$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/A292E3529E9711EEB6899B1CC4F9AE02.roa File: A292E3529E9711EEB6899B1CC4F9AE02.roa (raw, json) Hash identifier: mpij4Re6bXjGBWFyLXPJmKPd1UHVx7aiX6dvj4qN29k= Subject key identifier: A4:A3:08:A0:E3:39:88:2D:E3:80:0C:41:55:2A:49:07:F4:5A:A4:76 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 0A3F Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/A292E3529E9711EEB6899B1CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:31:28 +0000 ROA not before: Sat 28 Jun 2025 19:55:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140607 IP address blocks: 103.150.242.0/24 maxlen: 24 103.150.243.0/24 maxlen: 24 2400:d860::/32 maxlen: 32 2400:d860::/43 maxlen: 43 2400:d860:20::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Jun 28 19:55:39 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40770-dded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5a:0a:b8:82:13:ee:58:c7:07:20:47:c9:c6: ed:94:2d:95:e8:67:77:c3:c0:95:20:2f:15:89:61: 5b:3f:12:c0:43:c0:32:26:75:fa:8a:a6:7c:9c:fa: 09:74:a2:09:3c:d7:36:ff:2b:8e:c9:00:4c:00:b1: 66:f5:39:2a:87:79:b7:b0:60:1f:3c:0e:8d:18:a8: fa:a6:fb:4f:4a:30:a6:9d:81:4a:ea:9c:10:1e:1e: 50:9c:8b:9c:72:b8:ff:55:55:37:88:57:ac:67:16: d1:6e:d6:b7:be:b7:df:56:6b:ac:ee:54:13:fe:d1: 16:23:9e:ef:44:18:6f:16:33:1c:71:6c:39:87:e0: ac:a3:22:1f:ab:5f:3f:b0:a8:ad:a7:2d:20:55:2b: 81:74:5e:c7:70:70:06:ba:79:33:42:96:47:9f:d4: e0:90:9b:25:f9:c5:b2:15:55:93:2a:a9:aa:14:1f: 99:26:bd:ae:95:2d:d7:67:86:0d:29:fa:62:66:12: 2a:10:72:f0:ef:e2:7c:b7:5c:04:0c:a8:ee:f4:fd: e2:cf:37:1b:eb:21:6d:d2:20:52:1f:a8:8c:7c:15: a8:d2:00:7f:b7:22:20:a1:6d:2b:16:08:22:c3:ed: b2:11:71:83:c1:5f:ae:ef:1a:6f:c8:4f:37:99:bd: c9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A3:08:A0:E3:39:88:2D:E3:80:0C:41:55:2A:49:07:F4:5A:A4:76 X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/A292E3529E9711EEB6899B1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.242.0/23 IPv6: 2400:d860::/32 Signature Algorithm: sha256WithRSAEncryption 51:d9:d5:6c:0b:4e:4b:37:1b:f2:84:ae:bb:4d:51:a9:b0:46: 67:fc:88:bc:c1:33:3c:7b:a1:63:f9:7a:65:55:d0:8d:ef:89: ae:ed:8f:3b:9b:6b:60:ad:3f:7e:74:ca:2a:b6:49:ef:61:5f: 45:0b:ea:7d:48:e5:8a:04:90:bf:a3:d7:36:ea:20:39:00:b5: 26:3e:00:b7:ed:05:99:10:44:6e:b5:1f:90:23:09:28:42:c6: 62:7f:9c:67:ce:7d:ca:b3:2a:ba:90:f2:be:1c:d8:44:e5:10: 04:2f:bf:ad:a0:cd:49:78:4b:c0:2e:c0:30:a5:98:72:58:99: 13:92:ac:c3:98:77:c9:48:6a:3f:98:a4:47:56:b5:46:eb:a7: 03:dc:3e:55:d4:90:68:92:9e:39:b7:63:1e:49:81:8f:a7:43: 91:e2:7b:62:92:c1:45:cb:dd:39:ad:cd:59:f0:67:24:f9:5f: 3f:9f:a5:ac:15:90:49:f4:ab:bf:fa:03:b7:3e:f9:b6:72:f5: 49:22:9f:a9:2a:97:43:e1:a4:68:19:28:0b:f7:09:c0:d9:cb: c1:d0:41:b4:4d:5f:43:74:ea:49:72:d9:c2:a2:d3:d4:0e:82: 0f:50:d3:37:76:85:a2:bc:ab:56:08:d7:75:a2:46:ec:77:bb: ce:66:07:c2 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUwNjI4MTk1NTM5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDc3MC1kZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1oKuIIT7ljHByBHycbtlC2V6Gd3w8CVIC8ViWFbPxLAQ8AyJnX6iqZ8nPoJ dKIJPNc2/yuOyQBMALFm9Tkqh3m3sGAfPA6NGKj6pvtPSjCmnYFK6pwQHh5QnIuc crj/VVU3iFesZxbRbta3vrffVmus7lQT/tEWI57vRBhvFjMccWw5h+CsoyIfq18/ sKitpy0gVSuBdF7HcHAGunkzQpZHn9TgkJsl+cWyFVWTKqmqFB+ZJr2ulS3XZ4YN KfpiZhIqEHLw7+J8t1wEDKju9P3izzcb6yFt0iBSH6iMfBWo0gB/tyIgoW0rFggi w+2yEXGDwV+u7xpvyE83mb3JfQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFKSjCKDj OYgt44AMQVUqSQf0WqR2MB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDdDMUQvQTgwNzBBRjI4QUYwMTFFQUE5NTI4MzA5QzRGOUFFMDIvQTI5MkUzNTI5 RTk3MTFFRUI2ODk5QjFDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5byMA0EAgACMAcDBQAkANhgMA0GCSqGSIb3DQEBCwUAA4IBAQBR 2dVsC05LNxvyhK67TVGpsEZn/Ii8wTM8e6Fj+XplVdCN74mu7Y87m2tgrT9+dMoq tknvYV9FC+p9SOWKBJC/o9c26iA5ALUmPgC37QWZEERutR+QIwkoQsZif5xnzn3K syq6kPK+HNhE5RAEL7+toM1JeEvALsAwpZhyWJkTkqzDmHfJSGo/mKRHVrVG66cD 3D5V1JBokp45t2MeSYGPp0OR4ntiksFFy905rc1Z8Gck+V8/n6WsFZBJ9Ku/+gO3 Pvm2cvVJIp+pKpdD4aRoGSgL9wnA2cvB0EG0TV9DdOpJctnCotPUDoIPUNM3doWi vKtWCNd1okbsd7vOZgfC -----END CERTIFICATE-----Generated at Mon Mar 2 07:28:56 2026 by rpki-client