$ rpki-client -vvf rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa File: 8B7BD7CC700211EF9FEC365AC4F9AE02.roa (raw, json) Hash identifier: E1+S92xguMTIBmtHmrSoXrOV41uAwtTiK5fggn3/D/A= Subject key identifier: 5E:52:5B:E5:93:E8:4D:09:65:BF:23:13:4D:CA:9B:66:1C:4F:4C:F7 Certificate issuer: /CN=A91E42AA/serialNumber=73EB8AD2A3A5F38ABFE1AE28074F2831C2731BA9 Certificate serial: 011C Authority key identifier: 73:EB:8A:D2:A3:A5:F3:8A:BF:E1:AE:28:07:4F:28:31:C2:73:1B:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:43:06 +0000 ROA not before: Fri 01 Aug 2025 07:43:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56290 IP address blocks: 103.5.70.0/24 maxlen: 24 103.39.5.0/24 maxlen: 24 103.247.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.crl rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E42AA, serialNumber=73EB8AD2A3A5F38ABFE1AE28074F2831C2731BA9 Validity Not Before: Aug 1 07:43:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a593e9-5986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8b:ca:b4:7b:66:e9:1c:2a:32:21:a3:71:8e: 8c:10:3a:dc:50:72:2d:da:78:5c:12:7d:b7:b7:56: f5:11:c6:32:d7:80:05:9b:03:bd:af:bb:61:e3:97: f5:d5:d6:d0:d0:38:e8:fc:9a:96:2e:ac:c8:33:47: 15:28:7a:38:18:13:80:6b:ca:0c:89:11:f8:58:4f: e1:4f:e6:79:4d:f3:65:d4:13:65:f0:6e:56:97:a6: 11:a4:2c:5e:d9:0c:55:c5:5d:46:41:a5:72:51:74: 6b:e9:78:87:02:75:33:5f:d9:f4:af:94:19:24:90: 2d:90:45:cc:b4:d1:c3:48:52:a8:62:a1:f7:9e:9b: 7d:2e:c1:aa:5a:47:65:12:c0:a2:24:5d:0b:b3:ff: 76:e4:e7:e8:2f:e4:c0:20:a2:29:87:58:8d:59:a5: bd:ce:e4:b4:6b:18:41:95:6e:1b:a2:40:8f:09:5d: 42:90:59:05:e8:bc:76:17:90:57:b9:01:07:51:f1: d2:1c:ae:b9:81:a8:c4:24:6a:da:65:f6:94:6a:a2: 81:f5:a9:ab:3b:10:ea:ac:02:88:1a:67:fd:0f:8a: c9:75:cd:28:e2:09:ae:2c:a2:3d:82:f4:49:c1:f5: a6:2b:8a:c5:b0:38:0d:f1:02:6e:83:19:f5:ab:28: b5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:52:5B:E5:93:E8:4D:09:65:BF:23:13:4D:CA:9B:66:1C:4F:4C:F7 X509v3 Authority Key Identifier: keyid:73:EB:8A:D2:A3:A5:F3:8A:BF:E1:AE:28:07:4F:28:31:C2:73:1B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/c-uK0qOl84q_4a4oB08oMcJzG6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c-uK0qOl84q_4a4oB08oMcJzG6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E42AA/E407B330700111EFBBE8A158C4F9AE02/8B7BD7CC700211EF9FEC365AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.5.70.0/24 103.39.5.0/24 103.247.210.0/24 Signature Algorithm: