$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa File: C0C268B8441C11EF9E110F1EC4F9AE02.roa (raw, json) Hash identifier: BGZ/L+eylo480mcZ7HtgDtqGQJY6fpOnqOG9oduD88w= Subject key identifier: 2E:2A:C5:A4:B0:CA:29:E6:86:02:43:39:80:C9:C0:42:16:8C:8A:C2 Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0271 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:57:16 +0000 ROA not before: Tue 03 Jun 2025 03:20:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 401254 IP address blocks: 103.251.236.0/24 maxlen: 24 103.251.237.0/24 maxlen: 24 103.251.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017, serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Jun 3 03:20:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a437ac-31c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:01:d2:1f:2c:e9:50:8b:1e:c2:87:de:be:c5: f7:ca:85:4c:04:49:77:bf:b5:a1:8e:70:7b:f3:9f: c0:88:08:0e:b0:d1:6e:0f:5c:a1:50:8d:50:a3:20: 23:66:e0:c1:ae:1d:d8:61:49:ac:4d:f8:8d:27:e7: b3:2f:04:df:d3:93:53:d1:70:ef:47:e9:81:03:a9: d4:f4:99:3e:4e:cc:6b:23:e4:23:8b:07:2a:95:b6: ea:09:61:f5:b1:90:6f:2d:59:7e:d3:7f:fa:05:88: 94:28:44:9c:42:54:71:f8:03:86:d7:d8:8f:7f:ac: f0:33:24:16:22:4d:56:fe:50:79:41:40:8b:95:ec: 03:9f:2b:16:8b:58:71:45:5d:d8:0e:93:ce:b6:fb: f3:c9:c5:af:e1:f9:9c:f7:ec:a1:07:d9:f6:9e:05: e5:38:2a:0b:bf:89:f0:70:75:bc:32:c3:ba:7a:3d: 5f:26:86:e3:63:49:1b:cf:59:6a:37:fa:46:c5:a7: 16:d1:d7:a4:e8:87:e4:99:e7:24:5b:d9:dd:9c:d9: 8e:3d:c5:50:d0:4e:9d:f8:8e:c8:af:c1:65:90:b6: 3f:44:be:18:10:b1:c5:6b:0a:9d:cc:bc:2a:19:cc: 19:9a:13:d2:c8:77:c7:2f:ab:f3:ed:55:4c:fc:42: da:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2A:C5:A4:B0:CA:29:E6:86:02:43:39:80:C9:C0:42:16:8C:8A:C2 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/C0C268B8441C11EF9E110F1EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.251.236.0-103.251.238.255 Signature Algorithm: sha256WithRSAEncryption 90:28:7d:3c:be:74:04:b2:db:cb:f3:fd:fb:6d:87:87:22:e6: 13:31:b5:47:b0:cf:80:64:07:3b:4e:f8:16:16:90:d2:4f:e9: a9:0f:16:39:3b:e8:29:d0:a6:8e:bc:f6:3f:71:38:ec:f6:e5: bf:8a:8e:ac:5f:6d:23:24:e5:6a:87:d8:74:64:80:a4:31:04: 87:ae:4c:13:af:fa:79:a2:37:07:a1:a8:79:f4:91:15:02:99: 79:66:8c:f6:ac:78:ef:91:06:19:32:38:e5:ef:22:4d:10:d0: 1b:7e:a8:5e:ef:52:22:b2:be:04:7b:40:18:a9:6d:ec:06:d8: e9:8a:8a:f8:8b:02:f5:f0:f8:57:f2:fa:cb:1d:6c:54:af:1f: bc:b6:4f:2d:7a:7b:68:70:92:9e:56:7e:5f:63:c5:49:41:d0: 02:35:37:2e:16:1b:82:e2:14:bd:49:cc:e1:b9:a9:e1:63:77: 40:a3:45:64:53:c9:b5:22:82:65:7e:20:00:f4:d2:be:49:e4: d1:47:15:4d:5f:d8:e0:81:be:85:41:16:32:3b:a4:67:91:72: 2f:cd:4c:d7:07:00:0c:8c:45:57:b2:49:9f:8d:54:2e:d7:21: 87:bd:2e:c9:cc:4a:74:66:03:c6:16:9f:da:a2:5a:de:f0:0a: 5c:3b:b7:03 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjUwNjAzMDMyMDExWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzdhYy0zMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAHSHyzpUIsewofevsX3yoVMBEl3v7WhjnB785/AiAgOsNFuD1yhUI1QoyAj ZuDBrh3YYUmsTfiNJ+ezLwTf05NT0XDvR+mBA6nU9Jk+TsxrI+QjiwcqlbbqCWH1 sZBvLVl+03/6BYiUKEScQlRx+AOG19iPf6zwMyQWIk1W/lB5QUCLlewDnysWi1hx RV3YDpPOtvvzycWv4fmc9+yhB9n2ngXlOCoLv4nwcHW8MsO6ej1fJobjY0kbz1lq N/pGxacW0dek6IfkmeckW9ndnNmOPcVQ0E6d+I7Ir8FlkLY/RL4YELHFawqdzLwq GcwZmhPSyHfHL6vz7VVM/ELagQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFC4qxaSw yinmhgJDOYDJwEIWjIrCMB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwMTcvMTA1QUM4RkM5MEMzMTFFREJBMURDQzIzQzRGOUFFMDIvQzBDMjY4Qjg0 NDFDMTFFRjlFMTEwRjFFQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAJn++wDBABn++4wDQYJKoZIhvcNAQELBQADggEBAJAofTy+dASy 28vz/ftth4ci5hMxtUewz4BkBztO+BYWkNJP6akPFjk76CnQpo689j9xOOz25b+K jqxfbSMk5WqH2HRkgKQxBIeuTBOv+nmiNwehqHn0kRUCmXlmjPaseO+RBhkyOOXv Ik0Q0Bt+qF7vUiKyvgR7QBipbewG2OmKiviLAvXw+Ffy+ssdbFSvH7y2Ty16e2hw kp5Wfl9jxUlB0AI1Ny4WG4LiFL1JzOG5qeFjd0CjRWRTybUigmV+IAD00r5J5NFH FU1f2OCBvoVBFjI7pGeRci/NTNcHAAyMRVeySZ+NVC7XIYe9LsnMSnRmA8YWn9qi Wt7wClw7twM= -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:57 2026 by rpki-client