$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/581F68DAD48A11EEB7A00557C4F9AE02.roa File: 581F68DAD48A11EEB7A00557C4F9AE02.roa (raw, json) Hash identifier: NDR9ZBlCPG6TNFjpWR6oUi6H3yAwo0tj9PuG9qFDBEg= Subject key identifier: 35:2C:11:0E:0C:99:40:89:3A:0B:63:02:1C:42:BF:1B:00:DC:A4:45 Certificate issuer: /CN=A91E9D5D/serialNumber=6EE59A7DAC07A225B91B3466AD1A0746493D8E24 Certificate serial: 0656 Authority key identifier: 6E:E5:9A:7D:AC:07:A2:25:B9:1B:34:66:AD:1A:07:46:49:3D:8E:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/buWafawHoiW5GzRmrRoHRkk9jiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/581F68DAD48A11EEB7A00557C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:50:40 +0000 ROA not before: Wed 06 Aug 2025 23:35:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132869 IP address blocks: 103.97.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/buWafawHoiW5GzRmrRoHRkk9jiQ.crl rsync://rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/buWafawHoiW5GzRmrRoHRkk9jiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/buWafawHoiW5GzRmrRoHRkk9jiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D5D, serialNumber=6EE59A7DAC07A225B91B3466AD1A0746493D8E24 Validity Not Before: Aug 6 23:35:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40bf0-d3b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:88:b6:84:97:51:ae:5c:ad:49:1c:e4:1d: 82:55:6a:e9:c5:38:3f:28:88:60:fe:71:d8:61:11: 7c:24:e4:2c:7c:d1:7a:ee:54:11:e3:f3:a4:a9:52: a5:ff:15:24:71:5b:b8:9b:69:21:f1:87:65:93:d8: 3b:a8:a7:c7:00:ba:ef:7b:db:e9:d4:e6:fa:af:3d: 77:10:2e:e9:8f:7e:ef:e1:08:1d:49:f6:00:b6:4c: 55:4f:1e:42:2d:38:bf:44:db:18:11:2c:4e:ff:2d: ab:ad:9a:0b:2a:7f:04:37:f1:e5:c2:71:36:48:76: b9:58:c2:9e:10:de:d2:40:70:02:49:41:5f:51:9b: 15:ac:4c:89:0c:9f:82:5c:7d:eb:77:5b:99:63:b8: 5a:15:c0:99:b5:56:d8:98:61:89:22:9a:17:9f:aa: e0:34:2c:fd:5d:d1:1e:55:fc:86:28:4a:41:46:cd: 39:d4:5a:c6:fb:81:4e:dd:11:bf:54:5f:dd:ad:21: 96:65:1c:a9:06:1f:56:eb:9b:98:b8:86:b9:6b:50: c0:0a:c3:57:6f:4a:1a:a6:b1:ca:9d:eb:33:e9:4c: 74:94:95:b6:35:e1:8d:7f:dc:1e:93:62:17:bf:bb: f0:be:24:c9:3f:bc:2c:b5:75:1f:27:eb:27:55:d0: 53:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2C:11:0E:0C:99:40:89:3A:0B:63:02:1C:42:BF:1B:00:DC:A4:45 X509v3 Authority Key Identifier: keyid:6E:E5:9A:7D:AC:07:A2:25:B9:1B:34:66:AD:1A:07:46:49:3D:8E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/buWafawHoiW5GzRmrRoHRkk9jiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/buWafawHoiW5GzRmrRoHRkk9jiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D5D/4001A16CC45E11EBB29B4C4CC4F9AE02/581F68DAD48A11EEB7A00557C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.204.0/23 