$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa File: 624086E2E99611EA930A5B74C4F9AE02.roa (raw, json) Hash identifier: KkfurgFgQaSiOoD1DoZqsh9tHMcIVcJW+jsOCJRRuvo= Subject key identifier: C6:BE:4A:AD:7A:83:37:17:2A:A9:FE:F8:E5:58:37:6A:EB:FC:5B:68 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 08AC Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:51:11 +0000 ROA not before: Mon 29 Dec 2025 07:34:29 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138005 IP address blocks: 103.30.234.0/24 maxlen: 24 103.30.235.0/24 maxlen: 24 103.244.56.0/24 maxlen: 24 103.244.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD, serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Dec 29 07:34:29 2025 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a47c8f-faea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:af:36:64:86:a7:cd:67:d2:24:50:45:0d: 1a:16:03:51:f0:04:06:60:18:4e:7b:7f:4d:f9:83: d5:6d:17:83:48:fb:36:d3:02:0e:0d:2a:62:8e:75: 6d:0f:a0:ae:46:27:fe:56:9e:78:78:4d:19:62:a9: 10:b2:cd:3b:72:06:39:b4:9b:cb:be:ed:87:13:85: c8:fb:b2:b7:01:c7:d8:33:a1:03:ae:43:76:db:59: fb:43:ca:ac:14:db:be:48:69:e4:57:77:de:e8:45: 5f:45:4b:f1:56:cd:ce:08:14:94:0e:5c:fe:3a:c7: aa:9c:31:3b:b6:50:a7:85:49:d8:42:48:df:d3:18: fc:68:f1:46:ee:73:66:59:81:16:bd:e8:e7:ce:fc: b2:08:c0:5a:e0:5b:79:91:fc:ee:49:9d:bf:7a:9f: 2b:81:1f:74:66:b6:c7:58:49:a7:f7:42:be:73:0c: 0f:0d:7b:22:09:ab:b5:b5:a2:0e:32:b5:25:c9:79: 84:bb:01:75:54:57:f9:da:f4:34:43:be:72:8f:4d: 2f:ab:48:18:4e:18:05:5f:77:68:a4:02:43:c3:66: ff:3e:ff:7b:81:06:93:46:90:c6:17:d9:1b:b0:b4: e0:a9:ca:33:2c:db:4f:0f:10:84:08:dc:5c:23:ff: af:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:BE:4A:AD:7A:83:37:17:2A:A9:FE:F8:E5:58:37:6A:EB:FC:5B:68 X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.30.234.0/23 103.244.56.0/23 Signature Algorithm: sha256WithRSAEncryption 85:bd:32:b4:e3:cf:cc:8f:f2:c2:b0:6e:16:84:4a:41:e4:c2: 9c:c0:e1:20:8e:6e:51:26:69:44:2c:e0:ff:22:46:9c:78:bd: 1f:d0:17:90:ac:d1:e0:04:9f:1d:08:5c:e8:8c:a6:53:b0:16: a2:d4:0c:f1:94:dd:39:7d:77:d8:a4:e9:51:fc:62:7a:f5:83: 8b:74:68:70:4b:f1:33:d4:a5:55:2b:a7:56:e6:00:95:21:2b: 19:59:24:f7:e6:d0:15:14:d6:ba:2b:09:72:91:91:67:dc:93: c2:d4:d5:41:d5:2e:9f:54:54:a4:46:c8:9d:a6:00:41:d6:df: ed:83:bb:8f:80:00:6a:ac:34:cb:94:81:65:d0:00:2a:7d:b9: 56:a7:75:e0:6f:f4:50:29:a3:63:3a:bf:db:fe:c9:af:34:33: fb:6c:c9:56:a0:35:e1:46:89:a8:f2:90:d4:61:44:d1:98:40: aa:aa:75:f4:a7:9e:6e:4b:db:9e:5a:18:4c:6f:30:ed:9d:64: 6a:1e:8b:d0:db:18:40:1f:87:e7:13:b0:95:af:6a:8f:ce:78: dc:52:85:04:2d:1e:05:a2:68:c9:4e:27:43:20:69:cc:66:a6: 48:76:a2:03:b5:f1:97:da:20:95:b7:f2:13:b6:4d:ed:a6:4b: ca:18:77:34 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjUxMjI5MDczNDI5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M4Zi1mYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkmvNmSGp81n0iRQRQ0aFgNR8AQGYBhOe39N+YPVbReDSPs20wIODSpijnVt D6CuRif+Vp54eE0ZYqkQss07cgY5tJvLvu2HE4XI+7K3AcfYM6EDrkN221n7Q8qs FNu+SGnkV3fe6EVfRUvxVs3OCBSUDlz+OseqnDE7tlCnhUnYQkjf0xj8aPFG7nNm WYEWvejnzvyyCMBa4Ft5kfzuSZ2/ep8rgR90ZrbHWEmn90K+cwwPDXsiCau1taIO MrUlyXmEuwF1VFf52vQ0Q75yj00vq0gYThgFX3dopAJDw2b/Pv97gQaTRpDGF9kb sLTgqcozLNtPDxCECNxcI/+vRwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFMa+Sq16 gzcXKqn++OVYN2rr/FtoMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg1Q0QvOEE1MDU1ODhERDE5MTFFQTk0RDI2MDExQzRGOUFFMDIvNjI0MDg2RTJF OTk2MTFFQTkzMEE1Qjc0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZx7qAwQBZ/Q4MA0GCSqGSIb3DQEBCwUAA4IBAQCFvTK048/Mj/LC sG4WhEpB5MKcwOEgjm5RJmlELOD/IkaceL0f0BeQrNHgBJ8dCFzojKZTsBai1Azx lN05fXfYpOlR/GJ69YOLdGhwS/Ez1KVVK6dW5gCVISsZWST35tAVFNa6KwlykZFn 3JPC1NVB1S6fVFSkRsidpgBB1t/tg7uPgABqrDTLlIFl0AAqfblWp3Xgb/RQKaNj Or/b/smvNDP7bMlWoDXhRomo8pDUYUTRmECqqnX0p55uS9ueWhhMbzDtnWRqHovQ 2xhAH4fnE7CVr2qPznjcUoUELR4FomjJTidDIGnMZqZIdqIDtfGX2iCVt/ITtk3t pkvKGHc0 -----END CERTIFICATE-----Generated at Mon Mar 2 13:22:29 2026 by rpki-client