$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa File: 10238C387B1411EA8C690465C4F9AE02.roa (raw, json) Hash identifier: m5UdZTMNwaZFwTDBoDRDyeRLNEDiCfRGSGKD+SqgFdU= Subject key identifier: 46:3B:22:3E:7B:55:9D:B1:80:5B:A8:26:58:BB:D7:D6:5C:B6:6D:AD Certificate issuer: /CN=A91A91A2/serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Certificate serial: 0A85 Authority key identifier: 6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:10:03 +0000 ROA not before: Wed 30 Apr 2025 19:58:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136477 IP address blocks: 103.89.156.0/22 maxlen: 24 2400:f0c0::/32 maxlen: 36 2400:f0c0:1::/48 maxlen: 48 2400:f0c0:2::/48 maxlen: 48 2400:f0c0:3::/48 maxlen: 48 2400:f0c0:4::/48 maxlen: 48 2400:f0c0:5::/48 maxlen: 48 2400:f0c0:6::/48 maxlen: 48 2400:f0c0:7::/48 maxlen: 48 2400:f0c0:8::/48 maxlen: 48 2400:f0c0:9::/48 maxlen: 48 2400:f0c0:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2693 (0xa85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91A2, serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Validity Not Before: Apr 30 19:58:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a448bb-e669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bd:c4:94:cf:81:7f:e4:59:42:69:69:0a:35: b3:7f:90:b9:88:22:6e:25:d2:56:6e:26:79:40:9e: 44:85:ac:f0:d6:4f:19:a8:96:29:a2:62:85:72:c0: 2e:92:fc:7c:a8:6e:97:f2:08:11:77:79:ee:1a:8a: ba:55:09:53:4f:86:bd:22:b4:02:7a:96:10:98:21: 65:27:0b:57:ca:99:e6:1a:5c:cc:ce:f2:04:ca:7b: 50:4f:2a:9d:7e:79:07:88:fb:7f:83:f0:61:a4:48: 9c:65:f2:48:ff:10:05:3d:97:7c:f5:60:b0:af:c0: 4a:4b:90:d0:89:28:4f:23:b5:f5:9a:2f:68:65:4c: ad:ee:f7:3d:1e:b3:2a:0f:04:9e:6a:f6:cc:18:13: 9e:f2:97:8b:75:23:57:6e:ca:1d:cb:e0:dc:30:5a: f9:c2:e1:33:d6:21:bd:21:b3:93:97:0e:2e:b3:8c: 8a:c0:3c:c6:86:8c:47:5d:94:f1:0f:e1:02:e5:ea: 1a:ca:1b:73:0f:e3:5c:5f:fa:66:d7:12:2f:cd:88: 80:c1:94:8f:26:83:c3:c4:c3:b2:1f:bd:70:00:fb: fc:c2:c1:14:b7:47:88:74:37:7a:66:e0:ef:e3:67: 95:ce:36:fd:8e:b7:11:d7:49:5b:3b:68:02:f1:60: c0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3B:22:3E:7B:55:9D:B1:80:5B:A8:26:58:BB:D7:D6:5C:B6:6D:AD X509v3 Authority Key Identifier: keyid:6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.156.0/22 IPv6: 2400:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:7b:c6:e6:45:e2:71:a7:f2:85:7a:4c:de:2b:e7:7c:1a:f0: 1f:91:aa:31:5b:56:98:6f:73:04:7c:1f:25:82:c8:70:f4:54: e9:76:96:42:ee:ee:c8:c1:0a:ce:96:3e:74:9d:a4:35:fd:58: 03:d9:b3:74:1e:b1:47:05:5c:d6:87:c0:51:44:ef:e7:8e:57: d5:85:77:25:9a:18:5d:28:77:c5:d3:48:02:2e:48:91:26:32: 8e:3d:6c:52:70:ba:8c:05:ab:ec:c1:b1:77:70:3f:99:24:9f: 93:5c:8c:06:b4:0a:73:f9:f3:63:7c:4d:a7:59:50:0d:5a:ed: 10:dd:d8:29:f6:63:01:b8:8c:f9:d7:9e:76:3e:19:25:2e:ad: 0d:b6:91:19:00:81:68:e6:97:44:61:54:ea:9c:3d:59:d0:70: b0:d4:0c:64:af:7d:aa:63:22:13:3d:43:bd:78:2b:c4:b0:df: a9:86:09:ab:38:26:36:7d:07:44:31:bc:1a:59:e0:26:da:c3: ba:51:f6:ba:3d:95:57:2a:3e:a8:87:e3:fd:e8:0b:5a:57:b7: 76:e5:dd:bd:d1:47:59:42:22:6d:40:13:7c:04:7d:d6:e9:de: 5d:77:36:e5:57:8b:65:87:35:c7:cb:41:6d:11:12:ab:19:18: d4:e3:69:9d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQTIxMTAvBgNVBAUTKDZFOTI2QkNFNjE5RTRGNTAwQUJGQTQyNEZEQjA3NjRE MjU4Q0FCNTMwHhcNMjUwNDMwMTk1ODQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDhiYi1lNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp73ElM+Bf+RZQmlpCjWzf5C5iCJuJdJWbiZ5QJ5Ehazw1k8ZqJYpomKFcsAu kvx8qG6X8ggRd3nuGoq6VQlTT4a9IrQCepYQmCFlJwtXypnmGlzMzvIEyntQTyqd fnkHiPt/g/BhpEicZfJI/xAFPZd89WCwr8BKS5DQiShPI7X1mi9oZUyt7vc9HrMq DwSeavbMGBOe8peLdSNXbsody+DcMFr5wuEz1iG9IbOTlw4us4yKwDzGhoxHXZTx D+EC5eoayhtzD+NcX/pm1xIvzYiAwZSPJoPDxMOyH71wAPv8wsEUt0eIdDd6ZuDv 42eVzjb9jrcR10lbO2gC8WDAOQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEY7Ij57 VZ2xgFuoJli719Zctm2tMB8GA1UdIwQYMBaAFG6Sa85hnk9QCr+kJP2wdk0ljKtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFBMi84OTcxMzA5QzdC MTIxMUVBQTkyMTBGNjBDNEY5QUUwMi9icEpyem1HZVQxQUt2NlFrX2JCMlRTV01x MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JwSnJ6bUdlVDFBS3Y2UWtfYkIyVFNXTXExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxQTIvODk3MTMwOUM3QjEyMTFFQUE5MjEwRjYwQzRGOUFFMDIvMTAyMzhDMzg3 QjE0MTFFQThDNjkwNDY1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ1mcMA0EAgACMAcDBQAkAPDAMA0GCSqGSIb3DQEBCwUAA4IBAQA/ e8bmReJxp/KFekzeK+d8GvAfkaoxW1aYb3MEfB8lgshw9FTpdpZC7u7IwQrOlj50 naQ1/VgD2bN0HrFHBVzWh8BRRO/njlfVhXclmhhdKHfF00gCLkiRJjKOPWxScLqM BavswbF3cD+ZJJ+TXIwGtApz+fNjfE2nWVANWu0Q3dgp9mMBuIz51552PhklLq0N tpEZAIFo5pdEYVTqnD1Z0HCw1Axkr32qYyITPUO9eCvEsN+phgmrOCY2fQdEMbwa WeAm2sO6Ufa6PZVXKj6oh+P96AtaV7d25d290UdZQiJtQBN8BH3W6d5ddzblV4tl hzXHy0FtERKrGRjU42md -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:53 2026 by rpki-client