: ae:e2:18:6f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUxMTAzMDIxNzIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODExMy04YThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiB4WHBUSF+FZvIaByzKGt+zx4PIha2MR6OC+Vc0CpULVOWzPEd0vF58Avn4t K5ByIS6irvx8K2hCLaZGzEIGNWhzcDsJzBIiB6Ix+sD537bl1HwnQiWy5w65J3ia vfJuVVDV0OF++vVrBudSdpWXk1mia9EQ13dENZIeulCwz2U+p5FiX2TEdw+CQpge HPhjeAE4Qm8nAW+KEcF8ap2JiCU/3h6HgLKOCsobfVcGLFj+9+iqeM0XTqUXEAkD xzBH5naORNTMjiEsksbdAjWWCd08zAjsk4dlR9gd+PTmr1SA7cgCpz/7L00MxWj+ RUdobwtm2yOujRktd42eidc1VQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGm9sr77 8zcagr4UgWhqXZjy6mrAMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvNTMxRUZCNEE4 REQzMTFFRkFGNTMzNzNBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2XdMA0GCSqGSIb3DQEBCwUAA4IBAQDHAYJgTZswbq9j/tl7k1Pz 9OGBQpeaUWi8SE49ugbgbdBukrZil7FCX+MCXdQH5PAwwtmr8kV+bMhztYnBiaeL R+lT1NJ4zkBuMAoXF0vSV9Hgv1qEI39bkxWJYqxUsbpqxkyZH+Uxd6JbKvp9tLgf OjVBKMCbySI2nLCwU5iOx8h3D9bImsVHFdlUlSWi6XkJRUJkkCb6Lw8TaeeZ6c8g odHedT0DXpWcgIpb59A6CexJFXaifoaN3YSyVcj5vO+KS394sPkwepcdRnN9Goxq f0aNr8PF0784Y0uErwBtpVVrh11DZZhC1lCB9CHEOfReRasYJMrp6WED7Myu4hhv -----END CERTIFICATE-----Generated at Mon Mar 2 10:21:55 2026 by rpki-client