$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa File: 2A52AB54138811F0BA2C056DC4F9AE02.roa (raw, json) Hash identifier: +IpWmHn21lv1JDCd0DfT+m1o2uccKHiSqsImB3ZiiSM= Subject key identifier: DC:0B:55:D8:5F:4E:B0:22:47:A5:59:A1:36:58:A6:A8:72:CB:E6:4D Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 060C Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:36 +0000 ROA not before: Wed 28 Jan 2026 22:19:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135031 IP address blocks: 103.206.160.0/23 maxlen: 23 103.206.160.0/24 maxlen: 24 103.206.161.0/24 maxlen: 24 103.206.163.0/24 maxlen: 24 106.0.56.0/22 maxlen: 24 2404:7f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Jan 28 22:19:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a471e0-17c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:64:b8:94:0a:0c:ba:f2:91:f5:06:95:bc: 50:6d:ee:84:27:44:22:d4:c2:66:e0:72:39:aa:40: f2:15:5f:25:21:b3:fb:af:df:84:ea:c1:b7:d2:6b: 6c:10:bd:6c:b3:56:e5:85:15:78:8b:d5:63:3d:1e: 23:df:e0:06:f0:a8:2b:b7:1a:1c:15:df:49:bd:33: ab:e0:e6:f3:54:77:c2:a9:35:f0:01:db:99:2b:31: c0:20:99:28:56:e2:a5:04:5b:7e:69:60:21:f4:7c: 19:ce:49:4c:e1:df:9b:a1:c9:d2:f6:98:f4:e9:52: 32:a3:c8:eb:f9:67:9b:0e:43:cc:31:1f:05:cd:a3: 3e:62:21:69:e8:f8:13:7a:96:3d:a3:b4:89:c5:16: dd:76:8c:23:e7:b6:20:0b:22:37:63:1e:04:c7:5b: 70:5e:af:b1:a3:8e:8a:b3:a1:31:bb:6f:ab:b2:54: 88:27:a8:59:91:75:41:af:2f:7e:05:94:c9:20:a4: 2f:81:41:a3:7c:56:e6:38:12:f8:81:17:91:a5:86: 1c:89:db:e5:98:28:3b:a4:11:89:59:5f:23:65:ca: ff:f8:cf:32:94:15:1a:04:01:f6:6e:ff:1c:a1:b3: 0c:cb:86:46:52:af:1e:6d:dd:b7:f3:07:2a:cc:73: ca:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0B:55:D8:5F:4E:B0:22:47:A5:59:A1:36:58:A6:A8:72:CB:E6:4D X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.206.160.0/23 103.206.163.0/24 106.0.56.0/22 IPv6: 2404:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 77:f9:3f:98:e6:bd:21:97:00:e0:89:41:5b:28:8b:01:4d:b1: 02:40:ed:c8:24:58:c9:ea:25:9b:32:f2:e5:17:e3:cd:b0:09: 0f:6e:88:69:13:8d:00:0f:6a:20:36:e4:72:e1:69:81:56:7f: bd:40:2f:0b:0c:2b:f3:a5:ca:83:51:46:77:88:be:1f:48:a8: 2f:54:46:4d:3b:17:14:d8:2c:d2:8f:d2:ee:8c:d5:4e:2b:e1: b7:9c:89:de:e7:b3:e6:33:76:93:37:ae:34:ec:ee:b7:c7:c8: 37:a9:9d:19:da:40:d3:d6:55:e7:37:c7:8f:42:20:9a:d9:7b: 24:11:5c:1b:71:75:e7:b2:c2:a2:23:38:f9:0f:57:c0:98:b0: 14:c4:de:15:58:cb:e8:2f:32:32:72:f3:a9:d9:80:b0:2b:01: 05:67:33:1f:73:a5:0a:5f:62:5c:0e:c8:1b:d8:92:fa:de:0a: e3:65:e2:b8:d0:f7:e4:d4:4e:71:4a:05:c3:ec:3f:4e:f5:33: d7:cf:ee:93:de:f5:83:21:b3:c5:92:31:df:a5:07:fb:f6:ad: 74:e3:c2:5c:80:40:2f:b4:ac:2f:2d:0e:5b:94:53:7b:fc:aa: d3:b5:58:85:82:c0:3b:bd:74:4c:79:97:68:ee:97:39:bc:63: e9:38:ef:63 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjYwMTI4MjIxOTM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFlMC0xN2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkVkuJQKDLrykfUGlbxQbe6EJ0Qi1MJm4HI5qkDyFV8lIbP7r9+E6sG30mts EL1ss1blhRV4i9VjPR4j3+AG8KgrtxocFd9JvTOr4ObzVHfCqTXwAduZKzHAIJko VuKlBFt+aWAh9HwZzklM4d+bocnS9pj06VIyo8jr+WebDkPMMR8FzaM+YiFp6PgT epY9o7SJxRbddowj57YgCyI3Yx4Ex1twXq+xo46Ks6Exu2+rslSIJ6hZkXVBry9+ BZTJIKQvgUGjfFbmOBL4gReRpYYcidvlmCg7pBGJWV8jZcr/+M8ylBUaBAH2bv8c obMMy4ZGUq8ebd238wcqzHPKlQIDAQABo4ICezCCAncwHQYDVR0OBBYEFNwLVdhf TrAiR6VZoTZYpqhyy+ZNMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUzMjMvREY2NkRFMjRFNTYxMTFFQjg0QkZFODIwQzRGOUFFMDIvMkE1MkFCNTQx Mzg4MTFGMEJBMkMwNTZEQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQBZ86gAwQAZ86jAwQCagA4MA0EAgACMAcDBQAkBH+AMA0GCSqGSIb3 DQEBCwUAA4IBAQB3+T+Y5r0hlwDgiUFbKIsBTbECQO3IJFjJ6iWbMvLlF+PNsAkP bohpE40AD2ogNuRy4WmBVn+9QC8LDCvzpcqDUUZ3iL4fSKgvVEZNOxcU2CzSj9Lu jNVOK+G3nIne57PmM3aTN6407O63x8g3qZ0Z2kDT1lXnN8ePQiCa2XskEVwbcXXn ssKiIzj5D1fAmLAUxN4VWMvoLzIycvOp2YCwKwEFZzMfc6UKX2JcDsgb2JL63grj ZeK40Pfk1E5xSgXD7D9O9TPXz+6T3vWDIbPFkjHfpQf79q1048JcgEAvtKwvLQ5b lFN7/KrTtViFgsA7vXRMeZdo7pc5vGPpOO9j -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:51 2026 by rpki-client