$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa File: 1CEF944C1AEC11F1BECB19E5043D8C67.roa (raw, json) Hash identifier: 7++VXIIQ/2BV1xHqCF3NwkqZGS7smz3wo59HOc5L1qA= Subject key identifier: 07:D5:32:6E:75:63:B7:5F:85:08:84:EE:2A:33:51:45:5A:BF:63:37 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0BD4 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa Signing time: Sun 08 Mar 2026 12:41:22 +0000 ROA not before: Sun 08 Mar 2026 12:41:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 202736 IP address blocks: 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Mar 2026 18:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Mar 8 12:41:22 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69ad6e72-2f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:59:75:95:e0:7a:c0:7e:6b:23:8a:ca:59: 2f:17:65:9d:98:9e:f3:95:6c:f8:09:65:53:91:ef: 2a:ab:55:bb:49:06:4e:e3:d0:df:d4:3a:05:d4:ec: ae:ac:2e:8e:c1:e5:36:77:c1:c7:0e:23:d9:7e:c9: 57:6e:e5:28:ea:a8:0c:e2:83:7a:e4:ee:6c:38:61: 64:64:67:c3:e0:2b:89:41:5f:e0:e1:d0:86:5f:f5: 8f:ff:03:c4:b5:6f:bc:c2:2f:63:86:06:20:83:58: 0a:5a:75:e2:5c:3e:e5:d1:6c:49:90:bd:2a:05:c3: 7d:05:4f:d5:db:3b:84:10:a1:0f:af:7f:de:66:f7: c2:aa:d0:4a:93:42:55:d6:1d:10:06:f1:0d:b0:5b: 7f:12:2a:c2:90:19:9c:82:bd:8e:88:dd:63:f8:47: 85:87:f8:32:07:79:c3:7a:38:25:ea:ed:7b:d7:d6: 52:c8:83:c2:2a:e3:60:d8:df:88:63:40:26:e2:33: ec:4f:e8:a5:74:c9:4c:50:2c:a1:0b:9c:85:79:9f: fd:30:a7:3b:73:e7:fe:79:7d:0e:f4:b8:20:7b:cb: e0:c7:1b:8c:e8:e2:1c:a4:75:a4:7a:09:bd:0a:d7: f8:cd:f4:65:63:20:2b:85:7c:90:18:33:a2:37:38: 51:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D5:32:6E:75:63:B7:5F:85:08:84:EE:2A:33:51:45:5A:BF:63:37 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/1CEF944C1AEC11F1BECB19E5043D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.231.38.0/23 Signature Algorithm: sha256WithRSAEncryption b7:1f:f1:cd:b0:fe:b0:8b:5a:37:ab:82:83:94:84:1b:bd:49: f1:81:0e:8b:97:36:60:54:04:9a:a3:92:df:eb:4c:4d:b4:2b: bc:89:6c:69:f6:d2:c7:5f:c1:1e:fb:5b:42:84:5c:a0:5b:68: cf:3f:5e:20:12:05:f1:56:2f:f6:70:fc:5f:c1:28:64:00:19: 37:b6:9b:3d:19:7c:ff:a5:ec:bb:a9:ed:b5:38:ae:5b:d0:b4: ff:f9:78:10:32:82:28:9b:41:4f:3d:08:88:0d:ca:96:64:45: d2:91:cf:35:29:9f:78:8b:e3:16:f9:e7:16:71:50:9a:55:3e: f9:52:22:66:01:00:b1:4b:ff:ee:08:82:91:9b:bb:81:4c:12: 00:cc:a7:ca:3b:28:d2:d3:c5:4f:b0:ff:93:f1:3a:7f:07:76: f2:36:71:09:a5:49:26:0d:95:46:40:27:4e:70:6a:71:db:04: 00:13:c5:12:02:d8:0b:11:f5:91:76:cd:d5:62:05:94:e5:14: e9:45:e5:0e:c3:a5:fa:90:1a:8e:ad:10:c4:f6:7e:a4:bc:38: ea:69:cc:09:42:aa:b4:a3:55:34:29:36:89:05:d9:e8:3a:97: 59:09:c2:52:a9:0d:dd:72:e9:5a:9c:f6:55:ec:0e:48:b3:a3: f6:aa:06:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjYwMzA4MTI0MTIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFkNmU3Mi0yZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3p1ZdZXgesB+ayOKylkvF2WdmJ7zlWz4CWVTke8qq1W7SQZO49Df1DoF1Oyu rC6OweU2d8HHDiPZfslXbuUo6qgM4oN65O5sOGFkZGfD4CuJQV/g4dCGX/WP/wPE tW+8wi9jhgYgg1gKWnXiXD7l0WxJkL0qBcN9BU/V2zuEEKEPr3/eZvfCqtBKk0JV 1h0QBvENsFt/EirCkBmcgr2OiN1j+EeFh/gyB3nDejgl6u1719ZSyIPCKuNg2N+I Y0Am4jPsT+ildMlMUCyhC5yFeZ/9MKc7c+f+eX0O9Lgge8vgxxuM6OIcpHWkegm9 Ctf4zfRlYyArhXyQGDOiNzhRBwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAfVMm51 Y7dfhQiE7iozUUVav2M3MB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvMUNFRjk0NEMx QUVDMTFGMUJFQ0IxOUU1MDQzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ+cmMA0GCSqGSIb3DQEBCwUAA4IBAQC3H/HNsP6wi1o3q4KDlIQb vUnxgQ6LlzZgVASao5Lf60xNtCu8iWxp9tLHX8Ee+1tChFygW2jPP14gEgXxVi/2 cPxfwShkABk3tps9GXz/pey7qe21OK5b0LT/+XgQMoIom0FPPQiIDcqWZEXSkc81 KZ94i+MW+ecWcVCaVT75UiJmAQCxS//uCIKRm7uBTBIAzKfKOyjS08VPsP+T8Tp/ B3byNnEJpUkmDZVGQCdOcGpx2wQAE8USAtgLEfWRds3VYgWU5RTpReUOw6X6kBqO rRDE9n6kvDjqacwJQqq0o1U0KTaJBdnoOpdZCcJSqQ3dculanPZV7A5Is6P2qgYp -----END CERTIFICATE-----Generated at Tue Mar 10 14:49:33 2026 by rpki-client