$ rpki-client -vvf rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa File: 7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa (raw, json) Hash identifier: gqPuSCh7zLfW0ak4yBN8aPENqRNKnv7N5PJBfWD2YUk= Subject key identifier: 0F:E1:B4:DC:DD:D9:7E:DA:15:E6:6B:9B:A4:14:6E:4D:C0:B5:AD:F7 Certificate issuer: /CN=A91E81A5/serialNumber=3034DEF04D9A03EE22898924E31264C01DE00303 Certificate serial: 0232 Authority key identifier: 30:34:DE:F0:4D:9A:03:EE:22:89:89:24:E3:12:64:C0:1D:E0:03:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:05:37 +0000 ROA not before: Fri 11 Jul 2025 03:39:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133616 IP address blocks: 103.238.195.0/24 maxlen: 24 2001:df3:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.crl rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E81A5, serialNumber=3034DEF04D9A03EE22898924E31264C01DE00303 Validity Not Before: Jul 11 03:39:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a439a1-e8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:a8:84:e3:e1:4d:78:cb:17:a1:89:04:41: 5f:ac:cc:8a:87:70:8c:f4:18:46:c2:25:02:c8:bd: 6b:92:18:82:8b:bb:a9:5d:12:08:2e:e5:4a:84:3a: d0:49:2e:dc:45:f0:00:a9:97:49:95:bd:37:69:90: 61:a6:79:07:4f:5a:0a:69:e7:0a:19:a3:b5:3a:68: 47:ba:36:07:22:f3:34:9c:ea:0c:cd:9e:b4:8f:dc: 4f:8d:e0:29:07:d4:f1:1e:51:7e:d0:62:7e:8c:ed: df:83:7a:7d:f8:66:31:af:3a:88:70:bc:53:9e:6b: 17:2b:2e:8e:b0:d4:1d:99:cf:d3:78:59:b1:c4:45: 22:c0:e6:a8:ae:b3:e8:09:0d:51:41:a1:a5:d4:2b: 78:b9:df:2e:2b:5f:00:76:79:e1:83:ae:89:83:41: ff:38:39:02:de:fb:4a:9e:d8:2b:16:2c:3b:b9:3c: e2:c5:fa:e6:ed:eb:ad:f5:ec:c3:a6:4b:8d:c8:9f: a7:3f:a1:cb:4e:5b:1b:86:ec:e9:0e:36:6a:5c:2f: 11:c7:5c:25:22:d3:fc:b7:4b:f1:34:07:3e:68:d4: 1e:ef:08:88:77:2a:94:d4:e9:22:0e:7c:4a:5d:1c: cd:d3:39:e1:df:c8:86:85:37:3a:cb:b5:65:0b:cb: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E1:B4:DC:DD:D9:7E:DA:15:E6:6B:9B:A4:14:6E:4D:C0:B5:AD:F7 X509v3 Authority Key Identifier: keyid:30:34:DE:F0:4D:9A:03:EE:22:89:89:24:E3:12:64:C0:1D:E0:03:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/MDTe8E2aA-4iiYkk4xJkwB3gAwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MDTe8E2aA-4iiYkk4xJkwB3gAwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E81A5/C15843B4CA0711ED8F9E2A70C4F9AE02/7BD5A1FCCA0B11ED8B414F75C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.238.195.0/24 IPv6: 2001:df3:4300::/48 Signature Algorithm: sha256WithRSAEncryption 