$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa File: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (raw, json) Hash identifier: x5QOGvOtb09eiwPqene1O/t0tGTJ4X6GKGqoQ9ZNd7E= Subject key identifier: 58:D7:09:79:A5:EE:34:AC:B5:53:C8:77:88:83:B4:84:59:4D:A1:B8 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0CBD Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:24:01 +0000 ROA not before: Thu 20 Mar 2025 18:57:45 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133430 IP address blocks: 103.228.120.0/22 maxlen: 22 103.228.120.0/23 maxlen: 23 103.228.120.0/24 maxlen: 24 103.228.121.0/24 maxlen: 24 103.228.122.0/24 maxlen: 24 103.228.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3261 (0xcbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Mar 20 18:57:45 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a405b0-162f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:18:fc:5f:a4:5b:04:50:58:a1:95:3a:50:57: 9f:f6:b6:72:bd:27:9c:20:20:84:53:7b:40:b3:93: 92:92:c1:8e:41:72:72:28:c9:ac:1b:0c:88:e4:40: 4b:8a:43:20:ad:8a:e8:d6:55:e5:00:15:86:24:3a: 02:a5:73:63:79:54:f2:b1:4e:fa:3d:f3:e1:1c:ee: 8b:0c:78:d5:6d:b6:6b:ff:cf:75:5d:8a:89:c5:15: 0b:ed:1c:2c:dc:f0:67:6e:ab:bb:42:24:96:ac:1e: 7b:52:9b:62:a4:61:04:6c:b7:c3:46:c9:7e:48:b2: 74:b6:44:0b:08:33:3e:fa:80:1b:04:33:40:75:4b: 79:c8:be:76:70:60:97:1b:73:61:ec:5f:ef:77:67: 47:5f:63:49:9b:60:b3:d7:22:b9:bb:f5:60:f5:99: 3e:ac:98:70:bf:96:e4:bd:f3:27:27:05:c1:3d:f3: 0d:e8:1e:ed:fa:9c:a9:84:ce:6d:a6:6d:07:bd:82: 98:69:53:38:19:27:78:a6:14:ef:d5:a2:2b:f6:d0: 89:c0:06:d6:7d:62:b4:c4:44:61:c6:b8:3d:e6:1e: 3a:4e:cf:a7:44:d3:bd:48:dd:03:6e:9f:61:b8:e6: d3:76:13:26:fa:c2:f4:2b:d5:4a:12:79:ad:b4:5b: ae:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D7:09:79:A5:EE:34:AC:B5:53:C8:77:88:83:B4:84:59:4D:A1:B8 X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/54AD60AE0C2E11EABBBFA158C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.228.120.0/22 Signature Algorithm: sha256WithRSAEncryption 31:92:ff:aa:15:18:cd:a7:69:6b:ac:b0:1c:12:eb:13:03:e2: 5e:ee:49:47:2f:6e:19:ff:5d:cc:dd:8d:6a:60:14:3e:d7:7b: f7:15:16:54:29:65:45:dd:1b:ed:76:c3:05:9c:56:2a:5b:6a: 7a:93:05:5f:7c:15:c7:da:ea:23:5f:0d:3b:76:e4:6f:dd:b4: b5:ca:98:24:d6:7f:8c:ca:89:65:a0:8e:d9:9a:b9:87:45:83: 9a:91:36:07:ea:26:14:a3:cb:ec:0b:a4:86:79:b0:c2:b8:43: 5a:01:9f:89:ea:87:11:8a:20:28:bc:03:3a:3f:cc:e6:a4:bb: f1:34:7f:ce:ba:6d:11:1b:51:2f:fa:a0:ef:5c:4f:71:c6:8a: b0:a0:58:56:f7:6b:9e:26:5c:96:0a:a8:2a:fd:db:f1:66:ca: f0:f2:be:ce:5e:e6:fc:3c:84:e2:d2:b1:90:a8:53:dc:e7:25: 51:92:01:51:e3:6a:8c:51:ed:ca:a3:eb:41:4f:fe:ee:34:9a: 84:75:25:45:d7:20:d0:cc:0f:49:0a:f3:9d:07:65:e4:2b:b8: f3:a5:f6:e1:76:03:0c:10:0a:bc:c7:28:ba:0e:ea:21:2d:34: de:96:01:bc:f8:5b:66:0c:5b:fb:62:d1:15:6e:6e:32:e8:1b: f1:a0:1b:ce -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjUwMzIwMTg1NzQ1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDViMC0xNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhj8X6RbBFBYoZU6UFef9rZyvSecICCEU3tAs5OSksGOQXJyKMmsGwyI5EBL ikMgrYro1lXlABWGJDoCpXNjeVTysU76PfPhHO6LDHjVbbZr/891XYqJxRUL7Rws 3PBnbqu7QiSWrB57UptipGEEbLfDRsl+SLJ0tkQLCDM++oAbBDNAdUt5yL52cGCX G3Nh7F/vd2dHX2NJm2Cz1yK5u/Vg9Zk+rJhwv5bkvfMnJwXBPfMN6B7t+pyphM5t pm0HvYKYaVM4GSd4phTv1aIr9tCJwAbWfWK0xERhxrg95h46Ts+nRNO9SN0Dbp9h uObTdhMm+sL0K9VKEnmttFuuwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFjXCXml 7jSstVPId4iDtIRZTaG4MB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QxNzQvNTFDM0U1NDgwQjREMTFFQTkyQzI4RjIwQzRGOUFFMDIvNTRBRDYwQUUw QzJFMTFFQUJCQkZBMTU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+R4MA0GCSqGSIb3DQEBCwUAA4IBAQAxkv+qFRjNp2lrrLAcEusT A+Je7klHL24Z/13M3Y1qYBQ+13v3FRZUKWVF3RvtdsMFnFYqW2p6kwVffBXH2uoj Xw07duRv3bS1ypgk1n+MyolloI7ZmrmHRYOakTYH6iYUo8vsC6SGebDCuENaAZ+J 6ocRiiAovAM6P8zmpLvxNH/Oum0RG1Ev+qDvXE9xxoqwoFhW92ueJlyWCqgq/dvx Zsrw8r7OXub8PITi0rGQqFPc5yVRkgFR42qMUe3Ko+tBT/7uNJqEdSVF1yDQzA9J CvOdB2XkK7jzpfbhdgMMEAq8xyi6DuohLTTelgG8+FtmDFv7YtEVbm4y6BvxoBvO -----END CERTIFICATE-----Generated at Mon Mar 2 13:51:45 2026 by rpki-client