sha256WithRSAEncryption 96:65:d3:d2:ff:5b:86:73:1e:9b:60:3c:a9:4c:6f:03:b1:f6: f1:df:c5:63:58:a8:2d:d9:8a:2a:c6:a8:ab:c1:ff:08:9c:c3: 62:6a:70:a6:07:20:53:25:6d:1c:19:67:1a:6f:11:9c:ca:ec: 4d:da:35:32:50:6c:76:4d:0f:89:96:4b:d2:79:72:9d:94:53: a8:f8:cf:13:98:64:31:0d:c3:8a:a6:c8:ed:ab:9f:47:e8:43: fb:b6:47:24:df:fa:da:99:dc:05:8a:e7:04:0d:e4:51:22:2b: 29:62:95:1e:af:3b:87:5c:c5:66:29:bb:e1:c1:1f:de:d4:a3: 2c:22:4a:a6:94:be:81:73:24:2e:12:a8:b0:28:a3:f5:7e:2c: 4d:73:0c:8d:1d:8d:dc:ff:ed:f1:0d:50:86:d2:bd:7b:e7:46: b7:59:96:8d:e4:cf:58:f5:6f:e9:db:3e:f8:94:0f:ac:96:ad: f4:db:ae:cc:d8:f0:d5:b1:61:66:5a:73:41:f2:70:10:35:45: b7:1d:af:c2:14:b4:53:8a:31:1b:3f:5c:c7:ba:7f:74:4b:dc: 69:d9:92:db:38:46:9e:0e:6c:68:66:70:5f:6f:b1:38:35:b4: a9:16:75:b2:c7:95:c4:5a:8d:10:4f:08:8c:2d:84:17:74:77: 37:e0:c6:1c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQyQUExMTAvBgNVBAUTKDczRUI4QUQyQTNBNUYzOEFCRkUxQUUyODA3NEYyODMx QzI3MzFCQTkwHhcNMjUwODAxMDc0MzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTNlOS01OTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIvKtHtm6RwqMiGjcY6MEDrcUHIt2nhcEn23t1b1EcYy14AFmwO9r7th45f1 1dbQ0Djo/JqWLqzIM0cVKHo4GBOAa8oMiRH4WE/hT+Z5TfNl1BNl8G5Wl6YRpCxe 2QxVxV1GQaVyUXRr6XiHAnUzX9n0r5QZJJAtkEXMtNHDSFKoYqH3npt9LsGqWkdl EsCiJF0Ls/925OfoL+TAIKIph1iNWaW9zuS0axhBlW4bokCPCV1CkFkF6Lx2F5BX uQEHUfHSHK65gajEJGraZfaUaqKB9amrOxDqrAKIGmf9D4rJdc0o4gmuLKI9gvRJ wfWmK4rFsDgN8QJugxn1qyi1QwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFF5SW+WT 6E0JZb8jE03Km2YcT0z3MB8GA1UdIwQYMBaAFHPritKjpfOKv+GuKAdPKDHCcxup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDJBQS9FNDA3QjMzMDcw MDExMUVGQkJFOEExNThDNEY5QUUwMi9jLXVLMHFPbDg0cV80YTRvQjA4b01jSnpH NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MtdUswcU9sODRxXzRhNG9CMDhvTWNKekc2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQyQUEvRTQwN0IzMzA3MDAxMTFFRkJCRThBMTU4QzRGOUFFMDIvOEI3QkQ3Q0M3 MDAyMTFFRjlGRUMzNjVBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZwVGAwQAZycFAwQAZ/fSMA0GCSqGSIb3DQEBCwUAA4IBAQCWZdPS /1uGcx6bYDypTG8Dsfbx38VjWKgt2Yoqxqirwf8InMNianCmByBTJW0cGWcabxGc yuxN2jUyUGx2TQ+JlkvSeXKdlFOo+M8TmGQxDcOKpsjtq59H6EP7tkck3/ramdwF iucEDeRRIispYpUerzuHXMVmKbvhwR/e1KMsIkqmlL6BcyQuEqiwKKP1fixNcwyN HY3c/+3xDVCG0r1750a3WZaN5M9Y9W/p2z74lA+slq30267M2PDVsWFmWnNB8nAQ NUW3Ha/CFLRTijEbP1zHun90S9xp2ZLbOEaeDmxoZnBfb7E4NbSpFnWyx5XEWo0Q TwiMLYQXdHc34MYc -----END CERTIFICATE-----Generated at Mon Mar 2 21:10:36 2026 by rpki-client