$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa File: D71B60EC2B5911EE81C7542FC4F9AE02.roa (raw, json) Hash identifier: 3V/wO0hw5nLxr5BM3tMeW7iDmpM8Wwsuvidg1iCqM10= Subject key identifier: 9C:E7:C5:72:A5:1E:CA:6E:6F:E1:1E:30:14:DB:92:A0:41:DF:67:1D Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 020F Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:16:02 +0000 ROA not before: Sat 31 May 2025 03:52:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140974 IP address blocks: 103.225.118.0/23 maxlen: 23 103.225.118.0/24 maxlen: 24 103.225.119.0/24 maxlen: 24 2401:be0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: May 31 03:52:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a411e2-e302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:79:54:00:ce:16:02:38:5d:ff:5e:b1:b2: 7a:5c:f8:49:c0:d9:88:0d:db:cf:d0:1b:26:5c:98: 62:eb:ad:9a:e1:4e:93:a3:59:1e:b8:fc:57:3e:e6: 04:3d:fe:64:f2:8a:c6:73:9a:90:0e:48:aa:e0:c0: 93:05:ef:97:02:55:72:24:ab:1f:1d:8f:25:e5:4c: eb:c6:54:dd:d8:53:18:83:fb:fd:8a:21:f4:43:83: 5d:1d:74:1f:89:c6:1b:c0:91:df:53:8e:e3:c7:9b: ac:f1:41:0d:e6:9e:24:46:e0:d7:93:87:69:dc:11: 73:97:98:31:a7:b1:2c:f8:a7:38:0f:72:49:82:7e: 0e:11:f9:8a:96:1d:12:69:26:f2:9d:69:13:06:9d: 17:a5:6b:82:6c:06:11:37:fd:71:16:08:e1:67:dd: 99:94:bc:8b:a0:2a:17:98:e3:08:43:94:40:ec:75: 59:d0:1b:e1:b1:95:d6:47:cd:45:f2:9d:23:0d:e4: b4:c4:65:5a:9a:5e:31:4f:f1:39:5d:99:82:97:80: 3e:1e:6a:bd:4c:30:e8:94:8c:40:4e:64:68:53:d2: e2:50:6f:96:e3:0a:75:8c:fe:ed:fc:20:50:64:4a: c9:4b:52:bc:d6:c2:eb:70:2f:54:38:c2:ab:e4:31: c9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E7:C5:72:A5:1E:CA:6E:6F:E1:1E:30:14:DB:92:A0:41:DF:67:1D X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.225.118.0/23 IPv6: 2401:be0::/32 Signature Algorithm: sha256WithRSAEncryption 63:7b:e4:62:4a:0e:76:85:77:23:14:66:0d:82:ee:b6:cd:28: 18:98:45:47:e9:b5:ae:a4:ce:7a:c4:08:dc:4f:84:ce:d2:7a: 62:0b:7d:bf:f6:2c:00:01:26:a4:94:b3:10:64:59:8f:75:31: a4:a2:7f:9a:41:75:39:c5:3c:af:6c:88:d7:fc:6f:30:30:51: c6:4c:2d:87:a9:39:7c:88:4a:45:ef:19:e0:20:6b:0c:0f:af: 08:6d:62:0a:d0:c0:01:3e:7b:24:3e:a9:97:b9:16:c6:a8:18: 6c:b6:a2:5d:47:ee:5e:7a:ff:80:96:6c:a5:4f:82:67:c2:c2: 49:ff:fe:b0:80:19:01:85:f8:85:f6:d3:cf:ef:d6:ca:b5:13: 5d:26:b8:ba:d7:57:10:f6:32:6a:85:ac:30:19:d9:0c:2b:41: 8c:38:39:f8:18:10:bd:dd:eb:5a:76:10:e6:0d:20:46:cb:20: bc:4c:cf:ac:14:d7:07:dd:18:5f:e9:b1:e5:cb:51:b0:2d:e8: 80:73:13:30:5b:4f:8a:da:8f:70:67:40:2e:79:59:01:ff:f7: b1:1c:c9:78:8f:cb:d0:26:6d:64:eb:25:47:6b:8d:fb:12:4b: d8:d9:24:f6:d6:e9:84:ad:01:eb:dc:5b:eb:3a:2a:3a:47:0a: 43:09:87:32 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjUwNTMxMDM1MjE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTFlMi1lMzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0t5VADOFgI4Xf9esbJ6XPhJwNmIDdvP0BsmXJhi662a4U6To1keuPxXPuYE Pf5k8orGc5qQDkiq4MCTBe+XAlVyJKsfHY8l5UzrxlTd2FMYg/v9iiH0Q4NdHXQf icYbwJHfU47jx5us8UEN5p4kRuDXk4dp3BFzl5gxp7Es+Kc4D3JJgn4OEfmKlh0S aSbynWkTBp0XpWuCbAYRN/1xFgjhZ92ZlLyLoCoXmOMIQ5RA7HVZ0BvhsZXWR81F 8p0jDeS0xGVaml4xT/E5XZmCl4A+Hmq9TDDolIxATmRoU9LiUG+W4wp1jP7t/CBQ ZErJS1K81sLrcC9UOMKr5DHJKQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJznxXKl Hspub+EeMBTbkqBB32cdMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIwMEYvMjU3ODc0MDIxNjRGMTFFRTlFNzM0MDRFQzRGOUFFMDIvRDcxQjYwRUMy QjU5MTFFRTgxQzc1NDJGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ+F2MA0EAgACMAcDBQAkAQvgMA0GCSqGSIb3DQEBCwUAA4IBAQBj e+RiSg52hXcjFGYNgu62zSgYmEVH6bWupM56xAjcT4TO0npiC32/9iwAASaklLMQ ZFmPdTGkon+aQXU5xTyvbIjX/G8wMFHGTC2HqTl8iEpF7xngIGsMD68IbWIK0MAB PnskPqmXuRbGqBhstqJdR+5eev+AlmylT4JnwsJJ//6wgBkBhfiF9tPP79bKtRNd Jri611cQ9jJqhawwGdkMK0GMODn4GBC93etadhDmDSBGyyC8TM+sFNcH3Rhf6bHl y1GwLeiAcxMwW0+K2o9wZ0AueVkB//exHMl4j8vQJm1k6yVHa437EkvY2ST21umE rQHr3FvrOio6RwpDCYcy -----END CERTIFICATE-----Generated at Sat Mar 7 13:03:25 2026 by rpki-client