$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa File: E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa (raw, json) Hash identifier: CnV5hVmy/X0qWOS/QHRL1fCEfgkQjmqlD8Zf3z8TbG8= Subject key identifier: 27:4E:C8:AE:41:2E:76:DC:2D:3C:83:EB:49:D0:71:7F:A7:92:F7:72 Certificate issuer: /CN=A91C6744/serialNumber=963C20B7D3804DB801CAE2574C31D760D53D3344 Certificate serial: 08A1 Authority key identifier: 96:3C:20:B7:D3:80:4D:B8:01:CA:E2:57:4C:31:D7:60:D5:3D:33:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:34:28 +0000 ROA not before: Fri 28 Feb 2025 22:29:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132299 IP address blocks: 103.247.236.0/24 maxlen: 24 103.247.237.0/24 maxlen: 24 203.5.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.crl rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2209 (0x8a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6744, serialNumber=963C20B7D3804DB801CAE2574C31D760D53D3344 Validity Not Before: Feb 28 22:29:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a40824-6d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:69:d4:98:f6:33:5e:74:94:c5:15:52:e5:3d: ad:04:8d:de:43:c3:43:8f:8e:f9:e0:a1:8c:a2:a2: 4b:cd:ba:4d:7e:39:2e:a6:bd:50:f4:c9:95:eb:4f: cd:0b:cb:85:cf:61:12:d6:a7:db:de:86:d0:45:5f: bf:a4:ed:58:80:ad:84:c1:b3:7c:bb:bf:0d:71:28: 46:72:e5:d8:42:7f:49:97:9c:76:75:b1:38:5c:b2: 1d:3a:e6:bb:02:7e:6d:67:c5:6f:a9:3d:74:e4:1f: 6a:f8:04:33:54:b7:a6:dd:83:4e:ba:13:75:29:ca: ea:23:04:a8:ad:2f:19:7c:86:b3:e6:05:ad:a7:97: b7:52:ea:5f:06:ea:37:56:5c:0c:3f:77:d3:0f:37: b3:46:db:6e:53:fc:7f:d7:66:d3:ac:a6:96:fd:83: 07:d3:d8:7a:c1:b7:52:d6:d3:9b:ae:ae:94:82:7d: d3:da:2b:f0:d8:79:1d:7f:17:3f:3b:e4:19:5f:99: ae:53:96:f6:f2:db:f3:66:91:ce:c5:94:9d:8c:52: 97:d4:9b:5b:df:e8:78:56:d4:63:42:ee:e0:81:75: 99:f2:18:d5:d8:3b:5f:f3:4f:d8:db:de:7c:9d:df: e1:ae:7f:82:29:e2:f0:3f:ff:82:b3:91:a1:c1:5e: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4E:C8:AE:41:2E:76:DC:2D:3C:83:EB:49:D0:71:7F:A7:92:F7:72 X509v3 Authority Key Identifier: keyid:96:3C:20:B7:D3:80:4D:B8:01:CA:E2:57:4C:31:D7:60:D5:3D:33:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/ljwgt9OATbgByuJXTDHXYNU9M0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ljwgt9OATbgByuJXTDHXYNU9M0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6744/33E78FACDBAE11EAAD966723C4F9AE02/E088B4E8E41B11ED8B0EFC0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.236.0/23 203.5.16.0/23 