$ rpki-client -vvf rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/A329BF2C582911F183AC6B14AB833773.roa File: A329BF2C582911F183AC6B14AB833773.roa (raw, json) Hash identifier: YoFQaRPsMZffsdD9Mb7lp7rvYOdYfp47Mgpm67M2HQc= Subject key identifier: AE:53:5D:8D:7D:96:C5:AF:47:29:E2:2A:3F:90:BE:69:24:14:53:DE Certificate issuer: /CN=A91F48F3/serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Certificate serial: 0241 Authority key identifier: F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/A329BF2C582911F183AC6B14AB833773.roa Signing time: Sat 30 May 2026 08:22:30 +0000 ROA not before: Sat 30 May 2026 08:22:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138190 IP address blocks: 103.225.254.0/24 maxlen: 24 103.225.255.0/24 maxlen: 24 2401:c60::/32 maxlen: 32 2401:c60::/40 maxlen: 40 2401:c60:100::/40 maxlen: 40 2401:c60:200::/40 maxlen: 40 2401:c60:300::/40 maxlen: 40 2401:c60:400::/40 maxlen: 40 2401:c60:500::/40 maxlen: 40 2401:c60:600::/40 maxlen: 40 2401:c60:700::/40 maxlen: 40 2401:c60:800::/40 maxlen: 40 2401:c60:900::/40 maxlen: 40 2401:c60:a00::/40 maxlen: 40 2401:c60:b00::/40 maxlen: 40 2401:c60:c00::/40 maxlen: 40 2401:c60:d00::/40 maxlen: 40 2401:c60:e00::/40 maxlen: 40 2401:c60:f00::/40 maxlen: 40 2401:c60:1000::/40 maxlen: 40 2401:c60:1100::/40 maxlen: 40 2401:c60:1200::/40 maxlen: 40 2401:c60:1300::/40 maxlen: 40 2401:c60:1400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 04:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F48F3, serialNumber=F0C3AAE917E88E68141A96B226E046009A819483 Validity Not Before: May 30 08:22:30 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6a1a9e46-e88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:98:08:ec:36:ba:7e:e0:98:6a:f7:da:74: f7:bc:9b:33:34:71:62:6c:69:10:a4:cb:de:8e:5d: 1c:b8:b9:17:65:b7:fd:7f:3a:5b:98:37:c2:40:4d: cb:65:47:f2:5f:24:60:9e:83:c6:44:52:ae:60:f2: 99:70:cc:f4:9e:45:99:3b:d2:d0:7c:a1:d0:fb:04: 9f:3a:09:95:e2:2f:ea:9b:82:1b:86:9d:bf:a4:9c: cc:a2:9e:2a:02:ea:ec:9d:52:af:08:98:bf:98:d4: d3:97:0b:2a:42:12:a9:20:20:3f:65:ea:8c:c4:62: c4:04:2f:51:c5:52:6e:d4:3c:6a:6b:5b:41:ae:7d: 62:1f:a4:f2:03:d8:76:36:4d:69:a2:82:af:a3:fe: ec:d9:0a:0c:56:7b:bc:ff:6f:6f:e5:f9:a2:97:63: 89:c2:25:64:39:ac:3b:21:b9:d4:5a:52:ae:c1:88: 84:20:5a:9a:3b:3d:8f:09:fc:57:2a:3c:92:bb:10: f4:b9:da:7f:63:88:9f:e8:9e:04:da:df:91:ef:bb: 28:aa:ef:db:cc:7d:ec:fc:7b:4c:56:6f:5f:41:82: b0:37:b4:1f:01:3b:3a:65:79:40:ff:a2:79:10:8f: bc:c6:f7:af:cc:25:8a:73:90:4d:52:ef:df:79:50: c5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:53:5D:8D:7D:96:C5:AF:47:29:E2:2A:3F:90:BE:69:24:14:53:DE X509v3 Authority Key Identifier: