$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa File: 89BDDA4A2F6F11EEB73F3231C4F9AE02.roa (raw, json) Hash identifier: JS/I83lnkJ+yXv//aUKTuv7mn22oJXxijweaV/2/Tbw= Subject key identifier: 15:C9:F2:CC:F3:54:BF:D7:02:DF:4A:EA:11:E9:7A:62:70:A2:3F:BB Certificate issuer: /CN=A91EE099/serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Certificate serial: 0201 Authority key identifier: F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:21:36 +0000 ROA not before: Sat 23 Aug 2025 04:09:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151640 IP address blocks: 103.245.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 02:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE099, serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Validity Not Before: Aug 23 04:09:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a43d60-d93e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:60:04:36:c9:b2:3b:a5:5d:35:05:63:9f:6c: 12:41:34:63:50:99:6a:ce:ba:e7:a0:f8:40:14:30: 49:e4:cb:21:7a:de:ef:6d:3b:75:53:40:06:6c:27: 6e:8e:25:b7:4f:aa:e9:a3:5a:46:37:ef:ec:7a:0f: 7e:49:f5:63:4a:b3:7a:45:d3:55:89:93:e5:78:11: db:94:6b:ab:08:18:53:1d:a8:6f:7f:6e:dd:fa:87: 9a:b7:3d:4e:3b:28:b9:b0:c3:90:5d:77:d7:c1:a2: 8c:2d:af:a0:bb:90:95:aa:ef:52:9b:8f:e9:50:ae: 83:9e:c5:ff:d4:f8:cc:b6:b5:b1:98:d8:58:f5:e6: 5a:26:c7:70:15:27:ee:20:ab:08:db:da:59:e6:d1: de:88:2a:95:50:b3:cc:f7:e3:13:26:8e:13:71:3d: df:01:0b:bb:83:a4:d3:3c:fe:f2:7f:30:43:fd:20: a2:34:b3:59:9e:aa:c0:3b:3c:0c:19:f7:bd:2e:d2: 93:76:83:07:33:67:67:3d:95:ed:95:1c:e8:dc:f7: 32:65:9b:b9:bd:dd:1a:bf:f6:ac:7e:4a:94:dd:c7: d4:24:c9:5a:83:c0:55:95:a5:2a:d4:50:07:07:c3: 46:2c:59:50:bf:1d:58:30:65:d0:bb:93:be:0a:b8: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C9:F2:CC:F3:54:BF:D7:02:DF:4A:EA:11:E9:7A:62:70:A2:3F:BB X509v3 Authority Key Identifier: keyid:F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.245.24.0/23 Signature Algorithm: sha256WithRSAEncryption 56:d3:7b:b0:2c:84:0c:9e:7d:c8:d4:8f:ce:a3:9e:6c:43:92: c3:eb:5b:71:33:fe:75:f0:b0:bc:6a:9a:a8:62:7b:da:69:e2: e5:ff:3a:80:15:95:b1:f4:7a:6b:d8:e3:f2:76:1b:1e:7d:40: fc:d7:d6:c9:6d:42:a1:86:b9:ba:cf:56:6f:82:fe:8e:fc:41: fa:60:9f:12:1b:d6:4f:7e:78:c4:f3:48:56:f3:9b:36:ca:a1: e0:0b:19:96:4f:85:da:8c:08:54:c9:9e:9d:9f:af:20:6d:31: e6:be:7e:f3:2c:df:23:40:e5:31:bc:8d:28:f9:af:55:35:0c: 50:f9:59:e9:15:92:b8:d7:62:05:6f:60:64:d5:24:7d:c1:d5: 42:71:5d:b4:f2:63:e5:70:e6:36:6e:d1:32:0d:46:3d:40:83: eb:60:7a:18:7f:ac:f7:d6:3b:36:13:25:ad:8e:13:db:aa:e0: 7b:d8:d3:72:3d:49:3c:11:4e:e5:8c:92:c5:1a:14:3f:1a:90: 61:98:6e:63:10:d4:17:8a:16:ba:ba:2c:a6:71:33:f6:d7:fa: 7d:93:16:49:2d:bc:db:11:91:fe:23:89:83:d5:3c:a7:d7:e9: 79:f6:89:76:25:cd:15:8b:34:74:03:cb:14:e0:4c:39:2e:cb: 56:34:da:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOTkxMTAvBgNVBAUTKEY5QUE2MzZCNUMzRTMwQzdBMEJBOTc0MzAxNUI1QjEy MTA0Q0I3QTgwHhcNMjUwODIzMDQwOTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2Q2MC1kOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42AENsmyO6VdNQVjn2wSQTRjUJlqzrrnoPhAFDBJ5Mshet7vbTt1U0AGbCdu jiW3T6rpo1pGN+/seg9+SfVjSrN6RdNViZPleBHblGurCBhTHahvf27d+oeatz1O Oyi5sMOQXXfXwaKMLa+gu5CVqu9Sm4/pUK6DnsX/1PjMtrWxmNhY9eZaJsdwFSfu IKsI29pZ5tHeiCqVULPM9+MTJo4TcT3fAQu7g6TTPP7yfzBD/SCiNLNZnqrAOzwM Gfe9LtKTdoMHM2dnPZXtlRzo3PcyZZu5vd0av/asfkqU3cfUJMlag8BVlaUq1FAH B8NGLFlQvx1YMGXQu5O+CriZEQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBXJ8szz VL/XAt9K6hHpemJwoj+7MB8GA1UdIwQYMBaAFPmqY2tcPjDHoLqXQwFbWxIQTLeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5OS8wMjIxRDdDRTJG NjcxMUVFODI0QURDNTlDNEY5QUUwMi8tYXBqYTF3LU1NZWd1cGREQVZ0YkVoQk10 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1hcGphMXctTU1lZ3VwZERBVnRiRWhCTXQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOTkvMDIyMUQ3Q0UyRjY3MTFFRTgyNEFEQzU5QzRGOUFFMDIvODlCRERBNEEy RjZGMTFFRUI3M0YzMjMxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/UYMA0GCSqGSIb3DQEBCwUAA4IBAQBW03uwLIQMnn3I1I/Oo55s Q5LD61txM/518LC8apqoYnvaaeLl/zqAFZWx9Hpr2OPydhsefUD819bJbUKhhrm6 z1Zvgv6O/EH6YJ8SG9ZPfnjE80hW85s2yqHgCxmWT4XajAhUyZ6dn68gbTHmvn7z LN8jQOUxvI0o+a9VNQxQ+VnpFZK412IFb2Bk1SR9wdVCcV208mPlcOY2btEyDUY9 QIPrYHoYf6z31js2EyWtjhPbquB72NNyPUk8EU7ljJLFGhQ/GpBhmG5jENQXiha6 uiymcTP21/p9kxZJLbzbEZH+I4mD1Tyn1+l59ol2Jc0VizR0A8sU4Ew5LstWNNrl -----END CERTIFICATE-----Generated at Sat Mar 21 17:18:46 2026 by rpki-client