Signature Algorithm: sha256WithRSAEncryption ba:d6:64:29:5b:ff:a1:cf:e7:7d:a1:86:d6:3f:5a:0b:1d:94: 3a:90:0f:be:03:e8:01:f6:77:e9:f6:5d:34:f1:52:33:e3:87: 40:88:6e:5d:a1:66:a2:d0:2f:1a:50:38:ff:da:3b:2c:28:1f: e6:70:2d:a8:50:6d:76:0e:96:18:b6:fa:d2:dc:ff:86:02:65: 0f:60:2a:95:fd:a2:d3:02:12:11:4f:5e:ae:c6:ac:42:43:48: 8d:78:5b:26:68:b2:04:bf:4e:ce:f9:21:2e:c9:c1:e3:36:41: b0:af:78:ac:25:3b:f5:63:53:70:a1:98:bb:65:c7:46:b3:ac: ad:bc:1e:a9:6f:87:f2:ae:88:85:30:d5:98:53:58:63:2e:22: 49:1c:ba:b0:18:10:e4:a0:25:af:66:36:d9:30:32:3c:a2:bd: cc:b7:e1:f4:ae:04:f0:74:a6:fd:81:57:e6:38:1b:ed:c8:d8: 6e:bc:ab:dc:48:f2:30:e5:fa:5d:a2:93:86:8e:26:44:ba:3c: 09:e8:ec:85:45:12:5d:cb:a4:03:0c:a7:b3:01:c8:9f:e4:d6: 6f:93:f5:9e:46:2e:05:41:6f:0e:d1:ef:0f:12:6a:f4:73:3d: e8:ac:ed:85:d3:f0:a7:fa:27:73:12:d5:2b:2b:dc:08:ec:cd: a5:55:56:25 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY3NDQxMTAvBgNVBAUTKDk2M0MyMEI3RDM4MDREQjgwMUNBRTI1NzRDMzFENzYw RDUzRDMzNDQwHhcNMjUwMjI4MjIyOTI3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDgyNC02ZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12nUmPYzXnSUxRVS5T2tBI3eQ8NDj4754KGMoqJLzbpNfjkupr1Q9MmV60/N C8uFz2ES1qfb3obQRV+/pO1YgK2EwbN8u78NcShGcuXYQn9Jl5x2dbE4XLIdOua7 An5tZ8VvqT105B9q+AQzVLem3YNOuhN1KcrqIwSorS8ZfIaz5gWtp5e3UupfBuo3 VlwMP3fTDzezRttuU/x/12bTrKaW/YMH09h6wbdS1tObrq6Ugn3T2ivw2Hkdfxc/ O+QZX5muU5b28tvzZpHOxZSdjFKX1Jtb3+h4VtRjQu7ggXWZ8hjV2Dtf80/Y2958 nd/hrn+CKeLwP/+Cs5GhwV7GBQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCdOyK5B LnbcLTyD60nQcX+nkvdyMB8GA1UdIwQYMBaAFJY8ILfTgE24AcriV0wx12DVPTNE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjc0NC8zM0U3OEZBQ0RC QUUxMUVBQUQ5NjY3MjNDNEY5QUUwMi9sandndDlPQVRiZ0J5dUpYVERIWFlOVTlN MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xqd2d0OU9BVGJnQnl1SlhUREhYWU5VOU0wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY3NDQvMzNFNzhGQUNEQkFFMTFFQUFEOTY2NzIzQzRGOUFFMDIvRTA4OEI0RThF NDFCMTFFRDhCMEVGQzBEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ/fsAwQBywUQMA0GCSqGSIb3DQEBCwUAA4IBAQC61mQpW/+hz+d9 oYbWP1oLHZQ6kA++A+gB9nfp9l008VIz44dAiG5doWai0C8aUDj/2jssKB/mcC2o UG12DpYYtvrS3P+GAmUPYCqV/aLTAhIRT16uxqxCQ0iNeFsmaLIEv07O+SEuycHj NkGwr3isJTv1Y1NwoZi7ZcdGs6ytvB6pb4fyroiFMNWYU1hjLiJJHLqwGBDkoCWv ZjbZMDI8or3Mt+H0rgTwdKb9gVfmOBvtyNhuvKvcSPIw5fpdopOGjiZEujwJ6OyF RRJdy6QDDKezAcif5NZvk/WeRi4FQW8O0e8PEmr0cz3orO2F0/Cn+idzEtUrK9wI 7M2lVVYl -----END CERTIFICATE-----Generated at Mon Mar 2 18:25:23 2026 by rpki-client