$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa File: 02157718B9DF11EBA8BE9876C4F9AE02.roa (raw, json) Hash identifier: 2yTMltgpGatRbQgtIeBUL3TLPvn5vL0uF38mhMQzifU= Subject key identifier: 11:86:DF:FD:7A:29:AF:81:70:9C:4A:E9:EE:1B:05:70:46:21:CA:D1 Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0668 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:48:25 +0000 ROA not before: Wed 02 Apr 2025 23:24:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141734 IP address blocks: 103.163.2.0/24 maxlen: 24 103.163.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Apr 2 23:24:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fd59-3aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e6:df:86:8d:a1:54:8f:57:2d:c9:99:36:a0: 25:52:8e:b4:fb:84:33:66:a3:03:d4:e5:85:a3:06: 09:c9:54:ad:8c:96:1e:92:fa:21:94:b4:d8:ad:60: b9:e0:dd:06:d1:7f:51:15:7d:df:de:c0:95:93:d3: f7:c7:ab:c4:67:ac:ac:f6:a2:ae:af:18:ee:a9:5a: 57:be:d4:b3:dd:4b:37:0c:c6:0a:8a:0b:f4:ce:3e: c5:4f:e8:bf:c1:12:85:83:6b:86:b3:10:0c:50:f5: 90:ae:6c:e6:32:54:ed:0f:57:e4:2d:d0:38:78:76: da:6a:a5:0f:c2:bf:ca:91:29:05:2a:74:cb:f6:74: dd:30:6f:1f:cc:b2:e9:60:d9:3f:b8:35:fd:ef:18: 9d:44:16:85:cf:9e:00:d2:01:3f:c2:41:c6:a7:9d: a8:aa:fa:62:68:9c:67:f3:0d:4b:2e:ea:af:59:5d: 0e:0a:8c:d4:1b:83:fb:e7:59:66:02:df:7d:9b:02: af:a0:63:d0:30:ab:c3:fd:0a:d2:6d:56:1c:5c:a5: c1:27:b3:90:71:c1:42:f9:9d:9f:2c:89:43:71:1c: 56:06:94:5e:2d:cc:99:89:df:5a:71:65:5e:de:52: b6:5d:33:e1:e3:19:3b:4a:e2:7b:02:24:01:06:80: 83:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:86:DF:FD:7A:29:AF:81:70:9C:4A:E9:EE:1B:05:70:46:21:CA:D1 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/02157718B9DF11EBA8BE9876C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.2.0/23 Signature Algorithm: sha256WithRSAEncryption 94:7d:a9:dc:83:f1:2f:15:83:f8:3e:bc:5c:7f:5e:54:fc:93: 3b:fb:63:d6:06:ab:07:9c:a0:13:25:dd:e5:de:0d:cf:e2:82: e0:e4:98:89:af:49:d6:3a:6c:90:58:0a:5f:8a:56:f3:02:5b: d6:ea:de:0f:8c:0d:fe:2a:6e:a9:85:ff:d7:4b:e0:ba:68:f3: d5:93:ba:71:9a:69:ce:3b:92:ab:c6:b1:d7:18:bd:17:35:b6: ff:a2:8b:32:a1:dc:e9:12:fc:83:72:6e:31:53:ad:36:44:8a: 45:7a:4f:91:89:99:5e:0f:20:3c:42:1a:56:7b:7b:be:0c:86: d3:dd:7b:be:f7:45:93:82:de:77:8a:77:a4:75:a1:8e:ec:7a: be:d3:4e:17:a6:24:79:c9:fb:d9:2d:1e:f8:df:d9:e3:18:74: 6b:1b:d0:d0:38:00:c1:9f:7b:fa:bc:fd:ea:6b:6b:e6:15:9a: 11:33:af:f4:18:2b:13:2f:6b:cc:fc:6f:e4:3c:96:9c:6d:b4: 8c:e3:ac:bf:ba:2d:26:2d:6b:32:61:3e:ac:7a:a5:af:6b:f2: ff:d8:87:a1:e4:60:4f:71:9e:2c:65:56:57:1a:f0:3a:d2:e7: 2c:3f:5e:eb:6e:59:be:b4:8d:a7:1b:c8:da:d3:eb:5d:9c:91: 51:ae:dd:b3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNDAyMjMyNDQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmQ1OS0zYWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqObfho2hVI9XLcmZNqAlUo60+4QzZqMD1OWFowYJyVStjJYekvohlLTYrWC5 4N0G0X9RFX3f3sCVk9P3x6vEZ6ys9qKurxjuqVpXvtSz3Us3DMYKigv0zj7FT+i/ wRKFg2uGsxAMUPWQrmzmMlTtD1fkLdA4eHbaaqUPwr/KkSkFKnTL9nTdMG8fzLLp YNk/uDX97xidRBaFz54A0gE/wkHGp52oqvpiaJxn8w1LLuqvWV0OCozUG4P751lm At99mwKvoGPQMKvD/QrSbVYcXKXBJ7OQccFC+Z2fLIlDcRxWBpReLcyZid9acWVe 3lK2XTPh4xk7SuJ7AiQBBoCDzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBGG3/16 Ka+BcJxK6e4bBXBGIcrRMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU5QjEvNUJCOUUwMEFCOURCMTFFQjlDRjNCODZFQzRGOUFFMDIvMDIxNTc3MThC OURGMTFFQkE4QkU5ODc2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6MCMA0GCSqGSIb3DQEBCwUAA4IBAQCUfancg/EvFYP4Prxcf15U /JM7+2PWBqsHnKATJd3l3g3P4oLg5JiJr0nWOmyQWApfilbzAlvW6t4PjA3+Km6p hf/XS+C6aPPVk7pxmmnOO5KrxrHXGL0XNbb/oosyodzpEvyDcm4xU602RIpFek+R iZleDyA8QhpWe3u+DIbT3Xu+90WTgt53inekdaGO7Hq+004XpiR5yfvZLR7439nj GHRrG9DQOADBn3v6vP3qa2vmFZoRM6/0GCsTL2vM/G/kPJacbbSM46y/ui0mLWsy YT6seqWva/L/2Ieh5GBPcZ4sZVZXGvA60ucsP17rblm+tI2nG8ja0+tdnJFRrt2z -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:39 2026 by rpki-client