$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa File: 1ECA8050696211EC8A05D115C4F9AE02.roa (raw, json) Hash identifier: UNRqxb3T+0nOQ/GO8zWJElSOEcU0ZScoqyo9xYCh4+U= Subject key identifier: 6F:5B:E1:8E:EC:71:01:25:AA:56:BF:56:F1:12:F0:32:B2:BE:18:EE Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0CD8 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:22:00 +0000 ROA not before: Wed 08 Oct 2025 18:48:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59239 IP address blocks: 103.100.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 8 18:48:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a475b8-80c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:1d:e5:21:49:cd:3b:c7:57:e0:54:3f:cd: e5:a1:5f:9a:d9:fa:da:61:25:3b:af:4b:72:64:c7: 58:ff:b2:93:8d:e2:e4:20:62:28:9a:c0:16:8d:75: 3a:51:18:bd:b8:56:c4:a4:68:24:58:d9:d0:7a:8d: 47:ac:2e:38:b1:87:d2:51:88:03:c5:3c:8d:21:b0: b1:d9:7e:d7:2f:c8:02:3f:e5:e7:70:75:a1:de:75: fc:95:61:a4:f7:54:73:c6:9f:ce:8b:e7:d2:37:d4: 5d:dc:56:97:0f:eb:1c:6a:62:b6:55:84:2e:18:60: 1f:77:e1:68:77:c0:da:74:07:dd:28:bd:3e:d6:1a: 37:9a:55:47:41:a8:b0:6a:a8:09:48:16:10:88:79: 75:40:bd:7f:fc:13:30:e7:06:65:6a:ff:73:6b:69: 59:69:ca:00:b2:93:99:73:56:40:a6:86:dc:bb:b1: 2d:ef:66:9d:28:20:39:ba:c5:b9:1f:35:fd:82:52: da:40:c1:3e:7c:d2:4e:70:4c:59:88:cc:8c:9e:f4: 36:1d:e5:ef:5f:84:93:b8:93:f9:da:75:a6:ec:42: 3e:2c:80:e6:5d:d9:84:64:cc:67:53:d1:0c:47:e3: 40:60:ed:e8:dd:ad:d2:47:48:b6:47:8d:85:b0:81: 45:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5B:E1:8E:EC:71:01:25:AA:56:BF:56:F1:12:F0:32:B2:BE:18:EE X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.234.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:34:5a:89:5c:54:94:90:07:5d:6c:36:ea:a2:d3:1b:f0:cd: 42:28:47:1e:1d:90:2a:5c:9d:a6:5b:a5:7a:10:1e:fc:44:7e: 84:a3:ba:d1:ea:09:db:ae:95:a5:74:16:34:26:dc:7e:2f:98: ee:da:60:e6:e6:20:0a:f3:bd:90:d9:bc:4f:aa:34:a8:af:1f: 51:5b:ba:ed:cd:91:a2:35:49:35:cd:4e:50:61:27:02:7e:d0: 47:eb:f3:88:55:86:06:05:94:49:89:d3:71:d2:15:2f:8f:88: b2:8a:d1:5b:5a:5e:96:b5:56:47:3d:3a:53:14:99:cf:49:4f: 61:e0:a2:01:d7:fd:a3:f2:13:81:99:8c:b8:94:68:61:c0:48: 07:25:d5:a0:f8:8e:0a:d2:2a:83:d0:cc:11:f5:8b:12:9f:1b: d5:9c:50:b1:e9:3a:01:bc:15:68:37:90:1c:a7:13:96:41:94: cf:42:0c:57:56:45:a9:e2:6c:fa:09:84:6c:9f:8a:ef:9c:1b: 91:58:49:d9:ad:7d:c6:70:92:c6:f7:1f:9a:e4:9b:66:01:cc: 6a:d3:fc:5b:e1:11:10:91:41:04:04:b7:9a:3e:c1:5d:59:24: 78:98:9c:54:54:be:a8:1a:90:4b:1f:5e:e5:62:4f:f3:73:46: 01:1b:46:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDA4MTg0ODM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzViOC04MGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWMd5SFJzTvHV+BUP83loV+a2fraYSU7r0tyZMdY/7KTjeLkIGIomsAWjXU6 URi9uFbEpGgkWNnQeo1HrC44sYfSUYgDxTyNIbCx2X7XL8gCP+XncHWh3nX8lWGk 91Rzxp/Oi+fSN9Rd3FaXD+scamK2VYQuGGAfd+Fod8DadAfdKL0+1ho3mlVHQaiw aqgJSBYQiHl1QL1//BMw5wZlav9za2lZacoAspOZc1ZApobcu7Et72adKCA5usW5 HzX9glLaQME+fNJOcExZiMyMnvQ2HeXvX4STuJP52nWm7EI+LIDmXdmEZMxnU9EM R+NAYO3o3a3SR0i2R42FsIFFmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFG9b4Y7s cQElqla/VvES8DKyvhjuMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvMUVDQTgwNTA2 OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2TqMA0GCSqGSIb3DQEBCwUAA4IBAQALNFqJXFSUkAddbDbqotMb 8M1CKEceHZAqXJ2mW6V6EB78RH6Eo7rR6gnbrpWldBY0Jtx+L5ju2mDm5iAK872Q 2bxPqjSorx9RW7rtzZGiNUk1zU5QYScCftBH6/OIVYYGBZRJidNx0hUvj4iyitFb Wl6WtVZHPTpTFJnPSU9h4KIB1/2j8hOBmYy4lGhhwEgHJdWg+I4K0iqD0MwR9YsS nxvVnFCx6ToBvBVoN5AcpxOWQZTPQgxXVkWp4mz6CYRsn4rvnBuRWEnZrX3GcJLG 9x+a5JtmAcxq0/xb4REQkUEEBLeaPsFdWSR4mJxUVL6oGpBLH17lYk/zc0YBG0au -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:48 2026 by rpki-client