$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa File: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (raw, json) Hash identifier: 72DcOTbzZF7+TCywcpXepZonikbAwf9INnwgkXqBzAU= Subject key identifier: AB:FA:1D:52:C2:01:15:9E:D1:04:F5:1D:D7:42:74:5B:3E:52:FD:0A Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A49 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:01:17 +0000 ROA not before: Tue 28 Oct 2025 20:09:03 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131340 IP address blocks: 103.74.228.0/24 maxlen: 24 103.74.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2633 (0xa49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Oct 28 20:09:03 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a462cd-2aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:b6:0f:18:ca:42:fe:98:8f:b2:a7:d4:87: 2b:4d:13:9a:da:f8:f7:63:a3:2e:02:a2:4c:e2:49: 5e:d0:fb:88:4c:c4:ca:d4:34:7a:07:06:d2:93:bf: 85:23:a4:20:8b:06:80:c9:a4:74:96:97:a4:22:7c: fd:c9:43:86:a9:38:64:94:99:a7:61:d8:15:a9:b4: af:82:db:d9:6e:c3:54:c5:f6:e0:76:65:84:49:cf: 09:fe:d7:fe:b1:c2:c5:b9:46:49:3d:dd:f1:41:75: c6:61:ca:a1:ce:ce:c3:f3:b8:ef:15:b7:ec:4b:86: 43:d5:ad:0e:67:86:cc:74:db:69:c9:cd:88:55:c4: 3b:5e:dc:d4:37:e9:31:cb:e0:90:1b:7b:ba:f9:b2: 31:37:a8:ad:31:07:9f:97:6c:bb:f0:f5:86:4e:07: 80:15:bd:d2:3e:43:91:bb:2b:b4:02:2b:a0:01:87: 83:67:6d:d3:08:2d:9a:09:ea:f9:67:31:93:58:37: 29:7f:17:39:01:56:7e:32:61:84:3b:53:9b:12:d6: 10:a5:96:f0:c1:85:59:d9:b1:c9:18:78:97:2b:fb: 45:ed:1f:a8:97:c6:6d:63:d6:98:a7:e4:78:00:a9: b0:e4:41:f3:bc:4e:4f:9c:f1:93:2f:ca:76:ad:ac: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:FA:1D:52:C2:01:15:9E:D1:04:F5:1D:D7:42:74:5B:3E:52:FD:0A X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.74.228.0/24 103.74.231.0/24 Signature Algorithm: sha256WithRSAEncryption ac:94:91:65:c3:5c:cd:4f:73:a1:dc:f9:7b:4a:ce:f8:8f:18: 9b:30:a0:83:73:f2:65:1c:4e:b4:78:2b:b9:f6:99:dc:31:53: 29:57:6b:b9:4e:41:73:1b:2e:0d:37:15:18:be:51:30:58:d1: c2:9c:63:c1:b7:b9:2d:15:9e:3b:23:5f:0c:3a:9c:9c:11:40: 10:79:83:ee:77:8a:0b:77:94:76:9c:12:52:e5:24:8c:be:3c: 24:33:7b:23:e7:33:ff:15:41:19:43:ed:fa:33:b8:e2:f6:d2: ca:06:cc:cf:9a:08:d7:a6:8e:ef:bd:89:27:02:df:52:dd:42: d8:2d:b6:0b:cc:58:82:0a:85:78:e8:98:b8:06:6b:12:28:2a: c4:41:a9:dd:f5:d3:d1:31:bc:71:ef:a0:cf:52:cc:ae:81:51: e6:b7:a0:32:dc:cb:34:a2:51:96:39:4e:ea:ef:1b:cd:43:b4: 4d:41:4a:63:e5:19:41:ff:fa:d0:88:24:3b:1d:24:5f:79:8d: d1:dd:7b:f4:0f:ea:7f:f3:df:00:f9:38:81:2b:f9:45:58:43: 3c:91:fb:89:d4:34:82:2c:94:68:fa:97:72:51:62:75:02:79: e6:70:8a:15:ad:7f:a4:e4:7d:8b:83:03:97:89:0a:13:63:46: 44:03:94:a2 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUxMDI4MjAwOTAzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjJjZC0yYWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AK2DxjKQv6Yj7Kn1IcrTROa2vj3Y6MuAqJM4kle0PuITMTK1DR6BwbSk7+F I6QgiwaAyaR0lpekInz9yUOGqThklJmnYdgVqbSvgtvZbsNUxfbgdmWESc8J/tf+ scLFuUZJPd3xQXXGYcqhzs7D87jvFbfsS4ZD1a0OZ4bMdNtpyc2IVcQ7XtzUN+kx y+CQG3u6+bIxN6itMQefl2y78PWGTgeAFb3SPkORuyu0AiugAYeDZ23TCC2aCer5 ZzGTWDcpfxc5AVZ+MmGEO1ObEtYQpZbwwYVZ2bHJGHiXK/tF7R+ol8ZtY9aYp+R4 AKmw5EHzvE5PnPGTL8p2raySRwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKv6HVLC ARWe0QT1HddCdFs+Uv0KMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIzQjMvRTY0NjVBMTA4RTk4MTFFQUFCNThCRDNBQzRGOUFFMDIvMjEwOURGRjJF RkJCMTFFQzk1QTFGRDBEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ0rkAwQAZ0rnMA0GCSqGSIb3DQEBCwUAA4IBAQCslJFlw1zNT3Oh 3Pl7Ss74jxibMKCDc/JlHE60eCu59pncMVMpV2u5TkFzGy4NNxUYvlEwWNHCnGPB t7ktFZ47I18MOpycEUAQeYPud4oLd5R2nBJS5SSMvjwkM3sj5zP/FUEZQ+36M7ji 9tLKBszPmgjXpo7vvYknAt9S3ULYLbYLzFiCCoV46Ji4BmsSKCrEQand9dPRMbxx 76DPUsyugVHmt6Ay3Ms0olGWOU7q7xvNQ7RNQUpj5RlB//rQiCQ7HSRfeY3R3Xv0 D+p/898A+TiBK/lFWEM8kfuJ1DSCLJRo+pdyUWJ1AnnmcIoVrX+k5H2LgwOXiQoT Y0ZEA5Si -----END CERTIFICATE-----Generated at Mon Mar 2 07:42:56 2026 by rpki-client