$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa File: 340899165F9D11ED8521047DC4F9AE02.roa (raw, json) Hash identifier: K3/pVc/Hne3kkbfPDY/m9XxvKKKGSnh5r4L7FK5RV0s= Subject key identifier: 8F:C7:CE:FB:4B:3E:00:F9:64:FB:3C:DA:E7:6B:77:B0:CD:52:66:B9 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5E50 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:17:40 +0000 ROA not before: Thu 28 Aug 2025 14:54:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149139 IP address blocks: 103.102.128.0/24 maxlen: 24 103.102.129.0/24 maxlen: 24 103.102.130.0/24 maxlen: 24 103.102.131.0/24 maxlen: 24 2001:df2:d900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24144 (0x5e50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c84-f9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:86:fa:f7:31:ac:a9:59:37:3c:fe:0c:fe: ca:93:ea:fc:ff:0a:fa:1d:6e:d8:4f:b5:a8:89:e8: 2a:7d:e4:59:8f:19:c4:19:0f:5b:f2:a9:50:98:10: 60:43:e5:a6:fd:1e:1f:2a:38:59:57:e1:f4:9e:3d: 48:42:6d:59:b7:e0:9b:dc:29:73:d6:75:30:d9:eb: b8:4d:a5:b3:17:27:e8:4b:1c:81:d8:3a:20:2d:9b: 7c:3f:55:bc:ae:d5:ba:53:25:00:c7:72:dd:87:78: 76:5a:62:bd:0d:02:07:c3:59:97:ae:50:3c:ea:14: 79:a4:df:0d:85:ff:1c:09:8a:3c:42:7d:37:0c:67: 0f:85:39:ff:de:4e:13:34:b0:54:f0:65:a9:f1:2e: ae:ba:0c:b2:a7:08:75:8e:4e:a2:42:e4:3b:97:40: b7:46:8e:25:1d:32:96:23:0a:ed:4e:31:2e:95:c5: 33:2a:e1:3c:ba:c6:6d:bb:7a:70:3c:49:86:e8:6e: 85:0b:44:26:55:20:a2:68:0b:33:96:af:64:10:89: 24:23:37:19:8c:4a:53:2d:da:3f:b2:01:83:fa:ac: b9:d0:49:03:3b:47:14:14:d6:7c:b2:d1:4e:e5:28: 5d:c3:ae:43:ba:09:ab:4c:5a:a2:27:73:09:b5:40: 9e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C7:CE:FB:4B:3E:00:F9:64:FB:3C:DA:E7:6B:77:B0:CD:52:66:B9 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.102.128.0/22 IPv6: 2001:df2:d900::/48 Signature Algorithm: sha256WithRSAEncryption 7a:68:01:20:3d:98:68:eb:54:76:b7:48:1b:da:a5:fe:5f:6d: b5:58:b3:70:2e:a5:8b:45:c1:49:cf:af:84:b5:58:ad:44:ef: a2:bb:7f:09:6d:4d:14:e4:40:4a:62:f7:e3:68:85:b0:8c:27: b0:1e:52:0b:98:ca:c4:4a:10:08:cd:62:90:77:d8:aa:0b:f8: 6e:10:bb:e0:44:a7:29:cc:ce:7f:23:c5:16:2f:9d:54:fb:fd: 7c:0e:ad:3d:31:81:30:2b:6d:94:ae:4f:9e:5a:75:42:6d:65: 86:e3:33:fe:e6:fb:bd:2e:fe:ba:30:24:f4:89:37:d8:7a:a7: c5:d8:f0:2f:94:82:d0:b8:82:79:82:8b:04:ae:17:e2:e9:10: bb:d9:f6:8e:75:25:8d:90:32:56:d7:32:c7:a5:c9:1c:a8:51: 26:71:0f:17:9e:a0:1c:28:7e:a6:8e:85:34:bb:e6:c4:7f:2b: 84:56:14:5e:60:e6:01:57:3f:5a:43:09:14:e0:f7:a4:bb:c2: de:47:0e:b8:6e:4c:e9:40:aa:01:59:94:32:7e:04:89:d6:27: ac:60:90:a1:30:76:76:0d:94:25:d1:2f:5f:ca:c7:39:90:8f: 9b:b0:ca:b5:eb:6b:3c:77:92:b6:6c:0a:be:3e:95:3c:84:6f: aa:db:5c:64 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICXlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGM4NC1mOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvqG+vcxrKlZNzz+DP7Kk+r8/wr6HW7YT7WoiegqfeRZjxnEGQ9b8qlQmBBg Q+Wm/R4fKjhZV+H0nj1IQm1Zt+Cb3Clz1nUw2eu4TaWzFyfoSxyB2DogLZt8P1W8 rtW6UyUAx3Ldh3h2WmK9DQIHw1mXrlA86hR5pN8Nhf8cCYo8Qn03DGcPhTn/3k4T NLBU8GWp8S6uugyypwh1jk6iQuQ7l0C3Ro4lHTKWIwrtTjEulcUzKuE8usZtu3pw PEmG6G6FC0QmVSCiaAszlq9kEIkkIzcZjEpTLdo/sgGD+qy50EkDO0cUFNZ8stFO 5Shdw65DugmrTFqiJ3MJtUCefwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI/HzvtL PgD5ZPs82udrd7DNUma5MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzQwODk5MTY1 RjlEMTFFRDg1MjEwNDdEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ2aAMA8EAgACMAkDBwAgAQ3y2QAwDQYJKoZIhvcNAQELBQADggEB AHpoASA9mGjrVHa3SBvapf5fbbVYs3AupYtFwUnPr4S1WK1E76K7fwltTRTkQEpi 9+NohbCMJ7AeUguYysRKEAjNYpB32KoL+G4Qu+BEpynMzn8jxRYvnVT7/XwOrT0x gTArbZSuT55adUJtZYbjM/7m+70u/rowJPSJN9h6p8XY8C+UgtC4gnmCiwSuF+Lp ELvZ9o51JY2QMlbXMselyRyoUSZxDxeeoBwofqaOhTS75sR/K4RWFF5g5gFXP1pD CRTg96S7wt5HDrhuTOlAqgFZlDJ+BInWJ6xgkKEwdnYNlCXRL1/KxzmQj5uwyrXr azx3krZsCr4+lTyEb6rbXGQ= -----END CERTIFICATE-----Generated at Sat Mar 7 22:43:49 2026 by rpki-client