$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa File: 223C39C88DCB11EA86CF4C13C4F9AE02.roa (raw, json) Hash identifier: 0JaYm9d+zS0ZnPJxe8gp1hejyXFhdWmdOwBiOfaGMf4= Subject key identifier: 33:E3:B1:43:4B:BA:A4:C3:CD:64:12:D7:22:58:05:96:47:3A:64:32 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DB3 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:15:04 +0000 ROA not before: Thu 28 Aug 2025 14:52:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131380 IP address blocks: 103.248.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23987 (0x5db3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60be7-981c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5c:fb:a8:02:c6:50:00:c3:36:77:7f:55:46: ec:01:35:82:1f:99:f5:26:c9:a4:78:b8:fb:b4:fe: 28:f1:e9:0f:ee:53:7e:3c:9d:da:81:79:11:44:83: 6e:04:a3:68:8f:8c:8d:0b:c9:f8:0d:0d:67:af:2b: d2:74:10:2d:fa:58:25:d9:a2:00:6b:40:8b:40:42: df:4d:4d:8f:e6:27:37:e5:86:99:72:40:74:03:df: 82:9e:5e:d8:c5:38:2e:eb:1a:f8:de:16:d1:90:36: 42:94:f9:4b:b0:52:3c:13:46:aa:56:1a:17:bc:22: f5:19:be:55:ac:4a:80:2d:75:48:30:c9:07:03:c9: 34:74:28:2b:e4:9e:a5:f5:c7:58:12:31:fc:7f:ea: 51:e6:b3:74:b6:41:aa:c5:72:72:0f:6a:19:37:11: 1c:30:cc:6b:84:77:39:a9:d7:96:f3:16:32:af:7d: aa:40:54:11:0f:12:64:cb:8f:93:20:da:b9:02:ae: 13:87:d9:98:c4:66:56:f5:19:da:b2:64:a2:91:0f: 83:6b:bf:53:d8:72:bf:6f:ef:65:81:3b:b5:c3:83: 60:43:41:3b:e4:db:33:81:12:0d:88:95:fb:a6:35: 39:d9:fb:ff:c0:1f:ad:11:50:06:93:4b:73:0e:4e: 43:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E3:B1:43:4B:BA:A4:C3:CD:64:12:D7:22:58:05:96:47:3A:64:32 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.248.164.0/22 Signature Algorithm: sha256WithRSAEncryption b1:b5:eb:31:57:a2:91:a6:ca:ff:1b:db:48:8c:90:f0:16:b4: 44:a6:7f:99:b3:42:fa:38:26:05:be:04:25:30:bc:cb:4a:7c: 8a:3a:b3:a4:40:5e:7f:6a:40:ae:4e:ba:1b:9e:ec:67:15:2a: fd:b2:7a:9e:01:0c:ca:32:f0:3f:ba:59:e3:c6:49:3a:09:90: 5e:eb:5c:ab:41:4b:4b:d4:e4:6d:22:d2:27:dc:9d:9b:cc:62: 2d:f4:5a:f6:95:0e:eb:ae:ec:b5:b5:0e:a7:32:5a:e3:42:90: c5:af:bd:5d:c3:9e:2a:44:65:31:8f:12:4f:56:a7:80:cc:d2: 97:e1:77:6b:d4:22:8b:b4:d6:55:3f:fa:70:8c:05:51:e3:54: df:f8:2c:c0:08:dd:12:c1:7c:78:4c:71:ae:24:9a:d5:de:a4: 7e:28:c1:1f:90:d5:a2:90:bc:0a:b5:fe:e6:af:17:43:06:70: db:56:9c:e8:56:d9:a0:26:1c:a0:ab:c8:1b:d6:be:c0:1a:f0: ce:33:de:39:c1:ae:1f:ab:c1:9a:64:6e:b3:ea:be:1c:34:4e: da:58:f5:09:de:1a:d8:c6:0f:67:19:cb:01:2d:36:05:28:f2: d0:5c:0f:0f:24:f9:84:7c:7b:98:b7:c0:e4:de:53:3b:3b:b7: cf:36:e5:07 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICXbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJlNy05ODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlz7qALGUADDNnd/VUbsATWCH5n1JsmkeLj7tP4o8ekP7lN+PJ3agXkRRINu BKNoj4yNC8n4DQ1nryvSdBAt+lgl2aIAa0CLQELfTU2P5ic35YaZckB0A9+Cnl7Y xTgu6xr43hbRkDZClPlLsFI8E0aqVhoXvCL1Gb5VrEqALXVIMMkHA8k0dCgr5J6l 9cdYEjH8f+pR5rN0tkGqxXJyD2oZNxEcMMxrhHc5qdeW8xYyr32qQFQRDxJky4+T INq5Aq4Th9mYxGZW9RnasmSikQ+Da79T2HK/b+9lgTu1w4NgQ0E75NszgRINiJX7 pjU52fv/wB+tEVAGk0tzDk5DzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDPjsUNL uqTDzWQS1yJYBZZHOmQyMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjIzQzM5Qzg4 RENCMTFFQTg2Q0Y0QzEzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/ikMA0GCSqGSIb3DQEBCwUAA4IBAQCxtesxV6KRpsr/G9tIjJDw FrREpn+Zs0L6OCYFvgQlMLzLSnyKOrOkQF5/akCuTrobnuxnFSr9snqeAQzKMvA/ ulnjxkk6CZBe61yrQUtL1ORtItIn3J2bzGIt9Fr2lQ7rruy1tQ6nMlrjQpDFr71d w54qRGUxjxJPVqeAzNKX4Xdr1CKLtNZVP/pwjAVR41Tf+CzACN0SwXx4THGuJJrV 3qR+KMEfkNWikLwKtf7mrxdDBnDbVpzoVtmgJhygq8gb1r7AGvDOM945wa4fq8Ga ZG6z6r4cNE7aWPUJ3hrYxg9nGcsBLTYFKPLQXA8PJPmEfHuYt8Dk3lM7O7fPNuUH -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:37 2026 by rpki-client