$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa File: 3A73B3A254EB11E7A50F9822C4F9AE02.roa (raw, json) Hash identifier: BM6Lva7IoWSTK1Hv52iTWPVD8QgDEeI0+e75+nUb4F4= Subject key identifier: D7:94:F1:A9:A5:E9:D4:BD:EB:0B:F6:1D:6F:DA:6B:1C:06:F4:C7:A2 Certificate issuer: /CN=A91AE9CC/serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Certificate serial: 255A Authority key identifier: 61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:27:26 +0000 ROA not before: Sat 28 Jun 2025 15:44:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59370 IP address blocks: 103.233.56.0/22 maxlen: 23 2401:2b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9562 (0x255a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9CC, serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Validity Not Before: Jun 28 15:44:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4229e-0620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:99:8c:9e:ed:47:9c:a4:d7:9b:53:41:28: 2f:d9:81:01:2c:16:fd:c7:77:ab:f9:fb:1a:25:0a: c3:71:0a:fd:22:1b:26:62:74:b4:2d:28:2f:1b:14: ba:a8:06:d4:b6:07:c9:6c:9a:a1:32:16:f2:47:30: cf:28:48:91:ba:83:8a:75:1e:ad:91:03:b3:33:04: 1d:54:3e:88:98:44:9b:bb:a9:a0:4f:5a:79:14:0d: e3:f9:c4:f7:83:2f:10:a5:8c:ee:a4:7e:0d:75:aa: 92:77:9d:e4:62:ba:7f:72:11:e1:8a:35:80:c7:9e: 6e:2e:a5:ff:50:b9:04:18:d4:98:15:41:e5:03:79: 38:82:4d:42:30:83:fa:d1:2e:fb:39:a4:f2:ac:0c: 50:c8:b0:06:24:d7:71:a4:ed:55:b0:80:01:32:df: 23:c5:1f:7f:01:d3:69:7c:cf:93:b2:1d:fa:2c:9e: 46:d1:40:37:a9:97:84:a3:ca:25:d0:5b:67:da:40: 03:7b:ab:d3:aa:be:bc:33:ed:6b:85:25:62:e5:3c: 1f:e0:1e:d4:0a:b8:63:ba:a7:98:21:8f:af:5b:62: 32:ac:71:48:d4:ad:b9:7e:e0:f2:de:95:81:5b:74: 0d:38:b5:8a:88:2e:92:0d:34:aa:d0:6b:8c:c4:01: ff:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:F1:A9:A5:E9:D4:BD:EB:0B:F6:1D:6F:DA:6B:1C:06:F4:C7:A2 X509v3 Authority Key Identifier: keyid:61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.233.56.0/22 IPv6: 2401:2b80::/32 Signature Algorithm: sha256WithRSAEncryption 02:2b:58:bb:c3:8a:a1:57:c8:ab:9d:70:74:b0:91:64:64:66: de:5c:be:7e:03:7f:c6:3b:f8:4f:ae:10:15:00:46:96:9f:34: ac:33:b5:05:73:f1:e4:e6:e1:c4:40:d5:48:97:b0:9e:ad:17: cb:35:4d:a3:cd:aa:f8:78:91:77:0e:75:e1:45:6d:d5:cd:04: ae:73:cb:9b:95:b8:24:9e:c4:d6:e1:36:27:f8:09:01:d1:b7: fd:c5:69:49:6e:23:94:6a:d6:60:58:38:b1:bd:93:ff:c7:c2: a0:50:1c:86:e3:35:a3:4b:a6:72:85:cc:91:7f:fb:90:cb:d2: 36:64:cc:a2:cc:c4:95:ed:a8:c0:62:cf:dc:30:c7:af:4a:c3: 6f:88:ea:21:12:4b:d0:06:4e:99:bc:cb:4f:a8:0e:3f:85:a3: ae:f6:4a:f5:bc:e4:87:23:a7:ce:7e:72:ab:07:dc:5a:f2:04: 02:fb:04:b2:a9:6f:6d:d2:1f:0b:90:e1:3a:ef:f4:c6:b2:6d: 7d:52:98:7b:8c:97:63:3c:d5:e8:f1:d0:82:f9:5c:37:53:16: bb:53:b0:cf:97:d5:ad:49:d4:d6:09:60:a9:86:4c:e0:2b:ed: e1:c2:2e:7a:be:c2:eb:ca:01:73:f6:9b:78:ef:f0:d0:b5:6f: 11:00:86:59 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICJVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5Q0MxMTAvBgNVBAUTKDYxNEQ4OEM0MzE4NzU0RUUzM0MwMTJBNjRDNTQyQjM5 RUEwNEQ0RTEwHhcNMjUwNjI4MTU0NDAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjI5ZS0wNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNiZjJ7tR5yk15tTQSgv2YEBLBb9x3er+fsaJQrDcQr9IhsmYnS0LSgvGxS6 qAbUtgfJbJqhMhbyRzDPKEiRuoOKdR6tkQOzMwQdVD6ImESbu6mgT1p5FA3j+cT3 gy8QpYzupH4NdaqSd53kYrp/chHhijWAx55uLqX/ULkEGNSYFUHlA3k4gk1CMIP6 0S77OaTyrAxQyLAGJNdxpO1VsIABMt8jxR9/AdNpfM+Tsh36LJ5G0UA3qZeEo8ol 0Ftn2kADe6vTqr68M+1rhSVi5Twf4B7UCrhjuqeYIY+vW2IyrHFI1K25fuDy3pWB W3QNOLWKiC6SDTSq0GuMxAH/XwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNeU8aml 6dS96wv2HW/aaxwG9MeiMB8GA1UdIwQYMBaAFGFNiMQxh1TuM8ASpkxUKznqBNTh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlDQy8xNDBFNTI3QzNB ODkxMUU1OUU4MDIzNjJDNEY5QUUwMi9ZVTJJeERHSFZPNHp3QkttVEZRck9lb0Ux T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lVMkl4REdIVk80endCS21URlFyT2VvRTFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5Q0MvMTQwRTUyN0MzQTg5MTFFNTlFODAyMzYyQzRGOUFFMDIvM0E3M0IzQTI1 NEVCMTFFN0E1MEY5ODIyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ+k4MA0EAgACMAcDBQAkASuAMA0GCSqGSIb3DQEBCwUAA4IBAQAC K1i7w4qhV8irnXB0sJFkZGbeXL5+A3/GO/hPrhAVAEaWnzSsM7UFc/Hk5uHEQNVI l7CerRfLNU2jzar4eJF3DnXhRW3VzQSuc8ublbgknsTW4TYn+AkB0bf9xWlJbiOU atZgWDixvZP/x8KgUByG4zWjS6ZyhcyRf/uQy9I2ZMyizMSV7ajAYs/cMMevSsNv iOohEkvQBk6ZvMtPqA4/haOu9kr1vOSHI6fOfnKrB9xa8gQC+wSyqW9t0h8LkOE6 7/TGsm19Uph7jJdjPNXo8dCC+Vw3Uxa7U7DPl9WtSdTWCWCphkzgK+3hwi56vsLr ygFz9pt47/DQtW8RAIZZ -----END CERTIFICATE-----Generated at Mon Mar 2 18:08:37 2026 by rpki-client