$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa File: 4865DD00A13B11E687921078C4F9AE02.roa (raw, json) Hash identifier: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM= Subject key identifier: B7:1C:2E:77:CA:5D:95:06:12:59:70:9E:CD:80:00:55:8F:48:0B:2D Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E42 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:54:23 +0000 ROA not before: Thu 12 Feb 2026 16:13:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133896 IP address blocks: 103.46.216.0/22 maxlen: 22 103.46.216.0/23 maxlen: 23 103.46.216.0/24 maxlen: 24 103.46.217.0/24 maxlen: 24 103.46.218.0/23 maxlen: 23 103.46.218.0/24 maxlen: 24 103.46.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7746 (0x1e42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Feb 12 16:13:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4612f-5da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3c:e2:fb:0b:d2:24:84:c1:f7:49:c2:8e:ce: 6f:16:36:d1:cd:56:38:7c:5f:ee:2b:ff:b0:21:6a: 07:38:ed:13:84:e9:ab:69:f6:81:25:a1:60:3a:01: 80:df:28:99:f9:54:e1:6f:92:9f:69:fd:2c:01:3c: 89:38:ac:35:a8:b6:23:fe:37:22:25:0c:b0:45:19: 19:ea:6c:fd:c3:70:7b:39:d4:ca:18:bd:be:c0:7e: 9c:92:3f:7e:ac:97:a7:71:d8:9e:25:90:f9:16:9f: d1:84:8e:c9:6a:51:05:43:2b:30:3f:6a:2b:c8:51: 57:2f:0e:8c:4b:d8:00:55:ba:9c:e6:3f:7b:46:9c: 5e:6d:3f:6b:a7:25:54:b2:5f:e3:74:dc:21:2e:d1: 5d:10:a3:cf:67:b3:d9:f9:7a:79:03:93:94:e9:3e: e9:47:2a:9c:44:7e:51:70:e8:b6:6b:f3:d6:e9:eb: 66:a9:5a:f5:09:28:40:d2:45:4d:c9:50:c4:c3:01: bd:ed:16:69:f0:05:25:a1:27:17:4d:f8:5b:0f:eb: 93:4e:f9:11:2e:5f:23:fe:ae:e0:af:5b:58:ab:16: 68:25:6c:d6:e6:a5:4c:6a:0d:2e:83:13:23:74:84: 6d:9f:59:5d:3d:1e:a0:78:5f:00:36:5c:aa:95:e5: af:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1C:2E:77:CA:5D:95:06:12:59:70:9E:CD:80:00:55:8F:48:0B:2D X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/4865DD00A13B11E687921078C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.46.216.0/22 Signature Algorithm: sha256WithRSAEncryption 55:a1:93:58:25:96:4f:f7:37:8a:6b:b0:77:46:17:a0:50:7a: 80:84:9d:87:b5:8d:de:18:72:d8:1a:ac:ac:81:4e:b1:2b:fc: 69:62:18:42:0b:fc:e5:64:e9:07:ca:49:bb:7e:8b:5f:ff:bf: 5a:52:df:32:b4:fc:32:f7:31:33:67:bf:93:8c:3f:4d:60:b4: 35:33:34:48:8a:cd:6b:0d:9b:cc:e6:cf:ee:5e:76:77:ab:56: a2:f4:27:45:74:24:a2:a3:36:ab:b9:cf:0d:bb:b6:db:84:af: e6:83:5b:ed:1e:cc:64:e0:f9:53:55:e5:f3:ca:31:c5:52:9f: 63:ce:0c:78:a2:62:6c:66:7d:bd:4b:37:63:f3:b6:6d:9b:77: 24:11:19:b5:35:26:b7:92:d0:10:90:10:0b:65:aa:94:37:75: a6:0c:c4:dd:bd:3c:f4:6d:e6:3c:35:91:56:2e:15:05:15:aa: 3b:20:a4:03:9a:cf:08:e9:82:da:9d:ca:ee:8d:41:82:0f:54: 3a:1a:c8:96:49:1d:65:68:28:e9:f7:aa:6c:38:a8:d3:d1:89: 2f:53:98:7f:2c:06:21:8e:ea:29:41:60:cf:d9:9f:54:a5:db: 4d:09:0b:9f:3e:da:47:5f:70:ad:0d:d7:cb:3b:3c:d9:bc:5e: 70:5e:e1:0a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICHkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjYwMjEyMTYxMzM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjEyZi01ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDzi+wvSJITB90nCjs5vFjbRzVY4fF/uK/+wIWoHOO0ThOmrafaBJaFgOgGA 3yiZ+VThb5Kfaf0sATyJOKw1qLYj/jciJQywRRkZ6mz9w3B7OdTKGL2+wH6ckj9+ rJencdieJZD5Fp/RhI7JalEFQyswP2oryFFXLw6MS9gAVbqc5j97RpxebT9rpyVU sl/jdNwhLtFdEKPPZ7PZ+Xp5A5OU6T7pRyqcRH5RcOi2a/PW6etmqVr1CShA0kVN yVDEwwG97RZp8AUloScXTfhbD+uTTvkRLl8j/q7gr1tYqxZoJWzW5qVMag0ugxMj dIRtn1ldPR6geF8ANlyqleWvQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLccLnfK XZUGEllwns2AAFWPSAstMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYxQjcvNUZBMUVEMzA5RUYwMTFFNjgxMTAyNzMzQzRGOUFFMDIvNDg2NUREMDBB MTNCMTFFNjg3OTIxMDc4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZy7YMA0GCSqGSIb3DQEBCwUAA4IBAQBVoZNYJZZP9zeKa7B3Rheg UHqAhJ2HtY3eGHLYGqysgU6xK/xpYhhCC/zlZOkHykm7fotf/79aUt8ytPwy9zEz Z7+TjD9NYLQ1MzRIis1rDZvM5s/uXnZ3q1ai9CdFdCSiozaruc8Nu7bbhK/mg1vt Hsxk4PlTVeXzyjHFUp9jzgx4omJsZn29Szdj87Ztm3ckERm1NSa3ktAQkBALZaqU N3WmDMTdvTz0beY8NZFWLhUFFao7IKQDms8I6YLancrujUGCD1Q6GsiWSR1laCjp 96psOKjT0YkvU5h/LAYhjuopQWDP2Z9UpdtNCQufPtpHX3CtDdfLOzzZvF5wXuEK -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:11 2026 by rpki-client