$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa File: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (raw, json) Hash identifier: NLs+1lW2c+XRSot8ioe6j0/P90GPYhhRdikdITCoGOI= Subject key identifier: 5E:A4:8C:47:A0:CC:09:0E:57:EF:DD:08:72:C7:7B:4C:89:21:8A:C9 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 358E Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:38:33 +0000 ROA not before: Wed 14 Jan 2026 15:10:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137996 IP address blocks: 103.247.228.0/24 maxlen: 24 103.247.229.0/24 maxlen: 24 103.247.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13710 (0x358e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 14 15:10:54 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47999-b664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:73:63:49:fb:68:88:5b:10:ef:36:d8:af:03: 35:e5:14:d7:e3:88:08:30:81:3e:b4:6c:39:2e:1f: fe:d4:33:88:50:d8:41:01:30:95:bb:83:1c:92:0c: a6:ec:71:33:bd:74:03:55:9f:24:34:01:ec:a1:f9: 01:18:22:d2:ef:84:3b:dd:4d:78:d6:fc:9b:19:a1: 63:c7:68:c4:6f:79:e6:f8:03:38:94:c6:ca:8f:01: 84:c3:68:52:db:38:18:1f:ca:f7:e2:08:35:a5:80: 9b:fd:dd:95:48:cc:1f:11:af:4c:3f:ad:b3:9b:cb: a9:8a:26:8d:a3:83:a6:71:59:e8:d6:6e:97:06:88: 3a:a8:3e:08:7f:bb:64:ae:ad:ee:69:4c:9b:fd:56: fd:a8:8d:cc:d0:3f:3e:ce:d1:e2:97:be:75:4e:e8: 32:e5:b7:e4:87:5b:35:10:7d:71:d3:9c:29:34:87: 38:f0:53:1b:7b:0f:6a:c0:fe:1b:18:fa:d0:29:07: 81:fd:e7:27:96:c0:a6:ba:3d:e8:d3:c8:58:68:bf: 71:53:7c:70:94:ed:aa:aa:2d:15:9a:b1:57:0e:fd: b9:23:b1:e8:9b:bb:2f:97:fb:fc:73:a0:12:c5:75: 1b:a2:0c:65:10:a9:e8:0e:9a:b0:ab:4c:bb:ff:3f: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A4:8C:47:A0:CC:09:0E:57:EF:DD:08:72:C7:7B:4C:89:21:8A:C9 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.228.0-103.247.230.255 Signature Algorithm: sha256WithRSAEncryption 12:27:ce:2d:0c:9c:1d:de:60:ad:a5:e0:02:f9:e8:00:37:82: 16:f3:23:5a:9c:fa:18:0b:e7:4d:60:e2:1f:a0:c0:f3:30:57: 4c:57:82:bc:42:9a:06:5d:59:4a:6a:30:56:10:bf:1d:95:2e: e2:1d:2d:59:b6:d8:c0:7f:b2:72:9b:4b:3f:63:28:5a:24:e3: b3:57:f3:6a:80:5d:ec:46:63:94:60:ac:ea:f2:a9:9f:80:79: 17:0a:87:c1:7c:47:fc:98:d2:bf:21:58:bf:bf:6f:55:bb:60: ff:e0:ac:13:e5:0c:ac:ff:6b:df:b4:50:6d:34:74:11:c3:be: 40:47:22:61:2e:14:28:8a:3e:9a:51:7a:6f:cb:ee:99:82:17: 31:ab:e8:ab:16:5b:ea:00:05:80:19:70:e9:80:68:27:63:a3: c2:12:8b:5b:91:31:b5:66:5c:63:9e:90:d3:16:0c:f7:f1:e1: 70:44:21:5e:1c:a1:73:7a:cb:75:74:26:45:61:fc:7f:e6:54: bb:61:05:b7:6d:c1:2e:41:9a:b9:60:8a:3b:97:72:04:20:ac: c7:57:66:06:e3:e5:4e:87:a6:4b:9e:22:bf:cc:fb:1e:f8:b5: f8:32:dd:26:9c:20:a3:01:81:4a:e3:38:76:53:b2:a5:19:d8: 6d:b0:50:68 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICNY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwMTE0MTUxMDU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzk5OS1iNjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXNjSftoiFsQ7zbYrwM15RTX44gIMIE+tGw5Lh/+1DOIUNhBATCVu4Mckgym 7HEzvXQDVZ8kNAHsofkBGCLS74Q73U141vybGaFjx2jEb3nm+AM4lMbKjwGEw2hS 2zgYH8r34gg1pYCb/d2VSMwfEa9MP62zm8upiiaNo4OmcVno1m6XBog6qD4If7tk rq3uaUyb/Vb9qI3M0D8+ztHil751Tugy5bfkh1s1EH1x05wpNIc48FMbew9qwP4b GPrQKQeB/ecnlsCmuj3o08hYaL9xU3xwlO2qqi0VmrFXDv25I7Hom7svl/v8c6AS xXUbogxlEKnoDpqwq0y7/z+UgQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFF6kjEeg zAkOV+/dCHLHe0yJIYrJMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvOUEyQjBERTQ1 OTNGMTFFQTlGOUZBMjM4QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAJn9+QDBABn9+YwDQYJKoZIhvcNAQELBQADggEBABInzi0MnB3e YK2l4AL56AA3ghbzI1qc+hgL501g4h+gwPMwV0xXgrxCmgZdWUpqMFYQvx2VLuId LVm22MB/snKbSz9jKFok47NX82qAXexGY5RgrOryqZ+AeRcKh8F8R/yY0r8hWL+/ b1W7YP/grBPlDKz/a9+0UG00dBHDvkBHImEuFCiKPppRem/L7pmCFzGr6KsWW+oA BYAZcOmAaCdjo8ISi1uRMbVmXGOekNMWDPfx4XBEIV4coXN6y3V0JkVh/H/mVLth BbdtwS5BmrlgijuXcgQgrMdXZgbj5U6HpkueIr/M+x74tfgy3SacIKMBgUrjOHZT sqUZ2G2wUGg= -----END CERTIFICATE-----Generated at Mon Mar 2 08:38:12 2026 by rpki-client