$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa File: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (raw, json) Hash identifier: YTWQLKjMPS+pJcK/98qLOrg1cnW5P2/DgKnTnaoaWiI= Subject key identifier: 4C:FB:3B:A8:BF:43:3F:43:22:DF:C4:38:96:48:BE:66:58:1B:2D:F7 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 01BF Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:39:29 +0000 ROA not before: Wed 03 Sep 2025 04:52:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141167 IP address blocks: 103.255.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9, serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Sep 3 04:52:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3ed31-42c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:53:88:e8:d2:6f:d8:ae:6c:4a:16:7d:b9:e2: 9c:41:f7:cf:7c:f8:7a:6b:3f:b7:95:b5:98:e0:b2: fb:55:fc:5d:e0:52:6c:d9:ff:64:d7:0e:82:d1:80: bb:29:a6:eb:ec:12:00:87:d5:5a:ea:ef:66:00:de: 9f:e2:20:a3:bf:68:c5:6a:7a:45:3f:38:a1:a5:71: 09:64:24:ee:4d:ea:3d:07:03:09:ad:16:ed:1f:9d: 31:87:f4:51:01:cd:10:72:98:aa:13:94:f1:d6:88: cd:ca:55:2a:54:54:9d:1c:83:60:0f:9c:76:a4:03: 43:e8:21:a2:e8:17:4f:f2:10:b0:51:87:7c:af:81: 87:b0:b4:65:82:15:f2:04:98:e4:03:2f:3c:d7:2f: 08:fd:41:21:51:dc:50:ae:5f:20:1b:78:f3:af:f1: cf:bd:ec:dc:8f:36:95:2f:33:01:68:a6:c8:4c:7b: 18:0a:2c:1c:c0:c1:d2:09:52:8f:1f:e4:ed:5f:6a: 82:c6:4b:aa:4e:3e:3c:cf:77:be:9f:65:65:3d:cb: ef:e4:8d:91:3c:37:5c:e7:22:6b:f5:0e:6e:5e:85: d2:a2:12:22:c3:16:bb:37:73:54:5d:8b:36:9f:cd: b1:67:31:b8:09:d5:7c:d2:f3:3d:0f:7e:fe:15:6f: af:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FB:3B:A8:BF:43:3F:43:22:DF:C4:38:96:48:BE:66:58:1B:2D:F7 X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.0.0/23 Signature Algorithm: sha256WithRSAEncryption 14:fc:a1:de:ec:63:30:29:73:39:b8:66:cc:32:2d:29:72:92: 86:b0:83:e7:a1:f7:28:b3:24:8a:ef:3b:d0:c5:a2:87:0a:64: 7c:ed:5f:88:16:b7:16:01:78:c4:50:dc:84:f0:66:a5:98:65: fe:32:36:a7:c0:29:4f:15:10:44:5e:a6:6c:8b:17:de:62:65: 56:fc:ec:66:55:45:a0:6c:6a:a7:9e:09:05:b5:6c:49:73:5b: 33:50:9e:e7:25:b9:62:0e:10:9c:18:cd:38:b0:a1:fd:3e:b4: c3:bf:37:4d:fb:01:7d:51:d7:20:aa:e0:4b:0b:d8:0a:7d:7b: e5:08:53:7f:50:8e:a3:16:86:a5:b8:19:83:2d:85:d5:a7:1f: fe:32:62:7a:e2:3a:52:b2:4c:7f:40:74:42:d0:f5:7e:2e:1c: c3:60:d8:15:39:c6:81:bc:fe:90:5e:dd:24:45:d5:59:82:2d: 3f:f7:e6:2b:a7:b1:e0:65:a2:ab:af:f7:1a:c7:db:97:8e:50: 1d:f8:98:89:9c:73:72:3f:3f:34:33:58:c1:77:54:33:b0:4e: 7e:4d:d1:3b:4f:78:9d:24:6e:c3:0c:e8:d4:c7:67:67:11:55: 2b:7a:04:44:50:c8:25:b0:dc:64:15:8d:76:06:56:7e:a5:d7: fc:7b:87:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjUwOTAzMDQ1MjIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWQzMS00MmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFOI6NJv2K5sShZ9ueKcQffPfPh6az+3lbWY4LL7Vfxd4FJs2f9k1w6C0YC7 Kabr7BIAh9Va6u9mAN6f4iCjv2jFanpFPzihpXEJZCTuTeo9BwMJrRbtH50xh/RR Ac0QcpiqE5Tx1ojNylUqVFSdHINgD5x2pAND6CGi6BdP8hCwUYd8r4GHsLRlghXy BJjkAy881y8I/UEhUdxQrl8gG3jzr/HPvezcjzaVLzMBaKbITHsYCiwcwMHSCVKP H+TtX2qCxkuqTj48z3e+n2VlPcvv5I2RPDdc5yJr9Q5uXoXSohIiwxa7N3NUXYs2 n82xZzG4CdV80vM9D37+FW+vhQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEz7O6i/ Qz9DIt/EOJZIvmZYGy33MB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ4QzkvQTA1NUI1QjI2RUVEMTFFRUJDMUFBQjUzQzRGOUFFMDIvNEIzQzQzRUE2 RUYwMTFFRTg0REM5QjBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/8AMA0GCSqGSIb3DQEBCwUAA4IBAQAU/KHe7GMwKXM5uGbMMi0p cpKGsIPnofcosySK7zvQxaKHCmR87V+IFrcWAXjEUNyE8GalmGX+MjanwClPFRBE XqZsixfeYmVW/OxmVUWgbGqnngkFtWxJc1szUJ7nJbliDhCcGM04sKH9PrTDvzdN +wF9UdcgquBLC9gKfXvlCFN/UI6jFoaluBmDLYXVpx/+MmJ64jpSskx/QHRC0PV+ LhzDYNgVOcaBvP6QXt0kRdVZgi0/9+Yrp7HgZaKrr/cax9uXjlAd+JiJnHNyPz80 M1jBd1QzsE5+TdE7T3idJG7DDOjUx2dnEVUregREUMglsNxkFY12BlZ+pdf8e4dC -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:16 2026 by rpki-client