$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/658C5D24A76B11F0A66F9138C4F9AE02.roa File: 658C5D24A76B11F0A66F9138C4F9AE02.roa (raw, json) Hash identifier: 2uGGeM3o+9HOMBburEinst6rKDlTwPz5fuWAGefFfio= Subject key identifier: F8:EB:9D:D5:CA:AD:0C:05:2A:43:B0:BE:B8:D7:EA:F6:F8:F3:BF:0B Certificate issuer: /CN=A91B5C70/serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Certificate serial: 0A30 Authority key identifier: B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/658C5D24A76B11F0A66F9138C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:31:45 +0000 ROA not before: Sun 12 Oct 2025 13:00:16 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137868 IP address blocks: 103.151.60.0/24 maxlen: 24 2001:df3:ab80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5C70, serialNumber=B8E549698953F65E71FB84B6D338C08AC1781A5A Validity Not Before: Oct 12 13:00:16 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a469f1-a86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:68:e1:df:d2:84:3f:f4:51:bc:52:48:4f:59: a5:22:a6:11:a7:67:85:fb:8c:85:d4:ed:64:88:ee: d8:ab:2e:33:87:a2:43:64:88:76:c7:2a:c4:c4:46: 50:5e:e9:ea:df:22:e9:9b:38:83:f8:02:e0:6d:1a: a9:27:19:22:af:8d:18:3a:ea:ad:b0:07:d7:b3:26: cb:5c:3b:f2:0a:79:19:86:58:15:52:b3:4a:69:f9: bb:be:ac:a4:9e:d1:2d:86:ae:6e:2a:64:dc:f2:97: a3:c2:e9:c9:75:07:7e:61:30:99:84:df:00:40:48: 1a:e4:99:e3:f6:b1:c0:fc:85:84:43:d9:c4:f3:7f: 77:34:4d:3e:ce:24:aa:74:28:3d:d1:7a:d7:ab:8c: 28:bf:1b:71:6a:1c:24:47:2a:9b:15:76:38:00:f7: 8e:29:23:fd:3b:aa:ea:98:cf:59:ef:03:81:1e:b7: 7c:dc:f9:24:d7:d6:87:57:aa:24:a5:f2:2c:b2:db: b2:58:11:70:4b:c1:53:a1:b7:d9:48:17:10:e0:3a: be:8c:b6:4f:ba:c9:cc:f2:09:f8:bb:da:5f:af:02: 57:2c:b2:6d:e7:bb:a6:df:cc:40:6a:da:e2:15:d5: b5:c4:20:d2:b6:69:6d:4c:a2:e8:d1:ab:f8:71:8a: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:EB:9D:D5:CA:AD:0C:05:2A:43:B0:BE:B8:D7:EA:F6:F8:F3:BF:0B X509v3 Authority Key Identifier: keyid:B8:E5:49:69:89:53:F6:5E:71:FB:84:B6:D3:38:C0:8A:C1:78:1A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/uOVJaYlT9l5x-4S20zjAisF4Glo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOVJaYlT9l5x-4S20zjAisF4Glo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5C70/23A0AC06910711EAA3E93A5BC4F9AE02/658C5D24A76B11F0A66F9138C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.60.0/24 IPv6: 2001:df3:ab80::/48 Signature Algorithm: sha256WithRSAEncryption