$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa File: 6DEA717805F811F0833EAC2FC4F9AE02.roa (raw, json) Hash identifier: ocoP9KmjPGAESEVoMrJSXFN79cmebG76o7bXuNpN5+A= Subject key identifier: 85:B0:6D:A3:84:85:2D:A7:D9:FA:9E:4D:89:F7:71:1E:F2:DF:3B:6F Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0BC6 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:58:24 +0000 ROA not before: Mon 02 Jun 2025 19:43:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9311 IP address blocks: 103.231.36.0/24 maxlen: 24 103.231.37.0/24 maxlen: 24 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Jun 2 19:43:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a44600-9d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ae:fc:8b:39:08:e6:c1:25:51:4f:20:5d:7b: 02:35:f6:29:10:2c:38:05:e3:21:9f:f8:aa:c8:49: 36:70:b9:16:7c:d0:20:f5:77:60:b9:ab:bf:5f:71: ae:80:f0:c4:d3:fc:98:0d:c2:cd:f9:eb:c7:16:bd: 75:5c:81:33:c6:46:c7:f8:8f:39:bf:40:36:e7:26: 2d:32:93:ba:d8:7b:79:92:12:4b:0e:4e:ec:74:b5: e2:f7:d6:b0:8d:cc:91:82:11:4a:f8:c9:2b:95:a2: bc:c4:c3:0e:17:00:a8:eb:55:cd:b6:8b:10:41:a3: 55:ff:94:27:4e:07:40:ad:d4:e5:8d:8c:6b:ff:84: 83:f5:35:96:97:8a:f0:b7:de:9b:76:45:54:a1:9b: c5:62:44:21:3e:c8:05:49:79:28:30:56:94:0f:fc: ff:01:4b:c3:c8:23:cc:93:cb:f3:eb:3d:21:de:f1: 36:38:5d:56:18:2a:98:61:ee:ca:44:89:1d:42:93: 23:fe:45:0e:f0:8a:71:fc:55:fc:12:41:c7:18:5f: cc:4f:1f:28:82:43:89:83:e6:8b:5a:12:18:05:49: 76:91:63:a8:e5:0f:4a:64:c5:91:17:a5:47:f1:12: 84:fd:93:02:b3:1c:18:3f:8b:d5:43:83:9c:32:33: b6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B0:6D:A3:84:85:2D:A7:D9:FA:9E:4D:89:F7:71:1E:F2:DF:3B:6F X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.36.0/22 Signature Algorithm: sha256WithRSAEncryption 92:90:6a:fd:55:d5:df:6e:aa:87:b6:61:4c:cf:b6:a2:e8:d0: ce:3a:79:a5:27:6b:2c:24:fb:54:11:c2:8d:7b:c9:f7:86:66: 77:1a:f0:38:9d:30:3f:43:fb:b9:2e:bd:89:52:14:72:be:f1: 40:64:da:89:69:3c:96:13:4c:3e:c7:57:ee:4d:5d:06:6f:a8: d2:dd:56:d4:e9:7b:d1:fe:e5:f1:62:60:08:5f:fb:ca:6e:fd: e9:0d:6d:2b:9d:a7:ad:fc:38:53:ee:a4:d8:6a:02:d3:61:58: a5:b2:7a:6f:a3:0b:f6:b2:1d:e9:1c:52:57:82:4d:56:8c:d0: b8:67:2d:25:ff:93:da:54:c2:ca:98:3b:9a:15:53:46:49:c8: 43:79:37:0c:00:cf:84:a7:11:de:b5:e7:c8:27:07:c8:a3:33: 8b:22:e6:63:ad:7d:3d:b8:64:c6:4a:bc:9c:51:73:df:c5:aa: 01:a3:7c:03:6c:67:dc:51:25:ce:56:d6:39:d9:32:fa:55:2f: ac:14:8d:12:63:e2:7c:b1:88:b3:cc:c9:ad:95:75:23:84:ca: a0:2a:74:03:03:13:cc:51:54:de:12:9a:0e:73:d3:b7:98:69: 8e:5a:c2:8e:6e:c5:b3:aa:44:2a:c6:8d:26:7e:77:14:8c:04: fb:b6:49:2c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNjAyMTk0MzA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDYwMC05ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsa78izkI5sElUU8gXXsCNfYpECw4BeMhn/iqyEk2cLkWfNAg9Xdguau/X3Gu gPDE0/yYDcLN+evHFr11XIEzxkbH+I85v0A25yYtMpO62Ht5khJLDk7sdLXi99aw jcyRghFK+MkrlaK8xMMOFwCo61XNtosQQaNV/5QnTgdArdTljYxr/4SD9TWWl4rw t96bdkVUoZvFYkQhPsgFSXkoMFaUD/z/AUvDyCPMk8vz6z0h3vE2OF1WGCqYYe7K RIkdQpMj/kUO8Ipx/FX8EkHHGF/MTx8ogkOJg+aLWhIYBUl2kWOo5Q9KZMWRF6VH 8RKE/ZMCsxwYP4vVQ4OcMjO2bQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIWwbaOE hS2n2fqeTYn3cR7y3ztvMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvNkRFQTcxNzgw NUY4MTFGMDgzM0VBQzJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+ckMA0GCSqGSIb3DQEBCwUAA4IBAQCSkGr9VdXfbqqHtmFMz7ai 6NDOOnmlJ2ssJPtUEcKNe8n3hmZ3GvA4nTA/Q/u5Lr2JUhRyvvFAZNqJaTyWE0w+ x1fuTV0Gb6jS3VbU6XvR/uXxYmAIX/vKbv3pDW0rnaet/DhT7qTYagLTYVilsnpv owv2sh3pHFJXgk1WjNC4Zy0l/5PaVMLKmDuaFVNGSchDeTcMAM+EpxHetefIJwfI ozOLIuZjrX09uGTGSrycUXPfxaoBo3wDbGfcUSXOVtY52TL6VS+sFI0SY+J8sYiz zMmtlXUjhMqgKnQDAxPMUVTeEpoOc9O3mGmOWsKObsWzqkQqxo0mfncUjAT7tkks -----END CERTIFICATE-----Generated at Mon Mar 2 12:25:33 2026 by rpki-client