$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa File: 0EB22CD66BBE11EDBF717818C4F9AE02.roa (raw, json) Hash identifier: zSG0LGFJE7WuZbbBJfnMq6hMoXOF+N0WFOj4d7BqNDI= Subject key identifier: B5:AC:67:9A:A9:49:3F:92:2C:0C:C6:89:17:FB:E6:FC:8F:2D:33:A4 Certificate issuer: /CN=A91DF3CA/serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Certificate serial: 1868 Authority key identifier: BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:43:42 +0000 ROA not before: Wed 20 Aug 2025 16:54:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132018 IP address blocks: 103.21.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6248 (0x1868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF3CA, serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Validity Not Before: Aug 20 16:54:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4428d-1394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:b9:92:49:a2:76:3c:bb:4c:a2:f3:7c:66: 32:15:4d:4c:3c:60:29:d2:e1:a5:67:bd:46:8f:60: e7:be:14:14:6e:07:f3:64:27:fe:ce:5d:82:cc:5c: 3f:99:7b:ac:4c:68:8e:6c:1e:c0:7c:db:4f:d3:67: 95:db:08:22:73:0c:27:59:a4:e9:30:af:ad:23:1a: 3f:41:34:27:16:63:58:d0:40:8a:30:07:09:60:48: 8c:6a:c6:a8:59:b6:10:b0:37:18:cf:7f:2f:2d:2d: 35:3e:c4:ea:98:01:bb:3f:19:8e:a8:90:d3:6a:9f: 59:51:09:95:c6:c8:4f:c2:97:3d:20:73:1c:b0:c6: 27:83:ba:ad:bb:8c:9c:fb:76:a8:53:63:79:1a:52: 55:28:d6:56:e3:eb:b1:0f:ab:77:63:d2:f0:90:eb: 16:95:3c:aa:9f:ea:c4:8a:71:b8:3a:1c:bb:62:0f: 6e:fc:2f:ee:d1:2b:eb:9f:78:78:f3:17:95:dd:95: 32:ec:1d:3e:f7:7e:b6:1f:5a:be:e3:ed:f6:85:e8: 7c:68:04:48:62:c2:2f:05:6b:70:4f:eb:1c:7c:ed: ef:59:c8:b1:bd:46:7d:b7:50:88:1a:91:4b:a2:ae: 5e:e7:e3:f0:ab:29:c6:19:38:10:dd:60:1e:cb:52: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AC:67:9A:A9:49:3F:92:2C:0C:C6:89:17:FB:E6:FC:8F:2D:33:A4 X509v3 Authority Key Identifier: keyid:BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.21.192.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:9e:6b:a4:4f:96:dd:10:a2:c3:65:dd:46:fc:e9:e8:7c:05: c4:99:9c:15:98:6a:9b:5e:ab:2e:fa:71:e1:40:6b:cc:e3:c8: 13:a8:a1:99:db:29:33:73:65:91:17:21:c2:db:51:c3:fa:bc: 66:98:e2:1e:5c:30:89:1b:80:ab:8c:03:d5:05:d0:ca:db:26: 50:fb:fa:80:99:bb:80:e1:a6:94:94:d6:e1:3e:ef:be:43:53: 4b:8f:dc:d0:b0:ce:5e:af:1f:1d:5b:a0:b5:9d:46:d8:a1:a1: e5:31:98:23:ba:b0:c4:fb:f8:5f:ca:93:f4:c7:d6:79:b1:7c: 80:12:8d:22:58:7a:ab:7c:01:74:ea:b9:64:ed:0e:98:f4:af: 70:f3:92:5f:32:4c:70:24:bd:16:99:2a:84:3a:6e:e9:c3:e8: 4c:4f:0a:42:b2:22:8e:01:de:ca:02:95:69:4f:9c:ec:d6:15: 6f:83:0e:55:af:33:8b:3f:17:97:31:82:08:cf:6a:5b:08:5b: 59:21:85:18:19:16:91:10:d8:28:1c:84:4f:21:d9:9b:85:be: db:c2:e6:02:95:94:83:be:41:1e:48:77:57:40:08:a8:fb:e7: 2b:da:ab:7d:50:99:89:08:d9:d4:c8:0c:b8:fa:0b:ac:2f:5f: 37:da:e4:b8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYzQ0ExMTAvBgNVBAUTKEJCOTMyNTZFNjA3RDQyRUI2RTM0MjBEQ0M3MTM3RjIw Qjg0RDBDOEEwHhcNMjUwODIwMTY1NDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDI4ZC0xMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbK5kkmidjy7TKLzfGYyFU1MPGAp0uGlZ71Gj2DnvhQUbgfzZCf+zl2CzFw/ mXusTGiObB7AfNtP02eV2wgicwwnWaTpMK+tIxo/QTQnFmNY0ECKMAcJYEiMasao WbYQsDcYz38vLS01PsTqmAG7PxmOqJDTap9ZUQmVxshPwpc9IHMcsMYng7qtu4yc +3aoU2N5GlJVKNZW4+uxD6t3Y9LwkOsWlTyqn+rEinG4Ohy7Yg9u/C/u0Svrn3h4 8xeV3ZUy7B0+9362H1q+4+32heh8aARIYsIvBWtwT+scfO3vWcixvUZ9t1CIGpFL oq5e5+PwqynGGTgQ3WAey1LOQwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLWsZ5qp ST+SLAzGiRf75vyPLTOkMB8GA1UdIwQYMBaAFLuTJW5gfULrbjQg3McTfyC4TQyK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjNDQS9FRjRGOTM3Q0Mz QTQxMUU3OTdCQkYxNUVDNEY5QUUwMi91NU1sYm1COVF1dHVOQ0RjeHhOX0lMaE5E SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1TWxibUI5UXV0dU5DRGN4eE5fSUxoTkRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYzQ0EvRUY0RjkzN0NDM0E0MTFFNzk3QkJGMTVFQzRGOUFFMDIvMEVCMjJDRDY2 QkJFMTFFREJGNzE3ODE4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxXAMA0GCSqGSIb3DQEBCwUAA4IBAQA9nmukT5bdEKLDZd1G/Ono fAXEmZwVmGqbXqsu+nHhQGvM48gTqKGZ2ykzc2WRFyHC21HD+rxmmOIeXDCJG4Cr jAPVBdDK2yZQ+/qAmbuA4aaUlNbhPu++Q1NLj9zQsM5erx8dW6C1nUbYoaHlMZgj urDE+/hfypP0x9Z5sXyAEo0iWHqrfAF06rlk7Q6Y9K9w85JfMkxwJL0WmSqEOm7p w+hMTwpCsiKOAd7KApVpT5zs1hVvgw5VrzOLPxeXMYIIz2pbCFtZIYUYGRaRENgo HIRPIdmbhb7bwuYClZSDvkEeSHdXQAio++cr2qt9UJmJCNnUyAy4+gusL1832uS4 -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:28 2026 by rpki-client