keyid:F0:C3:AA:E9:17:E8:8E:68:14:1A:96:B2:26:E0:46:00:9A:81:94:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/8MOq6RfojmgUGpayJuBGAJqBlIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8MOq6RfojmgUGpayJuBGAJqBlIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F48F3/B7235E2A251411EEA8DECC1EC4F9AE02/A329BF2C582911F183AC6B14AB833773.roa sbgp-ipAddrBlock: critical IPv4: 103.225.254.0/23 IPv6: 2401:c60::/32 Signature Algorithm: sha256WithRSAEncryption 7e:4c:11:70:a2:58:31:6b:47:12:2e:91:75:4d:af:9e:8e:7e: 11:8e:84:69:31:28:8c:46:01:79:aa:a8:a0:2d:8c:fd:b5:4b: 5e:7a:26:68:2c:84:0c:70:23:3b:eb:c8:67:84:9b:fb:ce:ab: 98:ba:0d:d8:ec:5a:47:53:42:fc:ab:6e:cd:58:7f:4d:28:6d: ca:ee:b8:ce:7a:11:81:94:02:ff:93:87:a6:76:ec:76:03:95: ef:19:44:3e:ed:84:99:7e:1a:5d:73:6c:ef:63:14:5a:43:31: e1:44:88:b2:f1:41:19:81:0b:af:38:22:af:53:73:31:ac:e3: 5a:78:28:23:22:be:f1:db:fe:f2:51:89:f1:5b:08:37:e1:54: e7:e1:de:ce:b9:f9:2d:fa:99:06:d0:a2:39:34:7c:3e:5a:aa: 7b:7b:47:8d:8e:dc:06:7d:6f:75:ad:f1:c3:2e:e5:5c:7e:74: 15:f6:f4:fe:40:95:99:35:cc:58:ac:4c:6e:a5:e1:99:fc:5a: 2b:e3:c2:f6:ea:ca:02:d3:62:ae:87:2a:f7:8f:57:5e:b7:41: 3f:84:13:6f:ed:69:1a:d5:2a:3e:c4:42:16:8c:90:96:eb:43: 1f:8b:39:f8:09:5e:b4:a8:44:63:c8:07:38:eb:ae:ff:cd:95: 98:e0:ff:31 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ4RjMxMTAvBgNVBAUTKEYwQzNBQUU5MTdFODhFNjgxNDFBOTZCMjI2RTA0NjAw OUE4MTk0ODMwHhcNMjYwNTMwMDgyMjMwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFhOWU0Ni1lODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYyYCOw2un7gmGr32nT3vJszNHFibGkQpMvejl0cuLkXZbf9fzpbmDfCQE3L ZUfyXyRgnoPGRFKuYPKZcMz0nkWZO9LQfKHQ+wSfOgmV4i/qm4Ibhp2/pJzMop4q AursnVKvCJi/mNTTlwsqQhKpICA/ZeqMxGLEBC9RxVJu1Dxqa1tBrn1iH6TyA9h2 Nk1pooKvo/7s2QoMVnu8/29v5fmil2OJwiVkOaw7IbnUWlKuwYiEIFqaOz2PCfxX KjySuxD0udp/Y4if6J4E2t+R77soqu/bzH3s/HtMVm9fQYKwN7QfATs6ZXlA/6J5 EI+8xvevzCWKc5BNUu/feVDFUQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFK5TXY19 lsWvRyniKj+QvmkkFFPeMB8GA1UdIwQYMBaAFPDDqukX6I5oFBqWsibgRgCagZSD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDhGMy9CNzIzNUUyQTI1 MTQxMUVFQThERUNDMUVDNEY5QUUwMi84TU9xNlJmb2ptZ1VHcGF5SnVCR0FKcUJs SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhNT3E2UmZvam1nVUdwYXlKdUJHQUpxQmxJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ4RjMvQjcyMzVFMkEyNTE0MTFFRUE4REVDQzFFQzRGOUFFMDIvQTMyOUJGMkM1 ODI5MTFGMTgzQUM2QjE0QUI4MzM3NzMucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ+H+MA0EAgACMAcDBQAkAQxgMA0GCSqGSIb3DQEBCwUAA4IBAQB+ TBFwolgxa0cSLpF1Ta+ejn4RjoRpMSiMRgF5qqigLYz9tUteeiZoLIQMcCM768hn hJv7zquYug3Y7FpHU0L8q27NWH9NKG3K7rjOehGBlAL/k4emdux2A5XvGUQ+7YSZ fhpdc2zvYxRaQzHhRIiy8UEZgQuvOCKvU3MxrONaeCgjIr7x2/7yUYnxWwg34VTn 4d7Oufkt+pkG0KI5NHw+Wqp7e0eNjtwGfW91rfHDLuVcfnQV9vT+QJWZNcxYrExu peGZ/For48L26soC02Kuhyr3j1det0E/hBNv7Wka1So+xEIWjJCW60Mfizn4CV60 qERjyAc4667/zZWY4P8x -----END CERTIFICATE-----Generated at Thu Jun 11 21:19:40 2026 by rpki-client