$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa File: F87DB8B440C811EEB681DC40C4F9AE02.roa (raw, json) Hash identifier: ofcFpR0dG4lGMFPSarAEqgGjniCtEUFFNDbSn2FRdQo= Subject key identifier: C1:52:B1:70:79:60:09:E7:F7:1B:B1:FF:89:53:76:58:41:37:BE:F4 Certificate issuer: /CN=A91E8BAF/serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Certificate serial: 3538 Authority key identifier: 24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:25:29 +0000 ROA not before: Sat 02 Aug 2025 15:51:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 396904 IP address blocks: 103.14.96.0/24 maxlen: 24 103.14.97.0/24 maxlen: 24 103.14.98.0/24 maxlen: 24 103.14.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BAF, serialNumber=248DB1FEE5510C8A6AF85EAC810EC4CCAE8BF90D Validity Not Before: Aug 2 15:51:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42229-18bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:78:6f:17:4d:c2:cf:4d:8c:f9:df:06:70: 38:6e:8f:f1:07:6c:0c:80:06:70:ac:31:96:f5:1a: cc:a4:e1:d3:a7:07:ba:66:12:5b:18:22:28:cc:4f: 26:7f:87:48:e8:d2:7b:4d:2b:2f:dd:59:2b:db:5b: 7b:85:83:30:92:69:51:da:a7:9b:80:43:70:be:d9: 2c:59:f8:be:0d:f4:d1:a7:64:e7:c8:21:a3:d3:12: a0:f4:dc:ae:27:c1:49:99:c5:1d:55:3d:62:b0:2d: c7:5f:d9:ad:be:54:5e:8a:53:ca:fe:9b:f4:49:02: 51:8c:58:9f:aa:93:70:3e:41:62:55:cb:94:66:12: c0:1f:b9:a8:70:e0:71:2c:e0:db:ad:05:b6:7a:9e: a8:7f:5b:eb:99:38:e9:ea:ae:8a:0a:c2:ea:7c:1a: a0:5a:6e:65:39:bc:d3:58:00:d2:0a:a2:76:12:ed: 5c:d0:11:3d:7a:34:00:e3:c2:05:ad:83:3c:77:07: fb:3f:1e:0f:f1:4b:92:1a:f3:57:76:ca:22:48:3a: 64:d7:3a:3e:2d:89:9f:ff:fe:b6:f0:9e:5b:19:58: e0:d2:aa:84:83:14:e7:d6:64:17:b9:15:6d:60:6f: 93:79:22:44:bc:41:54:27:e0:03:b9:a9:07:4d:ba: 75:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:52:B1:70:79:60:09:E7:F7:1B:B1:FF:89:53:76:58:41:37:BE:F4 X509v3 Authority Key Identifier: keyid:24:8D:B1:FE:E5:51:0C:8A:6A:F8:5E:AC:81:0E:C4:CC:AE:8B:F9:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI2x_uVRDIpq-F6sgQ7EzK6L-Q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BAF/32D8E22E1DAB11E2A97D23A908B02CD2/F87DB8B440C811EEB681DC40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.96.0/22 Signature Algorithm: sha256WithRSAEncryption b5:c9:97:a7:ff:29:55:b2:67:5b:0b:41:15:e5:94:cf:fe:c2: 76:3b:40:1f:af:f2:b8:d7:91:e8:a3:f1:84:5b:e3:ce:e0:fa: 77:3f:0f:c5:b0:b2:7e:63:84:95:2d:ee:63:37:82:1c:bc:ee: 7b:86:fb:7a:50:1f:28:2f:89:7a:d0:65:d6:4e:c5:7a:7b:e0: ef:50:50:5b:54:f7:77:8d:a8:3d:e5:a6:c1:7d:16:cc:61:24: cb:76:3c:51:24:a5:8d:2b:05:13:13:a9:82:f7:fa:a3:2d:ee: eb:c2:24:5d:a6:78:6c:b2:96:c1:86:d4:27:21:e6:a3:2c:fa: d5:de:f8:fa:2d:8b:55:dc:d2:a3:0e:27:d2:9a:5a:c3:a6:86: 63:f0:18:5c:ea:b5:68:73:ad:18:e0:aa:97:88:31:5d:bf:d9: fe:f7:c8:4a:96:b4:8c:df:46:04:53:53:61:4f:21:c6:24:b2: aa:cb:f9:25:4f:e1:72:be:70:d1:c4:30:76:d9:8c:37:ab:02: 9e:6f:7d:51:82:d0:12:8e:31:e2:b5:88:63:9e:75:78:27:d5: 29:19:10:73:a3:c8:5f:97:c7:7f:15:3b:12:d2:80:91:e1:14: 73:13:60:61:1d:df:93:1a:13:2a:f7:75:02:a4:64:6b:a2:23: 66:c8:5c:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCQUYxMTAvBgNVBAUTKDI0OERCMUZFRTU1MTBDOEE2QUY4NUVBQzgxMEVDNEND QUU4QkY5MEQwHhcNMjUwODAyMTU1MTA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjIyOS0xOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSN4bxdNws9NjPnfBnA4bo/xB2wMgAZwrDGW9RrMpOHTpwe6ZhJbGCIozE8m f4dI6NJ7TSsv3Vkr21t7hYMwkmlR2qebgENwvtksWfi+DfTRp2TnyCGj0xKg9Nyu J8FJmcUdVT1isC3HX9mtvlReilPK/pv0SQJRjFifqpNwPkFiVcuUZhLAH7mocOBx LODbrQW2ep6of1vrmTjp6q6KCsLqfBqgWm5lObzTWADSCqJ2Eu1c0BE9ejQA48IF rYM8dwf7Px4P8UuSGvNXdsoiSDpk1zo+LYmf//628J5bGVjg0qqEgxTn1mQXuRVt YG+TeSJEvEFUJ+ADuakHTbp1pQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMFSsXB5 YAnn9xux/4lTdlhBN770MB8GA1UdIwQYMBaAFCSNsf7lUQyKavherIEOxMyui/kN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJBRi8zMkQ4RTIyRTFE QUIxMUUyQTk3RDIzQTkwOEIwMkNEMi9KSTJ4X3VWUkRJcHEtRjZzZ1E3RXpLNkwt UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJMnhfdVZSRElwcS1GNnNnUTdFeks2TC1RMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThCQUYvMzJEOEUyMkUxREFCMTFFMkE5N0QyM0E5MDhCMDJDRDIvRjg3REI4QjQ0 MEM4MTFFRUI2ODFEQzQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZw5gMA0GCSqGSIb3DQEBCwUAA4IBAQC1yZen/ylVsmdbC0EV5ZTP /sJ2O0Afr/K415Hoo/GEW+PO4Pp3Pw/FsLJ+Y4SVLe5jN4IcvO57hvt6UB8oL4l6 0GXWTsV6e+DvUFBbVPd3jag95abBfRbMYSTLdjxRJKWNKwUTE6mC9/qjLe7rwiRd pnhsspbBhtQnIeajLPrV3vj6LYtV3NKjDifSmlrDpoZj8Bhc6rVoc60Y4KqXiDFd v9n+98hKlrSM30YEU1NhTyHGJLKqy/klT+FyvnDRxDB22Yw3qwKeb31RgtASjjHi tYhjnnV4J9UpGRBzo8hfl8d/FTsS0oCR4RRzE2BhHd+TGhMq93UCpGRroiNmyFyV -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:52 2026 by rpki-client