$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa File: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (raw, json) Hash identifier: drREk/OAiw4nw+aB1RVjD5zbqv5hAnk1VMgyPcenfqM= Subject key identifier: AD:CB:23:D1:BA:8D:97:F7:B9:39:07:1E:52:A3:11:CF:9F:53:6F:36 Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 09AF Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:49:05 +0000 ROA not before: Thu 26 Feb 2026 20:16:47 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 18359 IP address blocks: 103.90.7.0/24 maxlen: 24 2001:df0:c900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B, serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Feb 26 20:16:47 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a451e1-fa27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:94:81:18:a4:54:c8:65:04:08:79:10:b0: f0:7a:f2:ed:b2:25:a4:a8:00:7c:4f:25:61:0d:20: 8b:fe:52:41:32:ae:e3:62:82:ed:89:ad:49:f2:72: 3b:26:66:a7:2a:a4:2d:8f:98:78:3f:7b:0f:50:1f: 60:a9:80:3a:9a:74:d8:f2:4c:87:ca:9b:e9:09:67: 84:69:76:5e:42:98:48:e6:d7:ab:cb:35:c2:74:08: c3:75:53:a7:44:10:d0:9c:01:43:90:c1:62:98:de: 94:27:1c:10:8b:5e:a0:e6:96:ec:a0:90:0d:4e:b1: 68:d6:3f:1f:5f:2d:ab:98:f7:e5:c0:f0:7d:fa:33: dc:44:9b:00:a2:dd:52:3c:ee:2e:26:13:70:ed:a7: 1c:fa:7d:33:62:96:74:53:4b:38:e2:68:ca:78:a7: 91:52:1a:57:ea:0a:55:1c:00:1d:cb:27:fd:40:0e: 1d:6c:90:76:42:08:24:64:c0:a3:00:38:08:74:d5: ea:17:d1:9f:ab:ca:f4:1e:b4:4d:c1:d8:89:66:f8: 10:d3:7a:2c:e5:e2:44:96:02:13:7d:9d:f8:15:aa: e6:79:83:cd:92:13:9d:ae:2a:cc:ea:14:63:af:5b: 35:23:c3:f8:62:14:b3:aa:8f:97:4f:cf:fa:d9:a0: b4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CB:23:D1:BA:8D:97:F7:B9:39:07:1E:52:A3:11:CF:9F:53:6F:36 X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.7.0/24 IPv6: 2001:df0:c900::/48 Signature Algorithm: sha256WithRSAEncryption 80:90:b0:54:b8:71:78:a2:33:1e:2b:b5:d0:5f:02:9e:d2:e3: 24:9a:47:6e:a4:b8:ac:43:69:d1:17:e6:ee:0e:8a:3d:4f:f7: e5:6f:4f:ba:41:ae:62:fb:36:1a:30:4b:ba:62:b0:b4:97:e8: 5a:e9:47:69:27:60:59:51:a7:39:c4:51:83:0a:81:19:38:ba: 18:fd:77:b7:88:53:ee:ee:e5:4f:59:f9:c6:5c:82:1c:55:f1: 9b:71:10:9a:09:40:1c:9c:7b:1f:b4:ba:2d:de:fb:3a:d6:c6: 4a:c1:e9:63:ff:3f:ce:2b:d2:d9:4c:8d:a7:06:9a:16:74:db: 3c:19:32:83:9f:fc:4e:c4:f5:61:83:43:17:89:61:f8:9c:51: 50:2d:c2:3a:ca:94:25:3b:0c:06:7b:60:90:af:e4:87:fb:a8: cc:d8:5d:62:fb:26:78:02:f3:c0:00:4b:71:0e:d3:02:ae:d0: 37:51:cf:8a:fd:1f:49:a9:86:00:b0:77:12:00:68:ec:05:af: 2d:b3:08:bd:6c:08:64:a5:09:ca:90:0a:92:3b:68:fc:50:37: f8:d8:6b:5d:46:20:36:73:ce:ed:6b:cd:bc:8e:84:f6:64:ad: 25:fd:da:41:a5:22:e5:24:31:07:cc:03:3a:a3:32:48:35:c9: 78:44:03:3d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjYwMjI2MjAxNjQ3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTFlMS1mYTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEWUgRikVMhlBAh5ELDwevLtsiWkqAB8TyVhDSCL/lJBMq7jYoLtia1J8nI7 JmanKqQtj5h4P3sPUB9gqYA6mnTY8kyHypvpCWeEaXZeQphI5teryzXCdAjDdVOn RBDQnAFDkMFimN6UJxwQi16g5pbsoJANTrFo1j8fXy2rmPflwPB9+jPcRJsAot1S PO4uJhNw7acc+n0zYpZ0U0s44mjKeKeRUhpX6gpVHAAdyyf9QA4dbJB2QggkZMCj ADgIdNXqF9Gfq8r0HrRNwdiJZvgQ03os5eJElgITfZ34FarmeYPNkhOdrirM6hRj r1s1I8P4YhSzqo+XT8/62aC0RQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFK3LI9G6 jZf3uTkHHlKjEc+fU282MB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFFOEIvODA3REZEQTBBM0NFMTFFQThCQUU2NTIwQzRGOUFFMDIvMzNGNzEzQThB M0NGMTFFQUEzMUQ4QzIwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ1oHMA8EAgACMAkDBwAgAQ3wyQAwDQYJKoZIhvcNAQELBQADggEB AICQsFS4cXiiMx4rtdBfAp7S4ySaR26kuKxDadEX5u4Oij1P9+VvT7pBrmL7Nhow S7pisLSX6FrpR2knYFlRpznEUYMKgRk4uhj9d7eIU+7u5U9Z+cZcghxV8ZtxEJoJ QBycex+0ui3e+zrWxkrB6WP/P84r0tlMjacGmhZ02zwZMoOf/E7E9WGDQxeJYfic UVAtwjrKlCU7DAZ7YJCv5If7qMzYXWL7JngC88AAS3EO0wKu0DdRz4r9H0mphgCw dxIAaOwFry2zCL1sCGSlCcqQCpI7aPxQN/jYa11GIDZzzu1rzbyOhPZkrSX92kGl IuUkMQfMAzqjMkg1yXhEAz0= -----END CERTIFICATE-----Generated at Mon Mar 2 12:41:02 2026 by rpki-client