$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa File: 4231A1AA1B1711EEA5566A23C4F9AE02.roa (raw, json) Hash identifier: jEhZmuHcoeruFIR0Y77hz4lKfuTb1W/btI0kxlrhND0= Subject key identifier: E3:BB:22:DF:26:6B:78:0E:D7:31:17:90:A9:EE:C1:52:30:A5:9A:75 Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Certificate serial: 01FE Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:17:10 +0000 ROA not before: Tue 25 Mar 2025 03:39:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138331 IP address blocks: 103.247.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4957, serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Validity Not Before: Mar 25 03:39:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3f606-faf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c4:eb:20:fb:57:ab:aa:66:e7:f2:d7:43:18: 49:94:ba:a7:b1:31:82:ac:fe:6e:56:a9:06:05:3a: 5b:13:5f:ac:d8:43:35:32:c0:d9:22:c1:b3:04:11: f6:a9:fa:7c:f8:fd:08:59:77:cc:62:11:aa:80:d7: ed:96:fe:af:d6:42:bd:98:20:47:d3:cb:71:b3:9e: f5:f7:06:b8:34:26:a1:4b:1d:f3:12:4f:44:9b:89: f9:63:e6:d2:fd:56:8a:ed:fd:6f:73:97:9f:65:f1: 30:1a:2c:d0:7e:ae:d7:fe:11:9f:de:17:b6:88:b7: eb:ae:7e:64:e0:f9:b5:7a:6b:ac:34:6d:ad:9f:d8: 02:01:69:62:fb:18:ad:71:51:55:5a:93:b9:ef:14: 70:fa:81:9a:42:f5:a8:eb:f6:fb:8b:97:b9:a3:a2: bc:e6:ed:1b:af:bc:5f:e8:5f:95:60:72:57:a4:1c: 27:fb:20:45:bd:a7:0e:0c:93:72:3a:17:fd:d8:2e: 2b:a9:88:60:fb:30:a6:fc:79:09:aa:e3:0c:43:d1: 5a:a2:f7:d4:f5:2b:f2:0d:d1:db:d2:ca:82:57:01: 1a:d2:ff:7a:24:ed:66:09:d2:a3:14:ca:90:44:56: f4:0d:1a:48:14:07:46:cf:8a:4b:4d:60:69:08:3f: 22:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BB:22:DF:26:6B:78:0E:D7:31:17:90:A9:EE:C1:52:30:A5:9A:75 X509v3 Authority Key Identifier: keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/4231A1AA1B1711EEA5566A23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.136.0/23 Signature Algorithm: sha256WithRSAEncryption a4:50:32:2e:e1:f6:60:0f:67:cf:86:d9:77:59:21:e5:e8:6e: 4e:1a:d9:58:a2:b7:6f:6b:b5:46:97:87:2d:50:5b:1f:7d:1c: 4c:73:8c:4a:38:40:f5:df:a5:58:58:c8:5b:2b:9f:23:39:c0: 32:ce:03:a1:66:33:86:29:21:9f:88:c4:ed:36:cf:c2:4a:19: 36:c4:a3:7d:08:88:73:8b:99:1d:18:55:95:75:45:e5:72:c8: e5:63:3c:f1:ec:b8:37:7d:b2:4b:83:72:14:c3:b6:93:85:72: c2:f8:a0:31:e7:b7:af:16:24:36:76:11:d1:55:0d:f1:ec:ec: 94:0f:cf:b9:3e:ed:b7:f1:e0:16:ea:c0:d8:8a:5e:ae:8e:de: a5:3c:04:0a:ab:97:77:62:cf:af:95:01:c9:69:90:7f:e0:56: 50:c0:4d:a1:27:68:3a:fa:a1:8a:fe:f9:9f:7c:09:6a:35:71: 00:86:ba:62:15:de:ac:66:d5:fd:b8:0d:eb:75:94:b8:10:3b: 63:76:79:bd:32:dc:be:08:e4:4f:64:e2:37:b6:4f:2a:40:37: e4:18:32:c9:5c:6b:04:f9:b2:8d:54:32:ee:d6:ed:a0:5d:64: 63:18:dc:82:81:4a:22:ae:31:12:c0:b2:04:c8:53:87:45:33: 2a:bd:31:65 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NTcxMTAvBgNVBAUTKEJGMkQxQjM5RDNDMkU5QUUwQUE4RkFCOTRCQUM1NDBD QzUyNjUyNEYwHhcNMjUwMzI1MDMzOTQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjYwNi1mYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssTrIPtXq6pm5/LXQxhJlLqnsTGCrP5uVqkGBTpbE1+s2EM1MsDZIsGzBBH2 qfp8+P0IWXfMYhGqgNftlv6v1kK9mCBH08txs5719wa4NCahSx3zEk9Em4n5Y+bS /VaK7f1vc5efZfEwGizQfq7X/hGf3he2iLfrrn5k4Pm1emusNG2tn9gCAWli+xit cVFVWpO57xRw+oGaQvWo6/b7i5e5o6K85u0br7xf6F+VYHJXpBwn+yBFvacODJNy Ohf92C4rqYhg+zCm/HkJquMMQ9FaovfU9SvyDdHb0sqCVwEa0v96JO1mCdKjFMqQ RFb0DRpIFAdGz4pLTWBpCD8iVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOO7It8m a3gO1zEXkKnuwVIwpZp1MB8GA1UdIwQYMBaAFL8tGznTwumuCqj6uUusVAzFJlJP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Ny81NzFCMjIxMDFB RTcxMUVFOERENEI5NDlDNEY5QUUwMi92eTBiT2RQQzZhNEtxUHE1UzZ4VURNVW1V azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z5MGJPZFBDNmE0S3FQcTVTNnhVRE1VbVVrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NTcvNTcxQjIyMTAxQUU3MTFFRThERDRCOTQ5QzRGOUFFMDIvNDIzMUExQUEx QjE3MTFFRUE1NTY2QTIzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/eIMA0GCSqGSIb3DQEBCwUAA4IBAQCkUDIu4fZgD2fPhtl3WSHl 6G5OGtlYordva7VGl4ctUFsffRxMc4xKOED136VYWMhbK58jOcAyzgOhZjOGKSGf iMTtNs/CShk2xKN9CIhzi5kdGFWVdUXlcsjlYzzx7Lg3fbJLg3IUw7aThXLC+KAx 57evFiQ2dhHRVQ3x7OyUD8+5Pu238eAW6sDYil6ujt6lPAQKq5d3Ys+vlQHJaZB/ 4FZQwE2hJ2g6+qGK/vmffAlqNXEAhrpiFd6sZtX9uA3rdZS4EDtjdnm9Mty+CORP ZOI3tk8qQDfkGDLJXGsE+bKNVDLu1u2gXWRjGNyCgUoirjESwLIEyFOHRTMqvTFl -----END CERTIFICATE-----Generated at Mon Mar 2 10:58:01 2026 by rpki-client