$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa File: 240EF95E896311F0B911053BC4F9AE02.roa (raw, json) Hash identifier: Co/sRPulBw6qvif9KJcvfjfmyMtyY2U7i1UCU8/S+7A= Subject key identifier: 54:B2:F3:CF:2C:BD:67:3A:C8:9F:89:64:2F:BE:16:8C:D1:CF:51:5C Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 5C Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:29:26 +0000 ROA not before: Thu 04 Sep 2025 07:45:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134070 IP address blocks: 103.51.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: Sep 4 07:45:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3dcc6-54d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:74:c5:60:a9:d9:f6:16:12:6d:97:c7:31: 86:6a:ce:45:ba:23:7a:b1:0e:55:2e:d4:48:ed:4f: c6:a1:cd:08:54:32:06:31:fe:c7:d5:ab:b3:f6:7a: 44:5e:5d:b2:fd:60:05:fc:36:d9:ac:63:86:93:4e: cb:35:56:52:11:e8:14:3d:b5:ea:bb:89:73:9e:84: 6c:02:76:2a:d0:5a:4a:04:45:70:c3:87:7a:96:3e: c4:ae:eb:fe:4e:c4:39:67:2b:3f:4f:aa:ae:af:1c: 06:c3:29:14:59:29:87:55:d2:7c:dd:06:21:e3:c8: 58:b2:13:33:9c:c3:d9:fc:da:19:37:0e:40:bf:a5: 31:83:d6:4c:7c:60:75:e4:51:68:29:7b:f5:2e:9b: b3:7f:29:c7:93:43:5a:a1:c8:59:23:f1:0d:34:c7: aa:67:4a:26:f8:72:3d:bf:8f:95:21:9d:9c:06:9e: 3b:3e:49:10:25:a7:1d:f2:ae:50:40:4c:1c:b3:f7: c4:2f:23:49:5d:7b:4a:62:61:cb:7a:54:0e:80:ec: 26:3c:c8:02:73:33:2f:94:1d:cf:7e:7d:ca:ee:1e: 7b:3e:15:11:d0:d5:af:20:1f:24:29:23:4b:cb:9c: 85:bb:62:95:76:1b:2c:1d:b5:94:82:62:57:99:cf: 7c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B2:F3:CF:2C:BD:67:3A:C8:9F:89:64:2F:BE:16:8C:D1:CF:51:5C X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/240EF95E896311F0B911053BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.51.40.0/24 Signature Algorithm: sha256WithRSAEncryption a2:10:38:a7:90:5b:7b:8e:7a:86:33:12:ea:6c:9d:bd:5a:db: 3f:0e:a2:e5:0b:76:4d:01:1f:a6:44:eb:2c:b3:58:6c:bc:74: 58:30:d8:34:c2:e2:ce:78:62:45:71:d5:d9:60:18:9a:13:be: 55:3a:b5:f7:3c:ba:69:00:b5:e5:11:76:03:d3:f9:85:60:5f: 61:15:6c:73:45:51:59:ea:48:3a:c4:b3:0d:e4:5a:5a:90:15: 64:58:5f:a2:22:cd:27:21:9a:3f:9d:73:9e:bd:e5:1a:5e:ed: ea:1e:12:f0:87:1f:8f:97:f6:0d:1b:59:e4:8e:79:d9:ea:ac: 8c:b9:2a:78:cb:1f:a5:b0:2f:1c:3c:6f:2c:72:e6:99:30:d6: 1a:7a:73:62:e3:99:80:d1:9d:0a:57:6e:52:1f:ea:52:eb:b6: ca:1b:f0:5c:9c:5e:3a:5d:02:92:01:4d:23:f2:f4:18:98:15: 9a:07:d3:43:1e:c1:8c:d9:ad:29:13:9a:e4:19:10:af:fb:3e: d7:ec:d3:9c:47:24:1a:3d:98:ba:04:aa:ba:3e:74:86:70:b0: 4b:f8:29:19:76:bd:96:76:ed:70:39:eb:8b:db:1a:e8:90:cf: 27:06:b5:2d:3e:f6:10:fb:a9:ee:94:19:db:c9:bc:5f:89:af: e7:3a:79:63 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjJFMjExMC8GA1UEBRMoREREQ0M0MEFERTY3N0YyM0Y4QTc5QkE0MTY4RUY2RjZC RUYwNjVDNzAeFw0yNTA5MDQwNzQ1MzVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkY2M2LTU0ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7AnTFYKnZ9hYSbZfHMYZqzkW6I3qxDlUu1EjtT8ahzQhUMgYx/sfVq7P2ekRe XbL9YAX8NtmsY4aTTss1VlIR6BQ9teq7iXOehGwCdirQWkoERXDDh3qWPsSu6/5O xDlnKz9Pqq6vHAbDKRRZKYdV0nzdBiHjyFiyEzOcw9n82hk3DkC/pTGD1kx8YHXk UWgpe/Uum7N/KceTQ1qhyFkj8Q00x6pnSib4cj2/j5UhnZwGnjs+SRAlpx3yrlBA TByz98QvI0lde0piYct6VA6A7CY8yAJzMy+UHc9+fcruHns+FRHQ1a8gHyQpI0vL nIW7YpV2GywdtZSCYleZz3xfAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUVLLzzyy9 ZzrIn4lkL74WjNHPUVwwHwYDVR0jBBgwFoAU3dzECt5nfyP4p5ukFo729r7wZccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMkUyLzQxMUM2M0IwODk1 OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pj Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2R6RUN0NW5meVA0cDV1a0ZvNzI5cjd3WmNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjJFMi80MTFDNjNCMDg5NTkxMUYwQkE2NTM0NURDNEY5QUUwMi8yNDBFRjk1RTg5 NjMxMUYwQjkxMTA1M0JDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnMygwDQYJKoZIhvcNAQELBQADggEBAKIQOKeQW3uOeoYzEupsnb1a 2z8OouULdk0BH6ZE6yyzWGy8dFgw2DTC4s54YkVx1dlgGJoTvlU6tfc8umkAteUR dgPT+YVgX2EVbHNFUVnqSDrEsw3kWlqQFWRYX6IizSchmj+dc5695Rpe7eoeEvCH H4+X9g0bWeSOednqrIy5KnjLH6WwLxw8byxy5pkw1hp6c2LjmYDRnQpXblIf6lLr tsob8FycXjpdApIBTSPy9BiYFZoH00MewYzZrSkTmuQZEK/7Ptfs05xHJBo9mLoE qro+dIZwsEv4KRl2vZZ27XA564vbGuiQzycGtS0+9hD7qe6UGdvJvF+Jr+c6eWM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:54:12 2026 by rpki-client