$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa File: 2BA240AC994111F096074C40C4F9AE02.roa (raw, json) Hash identifier: BaVQtlGks/nXODj3nVj6X8TPxl0CNzfAzBCFqERU/qA= Subject key identifier: 7E:1D:D5:56:9B:D2:7C:FD:25:32:30:12:3F:4D:7A:A9:26:C9:E4:65 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: 01BF Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:22:53 +0000 ROA not before: Mon 03 Nov 2025 03:48:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147040 IP address blocks: 103.218.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0, serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: Nov 3 03:48:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a43dad-9a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:69:ce:b8:7f:4b:59:43:f6:51:73:1b:d9:52: ec:54:37:da:78:67:0c:f3:f2:ba:71:05:ae:63:7a: b5:f1:33:be:f2:cf:76:fd:72:1a:85:d5:dd:d2:33: d9:f6:81:3a:47:ed:c7:5c:81:e0:e6:19:3c:e7:d8: 2c:ce:76:ac:f3:85:8b:24:b8:db:53:f1:a7:5f:91: ca:15:27:96:b6:fa:fd:53:ec:32:8d:78:3f:f5:45: c6:dd:13:9d:64:53:b0:6c:9d:35:52:92:66:ab:77: 7b:58:56:87:0c:0d:8d:c0:b1:a4:a7:e3:6b:09:0c: b9:82:83:17:c8:bc:3d:6e:01:63:9e:d8:d4:3f:b6: fa:f3:ad:be:1e:98:78:61:d6:33:a5:eb:e7:9f:a7: 3c:ff:e9:7e:f5:b5:3f:2e:f3:0e:bb:b6:74:dd:15: 6b:6f:42:a2:a0:38:91:a9:3e:f8:6b:5c:bb:36:a9: 88:26:9c:04:10:e8:c9:5c:82:e9:55:bb:9f:d6:fa: 72:dc:ca:18:81:48:06:66:6f:c3:3e:7c:d6:fe:c5: 08:a2:ec:26:83:10:75:74:1f:49:be:cf:87:6b:3e: 12:af:74:8f:50:8a:b4:e5:95:c0:60:b1:97:64:7b: 71:fe:26:45:f1:af:1b:59:22:7b:85:dd:dd:14:eb: 71:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1D:D5:56:9B:D2:7C:FD:25:32:30:12:3F:4D:7A:A9:26:C9:E4:65 X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.218.224.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:57:52:b3:74:fb:e6:a0:51:2a:0c:1f:c4:68:89:cc:88:e1: da:f3:9b:06:0f:17:7a:83:0a:89:82:84:de:8e:13:00:61:b5: 74:29:c6:e1:28:9f:5f:e8:a0:a1:a6:46:4d:43:39:09:bd:08: be:e5:a9:13:59:83:e8:2b:ac:75:73:0a:cb:4e:a6:e5:8c:da: e3:65:27:29:b3:c5:b0:da:09:12:11:f6:66:8d:75:84:fd:27: 91:a5:46:a7:8e:2a:0a:7c:cc:d4:7f:4c:c0:77:f6:89:b2:3d: c6:34:80:38:ec:bc:b1:7a:73:ae:3c:19:e1:6b:70:40:88:98: 5b:f0:dd:d5:1e:7a:bb:1a:fa:f6:2d:91:1c:7c:5e:ab:29:51: 19:b8:e7:72:ea:e5:20:00:72:84:16:06:36:e6:b4:8a:d5:f9: bd:9f:2b:7d:07:7f:55:ae:28:8c:af:70:5a:63:5f:d6:35:3c: 39:7f:c7:14:ab:58:99:e0:44:1d:9b:f7:56:c0:5b:27:08:87: 49:ce:e7:6b:27:06:14:a5:4e:02:42:2a:22:a6:fa:9c:8a:b6: c9:32:b9:80:55:38:f6:ec:a1:4f:3d:5c:d7:4d:8e:10:4a:99: b6:3c:6e:da:4d:9a:90:21:24:e5:2a:ef:73:c3:57:23:50:48: 60:93:7a:37 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG MkI1OTYyMDQwHhcNMjUxMTAzMDM0ODM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2RhZC05YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2nOuH9LWUP2UXMb2VLsVDfaeGcM8/K6cQWuY3q18TO+8s92/XIahdXd0jPZ 9oE6R+3HXIHg5hk859gsznas84WLJLjbU/GnX5HKFSeWtvr9U+wyjXg/9UXG3ROd ZFOwbJ01UpJmq3d7WFaHDA2NwLGkp+NrCQy5goMXyLw9bgFjntjUP7b6862+Hph4 YdYzpevnn6c8/+l+9bU/LvMOu7Z03RVrb0KioDiRqT74a1y7NqmIJpwEEOjJXILp Vbuf1vpy3MoYgUgGZm/DPnzW/sUIouwmgxB1dB9Jvs+Haz4Sr3SPUIq05ZXAYLGX ZHtx/iZF8a8bWSJ7hd3dFOtxzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH4d1Vab 0nz9JTIwEj9NeqkmyeRlMB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3 RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJFRDAvNEMxN0EwNEU3N0UxMTFFRUFCNEFFRjUzQzRGOUFFMDIvMkJBMjQwQUM5 OTQxMTFGMDk2MDc0QzQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9rgMA0GCSqGSIb3DQEBCwUAA4IBAQBPV1KzdPvmoFEqDB/EaInM iOHa85sGDxd6gwqJgoTejhMAYbV0KcbhKJ9f6KChpkZNQzkJvQi+5akTWYPoK6x1 cwrLTqbljNrjZScps8Ww2gkSEfZmjXWE/SeRpUanjioKfMzUf0zAd/aJsj3GNIA4 7LyxenOuPBnha3BAiJhb8N3VHnq7Gvr2LZEcfF6rKVEZuOdy6uUgAHKEFgY25rSK 1fm9nyt9B39VriiMr3BaY1/WNTw5f8cUq1iZ4EQdm/dWwFsnCIdJzudrJwYUpU4C QioipvqcirbJMrmAVTj27KFPPVzXTY4QSpm2PG7aTZqQISTlKu9zw1cjUEhgk3o3 -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:00 2026 by rpki-client