$ rpki-client -vvf rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/2D2322ECF53111F0B165BC265F6F56BC.roa File: 2D2322ECF53111F0B165BC265F6F56BC.roa (raw, json) Hash identifier: tZiy66LheF6UARgLL7DjkA4ZOPMuv3MTdVKtCblCRCI= Subject key identifier: 03:78:89:CA:C1:88:B8:65:67:09:29:90:C4:1A:37:38:7A:FD:EA:31 Certificate issuer: /CN=A91A16CF/serialNumber=829F0F40884DD991121005B07D09A2CBFFB4DEC6 Certificate serial: 0C8D Authority key identifier: 82:9F:0F:40:88:4D:D9:91:12:10:05:B0:7D:09:A2:CB:FF:B4:DE:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/2D2322ECF53111F0B165BC265F6F56BC.roa Signing time: Sun 01 Mar 2026 17:10:20 +0000 ROA not before: Mon 19 Jan 2026 12:20:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 131464 IP address blocks: 103.198.132.0/24 maxlen: 24 103.198.133.0/24 maxlen: 24 103.198.134.0/23 maxlen: 23 103.198.134.0/24 maxlen: 24 103.198.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.crl rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A16CF, serialNumber=829F0F40884DD991121005B07D09A2CBFFB4DEC6 Validity Not Before: Jan 19 12:20:01 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a472fc-cc08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:48:4d:c3:5f:1f:3e:b1:fd:1c:24:a4:dc:2e: 03:49:62:52:96:e0:af:f7:4b:53:88:b8:fa:e8:d7: 28:ea:58:8e:7d:d0:64:fd:e2:6a:4a:69:91:68:f3: f7:46:68:d8:03:98:8a:d6:29:6e:a6:c3:97:b6:ce: 20:80:d6:3a:a1:74:24:28:6c:93:97:e7:1e:a4:5d: 5a:5c:15:07:db:56:1c:c5:88:c9:93:e1:ad:e0:87: 9f:9d:60:20:2c:07:20:3d:ad:ba:c8:be:ca:10:79: d9:dc:6e:54:f3:be:5d:4f:30:21:56:02:36:b3:8e: 08:de:34:88:d0:9e:e0:c1:11:14:98:2d:7c:36:20: b3:49:09:ed:94:46:44:a2:fe:ee:15:85:d3:87:1f: 27:ff:1e:ca:4d:ff:78:93:83:77:0a:4a:46:56:1e: 7e:9e:16:a3:7a:10:79:36:c3:02:50:b5:21:44:77: 24:d4:b4:d8:ad:4d:c8:57:07:ee:e4:b3:fc:1f:e1: 40:33:3e:27:e0:1f:b8:aa:f5:fb:eb:16:53:e7:56: a4:cc:92:9d:2f:7f:6e:e0:4f:61:b4:bf:37:49:e4: b9:3e:f2:1d:98:00:62:aa:ee:e3:2a:40:f3:7a:d3: 98:78:e7:4f:ee:03:5f:e1:82:c9:2c:17:13:74:0d: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:78:89:CA:C1:88:B8:65:67:09:29:90:C4:1A:37:38:7A:FD:EA:31 X509v3 Authority Key Identifier: keyid:82:9F:0F:40:88:4D:D9:91:12:10:05:B0:7D:09:A2:CB:FF:B4:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/2D2322ECF53111F0B165BC265F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.198.132.0/22 Signature Algorithm: sha256WithRSAEncryption 