$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa File: A6389578DAD111ECA6DEA174C4F9AE02.roa (raw, json) Hash identifier: bFHn+kTn1XJ0WyqqZFPPk6fqGg2GkmoHj8XsEzMPWkI= Subject key identifier: 02:64:63:36:3D:9C:CD:1A:44:57:99:93:7D:4D:30:00:94:5E:28:6E Certificate issuer: /CN=A91F9ADA/serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Certificate serial: 0388 Authority key identifier: 2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:21:32 +0000 ROA not before: Sat 05 Apr 2025 01:36:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133106 IP address blocks: 103.230.72.0/22 maxlen: 24 2001:df5:5800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9ADA, serialNumber=2CB616102977D4C90B23F3AF03B891E89B805CC3 Validity Not Before: Apr 5 01:36:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e8fb-afd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a2:ed:c6:c6:f4:cd:15:59:7d:76:a1:cd:6a: 21:17:1b:7d:5d:6c:48:e3:96:64:f7:b5:43:55:b9: 1d:19:0c:85:dd:8a:39:ab:82:9a:99:b7:05:38:db: a6:ad:4f:1f:d8:74:ce:5f:fd:d8:f3:27:d0:5c:35: 2e:11:28:33:97:62:12:9b:38:4b:91:85:75:3a:c7: 1d:f0:39:12:22:b2:6f:c7:f9:8c:5e:71:ba:28:11: ff:8f:67:f2:5a:ea:41:ec:d5:ed:d5:26:5c:84:c5: 81:d9:c1:bc:a9:ff:8c:6a:d0:4b:7a:97:15:11:12: 5a:27:ae:fd:80:0a:f7:70:b3:ba:aa:12:4a:e9:b0: 4e:43:4b:8c:f5:7a:00:f4:e8:fd:34:38:b9:4f:79: 65:33:80:46:a1:1c:fa:29:26:94:e5:57:65:ef:cd: 87:85:38:0f:14:ba:bb:22:e2:ff:3c:3c:d4:fe:01: b9:2f:bb:53:c9:72:7c:6e:67:5a:a0:c4:cf:05:e7: f4:6c:65:2c:d6:4e:90:2c:37:7e:ea:a3:0a:ac:6c: 94:60:f9:ab:7d:b6:6e:05:69:d5:c8:5a:b9:68:70: ba:62:67:1d:64:f1:ef:59:96:bf:a3:d3:d1:78:e0: e1:e0:3c:41:73:f0:13:af:a0:bd:71:65:7b:fb:53: ac:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:64:63:36:3D:9C:CD:1A:44:57:99:93:7D:4D:30:00:94:5E:28:6E X509v3 Authority Key Identifier: keyid:2C:B6:16:10:29:77:D4:C9:0B:23:F3:AF:03:B8:91:E8:9B:80:5C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/LLYWECl31MkLI_OvA7iR6JuAXMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LLYWECl31MkLI_OvA7iR6JuAXMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9ADA/0E9C7C72DAC511EC919A4C5AC4F9AE02/A6389578DAD111ECA6DEA174C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.230.72.0/22 IPv6: 2001:df5:5800::/48 Signature Algorithm: sha256WithRSAEncryption 4b:f7:cd:89:94:f5:f9:79:8e:81:ac:73:50:b3:c1:51:31:3f: a7:0a:2b:b7:8d:36:66:7f:40:70:2e:8e:07:18:f6:b3:98:b9: 52:65:31:2f:0f:98:48:5b:9d:a6:b8:60:ab:f6:90:25:8a:04: 5b:8c:c5:40:9b:94:87:ba:fc:5c:bb:f1:b7:d0:a6:8b:6c:c7: 72:82:16:a2:6d:6b:ea:92:3b:b3:5c:3b:b3:21:ef:12:a5:78: 8d:48:c2:d3:3d:d6:d1:9f:5a:0e:4c:10:cb:db:df:8c:dd:54: 31:65:b7:46:04:62:b1:b0:f3:d3:6f:e0:49:6a:01:51:94:95: 9f:84:97:78:51:9c:bc:76:b9:be:ff:d6:79:b5:f0:98:8a:a3: de:ed:1f:08:d7:06:02:78:68:5c:1c:ef:7d:ef:dc:7d:3c:79: 21:49:27:05:35:e0:7d:6b:25:b2:c2:fd:90:c0:60:9a:86:75: 4c:93:06:37:bc:23:c3:3c:4d:6d:b8:61:6e:a4:4e:67:c8:48: cb:35:24:ef:cf:7f:f1:8c:28:30:3d:72:f1:cc:2c:f5:98:4b: b4:b6:4b:29:c9:55:f9:34:fc:b5:59:c3:55:ac:00:53:35:29: e0:3c:86:ce:b1:29:73:9c:33:db:12:1e:87:4b:39:67:63:75: 9a:fa:a9:ac -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlBREExMTAvBgNVBAUTKDJDQjYxNjEwMjk3N0Q0QzkwQjIzRjNBRjAzQjg5MUU4 OUI4MDVDQzMwHhcNMjUwNDA1MDEzNjQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZThmYi1hZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjqLtxsb0zRVZfXahzWohFxt9XWxI45Zk97VDVbkdGQyF3Yo5q4KambcFONum rU8f2HTOX/3Y8yfQXDUuESgzl2ISmzhLkYV1Oscd8DkSIrJvx/mMXnG6KBH/j2fy WupB7NXt1SZchMWB2cG8qf+MatBLepcVERJaJ679gAr3cLO6qhJK6bBOQ0uM9XoA 9Oj9NDi5T3llM4BGoRz6KSaU5Vdl782HhTgPFLq7IuL/PDzU/gG5L7tTyXJ8bmda oMTPBef0bGUs1k6QLDd+6qMKrGyUYPmrfbZuBWnVyFq5aHC6YmcdZPHvWZa/o9PR eODh4DxBc/ATr6C9cWV7+1OszwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAJkYzY9 nM0aRFeZk31NMACUXihuMB8GA1UdIwQYMBaAFCy2FhApd9TJCyPzrwO4keibgFzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUFEQS8wRTlDN0M3MkRB QzUxMUVDOTE5QTRDNUFDNEY5QUUwMi9MTFlXRUNsMzFNa0xJX092QTdpUjZKdUFY TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xMWVdFQ2wzMU1rTElfT3ZBN2lSNkp1QVhNTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlBREEvMEU5QzdDNzJEQUM1MTFFQzkxOUE0QzVBQzRGOUFFMDIvQTYzODk1NzhE QUQxMTFFQ0E2REVBMTc0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ+ZIMA8EAgACMAkDBwAgAQ31WAAwDQYJKoZIhvcNAQELBQADggEB AEv3zYmU9fl5joGsc1CzwVExP6cKK7eNNmZ/QHAujgcY9rOYuVJlMS8PmEhbnaa4 YKv2kCWKBFuMxUCblIe6/Fy78bfQpotsx3KCFqJta+qSO7NcO7Mh7xKleI1IwtM9 1tGfWg5MEMvb34zdVDFlt0YEYrGw89Nv4ElqAVGUlZ+El3hRnLx2ub7/1nm18JiK o97tHwjXBgJ4aFwc733v3H08eSFJJwU14H1rJbLC/ZDAYJqGdUyTBje8I8M8TW24 YW6kTmfISMs1JO/Pf/GMKDA9cvHMLPWYS7S2SynJVfk0/LVZw1WsAFM1KeA8hs6x KXOcM9sSHodLOWdjdZr6qaw= -----END CERTIFICATE-----Generated at Mon Mar 2 05:50:41 2026 by rpki-client