$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/C168AD504F2C11F1ABC5AA8AB2833773.roa File: C168AD504F2C11F1ABC5AA8AB2833773.roa (raw, json) Hash identifier: l2bvgh1WSA3hFUf/CndN4/rmIhx2DaAOxyIJilsNFxM= Subject key identifier: D2:A5:2B:13:9C:6B:87:E4:D7:25:98:3E:D6:DC:25:B2:65:03:B1:F4 Certificate issuer: /CN=A91BC238/serialNumber=12A102F08ED14F623FA6E31DBAB49A24D1B9A151 Certificate serial: 010B Authority key identifier: 12:A1:02:F0:8E:D1:4F:62:3F:A6:E3:1D:BA:B4:9A:24:D1:B9:A1:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EqEC8I7RT2I_puMdurSaJNG5oVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/C168AD504F2C11F1ABC5AA8AB2833773.roa Signing time: Thu 14 May 2026 00:41:18 +0000 ROA not before: Thu 14 May 2026 00:41:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 202036 IP address blocks: 103.218.96.0/24 maxlen: 24 103.218.97.0/24 maxlen: 24 103.218.98.0/24 maxlen: 24 103.218.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/EqEC8I7RT2I_puMdurSaJNG5oVE.crl rsync://rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/EqEC8I7RT2I_puMdurSaJNG5oVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EqEC8I7RT2I_puMdurSaJNG5oVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC238, serialNumber=12A102F08ED14F623FA6E31DBAB49A24D1B9A151 Validity Not Before: May 14 00:41:18 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6a051a2d-5eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d3:ba:25:78:c7:78:81:9c:e2:94:44:ab:c9: 58:27:4e:92:bc:f1:0e:02:78:d2:9b:20:f8:08:ec: e8:6d:c4:07:2d:92:0a:1f:e7:67:4f:b7:06:1b:d7: ea:22:e4:41:f7:10:5e:f6:b4:83:17:9e:90:e9:5c: 96:fc:16:b5:c8:c7:b0:2a:66:84:11:ec:9b:41:f9: c4:3d:90:f0:62:f4:20:b9:06:b9:42:a6:79:bb:1b: 51:cb:f7:39:39:c4:02:38:1f:a2:e4:44:9a:d3:a6: 1f:5d:a2:8f:1c:74:43:86:63:97:1c:bf:07:0e:72: 30:48:bb:6e:2f:26:2b:78:b7:62:03:01:87:8b:bc: 55:b3:cf:b0:93:b1:4f:11:e6:a2:a7:66:3c:77:a7: 01:79:6a:2e:51:f6:39:5a:fe:b3:16:e8:06:ea:aa: 7a:9a:d2:14:2d:51:0e:8f:56:1a:dc:98:e9:3d:36: d7:a1:16:55:b0:e8:5d:96:b2:3e:47:d1:c1:ab:82: 49:ba:9a:8a:8e:14:6a:9c:48:3a:ad:83:d3:56:9d: f9:3d:17:35:7c:da:22:1b:f9:5c:19:51:48:9a:b6: 7c:9d:80:60:79:63:8f:8e:fa:43:a5:5d:0a:10:68: 4b:cd:4f:6a:98:77:f3:54:8b:61:b3:ff:60:41:da: 78:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A5:2B:13:9C:6B:87:E4:D7:25:98:3E:D6:DC:25:B2:65:03:B1:F4 X509v3 Authority Key Identifier: keyid:12:A1:02:F0:8E:D1:4F:62:3F:A6:E3:1D:BA:B4:9A:24:D1:B9:A1:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/EqEC8I7RT2I_puMdurSaJNG5oVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EqEC8I7RT2I_puMdurSaJNG5oVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC238/CD717D9CCBF311EFBE5B3330C4F9AE02/C168AD504F2C11F1ABC5AA8AB2833773.roa