$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa File: 2A53DA54332011EF89CABD61C4F9AE02.roa (raw, json) Hash identifier: 4w5731lHYfGZnO+SC8VdKGR/fvzbDEpA8YsPdrr+1XY= Subject key identifier: 19:92:32:C3:E2:B7:A4:EC:81:6C:85:E8:9E:A0:71:3E:2C:98:2E:E4 Certificate issuer: /CN=A91CE821/serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Certificate serial: 050A Authority key identifier: 06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:00:24 +0000 ROA not before: Sat 30 Aug 2025 17:06:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152605 IP address blocks: 103.115.196.0/24 maxlen: 24 103.115.197.0/24 maxlen: 24 103.115.198.0/24 maxlen: 24 103.115.199.0/24 maxlen: 24 2402:edc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821, serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Validity Not Before: Aug 30 17:06:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48cc8-f3ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:5d:3e:98:27:70:6a:3e:d9:c0:a3:04:3c: 0d:39:74:93:07:b2:a5:ff:5b:e3:15:3f:6d:85:4b: 1f:ca:9f:3e:da:8f:b1:d7:cd:15:fc:fa:cb:0a:69: ef:f3:d0:4f:fb:95:3f:03:a2:65:80:a0:1c:d1:67: 14:d0:69:57:85:c0:f1:32:bb:42:21:f9:f8:98:9d: 5d:5b:4a:1e:63:fe:d1:57:62:64:b1:4a:19:c8:b6: d1:2b:1a:4f:4e:38:44:dc:14:d8:20:ac:25:d4:6b: f7:5d:98:c3:bd:04:73:ba:55:3a:0f:b6:bb:b2:c0: b0:f7:2b:a7:b8:4f:f9:74:0a:3a:75:8c:27:01:43: 91:d4:51:07:10:5c:1d:3c:62:a4:f5:1e:aa:a0:63: 48:af:f0:33:40:31:1b:f8:6f:90:b8:b9:ff:6e:24: 63:1a:bf:5f:e8:85:0b:f3:eb:29:3a:87:f8:da:04: 58:27:aa:9d:4a:ae:96:6a:4b:73:6f:bc:30:0b:5d: eb:c0:0a:3e:a6:48:96:51:24:8c:61:c2:64:7d:57: 5c:ec:7d:86:c8:9e:fe:4e:00:06:5b:fd:75:19:94: 14:48:65:48:20:2f:85:1a:91:cd:02:7d:2c:ec:1d: aa:c9:58:a0:f7:95:9f:17:70:06:7f:4e:18:07:b3: 5f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:92:32:C3:E2:B7:A4:EC:81:6C:85:E8:9E:A0:71:3E:2C:98:2E:E4 X509v3 Authority Key Identifier: keyid:06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.115.196.0/22 IPv6: 2402:edc0::/32 Signature Algorithm: sha256WithRSAEncryption 71:1d:85:a0:07:24:76:a1:82:c1:b8:c7:bd:db:10:45:dc:34: bd:7b:ca:ff:13:49:62:38:7b:fa:b9:4c:24:0a:a4:92:82:d1: 4d:dd:a4:f4:c2:d2:63:95:1b:24:21:cc:ab:90:34:2c:ee:c7: f0:ab:c5:61:a5:57:6a:0f:cc:ce:2c:ba:05:63:b0:2c:11:f1: f0:15:a2:8a:95:46:96:b7:4e:58:5d:a2:d1:f7:fb:af:30:ae: fb:ce:69:29:b1:48:7d:5b:82:03:0c:3e:3c:ec:3c:07:a7:26: a2:47:64:75:b8:e1:64:0e:32:93:3a:10:ae:89:2f:e4:38:28: c6:0a:20:9e:c7:82:1a:76:a2:7c:6c:26:7e:a5:6e:09:ed:3d: c7:7c:35:bd:2b:e2:39:ca:5e:f9:84:be:14:bf:29:8d:47:8b: d8:bb:65:56:4f:94:cd:3f:47:2d:ef:ec:01:8a:ad:24:fe:76: 5c:28:71:bc:ff:8e:dc:0a:1c:14:14:cd:02:2e:68:74:4a:21: 87:37:c9:0f:93:88:46:7d:36:f2:61:ba:2f:af:15:49:cf:de: 75:f1:f0:70:b4:93:a6:b8:9d:56:bc:ce:1f:29:71:10:af:47: 2d:2b:5a:a2:84:c0:89:12:8d:be:48:cc:79:b8:da:9c:f0:86: 17:5b:2c:98 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKDA2MzdFNUIzOEM2MURGODNFQkIzMzAyMDkzQkI1NzZD QjMxRDlCMTAwHhcNMjUwODMwMTcwNjEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGNjOC1mM2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U9dPpgncGo+2cCjBDwNOXSTB7Kl/1vjFT9thUsfyp8+2o+x180V/PrLCmnv 89BP+5U/A6JlgKAc0WcU0GlXhcDxMrtCIfn4mJ1dW0oeY/7RV2JksUoZyLbRKxpP TjhE3BTYIKwl1Gv3XZjDvQRzulU6D7a7ssCw9yunuE/5dAo6dYwnAUOR1FEHEFwd PGKk9R6qoGNIr/AzQDEb+G+QuLn/biRjGr9f6IUL8+spOof42gRYJ6qdSq6Waktz b7wwC13rwAo+pkiWUSSMYcJkfVdc7H2GyJ7+TgAGW/11GZQUSGVIIC+FGpHNAn0s 7B2qyVig95WfF3AGf04YB7Nf1wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFBmSMsPi t6TsgWyF6J6gcT4smC7kMB8GA1UdIwQYMBaAFAY35bOMYd+D67MwIJO7V2yzHZsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi9CamZsczR4aDM0UHJzekFnazd0WGJMTWRt eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JqZmxzNHhoMzRQcnN6QWdrN3RYYkxNZG14QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U4MjEvODExRkI1OTA2MDUxMTFFODhDRDhFQzQ3QzRGOUFFMDIvMkE1M0RBNTQz MzIwMTFFRjg5Q0FCRDYxQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3PEMA0EAgACMAcDBQAkAu3AMA0GCSqGSIb3DQEBCwUAA4IBAQBx HYWgByR2oYLBuMe92xBF3DS9e8r/E0liOHv6uUwkCqSSgtFN3aT0wtJjlRskIcyr kDQs7sfwq8VhpVdqD8zOLLoFY7AsEfHwFaKKlUaWt05YXaLR9/uvMK77zmkpsUh9 W4IDDD487DwHpyaiR2R1uOFkDjKTOhCuiS/kOCjGCiCex4IadqJ8bCZ+pW4J7T3H fDW9K+I5yl75hL4UvymNR4vYu2VWT5TNP0ct7+wBiq0k/nZcKHG8/47cChwUFM0C Lmh0SiGHN8kPk4hGfTbyYbovrxVJz9518fBwtJOmuJ1WvM4fKXEQr0ctK1qihMCJ Eo2+SMx5uNqc8IYXWyyY -----END CERTIFICATE-----Generated at Mon Mar 2 07:37:39 2026 by rpki-client