$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa File: 4154F0708CD311ED8825306EC4F9AE02.roa (raw, json) Hash identifier: CzsFwPXrf3RpZpNDtnsgCbdSX+XnzV1SS6waOL+rhIU= Subject key identifier: 8C:8B:7E:F6:A9:8B:1F:91:A0:FD:A1:35:F0:76:2B:07:41:F1:45:97 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5E43 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:17:26 +0000 ROA not before: Thu 28 Aug 2025 14:54:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149116 IP address blocks: 103.190.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24131 (0x5e43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c76-2575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:6c:d4:75:eb:5c:cd:7d:1d:af:eb:d4:9f: 55:fc:0c:e6:44:94:ae:85:53:da:33:8b:47:0a:b3: 6b:d9:bf:a2:52:0e:e7:8d:37:2d:dd:04:a1:4f:0a: a1:3f:1e:fb:6a:43:3b:c6:dd:37:8c:35:75:a4:50: 91:75:d1:3f:d8:3f:dc:62:ad:30:a5:bf:18:95:d3: e4:21:b7:31:55:0a:bc:a2:27:45:52:dc:70:b4:f2: 45:b8:31:c3:e9:9f:f6:50:1e:4d:eb:79:d6:b8:7b: b5:62:eb:b2:a9:28:a4:d1:c4:9a:c9:e2:5e:6e:ea: 3b:30:37:7f:f7:dc:93:96:92:f2:e7:21:06:08:d7: 26:e6:f9:02:7e:03:29:e4:2c:8b:5b:e8:23:7a:9f: a6:2d:20:97:a5:cf:69:ec:28:a6:1c:a5:85:cc:31: a5:df:f6:cb:3c:23:29:a0:78:36:db:7d:f4:dd:64: cf:c0:d9:7b:83:b0:9b:ad:27:b8:a6:ec:38:b5:1e: 1f:ff:88:ec:5b:5d:61:de:08:9a:7c:f3:7b:b0:2e: 6b:3d:79:db:9a:ac:06:33:86:1d:84:32:58:80:45: 81:1b:8f:af:52:97:9e:00:03:83:ed:b9:19:a8:1d: 1e:67:c4:83:d0:f7:55:d5:f7:2e:c7:b3:03:2a:b9: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8B:7E:F6:A9:8B:1F:91:A0:FD:A1:35:F0:76:2B:07:41:F1:45:97 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4154F0708CD311ED8825306EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.190.200.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:d7:d9:41:01:e4:25:64:e9:04:28:a3:18:70:92:78:1f:c1: 82:ef:ce:22:71:44:e7:e5:ba:3b:ee:f3:6f:64:45:56:43:2a: 20:0c:29:7d:90:56:31:de:3f:87:33:35:1d:f5:6b:a2:32:e5: a4:4c:ea:e1:50:0a:83:1b:95:37:93:2f:a0:00:6b:37:e6:c5: 9e:56:84:30:5e:20:a2:6e:3b:b8:e2:82:b5:16:32:54:07:fb: 83:95:9d:01:e6:b2:d6:62:e6:dd:a9:20:91:c5:bc:d4:bb:c3: 86:b9:89:38:0f:fc:39:61:5d:c4:31:8c:86:0b:35:86:42:36: 88:e1:2d:12:10:02:0a:12:4e:53:27:2b:4e:a6:e4:9b:bb:70: 72:36:39:c2:5e:ae:90:aa:66:b3:01:70:a3:f9:8e:ad:29:e6: 12:0c:50:91:ae:34:07:2b:5b:b0:ad:50:70:b5:fa:52:6f:12: 52:7e:0e:45:c6:a9:c6:07:c4:14:19:06:32:9a:3c:e7:96:ea: 75:f2:75:86:d3:ec:dc:2e:b2:e8:06:8d:bc:46:4c:de:c7:ff: d6:9c:e7:4b:f2:a1:e3:62:76:0c:7b:d6:d2:e1:9f:4a:ee:26: 5a:c3:c6:17:8f:ea:f6:82:22:99:cc:54:81:67:81:a1:5f:8c: 6e:3e:e4:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICXkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGM3Ni0yNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUNs1HXrXM19Ha/r1J9V/AzmRJSuhVPaM4tHCrNr2b+iUg7njTct3QShTwqh Px77akM7xt03jDV1pFCRddE/2D/cYq0wpb8YldPkIbcxVQq8oidFUtxwtPJFuDHD 6Z/2UB5N63nWuHu1YuuyqSik0cSayeJebuo7MDd/99yTlpLy5yEGCNcm5vkCfgMp 5CyLW+gjep+mLSCXpc9p7CimHKWFzDGl3/bLPCMpoHg223303WTPwNl7g7CbrSe4 puw4tR4f/4jsW11h3giafPN7sC5rPXnbmqwGM4YdhDJYgEWBG4+vUpeeAAOD7bkZ qB0eZ8SD0PdV1fcux7MDKrmZEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIyLfvap ix+RoP2hNfB2KwdB8UWXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDE1NEYwNzA4 Q0QzMTFFRDg4MjUzMDZFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ77IMA0GCSqGSIb3DQEBCwUAA4IBAQA919lBAeQlZOkEKKMYcJJ4 H8GC784icUTn5bo77vNvZEVWQyogDCl9kFYx3j+HMzUd9WuiMuWkTOrhUAqDG5U3 ky+gAGs35sWeVoQwXiCibju44oK1FjJUB/uDlZ0B5rLWYubdqSCRxbzUu8OGuYk4 D/w5YV3EMYyGCzWGQjaI4S0SEAIKEk5TJytOpuSbu3ByNjnCXq6QqmazAXCj+Y6t KeYSDFCRrjQHK1uwrVBwtfpSbxJSfg5FxqnGB8QUGQYymjznlup18nWG0+zcLrLo Bo28Rkzex//WnOdL8qHjYnYMe9bS4Z9K7iZaw8YXj+r2giKZzFSBZ4GhX4xuPuRq -----END CERTIFICATE-----Generated at Sat Mar 7 22:46:26 2026 by rpki-client