$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa File: 5A1F332618A211EEB9517111C4F9AE02.roa (raw, json) Hash identifier: oP7yfPUopKTY379R1+NbnqkO2F627ZT0pvcHFpcrXM4= Subject key identifier: A9:F7:B3:A1:84:62:CD:5C:77:44:CA:BC:8E:0A:64:1C:08:E8:5F:9E Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0221 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:34:07 +0000 ROA not before: Mon 19 May 2025 03:12:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 63526 IP address blocks: 103.122.142.0/23 maxlen: 23 103.122.142.0/24 maxlen: 24 103.122.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: May 19 03:12:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3dddf-e182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:ef:97:8b:ba:08:52:8b:a3:e9:be:00:4a: ed:26:e7:5a:ca:12:7d:57:a3:8d:9e:4e:72:e7:2c: 5f:8d:95:dd:5c:46:9d:4f:bb:da:8c:54:e8:46:c5: 55:25:3c:c6:98:4a:40:9c:70:03:27:c8:0f:ec:92: 28:8a:fc:60:4a:7b:0d:7f:17:9b:dd:0c:e9:a7:d0: cd:b5:40:ee:f9:29:fa:c0:3a:2b:fa:34:f0:8a:0f: 7d:b9:4d:0b:62:e6:3e:dd:47:51:ae:4a:76:06:34: a4:06:2b:51:d4:92:fd:c3:1b:4a:f7:8d:c1:a5:a4: ad:d1:55:a6:73:4d:0c:98:33:ba:52:30:95:18:56: c4:83:f0:64:2b:bf:ec:9a:94:59:89:de:07:1b:05: 69:78:9b:c5:67:20:ce:78:e8:a6:8d:53:46:0f:1d: 4c:d5:fb:12:99:b7:81:3a:d5:f7:f6:95:23:65:27: 42:79:df:b9:c7:ab:04:61:5a:40:e0:bd:db:58:18: 62:84:3b:69:9e:20:64:48:19:1b:b4:3f:82:95:4f: 18:8c:c2:62:af:e9:9a:75:66:52:b3:22:ae:b0:cb: fe:6b:d8:86:1e:de:ba:a5:a7:d8:0b:74:c4:b8:cd: 19:ca:fd:a9:00:6b:a0:56:5e:f2:cd:39:49:b7:18: 12:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F7:B3:A1:84:62:CD:5C:77:44:CA:BC:8E:0A:64:1C:08:E8:5F:9E X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/5A1F332618A211EEB9517111C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.142.0/23 Signature Algorithm: sha256WithRSAEncryption ce:0b:03:d0:30:6e:ce:33:70:b0:05:71:ea:17:89:4b:3b:fa: d1:13:90:8f:f1:14:f3:54:c9:92:30:2a:91:de:8b:6e:86:a6: d2:be:18:97:ab:d1:80:78:e6:f6:05:73:a1:16:35:43:0c:16: fb:a4:ec:b0:a9:75:81:d2:8e:8e:ca:ea:38:8a:1d:65:39:19: b6:c4:0c:8c:8c:c6:13:95:2f:bc:32:13:31:62:aa:52:52:7f: 5f:1c:91:9e:36:f3:36:1f:b6:ef:c9:49:9b:8a:28:16:2a:a3: b7:f8:1a:b2:3a:25:ec:57:db:02:7c:94:c9:db:40:92:0e:a0: 4f:c9:4d:cd:13:fa:2e:ce:de:a3:59:97:e2:ef:e8:46:db:6e: 01:70:02:ea:c4:e1:aa:e3:42:8c:00:d1:9f:73:25:a7:a6:53: ec:f1:4e:ab:50:ec:67:21:6b:d8:23:c0:5b:6a:a4:3a:4e:61: 40:b3:fc:a2:60:6d:cc:8b:2d:6e:ee:f4:25:1e:88:69:10:bb: cf:8f:fc:7f:94:47:7a:be:95:a3:65:a5:80:f6:8c:cb:63:a7: ec:14:db:6c:0a:9e:49:cf:06:5f:04:b9:31:c2:1a:01:70:84: 3a:8e:38:f6:f5:95:40:8f:74:cb:a3:28:c3:70:32:85:12:aa: a0:34:aa:7e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjUwNTE5MDMxMjM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGRkZi1lMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfLvl4u6CFKLo+m+AErtJudayhJ9V6ONnk5y5yxfjZXdXEadT7vajFToRsVV JTzGmEpAnHADJ8gP7JIoivxgSnsNfxeb3Qzpp9DNtUDu+Sn6wDor+jTwig99uU0L YuY+3UdRrkp2BjSkBitR1JL9wxtK943BpaSt0VWmc00MmDO6UjCVGFbEg/BkK7/s mpRZid4HGwVpeJvFZyDOeOimjVNGDx1M1fsSmbeBOtX39pUjZSdCed+5x6sEYVpA 4L3bWBhihDtpniBkSBkbtD+ClU8YjMJir+madWZSsyKusMv+a9iGHt66pafYC3TE uM0Zyv2pAGugVl7yzTlJtxgSSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKn3s6GE Ys1cd0TKvI4KZBwI6F+eMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NzcvNjQ1N0RGRDhEODM3MTFFRDhDMDk2NjI5QzRGOUFFMDIvNUExRjMzMjYx OEEyMTFFRUI5NTE3MTExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3qOMA0GCSqGSIb3DQEBCwUAA4IBAQDOCwPQMG7OM3CwBXHqF4lL O/rRE5CP8RTzVMmSMCqR3otuhqbSvhiXq9GAeOb2BXOhFjVDDBb7pOywqXWB0o6O yuo4ih1lORm2xAyMjMYTlS+8MhMxYqpSUn9fHJGeNvM2H7bvyUmbiigWKqO3+Bqy OiXsV9sCfJTJ20CSDqBPyU3NE/ouzt6jWZfi7+hG224BcALqxOGq40KMANGfcyWn plPs8U6rUOxnIWvYI8BbaqQ6TmFAs/yiYG3Miy1u7vQlHohpELvPj/x/lEd6vpWj ZaWA9ozLY6fsFNtsCp5JzwZfBLkxwhoBcIQ6jjj29ZVAj3TLoyjDcDKFEqqgNKp+ -----END CERTIFICATE-----Generated at Mon Mar 2 02:52:25 2026 by rpki-client