42:de:32:2b:e0:ec:be:c7:d2:e7:5e:4f:7a:9d:b6:87:f1:d1: b2:26:23:e2:4a:3d:6d:2c:0d:14:5b:51:e2:26:af:a4:a0:0f: 60:33:65:da:11:0e:4e:ec:e9:a2:0b:7c:26:2d:25:51:a5:00: c6:45:6a:fb:be:ab:e0:ba:86:82:2a:18:cd:f9:22:09:22:61: 9a:9d:b1:a4:4b:15:4a:73:9e:1a:74:ca:fb:86:61:33:99:e9: 77:85:79:3b:28:ec:53:71:d6:3b:95:89:f4:cc:b9:ba:73:b9: eb:09:18:f8:e8:1b:04:0f:fc:5a:e4:91:7d:2c:80:19:9e:92: 3e:0b:7e:e3:65:5d:7a:35:31:5b:5b:f2:29:d8:1b:6d:f8:fc: e6:4a:8c:c3:08:cf:59:37:07:b7:b5:bb:97:5e:19:c7:16:00: 91:ba:0f:0d:6b:f3:3c:38:35:9e:fd:48:28:0c:fe:88:01:60: d4:69:d5:64:e2:d4:6c:e5:89:d2:30:75:da:b6:96:d5:0e:10: 5f:c4:36:23:1a:ca:5f:c6:74:20:3b:b9:a8:94:f8:97:14:b0: 79:05:cd:9b:af:58:3b:cc:97:fd:29:25:af:1a:c0:96:05:d8: 3a:dc:41:49:de:3f:a6:c4:2a:a6:59:04:83:c1:ca:bf:30:28: d8:e2:1d:fd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE2Q0YxMTAvBgNVBAUTKDgyOUYwRjQwODg0REQ5OTExMjEwMDVCMDdEMDlBMkNC RkZCNERFQzYwHhcNMjYwMTE5MTIyMDAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJmYy1jYzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0hNw18fPrH9HCSk3C4DSWJSluCv90tTiLj66Nco6liOfdBk/eJqSmmRaPP3 RmjYA5iK1ilupsOXts4ggNY6oXQkKGyTl+cepF1aXBUH21YcxYjJk+Gt4IefnWAg LAcgPa26yL7KEHnZ3G5U875dTzAhVgI2s44I3jSI0J7gwREUmC18NiCzSQntlEZE ov7uFYXThx8n/x7KTf94k4N3CkpGVh5+nhajehB5NsMCULUhRHck1LTYrU3IVwfu 5LP8H+FAMz4n4B+4qvX76xZT51akzJKdL39u4E9htL83SeS5PvIdmABiqu7jKkDz etOYeOdP7gNf4YLJLBcTdA3qkQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAN4icrB iLhlZwkpkMQaNzh6/eoxMB8GA1UdIwQYMBaAFIKfD0CITdmREhAFsH0Josv/tN7G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTZDRi8yQ0FENTA4ODE5 QTIxMUVBQUU4MTFDNzFDNEY5QUUwMi9ncDhQUUloTjJaRVNFQVd3ZlFtaXlfLTAz c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwOFBRSWhOMlpFU0VBV3dmUW1peV8tMDNzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE2Q0YvMkNBRDUwODgxOUEyMTFFQUFFODExQzcxQzRGOUFFMDIvMkQyMzIyRUNG NTMxMTFGMEIxNjVCQzI2NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ8aEMA0GCSqGSIb3DQEBCwUAA4IBAQBC3jIr4Oy+x9LnXk96nbaH 8dGyJiPiSj1tLA0UW1HiJq+koA9gM2XaEQ5O7OmiC3wmLSVRpQDGRWr7vqvguoaC KhjN+SIJImGanbGkSxVKc54adMr7hmEzmel3hXk7KOxTcdY7lYn0zLm6c7nrCRj4 6BsED/xa5JF9LIAZnpI+C37jZV16NTFbW/Ip2Btt+PzmSozDCM9ZNwe3tbuXXhnH FgCRug8Na/M8ODWe/UgoDP6IAWDUadVk4tRs5YnSMHXatpbVDhBfxDYjGspfxnQg O7molPiXFLB5Bc2br1g7zJf9KSWvGsCWBdg63EFJ3j+mxCqmWQSDwcq/MCjY4h39 -----END CERTIFICATE-----Generated at Mon Mar 2 14:50:29 2026 by rpki-client