$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E58488D0BB7A11F09DC5801DC4F9AE02.roa File: E58488D0BB7A11F09DC5801DC4F9AE02.roa (raw, json) Hash identifier: D+4KU/KViJAKhv6g9QlE9jFUTbMs6KQdSE9wmC6fLbQ= Subject key identifier: 33:94:BC:14:3F:0C:BB:34:E8:4E:E7:40:0A:1B:98:4F:3F:49:CD:99 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0D16 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E58488D0BB7A11F09DC5801DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:06:53 +0000 ROA not before: Fri 07 Nov 2025 01:41:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2519 IP address blocks: 103.240.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Nov 7 01:41:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48e4d-76e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b8:f1:aa:87:28:e7:b3:84:f1:b0:ae:a7:d3: 94:db:33:31:92:ce:32:09:db:f7:5a:ae:dd:bb:df: 1c:43:29:fa:51:cb:6f:cb:a5:bf:66:2c:c6:c7:8f: a8:ad:54:67:a3:da:59:ff:a4:cf:d3:07:b7:90:2d: e5:8d:f9:66:3b:fa:db:63:7f:25:df:53:cb:56:c6: 60:00:0d:f6:f3:f0:51:fc:5c:2d:d5:09:5e:71:80: e8:25:5b:8c:9b:53:b9:a5:f1:c4:54:0e:e4:14:9c: 85:17:04:7c:40:38:3c:e0:98:fb:90:d5:41:f5:b0: 52:fa:61:4f:9a:bf:ca:e3:06:6d:12:e6:ad:16:53: c7:45:6c:df:6e:8f:7a:60:9e:ed:69:73:11:d4:bf: f1:db:12:7e:42:d1:6b:4d:eb:14:39:7c:08:c6:62: 13:8b:1c:08:2b:92:69:55:d3:90:14:17:36:de:f3: eb:a2:c0:cb:e7:24:ad:b6:6f:63:51:07:9a:da:f1: 8d:b2:c4:0c:8a:91:f0:ac:8d:d7:c2:e1:dc:c3:90: 60:81:25:53:87:4d:2a:f8:2a:5b:25:0a:4c:cf:d3: 40:0b:70:d1:7c:d1:aa:e0:6d:10:bd:ef:49:68:27: b1:cc:f5:95:cf:5c:9a:ba:16:2c:04:8e:6a:52:d9: 4f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:94:BC:14:3F:0C:BB:34:E8:4E:E7:40:0A:1B:98:4F:3F:49:CD:99 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/E58488D0BB7A11F09DC5801DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.240.20.0/22 Signature Algorithm: sha256WithRSAEncryption 14:6d:9d:6f:7f:e4:88:f2:46:12:02:a1:a0:97:46:a7:11:2d: 42:7e:e0:4d:96:36:ef:53:67:f6:a2:cd:b2:f4:07:4f:47:c0: af:c0:0c:3b:f0:89:65:77:f8:cd:e8:72:92:ca:69:70:d6:70: a7:b7:ce:5a:d8:1e:36:93:a2:55:7a:3c:8b:9b:12:f2:6d:e1: e4:e6:fb:c4:6d:23:ae:53:b0:c9:b3:37:8c:26:1d:fa:2e:31: 73:3b:49:c5:d7:0e:62:63:11:ab:75:c3:8e:09:be:2b:ed:21: 47:5e:74:d9:3f:6f:5b:16:5a:2d:98:6d:5e:f8:9e:f3:e4:48: 66:49:df:02:00:2d:42:74:b5:af:93:97:3b:27:75:bc:93:90: 04:b0:e5:17:c8:6e:0e:26:ff:9e:c3:a6:a4:1e:bc:01:de:df: 2a:6d:4c:fb:b9:84:ca:50:f0:49:b8:62:17:53:00:9b:18:f4: 52:c5:b1:a8:60:c2:0b:cc:86:fb:b2:71:5e:ea:ba:33:48:f1: a9:10:e1:6f:70:14:81:05:e1:fd:05:54:3f:63:6e:fc:c3:f8: 6e:6a:14:78:f8:7b:0e:13:d3:82:dc:53:e7:b8:9b:54:9d:4d: 88:e3:b1:7c:dc:06:c9:cf:d6:1a:11:de:71:09:36:dc:21:f0: 3b:e5:95:be -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUxMTA3MDE0MTM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU0ZC03NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbjxqoco57OE8bCup9OU2zMxks4yCdv3Wq7du98cQyn6Uctvy6W/ZizGx4+o rVRno9pZ/6TP0we3kC3ljflmO/rbY38l31PLVsZgAA328/BR/Fwt1QlecYDoJVuM m1O5pfHEVA7kFJyFFwR8QDg84Jj7kNVB9bBS+mFPmr/K4wZtEuatFlPHRWzfbo96 YJ7taXMR1L/x2xJ+QtFrTesUOXwIxmITixwIK5JpVdOQFBc23vProsDL5ySttm9j UQea2vGNssQMipHwrI3XwuHcw5BggSVTh00q+CpbJQpMz9NAC3DRfNGq4G0Qve9J aCexzPWVz1yauhYsBI5qUtlP2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDOUvBQ/ DLs06E7nQAobmE8/Sc2ZMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvRTU4NDg4RDBC QjdBMTFGMDlEQzU4MDFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/AUMA0GCSqGSIb3DQEBCwUAA4IBAQAUbZ1vf+SI8kYSAqGgl0an ES1CfuBNljbvU2f2os2y9AdPR8CvwAw78Illd/jN6HKSymlw1nCnt85a2B42k6JV ejyLmxLybeHk5vvEbSOuU7DJszeMJh36LjFzO0nF1w5iYxGrdcOOCb4r7SFHXnTZ P29bFlotmG1e+J7z5EhmSd8CAC1CdLWvk5c7J3W8k5AEsOUXyG4OJv+ew6akHrwB 3t8qbUz7uYTKUPBJuGIXUwCbGPRSxbGoYMILzIb7snFe6rozSPGpEOFvcBSBBeH9 BVQ/Y278w/huahR4+HsOE9OC3FPnuJtUnU2I47F83AbJz9YaEd5xCTbcIfA75ZW+ -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:11 2026 by rpki-client