$ rpki-client -vvf rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa File: 7F29585EC43011F09039384AC4F9AE02.roa (raw, json) Hash identifier: qIQBQCqvxgPDNUu8P+ClZVFaFfgG4VgrBuDir9SsXDE= Subject key identifier: 92:FE:2F:99:CD:89:D9:65:3F:DA:E9:94:B7:8A:07:C8:42:4A:82:2B Certificate issuer: /CN=A91F231C/serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Certificate serial: 40 Authority key identifier: 68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:08:00 +0000 ROA not before: Tue 25 Nov 2025 04:37:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135359 IP address blocks: 103.208.188.0/24 maxlen: 24 103.208.189.0/24 maxlen: 24 103.208.190.0/24 maxlen: 24 103.208.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F231C, serialNumber=68D1466433958416DD81A7D4ABF2B243EE7D8B56 Validity Not Before: Nov 25 04:37:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3d7c0-1022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c5:74:e5:df:6c:6e:02:14:ca:c4:f6:81:27: d4:25:00:ae:f0:d3:4d:c4:86:89:23:ed:7f:80:8b: 0b:b7:e4:a6:3a:b4:92:bb:1b:67:eb:57:db:ff:68: 51:7e:d1:f1:c5:fc:04:f4:8a:7e:15:30:f8:ce:86: d1:89:48:d8:1e:c0:31:2d:18:02:15:12:72:4f:6b: b0:4b:c3:38:0a:17:46:2f:c1:28:82:e2:ff:a0:53: 83:83:a2:09:fe:66:0b:04:23:02:75:d8:bb:80:01: e7:29:55:05:9a:54:05:87:1f:a6:9a:54:60:35:ca: 58:8b:29:81:af:f2:25:a0:00:e8:95:04:4c:5e:26: 5d:d5:19:eb:92:9b:c4:27:49:08:0e:6e:91:95:bf: a1:0e:5a:6d:3f:c7:b6:52:6d:c2:d6:41:89:90:13: 9a:89:cc:4d:c0:39:93:8c:a5:b9:55:97:79:7e:67: 6f:9f:2a:76:03:6e:ee:3f:f2:c6:0e:74:31:c1:49: 05:56:c8:40:a2:85:b1:05:2a:c9:0a:75:0d:94:33: 70:ae:b0:a8:1b:94:5e:6c:0b:66:10:df:77:27:41: da:22:27:90:3b:e3:37:54:d9:b3:79:34:54:b8:b2: 4a:40:10:e0:aa:47:b9:b9:68:b8:54:63:37:40:d7: 0d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FE:2F:99:CD:89:D9:65:3F:DA:E9:94:B7:8A:07:C8:42:4A:82:2B X509v3 Authority Key Identifier: keyid:68:D1:46:64:33:95:84:16:DD:81:A7:D4:AB:F2:B2:43:EE:7D:8B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/aNFGZDOVhBbdgafUq_KyQ-59i1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNFGZDOVhBbdgafUq_KyQ-59i1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F231C/28E83E6AC43011F096CE9C49C4F9AE02/7F29585EC43011F09039384AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.208.188.0/22 Signature Algorithm: sha256WithRSAEncryption c8:cb:f1:d5:51:f1:e4:4d:8b:c4:97:e9:26:48:7a:85:bf:8a: e7:51:96:0d:bd:6b:b5:0d:28:65:6a:2f:55:3e:15:ec:05:19: 44:84:9c:75:d5:c2:e6:65:f0:ba:2d:f8:2b:08:96:91:29:44: 38:97:d4:48:dd:bc:48:08:f4:36:c7:58:2f:e2:7d:94:12:80: 75:ec:7a:4f:61:21:2b:16:42:7d:34:b4:42:37:ce:bb:e1:56: 79:a1:7d:a9:22:98:3f:4e:2c:26:4f:68:77:0b:79:3b:e3:78: 00:aa:7f:d0:b6:74:ff:eb:22:9c:c5:18:23:a7:9a:59:26:6a: 7e:27:3e:4d:1f:97:90:11:d3:9d:ee:30:7e:b4:47:db:a4:ff: b3:6d:34:92:01:d1:f3:a5:04:39:de:82:41:c2:32:43:93:de: 69:71:5a:32:fc:2f:a8:85:9d:d2:7b:bd:b1:db:13:37:07:55: a8:1e:bf:85:08:ea:4a:aa:36:42:dc:cb:58:ef:cf:93:62:c3: 35:cb:2c:2a:af:f5:5c:83:52:eb:f6:3b:c1:ea:95:4e:bd:bd: b1:36:69:6d:1a:17:18:64:90:de:0c:5a:f6:a8:a6:98:73:c3: 25:70:54:00:09:10:0a:95:4a:ea:3e:89:c4:34:f6:2a:3d:64: b2:74:e0:3e -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MjMxQzExMC8GA1UEBRMoNjhEMTQ2NjQzMzk1ODQxNkREODFBN0Q0QUJGMkIyNDNF RTdEOEI1NjAeFw0yNTExMjUwNDM3MDhaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkN2MwLTEwMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbxXTl32xuAhTKxPaBJ9QlAK7w003Ehokj7X+Aiwu35KY6tJK7G2frV9v/aFF+ 0fHF/AT0in4VMPjOhtGJSNgewDEtGAIVEnJPa7BLwzgKF0YvwSiC4v+gU4ODogn+ ZgsEIwJ12LuAAecpVQWaVAWHH6aaVGA1yliLKYGv8iWgAOiVBExeJl3VGeuSm8Qn SQgObpGVv6EOWm0/x7ZSbcLWQYmQE5qJzE3AOZOMpblVl3l+Z2+fKnYDbu4/8sYO dDHBSQVWyECihbEFKskKdQ2UM3CusKgblF5sC2YQ33cnQdoiJ5A74zdU2bN5NFS4 skpAEOCqR7m5aLhUYzdA1w1LAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUkv4vmc2J 2WU/2umUt4oHyEJKgiswHwYDVR0jBBgwFoAUaNFGZDOVhBbdgafUq/KyQ+59i1Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyMzFDLzI4RTgzRTZBQzQz MDExRjA5NkNFOUM0OUM0RjlBRTAyL2FORkdaRE9WaEJiZGdhZlVxX0t5US01OWkx WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU5GR1pET1ZoQmJkZ2FmVXFfS3lRLTU5aTFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjMxQy8yOEU4M0U2QUM0MzAxMUYwOTZDRTlDNDlDNEY5QUUwMi83RjI5NTg1RUM0 MzAxMUYwOTAzOTM4NEFDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn0LwwDQYJKoZIhvcNAQELBQADggEBAMjL8dVR8eRNi8SX6SZIeoW/ iudRlg29a7UNKGVqL1U+FewFGUSEnHXVwuZl8Lot+CsIlpEpRDiX1EjdvEgI9DbH WC/ifZQSgHXsek9hISsWQn00tEI3zrvhVnmhfakimD9OLCZPaHcLeTvjeACqf9C2 dP/rIpzFGCOnmlkman4nPk0fl5AR053uMH60R9uk/7NtNJIB0fOlBDnegkHCMkOT 3mlxWjL8L6iFndJ7vbHbEzcHVagev4UI6kqqNkLcy1jvz5NiwzXLLCqv9VyDUuv2 O8HqlU69vbE2aW0aFxhkkN4MWvaopphzwyVwVAAJEAqVSuo+icQ09io9ZLJ04D4= -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:47 2026 by rpki-client