$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa File: 5D432F98177711EEAB396D1CC4F9AE02.roa (raw, json) Hash identifier: LOVQf/LdRjlXMFrzIgrgv8KlqIFzre3Qe7jhRSJb4JQ= Subject key identifier: 85:0E:F6:42:BC:79:34:D3:5D:DF:29:8A:1D:22:9A:0D:9F:4E:6F:04 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 01FD Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:59:55 +0000 ROA not before: Thu 03 Jul 2025 04:08:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641, serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Jul 3 04:08:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a41c2b-5fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:10:93:20:9e:fa:43:cc:b8:09:eb:bb:b1:3f: 4d:ac:36:b2:2b:69:82:5c:22:04:92:6e:55:03:df: bd:d9:8c:bf:72:86:d3:23:07:25:f3:34:01:ce:65: c1:b1:89:e3:e8:b4:8c:ea:a4:88:c5:5d:ec:d1:d5: a7:27:fd:d9:5b:2c:49:64:37:3d:64:ad:05:10:ca: 49:f4:dd:48:36:e3:06:17:85:5e:14:68:58:d9:93: 07:aa:79:07:66:ba:c0:58:73:ad:e8:a6:f3:da:87: 16:41:0b:e0:02:79:55:fa:6b:64:be:15:37:f4:95: 8e:05:7f:66:19:0e:bb:93:1b:94:dc:3c:c4:8e:46: 05:96:18:be:54:a9:42:e3:19:57:c0:94:76:15:80: 17:0b:ad:8a:11:0b:57:e9:79:65:05:47:25:3f:d5: b1:e3:e0:0b:06:51:4f:a6:86:68:8f:a3:13:de:89: 66:f2:3d:a0:57:e7:97:20:29:27:c8:23:4e:bc:3d: 52:d1:9d:14:3c:b2:6f:9e:e9:c5:ca:30:ae:d3:2b: 27:76:67:29:a6:53:23:3b:0c:22:ce:e5:b5:03:e6: ec:2f:d4:1a:29:b5:2d:50:47:4c:52:72:1f:55:d5: 68:e4:21:af:37:57:ad:28:5d:16:ee:73:82:eb:94: 2f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0E:F6:42:BC:79:34:D3:5D:DF:29:8A:1D:22:9A:0D:9F:4E:6F:04 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.233.0/24 Signature Algorithm: sha256WithRSAEncryption 13:58:cc:6b:a4:2e:7f:25:4b:a7:17:76:77:2b:88:5d:f2:5b: 17:7f:32:02:0f:5d:05:ef:2f:b2:c6:97:ca:58:c9:94:44:8d: d2:56:d9:b9:00:fe:53:bd:95:25:cf:0f:eb:3d:c7:9a:1d:b5: 8f:9d:61:87:48:e9:8a:11:90:d0:18:dc:cd:b6:fb:8f:be:c1: bc:bd:9f:26:3f:40:e3:09:9d:43:b8:8b:ec:c7:71:5c:89:08: 4c:99:15:cc:67:a9:31:9f:87:24:1a:7a:b3:d8:7a:bf:b8:42: bb:6d:0b:23:30:39:ae:2e:de:53:77:c7:f8:1e:80:a7:3f:83: 5c:7b:7a:09:28:9e:b2:4e:c5:e4:ad:df:60:62:19:46:05:ac: 50:73:af:93:85:7e:3d:ea:b5:82:28:dd:93:67:55:50:8d:12: 9c:6d:52:1c:7c:2d:d5:97:c4:72:c4:97:a6:44:0f:32:57:2f: f4:02:ee:81:f5:7f:df:a1:5a:cd:28:ee:e7:25:62:d6:e6:c0: d0:19:5e:41:33:7e:00:52:d5:a8:ab:dd:5c:75:a9:d5:4a:2c: 82:50:71:87:20:31:09:33:e4:ef:dd:a9:d9:8d:a0:30:be:a0: c4:ec:91:0a:de:bf:fc:a6:d5:42:32:b4:3a:1b:d0:8b:83:8e: 33:12:07:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjUwNzAzMDQwODA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWMyYi01ZmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBCTIJ76Q8y4Ceu7sT9NrDayK2mCXCIEkm5VA9+92Yy/cobTIwcl8zQBzmXB sYnj6LSM6qSIxV3s0dWnJ/3ZWyxJZDc9ZK0FEMpJ9N1INuMGF4VeFGhY2ZMHqnkH ZrrAWHOt6Kbz2ocWQQvgAnlV+mtkvhU39JWOBX9mGQ67kxuU3DzEjkYFlhi+VKlC 4xlXwJR2FYAXC62KEQtX6XllBUclP9Wx4+ALBlFPpoZoj6MT3olm8j2gV+eXICkn yCNOvD1S0Z0UPLJvnunFyjCu0ysndmcpplMjOwwizuW1A+bsL9QaKbUtUEdMUnIf VdVo5CGvN1etKF0W7nOC65QvNQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIUO9kK8 eTTTXd8pih0img2fTm8EMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2NDEvN0QwMjg3RUExNzcwMTFFRTk0NUNEODU5QzRGOUFFMDIvNUQ0MzJGOTgx Nzc3MTFFRUFCMzk2RDFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+XpMA0GCSqGSIb3DQEBCwUAA4IBAQATWMxrpC5/JUunF3Z3K4hd 8lsXfzICD10F7y+yxpfKWMmURI3SVtm5AP5TvZUlzw/rPceaHbWPnWGHSOmKEZDQ GNzNtvuPvsG8vZ8mP0DjCZ1DuIvsx3FciQhMmRXMZ6kxn4ckGnqz2Hq/uEK7bQsj MDmuLt5Td8f4HoCnP4Nce3oJKJ6yTsXkrd9gYhlGBaxQc6+ThX496rWCKN2TZ1VQ jRKcbVIcfC3Vl8RyxJemRA8yVy/0Au6B9X/foVrNKO7nJWLW5sDQGV5BM34AUtWo q91cdanVSiyCUHGHIDEJM+Tv3anZjaAwvqDE7JEK3r/8ptVCMrQ6G9CLg44zEgfl -----END CERTIFICATE-----Generated at Mon Mar 2 10:16:49 2026 by rpki-client