$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa File: 971B23D236EA11EE802E9246C4F9AE02.roa (raw, json) Hash identifier: I+nMBsoAOQUiZCzFaQB/KvumSoVrGOcDZwsmBZeS6yw= Subject key identifier: F5:36:89:0E:9B:2C:B4:3D:46:A4:04:6E:E0:36:FA:60:9C:6C:B9:17 Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 01F5 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:01:50 +0000 ROA not before: Wed 29 Oct 2025 03:17:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141212 IP address blocks: 103.156.136.0/24 maxlen: 24 103.156.137.0/24 maxlen: 24 2001:df2:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Oct 29 03:17:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a438be-a582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0a:56:49:55:51:90:fd:a8:53:cd:63:d3:1a: 95:0b:4a:e0:25:92:4b:f7:36:c7:b7:4c:4a:62:7f: 1f:91:bf:b5:ce:f1:1c:f2:15:bf:80:ae:21:a2:7e: ee:81:e9:2f:c1:d9:3a:0b:13:33:85:c6:26:e3:3c: 33:ed:83:51:50:cd:3f:d8:28:04:f5:0a:4c:ef:55: 40:64:f2:91:d0:d9:26:46:53:c0:6f:cf:e6:e6:02: 9b:cf:bb:02:0e:96:97:34:d4:58:98:6f:35:f1:d4: bb:97:68:d5:3e:9a:9d:8e:7b:e2:c4:f6:a5:3d:9e: 57:f6:f7:26:57:ba:0d:f8:7c:f8:99:75:ee:b2:1c: ae:9a:82:7a:23:f5:c0:2d:e9:ee:3b:2f:93:61:92: 45:12:d7:95:b6:e0:88:0c:a1:6a:50:a4:70:80:ad: b6:15:5f:94:55:aa:f4:33:36:45:90:64:8f:73:a9: e8:a4:d3:a7:20:c2:9a:b8:c7:25:c7:da:fc:3a:9c: fd:b3:8f:c6:b2:ce:3e:02:dd:d2:fd:da:80:98:31: 25:2b:44:70:c0:a6:a1:38:08:b3:29:e5:4c:a4:94: 59:3f:08:0f:cd:81:1e:0b:20:e4:c0:3d:b6:d4:42: 97:b1:3f:f1:bb:97:1e:88:7b:3c:9a:fe:14:0b:16: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:36:89:0E:9B:2C:B4:3D:46:A4:04:6E:E0:36:FA:60:9C:6C:B9:17 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.136.0/23 IPv6: 2001:df2:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 55:76:64:4f:f1:b8:39:7b:54:54:18:01:1b:f3:d8:98:46:43: e8:a7:e8:25:6a:ae:e3:e4:3c:13:04:4a:db:03:c5:81:73:ca: 44:2e:fb:84:13:d1:1d:1d:7a:fb:40:19:38:87:66:fb:f7:9b: 95:69:68:eb:ef:45:f1:ed:31:d7:5f:b6:ee:5c:f6:0c:61:5e: 06:f4:e9:86:e4:39:a5:ac:52:71:a5:40:56:3d:cb:96:f6:77: 4d:ba:bb:bf:c9:21:d9:c5:83:cd:07:41:f3:b2:da:95:2a:2a: 30:2a:9d:c3:73:fd:05:2c:d3:b1:e2:ad:1f:76:72:4a:c0:50: 08:f7:ad:06:3a:2a:b0:c9:d3:b0:a9:3f:d6:79:98:94:fc:8b: a8:90:ec:a5:30:0b:df:16:7d:50:fe:ff:fb:a3:6f:bc:c2:af: 5d:ee:4d:6a:66:7e:78:f3:1c:43:9e:de:0e:67:f7:cf:d9:e3: 8e:b3:f3:88:a1:ac:17:93:a9:fc:8c:23:e6:30:f3:17:b9:1c: cd:b9:9e:1c:cd:e9:59:82:fe:2e:c6:08:bd:5d:21:21:b9:7d: 3a:c7:9c:af:d0:51:93:f2:70:35:24:72:a2:4d:e3:95:fe:e4: 68:a6:0c:51:ab:92:7d:90:4b:27:61:74:1c:9c:92:b7:65:26: e7:ba:39:bc -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUxMDI5MDMxNzU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzhiZS1hNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQpWSVVRkP2oU81j0xqVC0rgJZJL9zbHt0xKYn8fkb+1zvEc8hW/gK4hon7u gekvwdk6CxMzhcYm4zwz7YNRUM0/2CgE9QpM71VAZPKR0NkmRlPAb8/m5gKbz7sC DpaXNNRYmG818dS7l2jVPpqdjnvixPalPZ5X9vcmV7oN+Hz4mXXushyumoJ6I/XA LenuOy+TYZJFEteVtuCIDKFqUKRwgK22FV+UVar0MzZFkGSPc6nopNOnIMKauMcl x9r8Opz9s4/Gss4+At3S/dqAmDElK0RwwKahOAizKeVMpJRZPwgPzYEeCyDkwD22 1EKXsT/xu5ceiHs8mv4UCxYjMwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPU2iQ6b LLQ9RqQEbuA2+mCcbLkXMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYxNDUvMjc4MDczQ0UzNkVBMTFFRUFFMTBBQTQ1QzRGOUFFMDIvOTcxQjIzRDIz NkVBMTFFRTgwMkU5MjQ2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5yIMA8EAgACMAkDBwAgAQ3y4cAwDQYJKoZIhvcNAQELBQADggEB AFV2ZE/xuDl7VFQYARvz2JhGQ+in6CVqruPkPBMEStsDxYFzykQu+4QT0R0devtA GTiHZvv3m5VpaOvvRfHtMddftu5c9gxhXgb06YbkOaWsUnGlQFY9y5b2d026u7/J IdnFg80HQfOy2pUqKjAqncNz/QUs07HirR92ckrAUAj3rQY6KrDJ07CpP9Z5mJT8 i6iQ7KUwC98WfVD+//ujb7zCr13uTWpmfnjzHEOe3g5n98/Z446z84ihrBeTqfyM I+Yw8xe5HM25nhzN6VmC/i7GCL1dISG5fTrHnK/QUZPycDUkcqJN45X+5GimDFGr kn2QSydhdByckrdlJue6Obw= -----END CERTIFICATE-----Generated at Mon Mar 2 09:56:40 2026 by rpki-client