2a:89:75:fe:c3:69:dd:e1:7d:8c:76:56:15:b8:56:ca:de:07: 16:39:f5:e6:98:47:73:e7:4b:26:31:e0:99:d9:f7:fe:47:a7: 16:63:63:fe:5c:cc:9b:ad:80:a3:53:54:0e:3e:2e:af:8e:05: ed:80:2c:60:14:c4:f4:6a:97:4b:4f:a9:ac:23:d3:00:db:6f: 75:c4:11:0a:36:6f:51:3b:da:b3:09:0b:87:6d:d3:71:d4:f2: 56:0b:73:3f:fa:ce:03:3a:aa:ff:4d:23:cd:07:fe:b7:18:f0: fb:48:2b:04:39:45:85:6f:ab:84:10:64:d4:d2:d2:49:6d:99: d3:c1:92:c1:00:0c:14:06:e6:0f:af:c3:fd:96:d2:13:e9:83: 46:d2:0b:c4:95:51:3b:5b:d6:e5:d0:4a:8a:89:f8:a4:1f:ad: c1:f5:37:c7:ac:a7:b4:ac:65:0c:dc:8c:9e:62:d7:84:e0:0f: 4c:d2:2c:3a:54:43:ea:ae:c3:92:53:6d:03:4f:70:f3:6d:dd: 9c:a5:b0:d2:16:ab:fe:05:8e:56:20:21:fd:49:33:bb:9a:9b: 2a:d3:8a:ac:1f:03:63:f3:9a:df:76:09:86:81:db:e9:db:cd: 5a:1f:fe:f8:80:f4:be:5d:6e:97:f8:b5:52:c8:eb:8d:c4:94: cb:ea:9d:d5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxQTUxMTAvBgNVBAUTKDMwMzRERUYwNEQ5QTAzRUUyMjg5ODkyNEUzMTI2NEMw MURFMDAzMDMwHhcNMjUwNzExMDMzOTM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzlhMS1lOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTaohOPhTXjLF6GJBEFfrMyKh3CM9BhGwiUCyL1rkhiCi7upXRIILuVKhDrQ SS7cRfAAqZdJlb03aZBhpnkHT1oKaecKGaO1OmhHujYHIvM0nOoMzZ60j9xPjeAp B9TxHlF+0GJ+jO3fg3p9+GYxrzqIcLxTnmsXKy6OsNQdmc/TeFmxxEUiwOaorrPo CQ1RQaGl1Ct4ud8uK18Adnnhg66Jg0H/ODkC3vtKntgrFiw7uTzixfrm7eut9ezD pkuNyJ+nP6HLTlsbhuzpDjZqXC8Rx1wlItP8t0vxNAc+aNQe7wiIdyqU1OkiDnxK XRzN0znh38iGhTc6y7VlC8thfwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFA/htNzd 2X7aFeZrm6QUbk3Ata33MB8GA1UdIwQYMBaAFDA03vBNmgPuIomJJOMSZMAd4AMD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODFBNS9DMTU4NDNCNENB MDcxMUVEOEY5RTJBNzBDNEY5QUUwMi9NRFRlOEUyYUEtNGlpWWtrNHhKa3dCM2dB d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01EVGU4RTJhQS00aWlZa2s0eEprd0IzZ0F3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgxQTUvQzE1ODQzQjRDQTA3MTFFRDhGOUUyQTcwQzRGOUFFMDIvN0JENUExRkND QTBCMTFFRDhCNDE0Rjc1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ+7DMA8EAgACMAkDBwAgAQ3zQwAwDQYJKoZIhvcNAQELBQADggEB ACqJdf7Dad3hfYx2VhW4VsreBxY59eaYR3PnSyYx4JnZ9/5HpxZjY/5czJutgKNT VA4+Lq+OBe2ALGAUxPRql0tPqawj0wDbb3XEEQo2b1E72rMJC4dt03HU8lYLcz/6 zgM6qv9NI80H/rcY8PtIKwQ5RYVvq4QQZNTS0kltmdPBksEADBQG5g+vw/2W0hPp g0bSC8SVUTtb1uXQSoqJ+KQfrcH1N8esp7SsZQzcjJ5i14TgD0zSLDpUQ+quw5JT bQNPcPNt3ZylsNIWq/4FjlYgIf1JM7uamyrTiqwfA2Pzmt92CYaB2+nbzVof/viA 9L5dbpf4tVLI643ElMvqndU= -----END CERTIFICATE-----Generated at Mon Mar 2 07:49:38 2026 by rpki-client