$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa File: 49DEAEDC12A711F099020A73C4F9AE02.roa (raw, json) Hash identifier: 73STUG9MRsTj+UMDTuA4X0z5fGUTYqhKS5W5S7xFgxs= Subject key identifier: 2E:E4:32:56:C1:F8:45:35:FE:ED:84:4E:78:5E:9B:E5:61:AF:69:2D Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: B0 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:27:28 +0000 ROA not before: Sun 01 Mar 2026 09:27:28 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 134090 IP address blocks: 103.148.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Mar 1 09:27:28 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a40680-bb42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:af:a6:06:3b:5c:53:58:5b:51:51:10:81:3b: c2:dc:9b:c1:ce:7b:85:57:62:e5:5f:48:30:51:ac: 3a:3e:c4:3c:a6:d9:9d:f6:1d:cc:78:af:2a:55:8a: 58:0b:32:60:f3:7e:ca:19:19:35:c1:ac:d4:6f:90: f4:28:5a:c3:05:aa:75:f6:dd:27:c3:c3:10:02:78: 0c:14:70:6b:41:5c:ed:03:9e:0a:fe:25:1f:20:52: 32:1e:8e:3c:64:b1:5b:dc:9d:82:2e:c3:40:72:ad: c4:c6:cc:05:ff:fd:3e:2b:0d:c5:7e:76:36:f4:dd: eb:d3:c4:4b:16:98:61:66:2d:cc:48:27:9b:a1:79: 1c:05:1a:88:f8:eb:a5:f1:7b:36:5a:3a:3d:f1:e9: 2e:69:1b:e9:f2:58:28:77:d7:ba:e0:67:88:3f:63: b6:be:68:77:cc:10:ec:d8:ee:6d:2c:5e:02:f6:e0: ea:fe:69:ed:98:a5:85:79:26:eb:d0:d5:eb:9b:50: 3a:22:af:69:23:6b:57:6e:2c:56:4d:b6:ea:18:67: 34:0d:23:19:1e:e5:9b:95:07:79:29:5c:4f:34:cb: 99:44:31:89:3e:49:3f:86:dd:89:9d:d0:83:06:e0: 86:fc:9c:fd:b5:e6:4a:a2:88:92:03:d5:c0:4e:ef: 40:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E4:32:56:C1:F8:45:35:FE:ED:84:4E:78:5E:9B:E5:61:AF:69:2D X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.35.0/24 Signature Algorithm: sha256WithRSAEncryption 95:2b:0b:f4:98:12:0c:4e:ff:24:72:d1:f4:25:df:6f:da:91: 9e:32:b8:41:6e:25:65:f1:c8:e1:a0:44:21:1d:69:3d:3f:e8: 9b:dc:01:36:c9:f6:c2:9c:13:50:cf:42:f1:e5:d9:b1:aa:0c: d1:19:66:47:6d:53:4b:62:53:be:88:d5:32:19:7b:a2:64:d9: ad:ea:b5:0c:43:5f:86:a9:8f:70:a2:d6:30:43:62:54:96:7a: 47:45:a1:76:df:ad:e3:0c:f0:3c:d1:21:d2:ac:8b:54:20:b2: 00:93:b0:3e:6a:e9:c3:1c:47:2b:e5:e8:e0:10:76:20:86:a8: 27:06:6f:30:73:49:f0:af:be:31:0e:0a:f4:f7:58:f0:d4:e0: b5:40:50:a8:c2:f6:08:41:35:44:e4:eb:19:0f:cf:9f:b2:ab: d2:43:74:2b:ff:e6:d2:6f:e1:7c:3d:42:2c:aa:9c:c9:c9:f5: 33:38:cd:3d:19:e6:3a:98:c3:16:7a:d1:1f:ee:d1:de:4c:52: d9:d1:7a:d1:a6:f7:04:09:7c:01:98:a1:68:f2:80:0f:79:30: 27:1e:3a:e0:df:b2:60:95:75:c0:60:d3:a9:88:0b:59:48:25: 9d:2e:96:46:84:70:e2:4a:71:4b:52:ed:19:71:51:4f:fa:69: 64:55:07:d2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjYwMzAxMDkyNzI4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDY4MC1iYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnK+mBjtcU1hbUVEQgTvC3JvBznuFV2LlX0gwUaw6PsQ8ptmd9h3MeK8qVYpY CzJg837KGRk1wazUb5D0KFrDBap19t0nw8MQAngMFHBrQVztA54K/iUfIFIyHo48 ZLFb3J2CLsNAcq3ExswF//0+Kw3FfnY29N3r08RLFphhZi3MSCeboXkcBRqI+Oul 8Xs2Wjo98ekuaRvp8lgod9e64GeIP2O2vmh3zBDs2O5tLF4C9uDq/mntmKWFeSbr 0NXrm1A6Iq9pI2tXbixWTbbqGGc0DSMZHuWblQd5KVxPNMuZRDGJPkk/ht2JndCD BuCG/Jz9teZKooiSA9XATu9AswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC7kMlbB +EU1/u2ETnhem+Vhr2ktMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFGM0UvMzM5RURFNjgxMEU0MTFGMEI3NUI4MTY2QzRGOUFFMDIvNDlERUFFREMx MkE3MTFGMDk5MDIwQTczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5QjMA0GCSqGSIb3DQEBCwUAA4IBAQCVKwv0mBIMTv8kctH0Jd9v 2pGeMrhBbiVl8cjhoEQhHWk9P+ib3AE2yfbCnBNQz0Lx5dmxqgzRGWZHbVNLYlO+ iNUyGXuiZNmt6rUMQ1+GqY9wotYwQ2JUlnpHRaF2363jDPA80SHSrItUILIAk7A+ aunDHEcr5ejgEHYghqgnBm8wc0nwr74xDgr091jw1OC1QFCowvYIQTVE5OsZD8+f sqvSQ3Qr/+bSb+F8PUIsqpzJyfUzOM09GeY6mMMWetEf7tHeTFLZ0XrRpvcECXwB mKFo8oAPeTAnHjrg37JglXXAYNOpiAtZSCWdLpZGhHDiSnFLUu0ZcVFP+mlkVQfS -----END CERTIFICATE-----Generated at Mon Mar 2 10:42:56 2026 by rpki-client