$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa File: A33A3E10755611ED9BD81B73C4F9AE02.roa (raw, json) Hash identifier: Tu0buh6QhtAAdzfjnSDj+h3Z7+7Fq7HwrVQWSTPdiWE= Subject key identifier: 03:CD:9D:D0:91:0D:04:4A:CF:B4:CF:50:85:F5:22:7C:91:AF:70:09 Certificate issuer: /CN=A91C66D4/serialNumber=15AF5EA83FDF289A0D661CF5DBB8B3888BC758EB Certificate serial: 0711 Authority key identifier: 15:AF:5E:A8:3F:DF:28:9A:0D:66:1C:F5:DB:B8:B3:88:8B:C7:58:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:42:53 +0000 ROA not before: Sun 20 Apr 2025 22:22:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141745 IP address blocks: 103.163.116.0/23 maxlen: 23 103.163.116.0/24 maxlen: 24 103.163.117.0/24 maxlen: 24 2001:df6:1580::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.crl rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66D4, serialNumber=15AF5EA83FDF289A0D661CF5DBB8B3888BC758EB Validity Not Before: Apr 20 22:22:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fc0c-97a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:07:df:bb:4d:b6:d6:bd:ff:96:c2:94:0c:8f: 75:5d:fa:df:2d:9e:96:44:24:6d:02:2c:43:2f:b6: 04:42:da:e9:28:54:05:e4:b6:67:2a:89:45:17:0e: 58:38:31:1f:d3:cb:c4:7e:27:22:f5:77:0c:8c:26: 7b:30:f7:55:6b:b9:b1:0d:df:cf:29:41:2f:1b:82: f3:0a:a3:5e:5d:bb:33:8a:1a:fc:6d:a9:27:b4:87: c0:e5:90:0e:23:56:19:3f:74:5b:12:2b:19:76:53: 37:55:c6:17:40:00:6d:bd:49:58:02:b1:f7:a9:22: 1d:a6:3f:55:63:2e:99:ac:41:fe:2b:f9:1d:d3:d2: 2e:a8:0f:35:24:9b:1a:b6:5e:66:1f:6b:63:26:6f: 95:07:34:50:fa:10:a6:10:69:12:00:21:6c:8d:69: e4:65:9d:87:93:d9:8b:11:64:0b:cc:88:c3:fe:52: b0:a1:ca:f9:d3:4d:9e:2c:b3:6f:1f:6e:bb:16:05: 72:79:fa:dd:02:9f:d3:7a:a1:1a:55:cb:d4:b6:2b: 1c:2d:3f:04:b1:b6:ab:f7:3c:43:d7:e8:74:4d:99: 8d:81:6d:10:dc:db:3c:a4:77:ea:1a:ed:9d:05:da: 52:a9:c6:b0:21:98:f7:97:c0:ad:8f:b4:57:b7:76: bf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CD:9D:D0:91:0D:04:4A:CF:B4:CF:50:85:F5:22:7C:91:AF:70:09 X509v3 Authority Key Identifier: keyid:15:AF:5E:A8:3F:DF:28:9A:0D:66:1C:F5:DB:B8:B3:88:8B:C7:58:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/Fa9eqD_fKJoNZhz127iziIvHWOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fa9eqD_fKJoNZhz127iziIvHWOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66D4/BD9875027A8E11EBA90CCE22C4F9AE02/A33A3E10755611ED9BD81B73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.116.0/23 IPv6: 2001:df6:1580::/48 Signature Algorithm: