$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa File: 324967826D8D11EE9883B985C4F9AE02.roa (raw, json) Hash identifier: eNZGXS/zqJii4r7Dp4wSHUyscFNYWSRreo4HbBsG1r8= Subject key identifier: 7D:3C:F9:9A:3B:52:A6:AC:80:0F:DF:0F:84:47:9E:7B:2A:DE:C8:DE Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 01D6 Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:59:30 +0000 ROA not before: Tue 22 Jul 2025 17:57:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139053 IP address blocks: 103.138.250.0/24 maxlen: 24 103.138.251.0/24 maxlen: 24 2001:df0:5e80::/48 maxlen: 48 2402:ba0::/32 maxlen: 32 2402:ba0::/48 maxlen: 48 2402:ba0:a::/48 maxlen: 48 2402:ba0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Jul 22 17:57:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48c92-f4ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:07:e7:d1:d7:89:19:51:af:3e:13:16:d3:cc: 5c:85:6e:67:c6:85:ec:75:35:e6:1f:17:65:72:4e: 12:c1:44:1c:41:a6:77:9a:29:8a:57:bb:b5:cf:8b: 7c:32:b6:09:fe:67:87:fd:d7:3c:ca:28:03:a4:10: 57:73:54:c0:47:b5:9d:cc:fb:aa:79:de:bf:a9:45: 4f:3b:59:36:82:54:66:c5:d7:a7:42:1a:ea:1b:16: 37:35:42:f6:6f:82:ab:be:73:6e:e8:b2:60:da:f7: 72:92:af:38:9f:7c:c3:50:7b:60:de:c6:9e:4b:be: 4c:8d:c8:f8:2e:58:e4:17:f3:40:8c:e7:69:e8:8c: 97:f0:14:09:ef:c0:94:1d:d8:a0:45:ac:4d:b6:16: 11:13:63:ee:ef:27:bc:42:48:e1:03:39:aa:6a:22: 75:72:15:70:48:f0:bd:3b:95:5e:87:e6:a9:f8:c9: c7:d8:d0:a3:c6:5f:4b:95:de:10:55:ba:af:6c:85: da:3b:3d:85:a7:7a:4b:23:21:0f:42:3a:d9:4e:9e: d2:f5:41:af:c4:64:a5:fd:6b:e4:85:b6:c1:36:cd: 7d:7a:c4:f5:fd:e4:70:c4:50:d1:ef:61:09:95:4d: e6:f6:38:bf:38:66:ea:59:91:c1:58:d8:55:c8:d3: 3b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3C:F9:9A:3B:52:A6:AC:80:0F:DF:0F:84:47:9E:7B:2A:DE:C8:DE X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/324967826D8D11EE9883B985C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.250.0/23 IPv6: 2001:df0:5e80::/48 2402:ba0::/32 Signature Algorithm: sha256WithRSAEncryption 90:17:8c:39:d1:17:28:b9:74:6d:1c:8e:f3:38:8c:2f:52:89: 4f:ba:cd:ca:e8:fd:d0:eb:f6:9a:98:27:c1:2c:e2:18:01:3b: 34:d1:bb:66:29:5f:ae:ac:4d:44:4f:92:10:55:1b:e5:43:56: d5:72:79:d7:88:ab:6e:13:03:d1:ac:f5:58:e2:c7:b6:84:66: 1f:0e:f3:be:14:ed:3f:68:36:66:87:2f:02:ce:79:20:c0:01: 8c:f4:eb:79:dd:e7:31:1d:18:1c:e7:69:21:50:59:84:4d:0b: c7:0a:19:f9:78:31:d3:78:b3:b9:53:2c:20:21:a8:71:07:ae: a1:36:e6:ad:41:d2:4a:90:3f:f0:3a:cc:8e:dd:4c:42:e3:29: c1:4a:28:36:47:3c:ca:a9:e4:f5:0a:2b:23:f1:05:0f:45:cd: e5:0b:2a:22:fe:50:b1:61:ed:94:40:1d:96:f4:3f:a7:82:be: fe:49:38:5b:8d:0f:e8:6f:6d:9f:00:ac:4d:43:8c:eb:6a:fb: 98:bd:b8:ac:bb:51:fc:82:21:14:0e:c8:b7:52:c3:23:c7:2f: f8:79:1f:53:f1:a0:0c:51:06:6b:25:aa:dc:ec:59:42:40:51: 03:03:a2:8e:1e:29:8d:53:18:41:35:1e:5c:01:d7:36:44:ab: 78:a4:a6:9a -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUwNzIyMTc1NzA3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGM5Mi1mNGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAfn0deJGVGvPhMW08xchW5nxoXsdTXmHxdlck4SwUQcQaZ3mimKV7u1z4t8 MrYJ/meH/dc8yigDpBBXc1TAR7WdzPuqed6/qUVPO1k2glRmxdenQhrqGxY3NUL2 b4KrvnNu6LJg2vdykq84n3zDUHtg3saeS75Mjcj4LljkF/NAjOdp6IyX8BQJ78CU HdigRaxNthYRE2Pu7ye8QkjhAzmqaiJ1chVwSPC9O5Veh+ap+MnH2NCjxl9Lld4Q VbqvbIXaOz2Fp3pLIyEPQjrZTp7S9UGvxGSl/WvkhbbBNs19esT1/eRwxFDR72EJ lU3m9ji/OGbqWZHBWNhVyNM7GwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFH08+Zo7 UqasgA/fD4RHnnsq3sjeMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkREODIvMTk3RjlEOTI5MUUyMTFFOTk3Njg4OTBFQzRGOUFFMDIvMzI0OTY3ODI2 RDhEMTFFRTk4ODNCOTg1QzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAM BAIAATAGAwQBZ4r6MBYEAgACMBADBwAgAQ3wXoADBQAkAgugMA0GCSqGSIb3DQEB CwUAA4IBAQCQF4w50RcouXRtHI7zOIwvUolPus3K6P3Q6/aamCfBLOIYATs00btm KV+urE1ET5IQVRvlQ1bVcnnXiKtuEwPRrPVY4se2hGYfDvO+FO0/aDZmhy8Cznkg wAGM9Ot53ecxHRgc52khUFmETQvHChn5eDHTeLO5UywgIahxB66hNuatQdJKkD/w OsyO3UxC4ynBSig2RzzKqeT1Cisj8QUPRc3lCyoi/lCxYe2UQB2W9D+ngr7+SThb jQ/ob22fAKxNQ4zravuYvbisu1H8giEUDsi3UsMjxy/4eR9T8aAMUQZrJarc7FlC QFEDA6KOHimNUxhBNR5cAdc2RKt4pKaa -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:16 2026 by rpki-client