$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa File: CD748A00A03111ECADA0802DC4F9AE02.roa (raw, json) Hash identifier: ttCc0jUjplMUc+HC0GfYqLzDpLZghiCd7SvCI1G1du0= Subject key identifier: 9D:AA:1A:3C:3E:BA:6E:18:C1:5B:02:89:4B:6A:7C:55:AC:CF:1D:6D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5DE5 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:15:54 +0000 ROA not before: Thu 28 Aug 2025 14:53:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135926 IP address blocks: 103.100.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24037 (0x5de5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60c1a-f38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:08:9e:dd:71:d3:ca:62:24:dc:f4:22:cd:ae: ec:3c:e5:45:43:fd:71:e4:52:49:89:32:f8:be:49: c3:6e:f3:ab:83:90:a2:6d:a1:11:09:e8:75:1f:f8: 7e:63:e1:b2:bd:de:38:66:3d:7d:16:64:61:d7:48: 0d:c2:fb:3f:4a:d3:30:84:ed:d9:e4:83:7c:e4:45: aa:5a:74:23:98:3a:24:d6:1d:55:d4:fd:7c:f4:fb: d6:f3:d1:0b:b9:df:51:ba:c8:69:b3:02:cf:54:ae: 26:0e:49:a2:0c:78:ab:25:d5:db:46:bc:80:df:e8: 99:19:c4:39:1c:87:37:7d:b8:d4:35:c2:8c:d4:0a: b6:61:08:9a:03:e0:0c:d7:08:63:48:a2:14:22:76: b9:0f:6b:18:c9:75:95:31:d4:99:0e:14:db:12:dd: d1:16:ea:1e:81:85:7a:3f:a8:43:08:43:f5:de:c9: 49:92:38:25:df:16:7d:e2:e7:5e:a0:d8:e8:35:8e: c6:10:f4:56:6f:77:fe:ad:b7:8e:2e:89:17:ed:e7: f4:21:02:23:4a:0a:f6:c3:8c:73:4d:13:d8:b3:6d: 31:9c:ff:65:5e:3a:cb:ca:82:e0:60:21:83:3c:87: 09:77:5c:3a:6f:4f:8f:18:31:b8:7c:2a:2d:19:21: 45:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AA:1A:3C:3E:BA:6E:18:C1:5B:02:89:4B:6A:7C:55:AC:CF:1D:6D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.228.0/22 Signature Algorithm: sha256WithRSAEncryption 61:c8:06:2b:ee:52:2d:8a:26:a6:6c:bc:b9:1d:5d:4b:c7:2e: c5:69:50:eb:6c:47:24:98:4b:11:d9:36:f1:9f:ba:a7:1b:fc: b3:61:d4:ff:f6:5c:91:b7:7c:78:a6:df:d6:c8:90:26:e6:db: 47:b5:bc:c0:ca:82:f3:e4:ce:b9:ee:d8:04:bc:6c:54:f6:b1: 85:5f:fb:8a:eb:c8:a3:78:29:02:ce:ab:42:ca:82:fe:e2:de: 4c:e2:15:29:9e:ca:b2:61:94:c8:64:3c:17:33:b3:1d:4d:c4: 2e:bc:7f:63:fc:37:b5:83:03:2d:46:b6:f8:39:b0:3b:07:a2: 9f:33:54:2d:38:4a:a0:61:7d:77:95:20:94:2c:a9:85:38:e3: 87:b2:06:48:02:43:c4:4f:42:d3:21:f5:01:c5:6b:dc:dc:40: 03:b1:21:db:6e:61:a0:cf:ab:1c:94:5b:89:40:c2:d2:71:a3: 12:4d:84:c9:11:f8:4b:28:16:4f:e7:88:74:de:b8:0c:9a:11: 63:a5:3c:39:0a:ec:07:10:a1:45:c7:35:67:40:b0:39:c6:25: 7d:e2:b5:81:0d:ae:b6:05:09:a5:fd:3d:69:51:af:8c:ea:86: bd:a8:b7:0e:8c:5c:88:93:04:b4:7c:1d:b8:b6:a3:9a:c8:2e: 0a:2b:46:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICXeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzE4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGMxYS1mMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQie3XHTymIk3PQiza7sPOVFQ/1x5FJJiTL4vknDbvOrg5CibaERCeh1H/h+ Y+Gyvd44Zj19FmRh10gNwvs/StMwhO3Z5IN85EWqWnQjmDok1h1V1P189PvW89EL ud9RushpswLPVK4mDkmiDHirJdXbRryA3+iZGcQ5HIc3fbjUNcKM1Aq2YQiaA+AM 1whjSKIUIna5D2sYyXWVMdSZDhTbEt3RFuoegYV6P6hDCEP13slJkjgl3xZ94ude oNjoNY7GEPRWb3f+rbeOLokX7ef0IQIjSgr2w4xzTRPYs20xnP9lXjrLyoLgYCGD PIcJd1w6b0+PGDG4fCotGSFFrwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ2qGjw+ um4YwVsCiUtqfFWszx1tMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQ0Q3NDhBMDBB MDMxMTFFQ0FEQTA4MDJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ2TkMA0GCSqGSIb3DQEBCwUAA4IBAQBhyAYr7lItiiambLy5HV1L xy7FaVDrbEckmEsR2Tbxn7qnG/yzYdT/9lyRt3x4pt/WyJAm5ttHtbzAyoLz5M65 7tgEvGxU9rGFX/uK68ijeCkCzqtCyoL+4t5M4hUpnsqyYZTIZDwXM7MdTcQuvH9j /De1gwMtRrb4ObA7B6KfM1QtOEqgYX13lSCULKmFOOOHsgZIAkPET0LTIfUBxWvc 3EADsSHbbmGgz6sclFuJQMLScaMSTYTJEfhLKBZP54h03rgMmhFjpTw5CuwHEKFF xzVnQLA5xiV94rWBDa62BQml/T1pUa+M6oa9qLcOjFyIkwS0fB24tqOayC4KK0ZL -----END CERTIFICATE-----Generated at Sat Mar 7 22:42:51 2026 by rpki-client