sha256WithRSAEncryption 8f:ba:4b:59:b5:cc:21:5a:e8:bb:d7:6b:f5:bf:eb:73:a4:5a: e3:12:97:20:22:66:fd:0d:3a:be:88:84:62:25:13:b6:8c:ea: 4d:b0:67:72:8f:c0:1b:47:53:50:8a:eb:63:3b:94:04:6f:b3: 4a:fd:6a:74:a2:5f:25:3e:6a:ab:c2:2d:0e:ae:ef:e8:9a:f4: 51:cd:4b:3d:9f:8d:ce:71:d3:10:35:36:d8:91:26:e5:14:72: e0:aa:f9:4f:10:f7:9c:da:15:48:9b:9b:12:55:6c:e0:63:fb: 99:dd:a7:70:c5:93:82:70:d4:f8:18:78:18:2b:0a:a7:75:cb: 9f:0e:5c:f0:b2:7c:8a:1b:3f:11:e7:3f:85:5a:2d:cc:1d:9f: 28:c7:a4:e3:6d:40:a2:5a:25:55:1d:35:2d:ab:9a:93:68:f2: 39:e7:e8:1c:70:5b:4b:06:4f:51:8c:ff:e2:62:17:54:f7:53: fb:5b:81:df:4e:ff:ea:bc:e7:b0:35:3b:c6:ee:6a:ec:28:e7: 1e:52:28:51:73:ff:c4:75:26:1a:ff:3a:86:eb:d5:23:c9:c4: 16:20:d8:ae:69:6b:d1:50:5b:e2:80:6c:34:e6:fb:dd:75:13: 4d:ef:e4:de:0c:18:ed:ac:04:48:9d:bf:d9:7f:9d:79:55:7b: 11:f2:1d:b5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2RDQxMTAvBgNVBAUTKDE1QUY1RUE4M0ZERjI4OUEwRDY2MUNGNURCQjhCMzg4 OEJDNzU4RUIwHhcNMjUwNDIwMjIyMjMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmMwYy05N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wffu0221r3/lsKUDI91XfrfLZ6WRCRtAixDL7YEQtrpKFQF5LZnKolFFw5Y ODEf08vEfici9XcMjCZ7MPdVa7mxDd/PKUEvG4LzCqNeXbszihr8bakntIfA5ZAO I1YZP3RbEisZdlM3VcYXQABtvUlYArH3qSIdpj9VYy6ZrEH+K/kd09IuqA81JJsa tl5mH2tjJm+VBzRQ+hCmEGkSACFsjWnkZZ2Hk9mLEWQLzIjD/lKwocr5002eLLNv H267FgVyefrdAp/TeqEaVcvUtiscLT8Esbar9zxD1+h0TZmNgW0Q3Ns8pHfqGu2d BdpSqcawIZj3l8Ctj7RXt3a/NQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAPNndCR DQRKz7TPUIX1InyRr3AJMB8GA1UdIwQYMBaAFBWvXqg/3yiaDWYc9du4s4iLx1jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZENC9CRDk4NzUwMjdB OEUxMUVCQTkwQ0NFMjJDNEY5QUUwMi9GYTllcURfZktKb05aaHoxMjdpemlJdkhX T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZhOWVxRF9mS0pvTlpoejEyN2l6aUl2SFdPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY2RDQvQkQ5ODc1MDI3QThFMTFFQkE5MENDRTIyQzRGOUFFMDIvQTMzQTNFMTA3 NTU2MTFFRDlCRDgxQjczQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6N0MA8EAgACMAkDBwAgAQ32FYAwDQYJKoZIhvcNAQELBQADggEB AI+6S1m1zCFa6LvXa/W/63OkWuMSlyAiZv0NOr6IhGIlE7aM6k2wZ3KPwBtHU1CK 62M7lARvs0r9anSiXyU+aqvCLQ6u7+ia9FHNSz2fjc5x0xA1NtiRJuUUcuCq+U8Q 95zaFUibmxJVbOBj+5ndp3DFk4Jw1PgYeBgrCqd1y58OXPCyfIobPxHnP4VaLcwd nyjHpONtQKJaJVUdNS2rmpNo8jnn6BxwW0sGT1GM/+JiF1T3U/tbgd9O/+q857A1 O8buauwo5x5SKFFz/8R1Jhr/Oobr1SPJxBYg2K5pa9FQW+KAbDTm+911E03v5N4M GO2sBEidv9l/nXlVexHyHbU= -----END CERTIFICATE-----Generated at Mon Mar 2 22:53:20 2026 by rpki-client