$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa File: E352E0A2896F11E7BBF2923CC4F9AE02.roa (raw, json) Hash identifier: f53n49BRZ+a4OFczbu9IHjhQmjnGPixaP4vK3+8G2j0= Subject key identifier: F5:85:4E:97:C2:99:49:67:6D:B1:2E:CF:73:17:37:03:95:9B:5C:86 Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 200E Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:28:23 +0000 ROA not before: Fri 08 Aug 2025 16:23:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.68.164.0/22 maxlen: 22 103.68.164.0/24 maxlen: 24 103.68.165.0/24 maxlen: 24 103.68.166.0/24 maxlen: 24 103.68.167.0/24 maxlen: 24 2400:8240::/32 maxlen: 32 2400:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8206 (0x200e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Aug 8 16:23:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a422d7-87f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fc:19:2d:11:cb:a3:10:2a:65:c7:87:6a:b9: c3:b6:40:73:a9:fa:14:90:bc:62:b5:42:ef:0a:59: 70:b3:01:80:27:fe:dc:c2:41:e6:22:35:07:d6:a9: c4:ee:0b:9c:8d:ad:a8:c9:a5:86:02:f2:50:02:5d: b2:46:ad:fc:e9:a2:1a:b6:92:6b:37:ce:42:ac:4e: f5:df:ac:63:22:aa:00:fc:5f:8c:80:8b:59:a5:77: aa:60:4b:14:57:61:4b:5e:d4:57:00:20:42:ce:75: fa:40:0c:cc:c7:77:f7:b0:e9:a1:b3:ea:7d:f4:c7: 26:b4:1d:83:92:fd:8b:f5:f6:28:02:10:7a:23:86: 46:84:ea:e5:24:d9:f6:95:a7:7e:ed:df:e6:5a:ce: 8c:aa:e6:82:6f:51:eb:6a:e8:11:ed:90:73:07:ed: f6:fc:a7:ae:6d:90:cd:f9:90:d7:c5:af:29:4c:6a: ff:2c:0d:3a:73:dc:55:c8:e3:e5:1b:37:b9:3b:8f: 98:27:d9:4f:0e:4d:34:24:ca:35:59:7e:f1:4d:97: a3:b6:43:46:1a:ee:59:b4:ad:11:76:2e:b5:01:9b: 91:37:ea:fd:74:11:ae:29:3a:e5:b4:75:22:22:b2: bd:af:e7:7e:d7:99:9b:f6:31:ba:67:39:8a:e3:84: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:85:4E:97:C2:99:49:67:6D:B1:2E:CF:73:17:37:03:95:9B:5C:86 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/E352E0A2896F11E7BBF2923CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.68.164.0/22 IPv6: 2400:8240::/32 Signature Algorithm: sha256WithRSAEncryption 27:48:00:07:b6:be:79:0b:66:5e:44:7b:67:2e:01:43:fb:17: ce:23:be:77:6b:56:26:29:fb:a4:ba:4d:e2:80:dc:76:63:fe: ce:b1:88:a3:06:16:f1:4d:69:32:a6:f2:90:e0:24:ee:09:ff: 55:9d:d8:f8:8f:3c:e3:69:76:6b:cf:57:50:25:46:f1:d1:6f: bc:81:67:de:6e:ea:d7:95:6f:71:5e:ef:03:31:0b:42:1b:5d: d1:af:74:de:b9:20:61:72:c8:5a:16:a6:8b:3f:21:89:75:8d: 47:52:bb:58:a6:92:c9:ca:ea:91:b1:21:c6:1a:cf:10:59:bb: ce:3b:d5:40:2d:4d:2d:3c:3e:51:05:fb:ec:3d:7d:5b:27:93: 4e:55:78:98:42:57:78:59:06:92:86:48:26:ad:7e:f1:69:cf: 18:5c:31:bd:59:a3:ba:e0:c2:4f:3e:9a:e8:db:7d:90:4d:60: 11:8a:e9:be:de:32:ee:27:35:0b:fe:14:2c:cf:bd:7a:b4:10: e5:8d:1e:e5:5d:86:b3:bf:9e:92:fd:56:e4:48:86:d1:1d:9b: 19:dc:fa:11:7e:85:9b:80:22:7b:a1:5c:29:05:a3:d1:d5:5a: 41:eb:82:33:a8:b8:53:5f:0a:89:d0:cd:44:9a:39:2d:99:6b: 44:4c:22:11 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICIA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUwODA4MTYyMzU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjJkNy04N2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fwZLRHLoxAqZceHarnDtkBzqfoUkLxitULvCllwswGAJ/7cwkHmIjUH1qnE 7gucja2oyaWGAvJQAl2yRq386aIatpJrN85CrE7136xjIqoA/F+MgItZpXeqYEsU V2FLXtRXACBCznX6QAzMx3f3sOmhs+p99McmtB2Dkv2L9fYoAhB6I4ZGhOrlJNn2 lad+7d/mWs6MquaCb1HraugR7ZBzB+32/KeubZDN+ZDXxa8pTGr/LA06c9xVyOPl Gze5O4+YJ9lPDk00JMo1WX7xTZejtkNGGu5ZtK0Rdi61AZuRN+r9dBGuKTrltHUi IrK9r+d+15mb9jG6ZzmK44ScBQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPWFTpfC mUlnbbEuz3MXNwOVm1yGMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI0MEIvNUI3MzZEOTI0MzMzMTFFNjk1OUE3ODE1QzRGOUFFMDIvRTM1MkUwQTI4 OTZGMTFFN0JCRjI5MjNDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ0SkMA0EAgACMAcDBQAkAIJAMA0GCSqGSIb3DQEBCwUAA4IBAQAn SAAHtr55C2ZeRHtnLgFD+xfOI753a1YmKfukuk3igNx2Y/7OsYijBhbxTWkypvKQ 4CTuCf9Vndj4jzzjaXZrz1dQJUbx0W+8gWfeburXlW9xXu8DMQtCG13Rr3TeuSBh cshaFqaLPyGJdY1HUrtYppLJyuqRsSHGGs8QWbvOO9VALU0tPD5RBfvsPX1bJ5NO VXiYQld4WQaShkgmrX7xac8YXDG9WaO64MJPPpro232QTWARium+3jLuJzUL/hQs z716tBDljR7lXYazv56S/VbkSIbRHZsZ3PoRfoWbgCJ7oVwpBaPR1VpB64IzqLhT XwqJ0M1EmjktmWtETCIR -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:53 2026 by rpki-client