$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa File: 28FA530EB3D411ECA9ECEB2DC4F9AE02.roa (raw, json) Hash identifier: eDk6MhKA3L6NcqyRs/qOjysgjsfaaPDNn6zk4lA/5R4= Subject key identifier: F6:86:53:0E:70:99:77:6A:93:28:BD:62:4A:86:FA:10:16:92:B7:D8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DA7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:14:52 +0000 ROA not before: Thu 28 Aug 2025 14:52:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131357 IP address blocks: 103.7.177.0/24 maxlen: 24 103.115.166.0/24 maxlen: 24 103.213.122.0/23 maxlen: 24 2001:df6:3400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23975 (0x5da7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60bdc-8ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:a2:ab:e8:00:3c:01:cc:31:c8:89:43:fe: f3:4a:22:60:d2:ae:06:2b:ba:2b:de:e9:60:28:dd: 71:e2:44:0b:72:45:68:7b:c3:a5:61:87:43:82:2d: 06:1a:ed:77:7c:fe:ec:81:12:8b:9c:c6:f6:7f:54: f6:44:34:38:83:57:94:28:e3:8d:2e:26:af:a2:29: 5e:ef:61:81:f8:aa:94:19:09:c2:ee:ff:22:c0:16: b0:ef:aa:45:c7:a0:c1:d2:13:ba:1e:6a:78:94:32: 9e:d9:09:da:43:69:11:94:f3:d1:f1:2f:ba:d7:cb: e4:c6:76:f6:d6:e0:e5:0b:f8:01:09:03:3f:3f:81: 4a:4d:31:90:3e:bd:5f:40:19:49:c2:09:4e:3d:c2: b3:51:a1:85:f5:fa:0c:fd:4c:c7:15:3a:eb:62:9a: 03:37:60:0f:4b:7c:5b:d4:b9:03:c7:79:ef:0d:18: a3:66:58:ee:6c:43:55:fe:06:1e:78:2e:60:9f:74: 9f:a4:e2:ec:a6:58:e4:fe:d2:48:16:db:d9:71:25: d2:cd:64:dd:19:49:05:10:d7:05:f4:d0:c0:20:a7: 75:ca:4e:d7:1c:bf:ee:d3:6f:74:e4:d2:c1:9c:79: 13:67:08:64:16:6b:ac:8a:33:ed:48:26:ac:a0:7a: 65:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:86:53:0E:70:99:77:6A:93:28:BD:62:4A:86:FA:10:16:92:B7:D8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/28FA530EB3D411ECA9ECEB2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.7.177.0/24 103.115.166.0/24 103.213.122.0/23 IPv6: 2001:df6:3400::/48 Signature Algorithm: sha256WithRSAEncryption 00:3d:87:0a:f6:07:83:0a:23:ce:9a:2a:4d:3c:e5:61:24:fa: fa:de:94:99:ec:69:df:4e:c4:ab:75:7e:e6:2b:04:f0:87:26: de:99:81:7d:62:91:76:f6:5f:3b:8a:75:c2:bd:65:97:42:ae: c3:30:95:50:52:71:d2:a9:23:5f:d0:e1:c1:be:46:2f:b9:03: fc:2a:cb:f0:89:ac:ba:e6:cb:ab:93:b0:ff:b8:58:07:e0:82: d3:9d:21:c4:39:2e:2f:e2:09:d7:4b:1f:70:ac:72:a7:77:51: e4:fb:e1:4a:21:f6:03:22:4d:f7:92:b8:67:9e:0d:50:92:8a: bc:0b:45:2a:65:3c:f9:f3:81:bb:7a:14:c0:c9:ea:70:53:38: a7:a0:c7:40:87:e1:54:fb:4e:ca:a0:c9:2d:68:23:b4:ea:ea: 05:80:f6:13:47:7e:91:96:ac:bc:54:38:8e:21:9d:83:15:b8: 19:90:10:10:f8:86:4d:44:92:35:06:3d:95:06:54:10:4b:3d: 7e:3e:48:84:c7:b8:7f:51:45:ae:50:93:66:89:aa:d4:17:08: 23:c6:b5:f2:e0:e6:cd:11:4f:64:af:dd:57:e3:99:57:8e:a8: 88:c7:af:f2:d7:ac:7f:f7:61:7f:80:e6:ac:65:a7:c4:94:5e: d3:a0:2d:d3 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICXacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGJkYy04ZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6iiq+gAPAHMMciJQ/7zSiJg0q4GK7or3ulgKN1x4kQLckVoe8OlYYdDgi0G Gu13fP7sgRKLnMb2f1T2RDQ4g1eUKOONLiavoile72GB+KqUGQnC7v8iwBaw76pF x6DB0hO6Hmp4lDKe2QnaQ2kRlPPR8S+618vkxnb21uDlC/gBCQM/P4FKTTGQPr1f QBlJwglOPcKzUaGF9foM/UzHFTrrYpoDN2APS3xb1LkDx3nvDRijZljubENV/gYe eC5gn3SfpOLspljk/tJIFtvZcSXSzWTdGUkFENcF9NDAIKd1yk7XHL/u02905NLB nHkTZwhkFmusijPtSCasoHpljQIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFPaGUw5w mXdqkyi9YkqG+hAWkrfYMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjhGQTUzMEVC M0Q0MTFFQ0E5RUNFQjJEQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQAZwexAwQAZ3OmAwQBZ9V6MA8EAgACMAkDBwAgAQ32NAAwDQYJKoZI hvcNAQELBQADggEBAAA9hwr2B4MKI86aKk085WEk+vrelJnsad9OxKt1fuYrBPCH Jt6ZgX1ikXb2XzuKdcK9ZZdCrsMwlVBScdKpI1/Q4cG+Ri+5A/wqy/CJrLrmy6uT sP+4WAfggtOdIcQ5Li/iCddLH3Cscqd3UeT74Uoh9gMiTfeSuGeeDVCSirwLRSpl PPnzgbt6FMDJ6nBTOKegx0CH4VT7TsqgyS1oI7Tq6gWA9hNHfpGWrLxUOI4hnYMV uBmQEBD4hk1EkjUGPZUGVBBLPX4+SITHuH9RRa5Qk2aJqtQXCCPGtfLg5s0RT2Sv 3VfjmVeOqIjHr/LXrH/3YX+A5qxlp8SUXtOgLdM= -----END CERTIFICATE-----Generated at Sat Mar 7 22:42:50 2026 by rpki-client