$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa File: 3A7527ECC1F711EF8B510B86C4F9AE02.roa (raw, json) Hash identifier: jH3pUBKK5O5PFYi47D0568PqN1VNWUwbSLEuD5F8T1Q= Subject key identifier: 4E:B7:FD:38:19:52:26:CE:4C:CB:FD:5F:06:C0:15:5D:73:B9:E9:15 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: 0203 Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:16:18 +0000 ROA not before: Tue 15 Jul 2025 04:10:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141778 IP address blocks: 103.229.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42, serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: Jul 15 04:10:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a411f1-148c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1c:02:4e:07:b5:3c:37:57:e8:80:74:62:7a: b7:44:ce:9d:af:62:6f:81:a7:2e:d7:de:b7:8f:46: 75:8a:2a:11:0d:74:0b:6d:4e:7c:88:73:d7:77:f9: 83:00:c5:d3:0d:95:f5:cd:5c:88:60:80:6d:8a:4d: 07:cf:f9:85:5e:70:47:50:91:27:c7:8e:f2:f8:fd: 49:62:a3:d6:b4:fc:8d:3f:2e:40:85:80:a5:e9:cc: 62:d9:75:3f:21:7a:cd:25:e7:40:46:ba:09:c9:93: 8b:4f:73:c0:12:21:a0:73:6f:38:79:0a:04:3a:d3: 42:37:74:63:5a:5f:b3:e4:b1:e8:f8:31:41:fc:95: a7:5a:fa:6a:19:dc:34:82:45:ae:55:fb:5f:99:c5: 83:81:02:f4:cd:6a:4c:57:bf:ef:6e:7f:7f:88:5f: e0:cf:f6:9c:b8:27:82:7d:d3:51:96:de:bb:b6:0c: 3f:83:7a:d2:47:c5:c7:06:66:28:19:e8:7c:e7:c8: 45:2a:a0:84:00:7c:c7:07:a3:6e:e5:39:df:bf:e3: 12:5d:32:ed:ad:fb:23:c8:50:16:68:92:b9:22:54: aa:b5:8a:02:16:9a:d0:3d:59:17:d9:1a:6e:fb:09: 8e:c4:c2:e5:4b:fd:26:72:e0:66:4e:4c:1d:42:37: c9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B7:FD:38:19:52:26:CE:4C:CB:FD:5F:06:C0:15:5D:73:B9:E9:15 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.190.0/24 Signature Algorithm: sha256WithRSAEncryption 53:20:91:e8:4c:80:63:7f:c8:1f:78:22:10:ab:25:d5:b9:7e: 71:3f:41:a4:1f:2a:8b:86:5c:02:3b:9b:07:61:29:15:a9:51: b4:6b:27:0b:8d:86:05:4c:6d:bf:5f:50:f4:91:11:ce:25:6b: 78:19:3f:a4:c3:38:c2:52:b0:e4:c4:61:d8:67:df:8b:a4:91: e2:45:43:2a:f1:6f:bd:d3:84:9f:30:0d:a6:f0:31:77:88:9f: a7:5c:3f:45:10:20:21:db:f8:60:ba:7f:25:7b:b8:fb:86:02: 8e:a4:55:c5:bb:1a:8c:7d:66:5f:91:4f:8d:2a:00:19:9d:95: 2a:2d:12:98:e7:07:76:01:6a:61:87:57:69:42:7c:03:05:07: 95:54:ea:83:30:05:04:13:02:6c:26:2f:b1:73:1e:1a:42:98: ea:0b:cb:09:db:6d:0c:6c:2d:db:7c:41:26:70:e8:05:5e:4f: e6:fb:e9:1e:81:46:18:17:0c:bb:15:55:c5:5d:6e:18:a9:01: cb:ad:51:c1:1c:13:c2:ce:82:45:ba:6e:13:8a:e6:ba:cb:1a: 3e:61:92:fd:04:17:59:70:de:ee:42:45:86:26:8e:e5:46:e9: 17:42:9c:5c:cb:47:16:a8:51:8e:7d:fa:b5:67:16:3d:cb:d9: b2:bf:c1:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjUwNzE1MDQxMDIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTFmMS0xNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BwCTge1PDdX6IB0Ynq3RM6dr2Jvgacu1963j0Z1iioRDXQLbU58iHPXd/mD AMXTDZX1zVyIYIBtik0Hz/mFXnBHUJEnx47y+P1JYqPWtPyNPy5AhYCl6cxi2XU/ IXrNJedARroJyZOLT3PAEiGgc284eQoEOtNCN3RjWl+z5LHo+DFB/JWnWvpqGdw0 gkWuVftfmcWDgQL0zWpMV7/vbn9/iF/gz/acuCeCfdNRlt67tgw/g3rSR8XHBmYo Geh858hFKqCEAHzHB6Nu5Tnfv+MSXTLtrfsjyFAWaJK5IlSqtYoCFprQPVkX2Rpu +wmOxMLlS/0mcuBmTkwdQjfJ8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE63/TgZ UibOTMv9XwbAFV1zuekVMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvM0E3NTI3RUND MUY3MTFFRjhCNTEwQjg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+W+MA0GCSqGSIb3DQEBCwUAA4IBAQBTIJHoTIBjf8gfeCIQqyXV uX5xP0GkHyqLhlwCO5sHYSkVqVG0aycLjYYFTG2/X1D0kRHOJWt4GT+kwzjCUrDk xGHYZ9+LpJHiRUMq8W+904SfMA2m8DF3iJ+nXD9FECAh2/hgun8le7j7hgKOpFXF uxqMfWZfkU+NKgAZnZUqLRKY5wd2AWphh1dpQnwDBQeVVOqDMAUEEwJsJi+xcx4a QpjqC8sJ220MbC3bfEEmcOgFXk/m++kegUYYFwy7FVXFXW4YqQHLrVHBHBPCzoJF um4Tiua6yxo+YZL9BBdZcN7uQkWGJo7lRukXQpxcy0cWqFGOffq1ZxY9y9myv8HD -----END CERTIFICATE-----Generated at Mon Mar 2 03:09:59 2026 by rpki-client