$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/881C3F9CABD311EFBFED7130C4F9AE02.roa File: 881C3F9CABD311EFBFED7130C4F9AE02.roa (raw, json) Hash identifier: aAtHrkMecT5oO4nt1NPtMzyuWR2EapTbCzd38PiZviw= Subject key identifier: 69:51:03:98:8C:0C:64:28:6D:DE:35:47:69:E6:E2:E4:8A:5B:CD:AB Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 021D Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/881C3F9CABD311EFBFED7130C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:30:03 +0000 ROA not before: Fri 25 Apr 2025 02:59:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139820 IP address blocks: 103.158.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 25 02:59:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3eafb-ab6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:3d:9c:e4:d8:70:6b:13:6d:cb:bd:a7:b3: 12:9d:1b:0a:cb:83:86:3c:a5:1f:79:70:cf:80:a4: dc:14:09:98:cc:54:97:43:cf:28:e5:5f:28:53:10: 26:12:cd:a9:ce:12:5d:10:fd:07:04:12:8a:fc:f4: a9:88:62:58:f7:3b:41:b5:98:5e:a9:e3:ae:1e:58: fa:36:b2:a1:f0:89:38:95:ab:03:6f:51:42:a8:f4: d7:06:e4:2a:18:6c:27:12:ea:0b:59:ff:7d:9c:6e: c3:ff:1c:2f:c9:7b:d5:cd:38:a7:b4:c3:bb:c1:54: bc:b6:38:85:af:63:41:32:97:df:28:4b:bd:31:cb: 7f:cb:9b:83:6c:fc:8f:57:4e:9a:91:72:d3:12:52: 0a:06:9e:07:22:6d:d3:43:f2:95:3c:35:1b:90:00: be:17:5b:16:4a:62:76:54:fa:cc:ab:06:b5:8b:9a: 95:ab:1f:52:6e:50:79:95:3f:0b:ff:c1:d9:09:30: ce:28:03:9b:17:3a:fe:64:12:6d:fe:18:83:96:74: 93:6b:c5:90:88:bc:30:56:dd:b5:87:54:25:fd:16: ed:d8:bb:30:f0:5e:93:b6:e6:96:40:0a:69:c5:9b: 8f:65:51:f3:e6:1c:50:82:17:7d:85:f6:5c:9b:c2: a6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:51:03:98:8C:0C:64:28:6D:DE:35:47:69:E6:E2:E4:8A:5B:CD:AB X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/881C3F9CABD311EFBFED7130C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.236.0/24 Signature Algorithm: sha256WithRSAEncryption 86:96:3b:c7:e6:65:26:5a:d5:a4:1b:34:cf:f7:df:51:87:fb: 90:d9:14:7c:17:5e:ef:e9:e2:49:8b:5b:8c:43:e6:56:e1:b4: 55:c6:c0:78:9e:91:5e:4a:a0:d0:05:d7:05:9a:a2:16:81:5a: 5c:d1:bd:f1:95:99:03:c2:f2:cf:51:96:97:8c:c6:08:b7:ca: 85:af:05:67:8f:ab:f8:b4:5a:72:ff:a6:2d:df:d6:f7:2e:68: fc:f3:c7:42:da:e1:1f:8d:95:5f:d7:5e:2d:cd:4d:50:4c:4c: e8:6f:59:1d:bd:34:90:77:5d:b0:10:d3:1d:3f:44:21:d4:74: 8f:68:83:15:ca:1f:b5:b2:78:d1:c9:cd:74:a7:f1:ed:0b:d3: 2a:fe:8c:bb:cb:01:9b:a5:14:97:e2:a4:3c:d7:ee:b9:22:d9: a0:88:b2:45:fb:57:99:c0:16:f0:21:28:44:13:06:59:e9:bc: 06:da:2f:0b:db:87:28:27:e4:73:30:13:34:44:65:74:86:62: d2:d0:52:3b:9a:c4:93:42:aa:44:a7:34:27:f6:a1:8d:59:71: 1e:2a:e5:fe:71:c2:3c:f6:14:29:4a:c7:a6:9a:d9:d9:14:da: a7:a1:0f:fb:b5:c4:44:d5:3e:c4:fe:08:f7:0a:3a:c6:ba:1d: a5:8b:8e:cc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNDI1MDI1OTU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWFmYi1hYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWA9nOTYcGsTbcu9p7MSnRsKy4OGPKUfeXDPgKTcFAmYzFSXQ88o5V8oUxAm Es2pzhJdEP0HBBKK/PSpiGJY9ztBtZheqeOuHlj6NrKh8Ik4lasDb1FCqPTXBuQq GGwnEuoLWf99nG7D/xwvyXvVzTintMO7wVS8tjiFr2NBMpffKEu9Mct/y5uDbPyP V06akXLTElIKBp4HIm3TQ/KVPDUbkAC+F1sWSmJ2VPrMqwa1i5qVqx9SblB5lT8L /8HZCTDOKAObFzr+ZBJt/hiDlnSTa8WQiLwwVt21h1Ql/Rbt2Lsw8F6TtuaWQApp xZuPZVHz5hxQghd9hfZcm8Km8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGlRA5iM DGQobd41R2nm4uSKW82rMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVGQkIvRDg5NkI1QzhFQTZBMTFFREI1QjZCNTVFQzRGOUFFMDIvODgxQzNGOUNB QkQzMTFFRkJGRUQ3MTMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ57sMA0GCSqGSIb3DQEBCwUAA4IBAQCGljvH5mUmWtWkGzTP999R h/uQ2RR8F17v6eJJi1uMQ+ZW4bRVxsB4npFeSqDQBdcFmqIWgVpc0b3xlZkDwvLP UZaXjMYIt8qFrwVnj6v4tFpy/6Yt39b3Lmj888dC2uEfjZVf114tzU1QTEzob1kd vTSQd12wENMdP0Qh1HSPaIMVyh+1snjRyc10p/HtC9Mq/oy7ywGbpRSX4qQ81+65 ItmgiLJF+1eZwBbwIShEEwZZ6bwG2i8L24coJ+RzMBM0RGV0hmLS0FI7msSTQqpE pzQn9qGNWXEeKuX+ccI89hQpSsemmtnZFNqnoQ/7tcRE1T7E/gj3CjrGuh2li47M -----END CERTIFICATE-----Generated at Mon Mar 2 09:20:03 2026 by rpki-client