$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa File: B502B0AE799311EE87452E15C4F9AE02.roa (raw, json) Hash identifier: 1mXamlMRo+ynaPA8W7H/iitEtpOpPxGXkmBb/9Xr46Q= Subject key identifier: 04:F5:46:AD:4B:91:AE:04:A6:8D:77:C0:A4:AB:10:2D:63:2E:05:11 Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 0313 Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:27:36 +0000 ROA not before: Sun 07 Sep 2025 02:08:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24499 IP address blocks: 103.154.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8, serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 7 02:08:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a44cd8-5567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8d:a2:19:f9:9d:ed:cf:44:af:8c:67:ef:05: 0b:81:18:b1:83:92:3c:49:c9:dc:7f:d6:89:fc:de: 9e:89:f0:13:e3:25:5c:c4:21:db:cc:36:cf:05:1b: b0:5b:bb:a3:15:42:ae:6d:50:75:2d:58:e4:79:3d: 58:98:f2:74:30:7f:2f:b2:cb:3b:a3:97:09:e7:6c: 5b:ee:df:7f:0e:10:e8:0d:52:2e:36:cd:8a:f0:3c: 68:3f:cc:5a:68:89:03:5c:55:27:27:7f:10:35:97: b0:83:04:f3:ac:4f:57:00:01:e1:f9:ec:2e:1b:6c: c1:7d:c2:7f:6e:5b:be:95:28:e4:f2:16:e9:3f:e3: e7:c7:de:59:c7:89:67:e6:cb:d6:e1:cf:55:c9:b3: 87:7f:30:0d:c2:d3:8d:b5:c7:31:ce:e4:04:64:21: d9:ff:a3:b1:f0:e9:cb:6f:ff:22:d6:60:6f:91:f9: b5:01:60:a7:26:9e:64:8e:ad:c3:42:61:7d:8c:69: 2e:45:e2:4d:40:02:9a:ca:27:93:8c:82:59:92:75: b1:05:92:d0:e3:8b:df:5d:c4:93:31:2c:65:29:1d: 03:89:94:03:c0:ff:f6:1a:da:e8:97:8e:b0:25:d3: de:01:5d:64:d9:0a:6f:8d:91:a6:7f:30:b3:d2:2b: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:F5:46:AD:4B:91:AE:04:A6:8D:77:C0:A4:AB:10:2D:63:2E:05:11 X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/B502B0AE799311EE87452E15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.154.64.0/24 Signature Algorithm: sha256WithRSAEncryption 05:8d:6b:be:d8:a0:ea:04:22:9a:11:66:df:03:e7:ca:63:a9: 84:33:a8:fc:ce:41:b6:ad:bd:ea:ed:49:76:dc:1f:ad:cc:d7: 7e:4d:07:99:1d:0e:81:7e:b4:bd:43:53:8c:c5:2b:bc:47:c7: 46:29:02:21:02:ee:d6:b6:fd:e1:f5:47:ec:79:c2:51:5c:fb: 09:93:ca:c6:ad:80:50:46:20:bf:ce:8b:fc:a8:17:0c:6b:74: 5e:96:43:55:d0:e9:98:85:a9:3a:e3:36:16:8e:c2:fb:f6:fb: 20:b8:da:73:a2:41:90:92:66:64:83:77:ae:9e:3e:bb:f7:3c: 20:85:e3:f9:81:30:74:4d:c8:8d:62:d7:a0:d4:6d:35:dc:ef: cb:7b:4b:6c:49:29:7e:d4:6a:f9:ec:4d:1e:a1:47:f6:e5:56: 07:50:bd:4f:7f:9c:52:81:bd:56:3e:2d:00:6a:ad:06:ee:cb: a3:02:c2:f2:b2:15:36:50:45:c9:15:a1:ca:cb:03:24:e9:62: 70:d4:68:a3:09:5e:18:a7:17:ef:06:63:75:6a:8e:48:89:e4: 9a:90:b4:ec:b6:87:5f:ca:dd:f3:8d:ff:ea:81:b5:0d:e1:bd: 4d:e0:3a:99:62:46:76:4d:16:06:bd:48:d1:f2:45:5e:e0:7b: 53:da:ac:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjUwOTA3MDIwODEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGNkOC01NTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqI2iGfmd7c9Er4xn7wULgRixg5I8Scncf9aJ/N6eifAT4yVcxCHbzDbPBRuw W7ujFUKubVB1LVjkeT1YmPJ0MH8vsss7o5cJ52xb7t9/DhDoDVIuNs2K8DxoP8xa aIkDXFUnJ38QNZewgwTzrE9XAAHh+ewuG2zBfcJ/blu+lSjk8hbpP+Pnx95Zx4ln 5svW4c9VybOHfzANwtONtccxzuQEZCHZ/6Ox8OnLb/8i1mBvkfm1AWCnJp5kjq3D QmF9jGkuReJNQAKayieTjIJZknWxBZLQ44vfXcSTMSxlKR0DiZQDwP/2Gtrol46w JdPeAV1k2QpvjZGmfzCz0ivUWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAT1Rq1L ka4Epo13wKSrEC1jLgURMB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQjUwMkIwQUU3 OTkzMTFFRTg3NDUyRTE1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5pAMA0GCSqGSIb3DQEBCwUAA4IBAQAFjWu+2KDqBCKaEWbfA+fK Y6mEM6j8zkG2rb3q7Ul23B+tzNd+TQeZHQ6BfrS9Q1OMxSu8R8dGKQIhAu7Wtv3h 9UfsecJRXPsJk8rGrYBQRiC/zov8qBcMa3RelkNV0OmYhak64zYWjsL79vsguNpz okGQkmZkg3eunj679zwgheP5gTB0TciNYteg1G013O/Le0tsSSl+1Gr57E0eoUf2 5VYHUL1Pf5xSgb1WPi0Aaq0G7sujAsLyshU2UEXJFaHKywMk6WJw1GijCV4Ypxfv BmN1ao5IieSakLTstodfyt3zjf/qgbUN4b1N4DqZYkZ2TRYGvUjR8kVe4HtT2qzZ -----END CERTIFICATE-----Generated at Mon Mar 2 15:31:01 2026 by rpki-client