$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa File: D5C4A54A617B11EC82058668C4F9AE02.roa (raw, json) Hash identifier: bUHBBf5sOas57JoBnuGlqh7PgAmJoHgi2CnQkJdmpgY= Subject key identifier: 51:FB:D9:AE:61:DC:AA:74:B8:50:94:1E:8B:5A:B8:45:F9:1E:6B:85 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 0558 Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:43:26 +0000 ROA not before: Wed 08 Oct 2025 23:55:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147061 IP address blocks: 103.173.235.0/24 maxlen: 24 103.198.0.0/24 maxlen: 24 2001:df7:ae80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Oct 8 23:55:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4346e-2a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:37:28:2e:7f:d2:3c:b2:5a:44:d6:28:1f:6f: 84:aa:d1:e1:a4:ed:55:18:a2:81:79:c3:5c:7b:d3: 9f:44:7a:19:0c:51:11:7e:5f:de:34:fb:d5:f4:d4: 6e:60:73:53:7b:1a:79:f5:5c:ea:1b:95:00:d2:44: 3a:0e:1c:c1:3c:19:a1:85:c2:18:bf:ee:50:ef:97: cb:30:56:6f:da:aa:93:13:31:61:c5:72:96:d8:98: dc:33:19:69:52:69:b2:72:8b:34:5c:ee:69:c7:78: 44:98:1d:6e:ec:45:03:38:ca:87:8b:23:dd:79:33: 1f:f9:d7:22:f0:44:78:0f:0d:97:c6:ac:f9:e0:e4: 78:2d:74:10:3a:ff:03:02:a6:d9:13:ea:95:a3:75: 9f:62:fa:63:36:c9:14:fc:c6:ea:70:b8:00:e6:18: 0d:0f:5b:65:ad:aa:36:99:89:58:c3:06:3c:1a:57: ca:aa:64:ce:61:b1:f6:38:dd:cb:5c:65:e5:fd:b6: 85:60:15:94:33:50:34:4c:78:5d:13:43:8f:93:d2: 2e:35:c8:e8:a6:23:ed:49:ab:46:0c:6e:e9:a2:d3: a5:dc:ba:37:a0:e9:87:c4:71:34:8f:05:eb:7a:28: ec:a5:57:43:c9:e5:4f:2b:f2:69:e3:2f:f5:6a:e9: 69:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FB:D9:AE:61:DC:AA:74:B8:50:94:1E:8B:5A:B8:45:F9:1E:6B:85 X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.235.0/24 103.198.0.0/24 IPv6: 2001:df7:ae80::/48 Signature Algorithm: sha256WithRSAEncryption 0a:1a:d9:15:ef:5a:fa:38:98:32:c0:14:7b:5a:d5:a1:b6:de: de:bd:62:72:85:fb:d3:e9:03:a0:b0:0f:92:70:31:0a:c4:b5: a8:c3:bc:0c:bb:ca:66:f3:03:71:9a:95:c8:eb:23:ad:a2:1e: 5f:3e:19:71:20:db:01:28:bb:ad:33:8a:d5:41:7d:c4:2b:c0: 88:5b:c7:41:c1:80:18:5b:2b:56:49:db:bc:c3:67:27:09:d7: ef:39:15:63:85:4a:85:ea:ef:ca:01:0d:0e:5d:6a:2a:e9:3b: cc:9e:35:e2:71:8c:3c:e7:18:f6:b5:42:ac:11:1f:28:6c:c0: e2:69:25:9c:53:1e:65:6f:68:a3:66:e5:17:a8:4b:70:8a:4f: ce:48:8e:ba:24:1f:1a:b0:9e:ac:08:18:b3:38:de:6d:61:76: fb:13:98:1d:ef:da:cd:47:aa:cd:92:31:fa:6b:7b:ae:9b:b9: 4b:86:c3:f1:63:29:d1:18:66:aa:7a:25:31:00:b8:7e:bc:ef: 76:53:e5:c1:33:a1:24:2f:20:0f:35:ca:6e:e3:cb:92:2c:07: bb:b5:cb:81:92:4b:a9:3f:22:e2:88:62:28:a9:4c:cb:ba:1d: bc:8e:d1:05:44:c3:44:33:b6:65:40:68:6d:cc:3f:8c:77:f2: 0b:cb:bc:78 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUxMDA4MjM1NTM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzQ2ZS0yYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jcoLn/SPLJaRNYoH2+EqtHhpO1VGKKBecNce9OfRHoZDFERfl/eNPvV9NRu YHNTexp59VzqG5UA0kQ6DhzBPBmhhcIYv+5Q75fLMFZv2qqTEzFhxXKW2JjcMxlp Ummycos0XO5px3hEmB1u7EUDOMqHiyPdeTMf+dci8ER4Dw2Xxqz54OR4LXQQOv8D AqbZE+qVo3WfYvpjNskU/MbqcLgA5hgND1tlrao2mYlYwwY8GlfKqmTOYbH2ON3L XGXl/baFYBWUM1A0THhdE0OPk9IuNcjopiPtSatGDG7potOl3Lo3oOmHxHE0jwXr eijspVdDyeVPK/Jp4y/1aulpJwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFFH72a5h 3Kp0uFCUHotauEX5HmuFMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJCN0QvMzAxNzA5NkUyQkI5MTFFQ0IyQjM2NzRGQzRGOUFFMDIvRDVDNEE1NEE2 MTdCMTFFQzgyMDU4NjY4QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ63rAwQAZ8YAMA8EAgACMAkDBwAgAQ33roAwDQYJKoZIhvcNAQEL BQADggEBAAoa2RXvWvo4mDLAFHta1aG23t69YnKF+9PpA6CwD5JwMQrEtajDvAy7 ymbzA3GalcjrI62iHl8+GXEg2wEou60zitVBfcQrwIhbx0HBgBhbK1ZJ27zDZycJ 1+85FWOFSoXq78oBDQ5dairpO8yeNeJxjDznGPa1QqwRHyhswOJpJZxTHmVvaKNm 5ReoS3CKT85IjrokHxqwnqwIGLM43m1hdvsTmB3v2s1Hqs2SMfpre66buUuGw/Fj KdEYZqp6JTEAuH6873ZT5cEzoSQvIA81ym7jy5IsB7u1y4GSS6k/IuKIYiipTMu6 HbyO0QVEw0QztmVAaG3MP4x38gvLvHg= -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:45 2026 by rpki-client