$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa File: 655B85F0225B11EFADDE6F63C4F9AE02.roa (raw, json) Hash identifier: P6xx3LV0yIZz7Bt3wASwzM1QkFL56uH39jrYrM1xsJw= Subject key identifier: 58:A0:8D:F5:11:CA:8E:94:35:DA:27:7C:3A:4B:B7:02:F7:63:AD:F9 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 027B Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:05:27 +0000 ROA not before: Wed 21 Jan 2026 01:21:39 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 150451 IP address blocks: 103.42.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Jan 21 01:21:39 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a455b7-9e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:05:8d:7f:d2:a9:08:f1:2c:b7:a8:0f:28:0f: b9:67:16:73:14:64:99:f8:fe:42:8c:27:18:0d:78: cc:80:19:5c:70:e4:e8:96:bb:e7:30:87:81:a8:bd: 97:ca:bb:fd:d6:ed:65:f1:53:07:14:c5:76:d5:c4: cf:5b:7e:13:7e:c9:0c:69:eb:82:85:b3:50:aa:65: 9a:62:b5:bb:fc:3e:16:4f:8b:d2:de:27:9f:4b:77: b7:af:15:b6:2a:63:cc:ec:f5:bd:92:da:25:0f:fd: c7:f5:f0:c7:4f:29:7f:3f:1e:55:f8:e8:64:a4:a7: aa:f6:89:6a:c8:72:17:71:7b:b5:cb:7e:44:a4:bd: 95:19:eb:b0:10:e2:e5:14:3c:3c:dc:7c:b5:cf:e6: f4:97:9a:fd:a6:78:d3:7b:4a:0f:90:c9:bf:b8:cf: 9e:11:40:02:0e:9e:6a:c8:a3:d7:ca:93:04:80:28: 19:35:6f:2d:26:1d:cf:0b:97:25:4c:d7:a3:c0:16: df:66:15:57:63:66:4d:3f:7a:9b:d2:ff:e8:2d:4c: 89:9a:3c:45:d7:e4:82:b6:c8:89:d7:6d:bc:59:3e: e6:4f:c6:1d:a7:c7:bf:17:54:12:72:ab:dc:21:18: 63:54:ce:91:8c:dc:36:0e:e9:9d:09:bf:4e:45:15: 9f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A0:8D:F5:11:CA:8E:94:35:DA:27:7C:3A:4B:B7:02:F7:63:AD:F9 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.42.229.0/24 Signature Algorithm: sha256WithRSAEncryption 17:64:db:87:61:6b:df:c0:80:b5:81:b3:49:14:b9:4a:cf:d1: 49:0d:c5:ac:2a:a3:b5:66:87:35:a2:7f:4a:e4:47:9b:08:43: 31:e0:3c:9f:dc:7d:25:be:92:4a:8a:04:bb:91:13:65:47:b2: 8c:81:50:09:e7:f7:28:9e:4a:e3:b7:0c:ad:f8:25:aa:f1:2d: d9:d0:05:56:19:0a:94:e7:bf:7b:b5:10:22:3d:e9:4a:18:7c: bf:a8:8f:d2:df:c4:82:d4:8b:ff:cd:90:1b:3e:e2:db:61:a9: dd:5b:4f:20:05:3b:54:52:bd:46:13:ab:9e:48:ea:31:b1:ba: 01:cc:c2:3f:eb:63:fd:42:0e:b1:bf:8c:9e:15:f5:a5:ed:ed: b2:d1:02:02:3d:91:bb:bd:81:37:9d:4c:23:0a:17:a7:64:53: c8:dd:31:f6:a3:d9:07:38:bb:51:fd:42:bc:f3:bf:25:96:02: 8f:40:a5:f5:66:71:08:ce:87:40:42:29:61:ce:09:a6:2b:65: 0a:44:d5:42:38:39:25:88:da:27:13:98:8f:aa:e3:ee:78:72: 17:be:bb:d5:47:7f:bf:99:28:57:32:2c:d1:46:c8:e0:43:7e: a5:4f:ea:87:bb:6b:f5:8b:16:b8:73:a9:dd:92:98:22:52:53: 0f:cf:f9:ce -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjYwMTIxMDEyMTM5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTViNy05ZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAWNf9KpCPEst6gPKA+5ZxZzFGSZ+P5CjCcYDXjMgBlccOTolrvnMIeBqL2X yrv91u1l8VMHFMV21cTPW34TfskMaeuChbNQqmWaYrW7/D4WT4vS3iefS3e3rxW2 KmPM7PW9ktolD/3H9fDHTyl/Px5V+OhkpKeq9olqyHIXcXu1y35EpL2VGeuwEOLl FDw83Hy1z+b0l5r9pnjTe0oPkMm/uM+eEUACDp5qyKPXypMEgCgZNW8tJh3PC5cl TNejwBbfZhVXY2ZNP3qb0v/oLUyJmjxF1+SCtsiJ1228WT7mT8Ydp8e/F1QScqvc IRhjVM6RjNw2DumdCb9ORRWfpQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFigjfUR yo6UNdonfDpLtwL3Y635MB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThBNTIvRkI3RTRCREU3MEI1MTFFRDkzRjBERDE2QzRGOUFFMDIvNjU1Qjg1RjAy MjVCMTFFRkFEREU2RjYzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZyrlMA0GCSqGSIb3DQEBCwUAA4IBAQAXZNuHYWvfwIC1gbNJFLlK z9FJDcWsKqO1Zoc1on9K5EebCEMx4Dyf3H0lvpJKigS7kRNlR7KMgVAJ5/conkrj twyt+CWq8S3Z0AVWGQqU5797tRAiPelKGHy/qI/S38SC1Iv/zZAbPuLbYandW08g BTtUUr1GE6ueSOoxsboBzMI/62P9Qg6xv4yeFfWl7e2y0QICPZG7vYE3nUwjChen ZFPI3TH2o9kHOLtR/UK8878llgKPQKX1ZnEIzodAQilhzgmmK2UKRNVCODkliNon E5iPquPueHIXvrvVR3+/mShXMizRRsjgQ36lT+qHu2v1ixa4c6ndkpgiUlMPz/nO -----END CERTIFICATE-----Generated at Mon Mar 2 02:20:08 2026 by rpki-client