$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa File: C08A3ED6E03C11EF991E147AC4F9AE02.roa (raw, json) Hash identifier: ANsNQMN5H1ys5fOhAufw9rrJ9wcoujUNZdhr222CU5I= Subject key identifier: 7F:C5:1E:D7:92:71:43:84:06:E5:0C:95:F8:D9:62:2D:4C:10:FD:07 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0334 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:27:10 +0000 ROA not before: Thu 04 Dec 2025 23:39:06 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138358 IP address blocks: 103.159.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 4 23:39:06 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44cbe-7cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:39:52:ec:00:31:71:71:5f:ef:0f:dd:dc:b9: 06:09:55:99:0a:43:4c:e9:c5:a0:1c:b5:f0:b6:d5: 69:c7:b8:34:e9:36:24:cc:86:09:0e:c1:80:8c:54: e1:fe:5c:15:1c:86:eb:cf:e2:80:c1:36:5a:d8:85: ca:da:36:f0:40:dc:c7:64:b8:04:b5:9a:1f:55:a7: 6a:8e:93:89:c9:98:61:e9:f7:95:07:ae:7a:1e:6d: b0:1b:20:6d:9d:c0:db:60:3d:aa:a1:4e:82:55:99: 33:d2:36:b3:85:16:8e:52:17:e7:5d:9b:26:82:ac: 47:c2:a4:10:65:16:70:5e:48:e2:ee:81:71:84:d6: 7f:de:95:01:e6:b9:e9:64:05:93:1b:0e:7f:7f:60: 8c:e8:4f:36:1f:ee:d8:50:b5:29:0e:e6:ff:81:1d: 5d:04:fd:9c:c7:46:de:f4:84:fe:ca:95:95:4f:4e: 30:ab:68:e1:63:6d:bd:43:67:1e:e6:a1:fd:c0:46: f4:29:fb:8b:42:95:8f:87:1e:0f:bd:31:83:e9:80: 1d:85:b5:06:91:a5:f0:de:78:48:dd:e6:91:a3:85: 94:d8:4f:e6:6d:96:51:21:f1:91:f7:f7:20:90:a4: f9:a0:91:d4:29:70:e6:f7:40:08:37:5a:cf:86:09: f2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C5:1E:D7:92:71:43:84:06:E5:0C:95:F8:D9:62:2D:4C:10:FD:07 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.36.0/24 Signature Algorithm: sha256WithRSAEncryption 87:45:11:a8:33:84:fd:b1:67:49:ae:28:f2:36:09:50:32:f3: ab:28:15:be:36:f9:5c:a6:19:89:23:ab:d0:44:95:4c:77:2b: 0e:5b:cc:f2:7b:02:b9:a3:cd:df:8e:a6:55:36:c4:d3:05:61: 42:a7:36:b7:64:b3:d2:3b:8e:23:7c:bc:ac:b6:87:d0:54:60: 9d:13:82:05:d3:38:ce:cb:60:e2:96:e6:77:68:29:ff:79:ba: 15:30:4d:7c:f2:36:76:43:25:7f:9c:11:95:60:44:53:bd:0e: 9b:80:fa:33:ea:7a:f9:07:3b:4e:26:9c:85:e2:14:91:6e:19: 48:65:28:bd:42:de:29:68:a8:8e:ce:07:41:56:9b:28:01:59: d7:26:3d:8b:5d:17:9c:dc:af:80:7c:b9:17:7d:69:64:38:9c: 50:50:24:24:81:06:a2:05:f4:ac:08:b1:d6:19:55:34:28:fd: 0e:be:13:77:1a:7a:cc:00:6c:95:df:ca:34:82:31:5e:20:ab: 2f:15:29:88:aa:14:27:0c:be:43:eb:68:58:5e:da:6d:67:76: 0c:5c:2a:9b:b3:29:40:b1:fb:5d:8f:de:bb:92:77:56:63:51: 0a:c8:3d:a7:c0:9c:5b:55:b7:ed:ac:31:d5:dc:db:85:b8:fc: 49:1a:d2:8d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjA0MjMzOTA2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGNiZS03Y2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkzlS7AAxcXFf7w/d3LkGCVWZCkNM6cWgHLXwttVpx7g06TYkzIYJDsGAjFTh /lwVHIbrz+KAwTZa2IXK2jbwQNzHZLgEtZofVadqjpOJyZhh6feVB656Hm2wGyBt ncDbYD2qoU6CVZkz0jazhRaOUhfnXZsmgqxHwqQQZRZwXkji7oFxhNZ/3pUB5rnp ZAWTGw5/f2CM6E82H+7YULUpDub/gR1dBP2cx0be9IT+ypWVT04wq2jhY229Q2ce 5qH9wEb0KfuLQpWPhx4PvTGD6YAdhbUGkaXw3nhI3eaRo4WU2E/mbZZRIfGR9/cg kKT5oJHUKXDm90AIN1rPhgnyOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFH/FHteS cUOEBuUMlfjZYi1MEP0HMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI5Q0IvMUY5MDJCMEUwNUFGMTFFREE3MTc2NDJCQzRGOUFFMDIvQzA4QTNFRDZF MDNDMTFFRjk5MUUxNDdBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ58kMA0GCSqGSIb3DQEBCwUAA4IBAQCHRRGoM4T9sWdJrijyNglQ MvOrKBW+NvlcphmJI6vQRJVMdysOW8zyewK5o83fjqZVNsTTBWFCpza3ZLPSO44j fLystofQVGCdE4IF0zjOy2DiluZ3aCn/eboVME188jZ2QyV/nBGVYERTvQ6bgPoz 6nr5BztOJpyF4hSRbhlIZSi9Qt4paKiOzgdBVpsoAVnXJj2LXRec3K+AfLkXfWlk OJxQUCQkgQaiBfSsCLHWGVU0KP0OvhN3GnrMAGyV38o0gjFeIKsvFSmIqhQnDL5D 62hYXtptZ3YMXCqbsylAsftdj967kndWY1EKyD2nwJxbVbftrDHV3NuFuPxJGtKN -----END CERTIFICATE-----Generated at Mon Mar 2 09:16:56 2026 by rpki-client