$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/189D8FCE565D11F0B381417EC4F9AE02.roa File: 189D8FCE565D11F0B381417EC4F9AE02.roa (raw, json) Hash identifier: 9z7Ll9dojNMEUlBBIqJpSsSbtBgcRmtw3vXnIn3kJKs= Subject key identifier: D9:92:8B:B0:43:7D:E9:76:46:0F:E9:B6:CF:24:20:C2:AB:BF:92:E4 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: AA Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/189D8FCE565D11F0B381417EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:08:23 +0000 ROA not before: Tue 01 Jul 2025 09:23:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153671 IP address blocks: 103.211.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: Jul 1 09:23:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3f3f7-c167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d6:ee:96:94:ff:be:67:e6:b6:d6:3b:b7:7d: 14:34:ed:f5:c2:eb:71:16:8c:84:23:3c:a0:4b:77: bc:54:d5:ea:ce:ce:88:83:94:a2:b6:7d:af:7e:f3: f5:d0:b1:66:eb:16:b2:6f:d6:b6:bc:07:5d:bf:87: 1e:8a:4a:f6:d4:45:b9:92:d2:c9:34:ee:cb:46:c7: 63:f3:1f:e6:6d:53:d3:45:17:a7:6a:94:db:3b:00: 5e:e6:6f:46:bd:0a:23:dc:e3:bd:42:25:d2:41:03: 1d:dc:5d:e3:d6:47:e5:04:42:36:c7:d0:18:25:63: d5:df:5d:f7:70:9d:af:46:9d:1e:bd:9e:fe:30:8d: 64:de:c9:e2:d7:34:d3:32:f6:60:36:0c:55:ab:df: c5:00:47:a5:b0:40:2a:a9:ad:41:21:fd:4f:81:ac: f8:60:e3:9c:e0:ad:4e:51:1b:e8:f3:d8:a2:a6:0f: 08:09:20:80:73:9b:4d:8b:42:4d:60:bc:f9:87:18: 4b:90:11:5b:d2:f2:05:6d:86:9f:87:a8:8d:40:85: 75:53:bd:13:d7:4d:13:de:06:23:4a:0b:73:9a:8b: f2:bb:1a:63:3b:2e:37:71:54:80:c0:6f:8a:3b:48: d5:da:02:3d:62:c7:3b:7b:f2:be:92:fe:6d:f1:0b: 6d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:92:8B:B0:43:7D:E9:76:46:0F:E9:B6:CF:24:20:C2:AB:BF:92:E4 X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/189D8FCE565D11F0B381417EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.211.228.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:4a:93:fa:47:ef:45:2b:e0:d3:88:9c:21:3f:26:7c:f4:a3: a3:63:76:00:4b:6a:bd:a4:6a:81:84:84:92:d9:87:a9:f1:9a: f2:16:f6:3f:7c:b7:8e:c0:b5:f1:bd:aa:9a:9f:2f:15:35:2b: d4:b0:8f:d6:0c:b8:62:3f:51:34:03:c6:ee:d2:66:7b:f4:56: 9b:53:81:22:02:d5:42:15:99:e9:df:b9:7b:e6:d7:7f:94:19: 34:ff:e6:8c:3c:13:68:f9:72:f7:9e:92:07:8f:7c:47:b9:50: cc:a3:a2:7d:20:f8:c8:95:cc:3e:ac:a9:0e:51:e2:94:f8:c9: 12:3f:1b:ad:3a:7e:56:08:9f:61:e1:52:5c:b6:04:42:33:ba: c9:e0:5f:1a:a8:b1:01:90:08:a6:15:a2:5e:39:91:db:51:2e: b8:0f:bf:c4:2b:98:12:33:51:05:f1:5d:1e:11:0f:5b:ab:ed: 85:9d:17:19:47:08:bb:46:ee:e3:56:4d:d8:36:80:4f:db:37: 62:b5:05:6b:69:89:eb:5b:81:f0:07:ce:2e:c1:3a:a6:c7:2c: b7:40:5a:02:11:5d:fc:5c:29:30:d7:19:29:1f:be:eb:5f:fa: 5a:45:69:89:4e:52:8a:f8:d7:8f:cb:e9:30:71:fb:f3:68:cd: 22:72:1a:07 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFMTMxMTAvBgNVBAUTKDQ5RkQzM0Q2RjUxQUQ2QTQ5ODg0NDY5RkEzOUZFRjA0 MzIzMzZGODEwHhcNMjUwNzAxMDkyMzUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjNmNy1jMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9bulpT/vmfmttY7t30UNO31wutxFoyEIzygS3e8VNXqzs6Ig5Sitn2vfvP1 0LFm6xayb9a2vAddv4ceikr21EW5ktLJNO7LRsdj8x/mbVPTRRenapTbOwBe5m9G vQoj3OO9QiXSQQMd3F3j1kflBEI2x9AYJWPV3133cJ2vRp0evZ7+MI1k3sni1zTT MvZgNgxVq9/FAEelsEAqqa1BIf1Pgaz4YOOc4K1OURvo89iipg8ICSCAc5tNi0JN YLz5hxhLkBFb0vIFbYafh6iNQIV1U70T100T3gYjSgtzmovyuxpjOy43cVSAwG+K O0jV2gI9Ysc7e/K+kv5t8QttIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNmSi7BD fel2Rg/pts8kIMKrv5LkMB8GA1UdIwQYMBaAFEn9M9b1GtakmIRGn6Of7wQyM2+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREUxMy8xNTFGRTQ3RTJB NTYxMUYwQjg0RjUyMjBDNEY5QUUwMi9TZjB6MXZVYTFxU1loRWFmbzVfdkJESXpi NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRFMTMvMTUxRkU0N0UyQTU2MTFGMEI4NEY1MjIwQzRGOUFFMDIvMTg5RDhGQ0U1 NjVEMTFGMEIzODE0MTdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ9PkMA0GCSqGSIb3DQEBCwUAA4IBAQBLSpP6R+9FK+DTiJwhPyZ8 9KOjY3YAS2q9pGqBhISS2Yep8ZryFvY/fLeOwLXxvaqany8VNSvUsI/WDLhiP1E0 A8bu0mZ79FabU4EiAtVCFZnp37l75td/lBk0/+aMPBNo+XL3npIHj3xHuVDMo6J9 IPjIlcw+rKkOUeKU+MkSPxutOn5WCJ9h4VJctgRCM7rJ4F8aqLEBkAimFaJeOZHb US64D7/EK5gSM1EF8V0eEQ9bq+2FnRcZRwi7Ru7jVk3YNoBP2zditQVraYnrW4Hw B84uwTqmxyy3QFoCEV38XCkw1xkpH77rX/paRWmJTlKK+NePy+kwcfvzaM0ichoH -----END CERTIFICATE-----Generated at Sun Mar 1 23:27:26 2026 by rpki-client