$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa File: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (raw, json) Hash identifier: xjuxHTm+G9he/JFBNF/J7ScezC0X5PCaznrRtGeATtQ= Subject key identifier: 88:70:68:04:11:69:21:69:C6:87:CA:BE:D9:15:2C:C9:B0:50:0D:54 Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 10A6 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa Signing time: Mon 30 Mar 2026 17:22:07 +0000 ROA not before: Mon 30 Mar 2026 17:22:07 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132298 IP address blocks: 103.133.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4262 (0x10a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Mar 30 17:22:07 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69cab13e-6a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e6:d4:f2:f4:5c:9f:1c:10:c7:5c:a2:30:28: 26:05:69:88:43:64:5d:ec:c8:27:e8:ea:a8:15:43: 78:cd:96:f2:54:38:b5:e6:cc:02:29:dd:9a:96:6f: cd:ad:b5:06:25:c0:c7:f3:a2:75:c3:66:06:12:fe: 47:84:f8:36:16:34:05:4c:cc:d6:06:83:b8:9b:ed: b9:e3:8d:6b:c6:10:f0:a1:ea:f4:44:4d:ed:63:4e: 18:d3:58:ab:8d:67:d3:c4:b6:ea:f9:26:c8:bc:21: 9b:5f:7b:06:b7:f8:da:80:e3:79:5e:91:1c:e5:3d: bf:59:75:22:3f:99:d6:d2:8f:85:7e:04:17:84:ac: 7c:ff:0a:3e:eb:49:7a:20:dc:46:bf:77:f7:1d:6d: 77:dc:f0:50:99:d6:23:f9:98:14:bf:14:4d:7d:43: d5:1b:99:83:ac:70:65:03:52:a2:39:d1:6b:08:fa: b6:24:47:1d:51:52:50:22:d2:df:de:f3:54:72:05: 08:87:9f:b4:b9:54:3d:80:08:a9:a4:00:32:2d:84: f0:fe:d8:95:a9:04:ac:ae:c4:80:a4:89:dd:db:92: 20:55:b4:ca:d4:17:13:6c:8f:7b:11:12:b3:df:50: 49:dc:86:1b:b0:00:c3:ef:d7:ad:5e:12:4b:a2:a8: dd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:70:68:04:11:69:21:69:C6:87:CA:BE:D9:15:2C:C9:B0:50:0D:54 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.133.200.0/22 Signature Algorithm: sha256WithRSAEncryption 09:89:2b:74:d0:e4:24:c1:a9:1a:d0:23:71:62:d6:02:cd:e4: 12:e2:44:1f:86:75:f5:44:cc:1a:da:cd:72:0d:55:23:68:35: d3:3d:3c:ab:68:15:27:bd:bd:9b:66:28:e5:e7:4d:df:85:2a: 5d:1b:d0:4f:02:19:97:58:3d:44:c1:20:cf:2d:d0:1e:c2:ea: c6:99:33:a0:16:4b:99:c2:4e:bf:04:da:b2:9e:a7:23:6c:f1: 64:02:d8:ad:ef:1f:33:ff:1e:0a:ba:d4:86:7b:f4:7f:93:7e: 88:bc:33:ce:fe:be:31:41:c4:82:1d:72:57:6f:4b:32:17:1f: a6:a2:dc:69:d1:66:5c:5b:57:ec:ec:aa:3a:1e:00:84:df:e9: 3f:56:cc:3e:91:55:31:86:2f:b7:7b:3f:75:66:7f:57:00:3b: 1a:ae:cf:33:36:df:ed:42:37:4c:23:37:21:3e:1c:63:a8:ff: ba:7f:30:4f:bd:55:0b:ae:3e:a1:6c:c6:d9:92:6e:80:3f:9c: 82:7b:8d:ef:e5:f1:b8:28:3a:47:47:b4:f8:93:28:96:11:41: 05:80:dc:5f:dc:2f:9e:b8:85:3a:4d:14:7d:7a:e9:2c:91:7b: 57:11:05:e0:66:26:24:f4:96:4b:29:46:4c:52:c6:ae:50:7f: 00:f8:8c:48 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwMzMwMTcyMjA3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYjEzZS02YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+bU8vRcnxwQx1yiMCgmBWmIQ2Rd7Mgn6OqoFUN4zZbyVDi15swCKd2alm/N rbUGJcDH86J1w2YGEv5HhPg2FjQFTMzWBoO4m+25441rxhDwoer0RE3tY04Y01ir jWfTxLbq+SbIvCGbX3sGt/jagON5XpEc5T2/WXUiP5nW0o+FfgQXhKx8/wo+60l6 INxGv3f3HW133PBQmdYj+ZgUvxRNfUPVG5mDrHBlA1KiOdFrCPq2JEcdUVJQItLf 3vNUcgUIh5+0uVQ9gAippAAyLYTw/tiVqQSsrsSApInd25IgVbTK1BcTbI97ERKz 31BJ3IYbsADD79etXhJLoqjd9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIhwaAQR aSFpxofKvtkVLMmwUA1UMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNDMjIvNjkwNkM2RkE0Qzc0MTFFOUI3QzRCQjU1QzRGOUFFMDIvMkEzRDhCNUVB OTdEMTFFQUJBMzFCODQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4XIMA0GCSqGSIb3DQEBCwUAA4IBAQAJiSt00OQkwaka0CNxYtYC zeQS4kQfhnX1RMwa2s1yDVUjaDXTPTyraBUnvb2bZijl503fhSpdG9BPAhmXWD1E wSDPLdAewurGmTOgFkuZwk6/BNqynqcjbPFkAtit7x8z/x4KutSGe/R/k36IvDPO /r4xQcSCHXJXb0syFx+motxp0WZcW1fs7Ko6HgCE3+k/Vsw+kVUxhi+3ez91Zn9X ADsars8zNt/tQjdMIzchPhxjqP+6fzBPvVULrj6hbMbZkm6AP5yCe43v5fG4KDpH R7T4kyiWEUEFgNxf3C+euIU6TRR9eukskXtXEQXgZiYk9JZLKUZMUsauUH8A+IxI -----END CERTIFICATE-----Generated at Mon Apr 6 12:27:20 2026 by rpki-client