$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa File: 33A8447E3D0111EA9B37B256C4F9AE02.roa (raw, json) Hash identifier: HIapHWJw7XTBDWjkQqGZQJy/60qXFVTMYV+6jQAJCNc= Subject key identifier: 63:BF:E7:BA:65:B5:96:57:A3:C6:5D:21:23:53:CE:CA:77:40:14:C7 Certificate issuer: /CN=A91E1A60/serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Certificate serial: 0BB9 Authority key identifier: 2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:44:21 +0000 ROA not before: Mon 30 Jun 2025 19:54:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139227 IP address blocks: 103.140.24.0/23 maxlen: 24 2404:f640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1A60, serialNumber=2E823D59496CFAC7378FA82BF84DDF684D932B9D Validity Not Before: Jun 30 19:54:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42695-126e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:92:48:c4:1c:12:be:a2:0d:63:07:e2:4c:50: 0b:c5:b4:62:9c:dc:7b:ff:91:17:0d:2b:e0:c1:e2: ae:fe:87:b0:ba:4f:bb:c2:be:c8:77:11:3c:8a:12: 08:57:25:70:4c:c0:30:d6:47:d4:a8:7c:37:b3:53: ef:eb:b2:ab:fa:7f:03:43:fd:c1:ab:78:db:32:b4: c5:49:e2:77:2d:fd:d3:43:f1:dc:54:1a:78:98:4f: ca:b0:8f:c2:b2:64:e9:ed:2d:e8:3c:62:c7:4c:b7: ff:5e:5e:42:57:36:37:3a:63:8c:00:7b:7b:0c:53: 18:a7:bc:10:8f:72:da:0f:75:c6:06:9b:b1:15:b8: 06:1c:c2:e0:a3:3c:8f:c7:84:dc:6f:f6:b4:b6:09: a9:51:f5:6c:43:7a:5f:c1:9a:7c:68:07:68:4f:c3: c0:c4:86:d3:86:22:70:85:0e:6c:83:9e:e4:5c:ec: 94:51:fd:d3:8e:65:f1:d8:83:77:56:63:c2:a6:a8: 31:b8:39:98:28:f8:78:69:1d:c0:38:83:9b:dc:78: ec:a0:ce:aa:91:46:51:b8:ae:30:c2:86:03:57:6b: 24:b1:ef:9f:6e:35:5e:d3:d2:81:a4:d3:44:27:7f: c3:dd:c5:3e:9c:08:c6:a3:34:7e:5a:70:ec:7a:e1: ef:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:BF:E7:BA:65:B5:96:57:A3:C6:5D:21:23:53:CE:CA:77:40:14:C7 X509v3 Authority Key Identifier: keyid:2E:82:3D:59:49:6C:FA:C7:37:8F:A8:2B:F8:4D:DF:68:4D:93:2B:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/LoI9WUls-sc3j6gr-E3faE2TK50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LoI9WUls-sc3j6gr-E3faE2TK50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1A60/80314F863CFF11EA82108253C4F9AE02/33A8447E3D0111EA9B37B256C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.140.24.0/23 IPv6: 2404:f640::/32 Signature Algorithm: sha256WithRSAEncryption 33:72:5f:6d:4d:da:9b:67:57:cc:8f:cd:f7:ac:9c:db:4e:a6: 7f:af:37:d8:ec:e9:88:9d:f8:32:19:21:6a:45:d4:70:fe:6a: d4:bf:2c:15:68:8a:46:d5:23:73:53:5b:a9:ee:25:c7:f9:5c: 0b:72:7e:78:3a:e9:e1:7b:e3:76:d2:fa:88:d6:b2:41:78:55: a7:68:32:91:0a:99:2a:5e:a9:1f:5c:4e:77:ca:3c:b1:d6:3e: 1b:41:ef:7e:02:fc:63:f1:18:21:fb:4b:c8:80:5f:40:ac:01: a0:78:72:05:c4:ce:c4:f1:49:2a:a7:c5:ba:b8:0f:02:6c:7b: 40:62:16:09:32:30:eb:45:f6:4c:76:39:f5:41:be:6f:71:a7: bd:6d:99:cc:bb:94:81:e9:45:66:cd:c9:eb:1c:c2:c0:86:13: b7:f4:e5:91:19:d0:c8:25:6e:3b:46:8a:41:80:d9:6b:f4:5f: b2:90:3a:42:e7:94:73:dd:fa:2a:bd:58:ef:82:07:0b:e7:55: 13:2f:6d:ce:94:86:1c:28:16:71:5b:69:7d:a8:17:1d:10:4c: c6:ef:49:3a:23:2b:f9:66:11:25:26:fc:30:fe:e0:55:04:99: 07:b5:88:49:c2:75:90:7b:76:9a:1e:d5:c2:b8:e7:25:63:f8: 4d:f2:17:1b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFBNjAxMTAvBgNVBAUTKDJFODIzRDU5NDk2Q0ZBQzczNzhGQTgyQkY4NERERjY4 NEQ5MzJCOUQwHhcNMjUwNjMwMTk1NDI0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjY5NS0xMjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JJIxBwSvqINYwfiTFALxbRinNx7/5EXDSvgweKu/oewuk+7wr7IdxE8ihII VyVwTMAw1kfUqHw3s1Pv67Kr+n8DQ/3Bq3jbMrTFSeJ3Lf3TQ/HcVBp4mE/KsI/C smTp7S3oPGLHTLf/Xl5CVzY3OmOMAHt7DFMYp7wQj3LaD3XGBpuxFbgGHMLgozyP x4Tcb/a0tgmpUfVsQ3pfwZp8aAdoT8PAxIbThiJwhQ5sg57kXOyUUf3TjmXx2IN3 VmPCpqgxuDmYKPh4aR3AOIOb3HjsoM6qkUZRuK4wwoYDV2skse+fbjVe09KBpNNE J3/D3cU+nAjGozR+WnDseuHvswIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGO/57pl tZZXo8ZdISNTzsp3QBTHMB8GA1UdIwQYMBaAFC6CPVlJbPrHN4+oK/hN32hNkyud MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUE2MC84MDMxNEY4NjND RkYxMUVBODIxMDgyNTNDNEY5QUUwMi9Mb0k5V1Vscy1zYzNqNmdyLUUzZmFFMlRL NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xvSTlXVWxzLXNjM2o2Z3ItRTNmYUUyVEs1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFBNjAvODAzMTRGODYzQ0ZGMTFFQTgyMTA4MjUzQzRGOUFFMDIvMzNBODQ0N0Uz RDAxMTFFQTlCMzdCMjU2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4wYMA0EAgACMAcDBQAkBPZAMA0GCSqGSIb3DQEBCwUAA4IBAQAz cl9tTdqbZ1fMj833rJzbTqZ/rzfY7OmInfgyGSFqRdRw/mrUvywVaIpG1SNzU1up 7iXH+VwLcn54Ounhe+N20vqI1rJBeFWnaDKRCpkqXqkfXE53yjyx1j4bQe9+Avxj 8Rgh+0vIgF9ArAGgeHIFxM7E8Ukqp8W6uA8CbHtAYhYJMjDrRfZMdjn1Qb5vcae9 bZnMu5SB6UVmzcnrHMLAhhO39OWRGdDIJW47RopBgNlr9F+ykDpC55Rz3foqvVjv ggcL51UTL23OlIYcKBZxW2l9qBcdEEzG70k6Iyv5ZhElJvww/uBVBJkHtYhJwnWQ e3aaHtXCuOclY/hN8hcb -----END CERTIFICATE-----Generated at Mon Mar 2 15:33:02 2026 by rpki-client