$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa File: 8291E388EA0811EFB385192AC4F9AE02.roa (raw, json) Hash identifier: XVr7WTe1j1MpPcQH4gqklIeU34mco9nl+Lc+ZXIEmsM= Subject key identifier: 96:D3:4E:12:92:39:83:36:ED:AE:20:10:77:04:57:AF:10:3E:97:B4 Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: C8 Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:04:29 +0000 ROA not before: Tue 27 May 2025 07:46:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142594 IP address blocks: 103.166.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1, serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Validity Not Before: May 27 07:46:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3f30d-f8de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:56:48:7b:6b:52:d5:f8:e3:a6:77:2a:4a:53: 9f:eb:ac:4c:2a:db:d8:76:73:09:8c:d5:a5:a2:19: a7:40:8e:71:2f:24:28:fb:1f:13:71:ee:70:69:26: 5a:34:d5:89:7e:84:cc:69:98:8a:52:92:2a:ec:0f: 6b:9e:96:2f:ad:7b:c7:2e:4b:49:f1:4f:4f:37:60: 12:20:5d:17:d6:71:cc:36:5b:0f:56:e6:5d:17:be: 22:e2:4b:5d:59:5a:1c:80:af:fd:ab:cb:43:93:5a: 6e:5a:00:13:cc:14:14:5c:6a:e4:e5:2e:d8:7d:bf: 14:39:33:70:de:4e:4c:6f:13:48:a4:d0:e7:c7:d9: f7:99:0c:27:55:2b:e6:07:08:52:77:f1:95:17:5b: 0c:ef:ce:74:25:4b:10:2e:34:bc:f5:a7:aa:9e:b8: 1f:61:6f:91:82:ff:01:09:5a:9c:82:99:ed:1e:3a: 29:10:6c:a9:19:d5:b8:01:16:c0:ec:21:a4:2b:ae: 96:b1:53:3f:bd:24:c2:0d:a6:ae:04:d3:cb:f2:4d: 59:a9:e9:2e:19:c4:94:b0:3e:07:ab:4f:a0:c5:3b: 8b:21:42:3d:bb:27:84:f1:57:97:75:29:d6:42:32: 32:89:ca:d0:74:e3:b0:cc:8c:ce:c8:c2:13:cc:1e: 28:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D3:4E:12:92:39:83:36:ED:AE:20:10:77:04:57:AF:10:3E:97:B4 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.228.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:71:2e:aa:1f:fa:dc:75:66:8b:05:4d:5c:8d:22:df:d0:0f: 9c:ca:1d:05:32:8c:3b:43:e7:0f:8c:5c:ed:33:fc:34:62:5c: b0:8f:a7:71:26:2e:dc:7c:9a:9c:0a:93:7f:92:77:06:45:76: 0d:fc:3f:da:89:dd:63:6b:23:0e:68:fe:e9:f3:25:52:d5:b4: 63:f2:48:fc:99:65:90:e8:83:7c:ea:2f:24:c0:ab:50:de:ac: 2f:28:2d:58:c7:30:f7:36:33:bd:8c:01:8c:99:1a:71:fa:7b: ea:70:dc:84:f9:e7:0b:ac:c3:4f:40:f7:2a:23:31:2c:06:ad: 1c:62:a7:d9:3e:3e:49:04:9e:d1:74:fe:9d:b4:f7:a7:83:ad: 54:70:8b:3a:d5:9e:c4:a4:f5:fc:fa:60:a6:53:f3:78:af:24: 45:5d:a3:ea:24:ec:c0:74:7b:84:f9:35:76:23:2a:26:e9:be: 33:56:99:df:54:ab:1c:d5:03:32:86:d2:23:aa:cb:94:5a:8d: f9:e5:44:6a:cb:54:e2:48:b7:99:14:55:f4:9c:92:0e:02:c5: 51:46:9d:be:ea:66:d2:d7:a4:7e:7c:2f:05:1c:99:6a:ff:66: 14:b2:14:1c:bc:c2:4a:14:5b:de:0f:62:8c:d4:53:14:45:23: 61:18:02:ef -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFDQjExMTAvBgNVBAUTKDA2M0UwMTI3NDcyQTdFMkE2Rjg0NzA0MDlDOUI4MjM5 MDVGQUZFOEUwHhcNMjUwNTI3MDc0NjA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjMwZC1mOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1ZIe2tS1fjjpncqSlOf66xMKtvYdnMJjNWlohmnQI5xLyQo+x8Tce5waSZa NNWJfoTMaZiKUpIq7A9rnpYvrXvHLktJ8U9PN2ASIF0X1nHMNlsPVuZdF74i4ktd WVocgK/9q8tDk1puWgATzBQUXGrk5S7Yfb8UOTNw3k5MbxNIpNDnx9n3mQwnVSvm BwhSd/GVF1sM7850JUsQLjS89aeqnrgfYW+Rgv8BCVqcgpntHjopEGypGdW4ARbA 7CGkK66WsVM/vSTCDaauBNPL8k1ZqekuGcSUsD4Hq0+gxTuLIUI9uyeE8VeXdSnW QjIyicrQdOOwzIzOyMITzB4oWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJbTThKS OYM27a4gEHcEV68QPpe0MB8GA1UdIwQYMBaAFAY+ASdHKn4qb4RwQJybgjkF+v6O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUNCMS8zRjRBNUEyRUVB MDgxMUVGOUQzMzlCMjlDNEY5QUUwMi9CajRCSjBjcWZpcHZoSEJBbkp1Q09RWDZf bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9vNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFDQjEvM0Y0QTVBMkVFQTA4MTFFRjlEMzM5QjI5QzRGOUFFMDIvODI5MUUzODhF QTA4MTFFRkIzODUxOTJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6bkMA0GCSqGSIb3DQEBCwUAA4IBAQCccS6qH/rcdWaLBU1cjSLf 0A+cyh0FMow7Q+cPjFztM/w0Ylywj6dxJi7cfJqcCpN/kncGRXYN/D/aid1jayMO aP7p8yVS1bRj8kj8mWWQ6IN86i8kwKtQ3qwvKC1YxzD3NjO9jAGMmRpx+nvqcNyE +ecLrMNPQPcqIzEsBq0cYqfZPj5JBJ7RdP6dtPeng61UcIs61Z7EpPX8+mCmU/N4 ryRFXaPqJOzAdHuE+TV2Iyom6b4zVpnfVKsc1QMyhtIjqsuUWo355URqy1TiSLeZ FFX0nJIOAsVRRp2+6mbS16R+fC8FHJlq/2YUshQcvMJKFFveD2KM1FMURSNhGALv -----END CERTIFICATE-----Generated at Mon Mar 2 08:35:16 2026 by rpki-client