sbgp-ipAddrBlock: critical IPv4: 103.218.96.0/22 Signature Algorithm: sha256WithRSAEncryption 56:92:1f:56:53:74:11:e5:a0:3c:da:fb:9c:d6:b7:5e:f6:f2: 96:ba:4a:a0:dc:49:c3:39:e1:58:76:65:a5:d3:48:02:18:b2: 4a:c0:c7:b7:24:05:b9:3f:d6:ab:48:1b:2c:00:62:f9:b2:cf: c8:e3:bb:4c:ca:6e:04:81:38:ea:33:cb:4a:bf:ec:76:2e:23: ff:db:3c:8b:47:38:67:2b:11:68:3e:c2:27:7b:cd:4c:53:b1: d8:93:4a:b5:95:ed:b2:44:46:78:7e:b2:e7:69:b8:57:c9:02: 8a:b0:25:f0:a3:c5:72:82:b4:23:cc:78:b1:f5:b7:b6:29:1a: c7:fd:d8:ea:7f:45:2f:ae:d3:7f:ce:8b:3a:05:7a:e4:cd:85: dc:8a:53:f2:6b:eb:5b:f2:92:ee:3e:51:11:7f:d8:98:f3:ab: e1:cb:7a:89:88:51:c8:72:4a:fd:68:a2:81:a0:67:e2:d1:ae: 46:4b:43:66:82:09:b5:68:79:6f:bd:a2:46:91:06:19:cf:2e: 55:ce:d0:a6:2c:99:a2:d6:07:a6:86:50:bf:12:2d:6b:82:48: e4:54:4b:9c:0e:04:0c:4d:e6:11:27:f9:9b:c9:d7:7a:01:c7: 4c:91:6f:65:9f:5a:92:c0:33:7b:47:b3:52:0f:dc:5c:ca:57: aa:97:c3:b5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyMzgxMTAvBgNVBAUTKDEyQTEwMkYwOEVEMTRGNjIzRkE2RTMxREJBQjQ5QTI0 RDFCOUExNTEwHhcNMjYwNTE0MDA0MTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA1MWEyZC01ZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29O6JXjHeIGc4pREq8lYJ06SvPEOAnjSmyD4COzobcQHLZIKH+dnT7cGG9fq IuRB9xBe9rSDF56Q6VyW/Ba1yMewKmaEEeybQfnEPZDwYvQguQa5QqZ5uxtRy/c5 OcQCOB+i5ESa06YfXaKPHHRDhmOXHL8HDnIwSLtuLyYreLdiAwGHi7xVs8+wk7FP Eeaip2Y8d6cBeWouUfY5Wv6zFugG6qp6mtIULVEOj1Ya3JjpPTbXoRZVsOhdlrI+ R9HBq4JJupqKjhRqnEg6rYPTVp35PRc1fNoiG/lcGVFImrZ8nYBgeWOPjvpDpV0K EGhLzU9qmHfzVIths/9gQdp4XwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNKlKxOc a4fk1yWYPtbcJbJlA7H0MB8GA1UdIwQYMBaAFBKhAvCO0U9iP6bjHbq0miTRuaFR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzIzOC9DRDcxN0Q5Q0NC RjMxMUVGQkU1QjMzMzBDNEY5QUUwMi9FcUVDOEk3UlQySV9wdU1kdXJTYUpORzVv VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VxRUM4STdSVDJJX3B1TWR1clNhSk5HNW9WRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyMzgvQ0Q3MTdEOUNDQkYzMTFFRkJFNUIzMzMwQzRGOUFFMDIvQzE2OEFENTA0 RjJDMTFGMUFCQzVBQThBQjI4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ9pgMA0GCSqGSIb3DQEBCwUAA4IBAQBWkh9WU3QR5aA82vuc1rde 9vKWukqg3EnDOeFYdmWl00gCGLJKwMe3JAW5P9arSBssAGL5ss/I47tMym4EgTjq M8tKv+x2LiP/2zyLRzhnKxFoPsIne81MU7HYk0q1le2yREZ4frLnabhXyQKKsCXw o8VygrQjzHix9be2KRrH/djqf0UvrtN/zos6BXrkzYXcilPya+tb8pLuPlERf9iY 86vhy3qJiFHIckr9aKKBoGfi0a5GS0Nmggm1aHlvvaJGkQYZzy5VztCmLJmi1gem hlC/Ei1rgkjkVEucDgQMTeYRJ/mbydd6AcdMkW9ln1qSwDN7R7NSD9xcyleql8O1 -----END CERTIFICATE-----Generated at Tue Jun 2 22:11:34 2026 by rpki-client