$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa File: C258B0D0E03C11EF991E147AC4F9AE02.roa (raw, json) Hash identifier: X4W03lfAeMlljE4GAKwUtjHV/L977l42ii4F4eQTOn8= Subject key identifier: 60:B3:63:36:E7:D9:9C:D2:4D:23:E7:88:E8:1E:8F:31:55:6F:78:A2 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0335 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:27:11 +0000 ROA not before: Thu 04 Dec 2025 23:39:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139016 IP address blocks: 103.159.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 4 23:39:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44cbf-f8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:47:d6:04:56:fd:9c:1f:d1:54:76:8b:07:43: 53:96:bb:e6:12:16:3a:21:09:ea:74:46:66:df:1b: ec:35:44:b2:ac:8e:04:02:33:9b:ff:f0:8b:7b:c3: 31:a1:83:41:c0:fd:21:c6:a6:66:85:0f:5c:5c:1f: bc:a5:5b:cf:1b:e4:e7:2f:a7:d2:e5:81:10:f4:c7: b4:fa:ac:e5:70:d5:03:80:69:c4:53:a2:e7:26:09: 38:0a:af:8c:d8:5b:55:9a:11:58:49:99:ba:08:7f: 84:04:de:7b:6e:1c:08:50:2f:61:e1:25:dc:20:0f: 5a:34:c2:38:cd:dd:90:11:12:9d:56:4b:72:7e:a6: 3d:96:ef:f3:a8:b2:12:82:93:4e:4d:14:ec:75:9c: d8:ac:bd:2f:76:e2:94:94:53:76:9a:6f:1b:21:ac: 1f:8b:2c:08:79:81:92:ed:e8:f5:40:e3:6f:92:ca: 58:da:6e:25:2a:7b:6b:83:e0:db:7c:b6:7a:f9:c2: 8e:74:0b:9e:69:b0:2f:a0:d0:d6:00:3a:01:44:83: 0d:89:8d:d4:46:44:83:d5:35:78:57:bc:f1:47:f6: 91:77:48:ea:a0:00:2f:84:ec:7f:46:67:ed:83:32: 2c:b3:8f:54:88:f4:86:21:4a:a2:28:8a:4c:1d:dd: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B3:63:36:E7:D9:9C:D2:4D:23:E7:88:E8:1E:8F:31:55:6F:78:A2 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C258B0D0E03C11EF991E147AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.37.0/24 Signature Algorithm: sha256WithRSAEncryption 83:4b:e0:49:13:c7:50:3c:b1:3b:db:4e:dd:24:20:f4:8b:af: 2a:d8:84:32:11:62:42:e4:f3:98:87:7d:a7:46:0e:d4:07:4e: 47:50:49:11:89:9e:dd:34:44:3b:9c:3f:99:9c:f1:a4:33:78: b5:2f:d9:c0:79:ae:ec:10:9b:1b:05:db:42:07:10:34:68:6b: fe:60:48:67:c6:1d:9d:ba:47:b4:dd:bc:63:d4:4a:3c:5e:70: da:b9:9a:17:ea:44:0c:d0:21:30:c9:b1:98:62:48:07:0d:21: 6f:70:e8:9b:49:ad:d0:53:9d:b5:fd:c7:51:b6:df:93:18:72: 41:f7:97:4b:bf:db:66:3a:75:b8:b7:6a:1a:81:77:9e:db:a7: 30:cb:00:25:ae:d9:09:1a:d8:af:40:9b:cf:4e:3c:b7:40:6e: 04:85:40:f4:17:68:38:07:8d:4f:1d:30:b6:07:b7:27:cf:56: 54:d1:fe:3c:da:ee:3e:ed:3c:20:c4:a2:64:9b:fd:02:0d:75: ed:7b:23:2d:96:17:28:a1:60:9e:65:61:a2:77:6f:f1:e3:24: f0:20:43:13:36:6b:8c:f9:af:bc:cf:69:1b:39:26:0d:fe:6a: 53:12:d4:c5:a1:3f:04:23:4c:f3:f6:33:d2:6c:a6:69:fc:52: 6e:35:e8:ef -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjA0MjMzOTA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGNiZi1mOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEfWBFb9nB/RVHaLB0NTlrvmEhY6IQnqdEZm3xvsNUSyrI4EAjOb//CLe8Mx oYNBwP0hxqZmhQ9cXB+8pVvPG+TnL6fS5YEQ9Me0+qzlcNUDgGnEU6LnJgk4Cq+M 2FtVmhFYSZm6CH+EBN57bhwIUC9h4SXcIA9aNMI4zd2QERKdVktyfqY9lu/zqLIS gpNOTRTsdZzYrL0vduKUlFN2mm8bIawfiywIeYGS7ej1QONvkspY2m4lKntrg+Db fLZ6+cKOdAueabAvoNDWADoBRIMNiY3URkSD1TV4V7zxR/aRd0jqoAAvhOx/Rmft gzIss49UiPSGIUqiKIpMHd1e+wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGCzYzbn 2ZzSTSPniOgejzFVb3iiMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI5Q0IvMUY5MDJCMEUwNUFGMTFFREE3MTc2NDJCQzRGOUFFMDIvQzI1OEIwRDBF MDNDMTFFRjk5MUUxNDdBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ58lMA0GCSqGSIb3DQEBCwUAA4IBAQCDS+BJE8dQPLE7207dJCD0 i68q2IQyEWJC5POYh32nRg7UB05HUEkRiZ7dNEQ7nD+ZnPGkM3i1L9nAea7sEJsb BdtCBxA0aGv+YEhnxh2duke03bxj1Eo8XnDauZoX6kQM0CEwybGYYkgHDSFvcOib Sa3QU521/cdRtt+TGHJB95dLv9tmOnW4t2oagXee26cwywAlrtkJGtivQJvPTjy3 QG4EhUD0F2g4B41PHTC2B7cnz1ZU0f482u4+7TwgxKJkm/0CDXXteyMtlhcooWCe ZWGid2/x4yTwIEMTNmuM+a+8z2kbOSYN/mpTEtTFoT8EI0zz9jPSbKZp/FJuNejv -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:52 2026 by rpki-client