$ rpki-client -vvf rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/42A39472C74E11ECB4AD656CC4F9AE02.roa File: 42A39472C74E11ECB4AD656CC4F9AE02.roa (raw, json) Hash identifier: ZFaS0mb5R6BUb+cE9Qt/8Ifm4cDm/dmrFXNIbrri4GI= Subject key identifier: 06:56:F3:E2:68:0A:26:E7:B2:F9:1C:7B:2C:50:23:8B:B5:69:55:D3 Certificate issuer: /CN=A91923E1/serialNumber=EBAE1F9AB4956F1834B73529357C9F3F1E1205F0 Certificate serial: 054C Authority key identifier: EB:AE:1F:9A:B4:95:6F:18:34:B7:35:29:35:7C:9F:3F:1E:12:05:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/664fmrSVbxg0tzUpNXyfPx4SBfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/42A39472C74E11ECB4AD656CC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:51:45 +0000 ROA not before: Sat 03 May 2025 00:05:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141884 IP address blocks: 103.163.252.0/23 maxlen: 23 103.163.252.0/24 maxlen: 24 103.163.253.0/24 maxlen: 24 2400:7460::/32 maxlen: 32 2400:7460:100::/40 maxlen: 40 2400:7460:200::/40 maxlen: 40 2400:7460:300::/40 maxlen: 40 2400:7460:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/664fmrSVbxg0tzUpNXyfPx4SBfA.crl rsync://rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/664fmrSVbxg0tzUpNXyfPx4SBfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/664fmrSVbxg0tzUpNXyfPx4SBfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923E1, serialNumber=EBAE1F9AB4956F1834B73529357C9F3F1E1205F0 Validity Not Before: May 3 00:05:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fe21-e948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:70:db:c3:e5:f9:db:2a:a8:3f:b0:0a:6b: 49:f3:be:9d:2d:f5:13:40:f8:32:92:0a:a6:24:31: 1f:a7:66:87:59:84:02:af:4a:12:e3:65:dd:b8:46: 29:a3:75:58:bc:6b:8e:32:85:a4:32:2e:21:e6:78: 94:13:18:17:32:25:96:d7:84:d0:8d:17:19:79:84: ed:24:8e:d2:50:b4:a1:cb:3d:76:fc:21:89:eb:f5: 80:e5:64:ac:3f:cf:a7:2a:ce:34:7c:25:f3:a2:00: f1:41:d0:b4:02:20:8f:4c:b2:e0:8a:ad:8e:6c:4d: 5c:96:67:fd:85:41:c2:6f:fd:77:b2:ed:3c:60:d9: c9:6b:dc:45:1e:0e:fb:92:ac:a1:aa:09:ab:be:48: 4e:4e:02:c2:54:2a:27:2a:51:5c:2b:a2:ec:8b:5c: ff:57:0b:56:b2:cd:b2:4c:30:1d:16:c0:98:86:7e: 3b:26:53:ae:09:72:18:7c:a7:45:0d:f7:9a:4a:fc: 9b:81:eb:61:ca:22:d8:b3:9c:f7:6a:62:7c:ef:0a: ea:78:99:6a:39:eb:8b:8e:bf:23:a8:9c:e4:29:8a: 84:6c:94:ce:2b:ed:fa:79:8b:7d:bf:fd:1b:ee:32: 41:67:57:cf:57:ac:9a:51:a3:ba:ac:e3:41:b4:8d: fb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:F3:E2:68:0A:26:E7:B2:F9:1C:7B:2C:50:23:8B:B5:69:55:D3 X509v3 Authority Key Identifier: