$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa File: 956B1C7AD81111EB8C3ACC5DC4F9AE02.roa (raw, json) Hash identifier: lxgbG6pkkYFXzxOLVtY4sU1vaYpcUs17yViYyAj/L48= Subject key identifier: 86:0E:C4:3F:4C:21:84:35:53:F5:E0:11:18:F7:33:04:52:B0:67:60 Certificate issuer: /CN=A91CCE54/serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Certificate serial: 0638 Authority key identifier: 1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:38:15 +0000 ROA not before: Wed 02 Jul 2025 23:35:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133380 IP address blocks: 103.230.13.0/24 maxlen: 24 103.230.14.0/24 maxlen: 24 103.230.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 22:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCE54, serialNumber=1AAD00A61A649040AB526A142B5D7BDEE5A01CBF Validity Not Before: Jul 2 23:35:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a584b7-70c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fb:ef:96:7c:61:10:94:d3:2f:57:12:4b:12: ed:5f:7b:3f:db:e4:02:c8:05:a7:ee:3c:3f:fb:e0: 2d:83:05:5c:3e:9c:1e:7d:ce:4f:06:fd:8b:fa:04: c7:0c:96:7d:3f:0b:96:a9:96:d7:de:b6:f5:2a:08: 25:9f:76:d8:48:88:65:36:a4:ee:13:22:4b:d6:08: 9d:bf:50:37:74:7a:40:01:3b:06:fb:68:a4:3e:ae: 8c:27:1d:c2:fa:ab:89:44:6d:91:44:ae:05:ad:ad: 11:a5:d8:53:14:fa:78:55:d6:0d:2a:17:45:09:11: e1:3f:17:1c:30:80:9f:eb:aa:a6:50:6d:66:4b:fb: 91:b2:ea:81:92:ef:cd:5e:60:3a:53:db:74:e9:93: dd:9d:25:e1:58:c0:ac:3a:f9:c7:6c:bd:8e:94:f7: 5e:67:71:c8:a3:f7:69:8c:0f:0f:48:cd:5b:30:27: d3:4b:f9:e5:da:73:55:83:c2:f2:24:12:6a:47:b6: c3:19:88:f5:10:6d:aa:3c:15:45:93:ca:7b:9c:16: 0c:64:8d:de:6f:3b:58:92:3e:86:c8:4c:ae:70:7b: b9:77:d5:90:64:d8:d9:cd:f9:bb:f7:34:b3:2a:30: 2f:2d:93:e4:13:ad:34:13:f4:6d:b8:24:a3:3b:7e: 54:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0E:C4:3F:4C:21:84:35:53:F5:E0:11:18:F7:33:04:52:B0:67:60 X509v3 Authority Key Identifier: keyid:1A:AD:00:A6:1A:64:90:40:AB:52:6A:14:2B:5D:7B:DE:E5:A0:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/Gq0AphpkkECrUmoUK1173uWgHL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gq0AphpkkECrUmoUK1173uWgHL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCE54/BF9FCAF0D7ED11EB8B56D71AC4F9AE02/956B1C7AD81111EB8C3ACC5DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.230.13.0-103.230.15.255 Signature Algorithm: sha256WithRSAEncryption 95:23:9a:ec:e1:5d:97:44:df:cb:d3:68:3d:b6:ab:23:dc:72: 93:92:b5:0a:da:f5:4f:bd:72:e1:2f:bf:4f:c1:12:14:51:4b: b3:37:63:d1:e3:77:7c:8d:07:33:84:76:68:bd:f9:58:7c:46: 1f:55:96:1c:ea:41:fd:9a:65:60:81:9f:06:c1:68:f5:e2:6f: 83:11:ad:81:a6:99:33:a9:47:ae:73:4e:c3:8a:76:8a:dd:e1: 63:51:4f:af:aa:2b:59:12:5d:80:03:f2:af:ae:04:ad:31:6b: 8d:0c:50:82:5c:08:55:2d:e5:f6:eb:4f:2f:ae:47:26:ea:14: 4e:e0:f0:ae:dd:3b:73:7b:34:8d:f3:81:91:b7:f6:0a:98:5d: 49:78:3a:fd:c2:31:fc:c0:44:dd:e4:89:a4:1a:3c:30:bd:63: 75:84:3b:ec:93:bd:67:5f:65:2f:c6:72:c6:8c:8b:53:7b:7b: f1:69:c6:49:cc:57:cb:6c:93:89:8b:0d:22:24:4c:dc:43:a3: ad:8f:43:8f:96:f8:ce:54:15:aa:df:19:25:39:4f:3e:92:8d: 61:e1:68:67:c9:7d:de:2e:81:27:36:92:f7:75:44:58:bc:7e: a7:e5:a1:a4:b8:b5:ce:79:4a:e7:08:c5:62:33:9d:7b:2f:80: 6d:48:7d:4e -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NFNTQxMTAvBgNVBAUTKDFBQUQwMEE2MUE2NDkwNDBBQjUyNkExNDJCNUQ3QkRF RTVBMDFDQkYwHhcNMjUwNzAyMjMzNTQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODRiNy03MGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/vvlnxhEJTTL1cSSxLtX3s/2+QCyAWn7jw/++AtgwVcPpwefc5PBv2L+gTH DJZ9PwuWqZbX3rb1Kggln3bYSIhlNqTuEyJL1gidv1A3dHpAATsG+2ikPq6MJx3C +quJRG2RRK4Fra0RpdhTFPp4VdYNKhdFCRHhPxccMICf66qmUG1mS/uRsuqBku/N XmA6U9t06ZPdnSXhWMCsOvnHbL2OlPdeZ3HIo/dpjA8PSM1bMCfTS/nl2nNVg8Ly JBJqR7bDGYj1EG2qPBVFk8p7nBYMZI3ebztYkj6GyEyucHu5d9WQZNjZzfm79zSz KjAvLZPkE600E/RtuCSjO35U6wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFIYOxD9M IYQ1U/XgERj3MwRSsGdgMB8GA1UdIwQYMBaAFBqtAKYaZJBAq1JqFCtde97loBy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0U1NC9CRjlGQ0FGMEQ3 RUQxMUVCOEI1NkQ3MUFDNEY5QUUwMi9HcTBBcGhwa2tFQ3JVbW9VSzExNzN1V2dI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dxMEFwaHBra0VDclVtb1VLMTE3M3VXZ0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0NFNTQvQkY5RkNBRjBEN0VEMTFFQjhCNTZENzFBQzRGOUFFMDIvOTU2QjFDN0FE ODExMTFFQjhDM0FDQzVEQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBABn5g0DBARn5gAwDQYJKoZIhvcNAQELBQADggEBAJUjmuzhXZdE 38vTaD22qyPccpOStQra9U+9cuEvv0/BEhRRS7M3Y9Hjd3yNBzOEdmi9+Vh8Rh9V lhzqQf2aZWCBnwbBaPXib4MRrYGmmTOpR65zTsOKdord4WNRT6+qK1kSXYAD8q+u BK0xa40MUIJcCFUt5fbrTy+uRybqFE7g8K7dO3N7NI3zgZG39gqYXUl4Ov3CMfzA RN3kiaQaPDC9Y3WEO+yTvWdfZS/GcsaMi1N7e/FpxknMV8tsk4mLDSIkTNxDo62P Q4+W+M5UFarfGSU5Tz6SjWHhaGfJfd4ugSc2kvd1RFi8fqfloaS4tc55SucIxWIz nXsvgG1IfU4= -----END CERTIFICATE-----Generated at Sun Mar 22 17:43:49 2026 by rpki-client