$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/1DEAACDA9F8511EABAA10F3BC4F9AE02.roa File: 1DEAACDA9F8511EABAA10F3BC4F9AE02.roa (raw, json) Hash identifier: XourWZvjWeRYuoG4eJzATWITu2fMjkfcMaCSGMduRx8= Subject key identifier: 41:B4:21:1B:33:6D:F4:7E:F7:34:02:82:7D:5F:DE:EA:CB:71:D7:8E Certificate issuer: /CN=A91CF364/serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Certificate serial: 09C2 Authority key identifier: 4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/1DEAACDA9F8511EABAA10F3BC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:50:40 +0000 ROA not before: Fri 22 Aug 2025 20:30:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132218 IP address blocks: 103.71.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2498 (0x9c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF364, serialNumber=4A73B16D2EE9E9CD4C3FC0BD61091C489053D436 Validity Not Before: Aug 22 20:30:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42810-9523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:25:83:d0:96:97:0b:22:4a:9c:2d:3c:8f:87: 3c:61:c4:88:be:3a:98:1f:1c:8e:b1:c8:d5:55:6b: 11:20:08:dd:3f:66:24:2c:3d:3f:ed:38:5b:27:5b: a2:96:a3:dd:2b:50:8f:ad:90:b9:7f:34:2d:23:81: 77:a3:b1:e4:67:18:1d:df:08:32:3f:67:86:c7:e8: c9:e8:1b:34:c8:53:29:3f:90:c3:7e:23:13:41:86: 2b:9f:9b:7e:65:9f:37:d1:00:03:a9:be:ba:ca:a1: 3d:2a:5a:1e:7e:ce:01:25:84:2f:14:4b:db:d4:3b: f0:d7:dd:f1:f4:1a:bd:fb:07:06:4b:19:c6:12:fa: db:60:be:8b:16:fc:82:ce:6a:db:51:6f:91:2d:ed: 6f:4a:2c:29:52:fc:e8:d6:89:5e:b5:80:1d:6f:bd: f6:62:f3:84:83:97:ad:56:8a:00:69:03:42:08:a1: 07:2d:0d:ee:bd:fd:35:74:68:1a:f0:3e:8d:22:39: 86:cb:1b:62:87:f1:2c:36:c0:5c:db:db:25:d8:f7: 79:bf:3c:a7:3b:05:99:63:8b:a6:72:75:22:77:d8: 56:f5:14:54:c8:43:65:ce:89:4b:53:c5:66:1c:9e: 58:4c:d2:07:19:25:e9:11:46:21:07:a5:2b:55:88: 81:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B4:21:1B:33:6D:F4:7E:F7:34:02:82:7D:5F:DE:EA:CB:71:D7:8E X509v3 Authority Key Identifier: keyid:4A:73:B1:6D:2E:E9:E9:CD:4C:3F:C0:BD:61:09:1C:48:90:53:D4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/SnOxbS7p6c1MP8C9YQkcSJBT1DY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SnOxbS7p6c1MP8C9YQkcSJBT1DY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF364/716A59AC9F8311EA93149135C4F9AE02/1DEAACDA9F8511EABAA10F3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.71.57.0/24 Signature Algorithm: sha256WithRSAEncryption b3:90:67:9a:1d:92:5a:02:d3:68:70:97:12:ce:0e:2e:52:14: 13:ea:66:dc:89:f7:65:4e:02:0e:2d:d3:f4:03:0d:dc:4f:c6: 03:cb:d1:a3:09:1e:a7:db:0f:a2:b8:15:c0:51:e0:51:c9:08: 53:63:76:02:ac:7e:f6:70:9d:42:cc:76:26:f0:f5:df:6f:e9: 9b:2e:d5:3d:bb:14:7e:5b:a3:e1:79:d9:ff:e5:c6:03:12:43: ab:02:4c:4c:fb:ea:76:73:b5:ff:e3:de:30:62:e1:b5:bd:a4: 1e:59:19:be:c8:97:f1:c7:c8:79:d7:82:70:7b:e4:53:36:87: 53:01:6b:83:fb:b3:f7:8f:e8:7e:1a:c9:4c:0c:6c:31:94:c2: 7b:35:5d:c7:90:bd:d0:52:ee:58:95:e2:af:47:c1:8f:2e:4c: 41:d9:22:eb:75:88:f1:6b:45:c0:36:f6:bc:30:2a:17:77:10: 4a:1f:52:d9:57:98:c0:67:b3:79:3b:ae:f1:8a:f8:dc:ee:e0: 77:cd:40:d8:89:aa:17:d9:bd:cd:09:35:ee:28:2b:60:47:2c: 33:e1:e1:fd:82:91:83:65:0d:2d:da:14:8b:20:2b:5f:32:2a: b3:e3:98:dd:85:29:6a:30:45:59:21:8c:55:a6:e1:b2:ac:35: 99:e0:17:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YzNjQxMTAvBgNVBAUTKDRBNzNCMTZEMkVFOUU5Q0Q0QzNGQzBCRDYxMDkxQzQ4 OTA1M0Q0MzYwHhcNMjUwODIyMjAzMDQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjgxMC05NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/SWD0JaXCyJKnC08j4c8YcSIvjqYHxyOscjVVWsRIAjdP2YkLD0/7ThbJ1ui lqPdK1CPrZC5fzQtI4F3o7HkZxgd3wgyP2eGx+jJ6Bs0yFMpP5DDfiMTQYYrn5t+ ZZ830QADqb66yqE9Kloefs4BJYQvFEvb1Dvw193x9Bq9+wcGSxnGEvrbYL6LFvyC zmrbUW+RLe1vSiwpUvzo1oletYAdb732YvOEg5etVooAaQNCCKEHLQ3uvf01dGga 8D6NIjmGyxtih/EsNsBc29sl2Pd5vzynOwWZY4umcnUid9hW9RRUyENlzolLU8Vm HJ5YTNIHGSXpEUYhB6UrVYiBCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEG0IRsz bfR+9zQCgn1f3urLcdeOMB8GA1UdIwQYMBaAFEpzsW0u6enNTD/AvWEJHEiQU9Q2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjM2NC83MTZBNTlBQzlG ODMxMUVBOTMxNDkxMzVDNEY5QUUwMi9Tbk94YlM3cDZjMU1QOEM5WVFrY1NKQlQx RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NuT3hiUzdwNmMxTVA4QzlZUWtjU0pCVDFEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YzNjQvNzE2QTU5QUM5RjgzMTFFQTkzMTQ5MTM1QzRGOUFFMDIvMURFQUFDREE5 Rjg1MTFFQUJBQTEwRjNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ0c5MA0GCSqGSIb3DQEBCwUAA4IBAQCzkGeaHZJaAtNocJcSzg4u UhQT6mbcifdlTgIOLdP0Aw3cT8YDy9GjCR6n2w+iuBXAUeBRyQhTY3YCrH72cJ1C zHYm8PXfb+mbLtU9uxR+W6Phedn/5cYDEkOrAkxM++p2c7X/494wYuG1vaQeWRm+ yJfxx8h514Jwe+RTNodTAWuD+7P3j+h+GslMDGwxlMJ7NV3HkL3QUu5YleKvR8GP LkxB2SLrdYjxa0XANva8MCoXdxBKH1LZV5jAZ7N5O67xivjc7uB3zUDYiaoX2b3N CTXuKCtgRywz4eH9gpGDZQ0t2hSLICtfMiqz45jdhSlqMEVZIYxVpuGyrDWZ4Bek -----END CERTIFICATE-----Generated at Mon Mar 2 19:50:16 2026 by rpki-client