keyid:EB:AE:1F:9A:B4:95:6F:18:34:B7:35:29:35:7C:9F:3F:1E:12:05:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/664fmrSVbxg0tzUpNXyfPx4SBfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/664fmrSVbxg0tzUpNXyfPx4SBfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923E1/2AF4B374322511ECA285F341C4F9AE02/42A39472C74E11ECB4AD656CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.252.0/23 IPv6: 2400:7460::/32 Signature Algorithm: sha256WithRSAEncryption 81:23:ee:6d:e4:71:32:b4:63:04:2c:16:f9:2f:82:1c:a0:df: 83:83:d0:22:e8:0a:40:54:3d:81:cf:00:42:73:8c:67:a3:09: af:da:4b:b7:45:97:80:ed:f7:39:f2:cb:cf:e7:33:a6:2f:08: 22:e6:a1:70:e7:4c:9c:21:ba:b9:41:06:94:4b:b7:d2:f7:3f: 8c:13:6a:58:92:f4:5b:ae:1f:8c:12:fb:e1:51:0d:fb:86:30: 9a:60:a0:10:6e:4a:80:79:4b:7c:60:48:71:c0:4c:7b:20:e5: 01:e9:45:ca:73:92:1e:f9:e4:92:88:e8:92:af:a0:92:ce:20: e5:1f:c5:ed:fa:36:f7:41:f5:52:da:4f:00:48:fe:9f:e3:cf: b0:d5:fa:0e:09:3b:d2:97:1c:f7:e2:fb:03:70:3d:7d:b7:83: 39:5c:8a:5e:a9:a3:95:7c:02:9c:08:a4:7e:f8:3b:be:e8:7c: 3a:08:09:ff:5a:c3:1a:5e:16:a5:c4:23:ba:7b:57:75:df:1f: 81:1c:d4:e4:c6:00:a1:be:a2:4f:ce:87:3b:15:ac:75:f7:fe: fb:15:29:9c:20:97:65:d1:c2:74:6a:df:f5:dc:5e:2b:e1:0e: c5:55:c4:96:d8:2b:62:b5:14:1e:2b:ac:72:c1:51:c7:b3:10: cd:a3:a1:fd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzRTExMTAvBgNVBAUTKEVCQUUxRjlBQjQ5NTZGMTgzNEI3MzUyOTM1N0M5RjNG MUUxMjA1RjAwHhcNMjUwNTAzMDAwNTU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmUyMS1lOTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhNw28Pl+dsqqD+wCmtJ876dLfUTQPgykgqmJDEfp2aHWYQCr0oS42XduEYp o3VYvGuOMoWkMi4h5niUExgXMiWW14TQjRcZeYTtJI7SULShyz12/CGJ6/WA5WSs P8+nKs40fCXzogDxQdC0AiCPTLLgiq2ObE1clmf9hUHCb/13su08YNnJa9xFHg77 kqyhqgmrvkhOTgLCVConKlFcK6Lsi1z/VwtWss2yTDAdFsCYhn47JlOuCXIYfKdF DfeaSvybgethyiLYs5z3amJ87wrqeJlqOeuLjr8jqJzkKYqEbJTOK+36eYt9v/0b 7jJBZ1fPV6yaUaO6rONBtI37HQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFAZW8+Jo CibnsvkceyxQI4u1aVXTMB8GA1UdIwQYMBaAFOuuH5q0lW8YNLc1KTV8nz8eEgXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNFMS8yQUY0QjM3NDMy MjUxMUVDQTI4NUYzNDFDNEY5QUUwMi82NjRmbXJTVmJ4ZzB0elVwTlh5ZlB4NFNC ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY2NGZtclNWYnhnMHR6VXBOWHlmUHg0U0JmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTIzRTEvMkFGNEIzNzQzMjI1MTFFQ0EyODVGMzQxQzRGOUFFMDIvNDJBMzk0NzJD NzRFMTFFQ0I0QUQ2NTZDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6P8MA0EAgACMAcDBQAkAHRgMA0GCSqGSIb3DQEBCwUAA4IBAQCB I+5t5HEytGMELBb5L4IcoN+Dg9Ai6ApAVD2BzwBCc4xnowmv2ku3RZeA7fc58svP 5zOmLwgi5qFw50ycIbq5QQaUS7fS9z+ME2pYkvRbrh+MEvvhUQ37hjCaYKAQbkqA eUt8YEhxwEx7IOUB6UXKc5Ie+eSSiOiSr6CSziDlH8Xt+jb3QfVS2k8ASP6f48+w 1foOCTvSlxz34vsDcD19t4M5XIpeqaOVfAKcCKR++Du+6Hw6CAn/WsMaXhalxCO6 e1d13x+BHNTkxgChvqJPzoc7Fax19/77FSmcIJdl0cJ0at/13F4r4Q7FVcSW2Cti tRQeK6xywVHHsxDNo6H9 -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:43 2026 by rpki-client