a5:81:e0:18:2a:af:44:5a:39:f5:3d:2d:ea:b8:76:a7:81:d6: af:ed:d1:61:83:e8:5b:c7:0c:2a:6b:96:40:a3:58:4b:42:b1: 1f:9e:f7:3a:0e:39:83:7a:12:c4:55:de:b8:55:65:7a:17:de: ab:4e:fa:01:df:f6:b0:58:fd:3f:a9:98:be:75:dd:18:fa:bf: 02:5c:30:de:b1:d5:a9:28:df:a7:fa:33:00:1b:60:93:8e:8e: 7b:3d:de:65:06:11:45:fa:51:af:1d:b9:17:53:4d:d5:28:7a: 19:4d:0b:7f:ed:91:25:e9:b7:4e:c8:cb:d3:b7:8b:e1:5b:1d: 32:53:a7:74:c5:11:20:0b:eb:7e:8f:38:ff:76:44:37:7e:72: 1c:e5:e0:88:68:b1:b9:2c:4d:4d:87:1e:17:3e:5a:cc:ba:8a: 30:9b:bc:5d:d9:73:31:16:ff:9b:03:eb:e2:c1:77:16:b2:73: 7e:ba:5a:aa:e5:34:89:0f:05:27:05:45:7f:27:cf:66:f1:83: ba:c1:94:02:1b:3a:87:0d:36:ff:a9:fd:98:4d:4c:ed:8c:de: 1f:23:4e:d9:8b:b7:cd:e1:8c:00:c0:1e:c2:72:1b:5d:53:68: 5f:a7:3f:66:71:af:bf:06:d7:84:ba:0e:b8:2b:42:66:a4:c3: 26:c5:ac:a3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDNzAxMTAvBgNVBAUTKEI4RTU0OTY5ODk1M0Y2NUU3MUZCODRCNkQzMzhDMDhB QzE3ODFBNUEwHhcNMjUxMDEyMTMwMDE2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjlmMS1hODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWjh39KEP/RRvFJIT1mlIqYRp2eF+4yF1O1kiO7Yqy4zh6JDZIh2xyrExEZQ Xunq3yLpmziD+ALgbRqpJxkir40YOuqtsAfXsybLXDvyCnkZhlgVUrNKafm7vqyk ntEthq5uKmTc8pejwunJdQd+YTCZhN8AQEga5Jnj9rHA/IWEQ9nE8393NE0+ziSq dCg90XrXq4wovxtxahwkRyqbFXY4APeOKSP9O6rqmM9Z7wOBHrd83Pkk19aHV6ok pfIsstuyWBFwS8FTobfZSBcQ4Dq+jLZPusnM8gn4u9pfrwJXLLJt57um38xAatri FdW1xCDStmltTKLo0av4cYoanwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPjrndXK rQwFKkOwvrjX6vb4878LMB8GA1UdIwQYMBaAFLjlSWmJU/ZecfuEttM4wIrBeBpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUM3MC8yM0EwQUMwNjkx MDcxMUVBQTNFOTNBNUJDNEY5QUUwMi91T1ZKYVlsVDlsNXgtNFMyMHpqQWlzRjRH bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPVkphWWxUOWw1eC00UzIwempBaXNGNEdsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDNzAvMjNBMEFDMDY5MTA3MTFFQUEzRTkzQTVCQzRGOUFFMDIvNjU4QzVEMjRB NzZCMTFGMEE2NkY5MTM4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5c8MA8EAgACMAkDBwAgAQ3zq4AwDQYJKoZIhvcNAQELBQADggEB AKWB4Bgqr0RaOfU9Leq4dqeB1q/t0WGD6FvHDCprlkCjWEtCsR+e9zoOOYN6EsRV 3rhVZXoX3qtO+gHf9rBY/T+pmL513Rj6vwJcMN6x1ako36f6MwAbYJOOjns93mUG EUX6Ua8duRdTTdUoehlNC3/tkSXpt07Iy9O3i+FbHTJTp3TFESAL636POP92RDd+ chzl4IhosbksTU2HHhc+Wsy6ijCbvF3ZczEW/5sD6+LBdxayc366WqrlNIkPBScF RX8nz2bxg7rBlAIbOocNNv+p/ZhNTO2M3h8jTtmLt83hjADAHsJyG11TaF+nP2Zx r78G14S6DrgrQmakwybFrKM= -----END CERTIFICATE-----Generated at Mon Mar 2 12:42:20 2026 by rpki-client