Signature Algorithm: sha256WithRSAEncryption 70:6f:d7:ea:76:c2:28:d0:52:8c:ab:7c:3e:bd:72:de:89:71: 0a:b9:31:7f:b6:a8:ca:7b:81:d7:f8:9a:61:15:21:6b:2b:63: 4d:98:a3:70:eb:b5:42:6d:7f:04:64:da:9a:6c:a6:05:4f:aa: 0b:09:39:f6:67:71:95:67:7a:5d:e4:b6:8c:d9:70:66:ef:7b: e4:79:ee:1c:3b:52:3d:8d:62:6e:a2:3c:17:af:76:4c:c9:d1: 96:3c:a0:10:40:2a:ab:75:ab:19:b1:dd:bc:8e:b3:0a:59:d8: ea:61:a5:7c:91:0b:93:16:b7:0b:47:22:c0:5f:db:e1:5d:fa: cc:3b:67:91:fe:86:99:70:1d:18:3c:f4:52:ba:a8:59:7c:1b: 2b:7d:84:81:5e:74:13:35:03:34:c5:c7:79:da:2d:93:6c:cc: 34:d8:a9:ed:d0:17:f9:f1:2d:37:a9:be:d9:fa:6b:4b:a0:f7: 06:0a:d6:4e:c8:0d:7c:35:9f:10:06:21:85:44:d5:6e:af:a4: 21:3c:dc:f5:6d:dd:1d:21:94:6a:82:da:c8:ce:2a:a6:38:9f: 23:fe:e2:04:4c:78:7f:df:87:34:3e:cd:43:c0:14:e6:cf:2b: a9:2e:23:1e:e6:ee:68:cf:48:b5:16:00:71:8d:2f:ae:56:f8: 91:8f:15:45 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlENUQxMTAvBgNVBAUTKDZFRTU5QTdEQUMwN0EyMjVCOTFCMzQ2NkFEMUEwNzQ2 NDkzRDhFMjQwHhcNMjUwODA2MjMzNTI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGJmMC1kM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte+ItoSXUa5crUkc5B2CVWrpxTg/KIhg/nHYYRF8JOQsfNF67lQR4/OkqVKl /xUkcVu4m2kh8Ydlk9g7qKfHALrve9vp1Ob6rz13EC7pj37v4QgdSfYAtkxVTx5C LTi/RNsYESxO/y2rrZoLKn8EN/HlwnE2SHa5WMKeEN7SQHACSUFfUZsVrEyJDJ+C XH3rd1uZY7haFcCZtVbYmGGJIpoXn6rgNCz9XdEeVfyGKEpBRs051FrG+4FO3RG/ VF/drSGWZRypBh9W65uYuIa5a1DACsNXb0oaprHKnesz6Ux0lJW2NeGNf9wek2IX v7vwviTJP7wstXUfJ+snVdBTkQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDUsEQ4M mUCJOgtjAhxCvxsA3KRFMB8GA1UdIwQYMBaAFG7lmn2sB6IluRs0Zq0aB0ZJPY4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQ1RC80MDAxQTE2Q0M0 NUUxMUVCQjI5QjRDNENDNEY5QUUwMi9idVdhZmF3SG9pVzVHelJtclJvSFJrazlq aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1V2FmYXdIb2lXNUd6Um1yUm9IUmtrOWppUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlENUQvNDAwMUExNkNDNDVFMTFFQkIyOUI0QzRDQzRGOUFFMDIvNTgxRjY4REFE NDhBMTFFRUI3QTAwNTU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2HMMA0GCSqGSIb3DQEBCwUAA4IBAQBwb9fqdsIo0FKMq3w+vXLe iXEKuTF/tqjKe4HX+JphFSFrK2NNmKNw67VCbX8EZNqabKYFT6oLCTn2Z3GVZ3pd 5LaM2XBm73vkee4cO1I9jWJuojwXr3ZMydGWPKAQQCqrdasZsd28jrMKWdjqYaV8 kQuTFrcLRyLAX9vhXfrMO2eR/oaZcB0YPPRSuqhZfBsrfYSBXnQTNQM0xcd52i2T bMw02Knt0Bf58S03qb7Z+mtLoPcGCtZOyA18NZ8QBiGFRNVur6QhPNz1bd0dIZRq gtrIziqmOJ8j/uIETHh/34c0Ps1DwBTmzyupLiMe5u5oz0i1FgBxjS+uVviRjxVF -----END CERTIFICATE-----Generated at Mon Mar 2 19:11:14 2026 by rpki-client