$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa File: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: LEMt/Yfn5HB27yq040h/X2ZpeZ06WvUDmE6FF+n/xcg= Subject key identifier: 2F:42:0F:F2:CF:BA:7B:1F:23:75:79:6B:52:09:6C:34:77:A0:1C:BD Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01ED Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:17:39 +0000 ROA not before: Thu 14 Aug 2025 23:51:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 167.103.95.0/24 maxlen: 24 167.103.170.0/24 maxlen: 24 167.103.237.0/24 maxlen: 24 167.103.238.0/24 maxlen: 24 167.103.239.0/24 maxlen: 24 167.103.240.0/24 maxlen: 24 167.103.241.0/24 maxlen: 24 167.103.242.0/24 maxlen: 24 167.103.243.0/24 maxlen: 24 167.103.244.0/24 maxlen: 24 167.103.245.0/24 maxlen: 24 167.103.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 03:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Aug 14 23:51:35 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a474b3-09ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c6:b3:1f:3c:9f:76:2a:d1:85:f0:15:bf:b4: 6e:fd:78:ca:f5:0b:96:5c:0a:2d:ba:a0:67:08:e0: 5b:13:34:1b:92:49:08:a4:d1:85:83:7e:d6:4e:e0: 5c:97:06:cc:a8:33:f3:1c:b5:fd:69:80:56:b6:90: df:eb:bb:87:22:b8:6d:3c:8b:1d:5f:91:ab:98:3b: 20:4d:c6:4b:c1:d6:76:b8:f6:e0:94:fe:60:1f:81: 5d:06:a2:32:f2:e0:1c:8a:92:cd:d6:50:22:ff:9b: 2c:d1:aa:24:55:d9:5c:30:b1:ce:1c:ff:19:1b:0d: 38:49:fe:44:86:4e:eb:cd:f2:6b:37:28:63:fb:25: 73:74:de:7d:49:15:89:2f:6e:48:a2:69:ed:81:cf: 38:e4:66:f0:cf:4d:8c:85:16:f7:9e:cd:16:e6:04: 9a:75:4e:b2:de:0f:00:fc:4b:03:45:b3:61:52:da: 5d:40:8a:1b:35:59:f2:8a:29:98:a2:0e:40:d6:aa: 45:18:18:01:5b:09:a8:89:47:f0:07:71:03:4d:fa: ab:45:c6:0d:34:64:fb:f7:32:cb:57:88:62:34:3c: d0:f6:c3:6e:6b:72:3b:cb:82:34:51:e2:28:83:37: 1b:d5:36:e1:63:08:76:1a:2f:06:43:4e:16:cd:08: 5f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:42:0F:F2:CF:BA:7B:1F:23:75:79:6B:52:09:6C:34:77:A0:1C:BD X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.95.255 167.103.170.0/24 167.103.237.0-167.103.246.255 Signature Algorithm: sha256WithRSAEncryption b1:c8:d9:05:ef:ac:5b:1b:1d:6c:8a:54:e0:58:50:cb:30:23: cb:7b:ca:20:1f:e7:7c:f9:2b:23:d3:f0:e7:1d:90:1c:a3:bd: 01:9e:23:12:62:5b:e7:2d:8c:8a:e5:1b:db:fe:0c:96:b1:97: 0a:cc:f3:76:dd:9c:c7:1b:64:85:f2:c1:de:9d:a5:ca:6f:2b: ce:d3:b3:0d:09:6c:8b:cc:e6:5e:a5:61:80:93:51:9f:86:7d: fe:ff:5e:d6:d1:77:e8:84:e1:a6:e0:11:91:5a:4d:73:69:f8: 52:1f:b7:f5:85:1d:46:00:5f:a4:70:0a:a6:44:a5:01:be:9d: f9:de:8e:a7:ef:c5:af:a4:74:a5:c7:d5:32:6c:d8:72:53:e8: 0b:b9:27:2d:f9:77:a7:c0:9c:f8:a5:eb:42:59:0a:9a:96:6c: c8:9a:1a:75:36:57:a9:3c:bb:a3:2d:bd:6e:15:7b:5a:77:a6: f1:d8:09:f6:90:1f:28:c4:a2:0d:61:55:af:67:11:ce:c0:81: 31:d4:61:e4:36:56:8e:83:b0:ba:45:ab:d1:9f:3b:2d:07:83: 2d:55:ea:ed:97:cd:b4:4a:2c:8d:72:80:61:f9:d3:23:76:6d: 60:c7:58:17:11:ed:1a:32:10:a9:cd:eb:49:cd:4f:81:68:7e: b6:37:d4:0f -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwODE0MjM1MTM1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzRiMy0wOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08azHzyfdirRhfAVv7Ru/XjK9QuWXAotuqBnCOBbEzQbkkkIpNGFg37WTuBc lwbMqDPzHLX9aYBWtpDf67uHIrhtPIsdX5GrmDsgTcZLwdZ2uPbglP5gH4FdBqIy 8uAcipLN1lAi/5ss0aokVdlcMLHOHP8ZGw04Sf5Ehk7rzfJrNyhj+yVzdN59SRWJ L25Iomntgc845Gbwz02MhRb3ns0W5gSadU6y3g8A/EsDRbNhUtpdQIobNVnyiimY og5A1qpFGBgBWwmoiUfwB3EDTfqrRcYNNGT79zLLV4hiNDzQ9sNua3I7y4I0UeIo gzcb1TbhYwh2Gi8GQ04WzQhfsQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFC9CD/LP unsfI3V5a1IJbDR3oBy9MB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0UwQkEyMUNF QkIyMTFFRUE5M0Q5QjE0QzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAo BAIAATAiMAwDBAGnZ1oDBAWnZ0ADBACnZ6owDAMEAKdn7QMEAKdn9jANBgkqhkiG 9w0BAQsFAAOCAQEAscjZBe+sWxsdbIpU4FhQyzAjy3vKIB/nfPkrI9Pw5x2QHKO9 AZ4jEmJb5y2MiuUb2/4MlrGXCszzdt2cxxtkhfLB3p2lym8rztOzDQlsi8zmXqVh gJNRn4Z9/v9e1tF36IThpuARkVpNc2n4Uh+39YUdRgBfpHAKpkSlAb6d+d6Op+/F r6R0pcfVMmzYclPoC7knLfl3p8Cc+KXrQlkKmpZsyJoadTZXqTy7oy29bhV7Wnem 8dgJ9pAfKMSiDWFVr2cRzsCBMdRh5DZWjoOwukWr0Z87LQeDLVXq7ZfNtEosjXKA YfnTI3ZtYMdYFxHtGjIQqc3rSc1PgWh+tjfUDw== -----END CERTIFICATE-----Generated at Thu Mar 12 20:08:22 2026 by rpki-client