$ rpki-client -vvf rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa File: AC8124909A4911E7857CA62FC4F9AE02.roa (raw, json) Hash identifier: 4sqBlimKSSRcLEJYHzC9lXGcwmgJfjeElM5emE+DpWM= Subject key identifier: E0:B5:87:BB:44:95:F0:A0:4C:4F:BA:25:3A:3F:32:B6:F7:3E:BF:86 Certificate issuer: /CN=A91970E2/serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Certificate serial: 1C7E Authority key identifier: D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:29:41 +0000 ROA not before: Tue 04 Mar 2025 16:53:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.205.132.0/24 maxlen: 24 103.205.134.0/23 maxlen: 24 144.48.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7294 (0x1c7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91970E2, serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Validity Not Before: Mar 4 16:53:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69a42325-1688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f7:9e:81:63:ba:e0:29:b6:4c:21:df:ae:12: 94:89:eb:32:29:71:5b:e0:44:01:09:18:10:4c:80: c3:93:06:ab:6a:a1:06:4c:c5:76:a0:ed:5e:02:4a: f5:43:99:1a:a6:16:1f:27:1c:31:d3:60:86:89:0c: 39:4a:97:fd:0a:36:41:52:70:02:a8:1b:de:89:98: a8:dd:1a:46:0e:2c:16:81:a7:76:99:3d:e3:8f:86: e2:1c:3f:a8:08:fb:38:52:e5:8e:02:7d:d3:1a:88: a7:23:bc:99:37:cc:82:72:13:2e:f6:b9:17:f7:34: e9:91:ed:d9:6a:cb:98:9b:cc:ad:97:19:f9:f3:80: 37:7a:2d:1e:66:d5:5a:69:3f:55:af:7f:78:09:db: 3c:b7:1f:aa:4f:47:72:9e:3a:4e:95:e2:58:c1:45: bb:08:89:8f:aa:17:df:1b:6b:c9:16:be:87:54:20: c6:0e:68:95:e6:d1:28:e7:0f:a4:77:f8:8b:e6:bd: 04:f8:96:81:0e:44:d8:89:1a:29:19:8a:db:c2:f6: 59:af:ca:58:4c:71:bd:1d:ec:a5:0f:83:f9:04:4f: 1e:74:01:26:ca:52:0f:31:f0:ad:e8:ca:af:95:78: 9f:36:47:64:22:5a:3d:eb:a7:f1:b3:ac:d3:95:a5: 4a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B5:87:BB:44:95:F0:A0:4C:4F:BA:25:3A:3F:32:B6:F7:3E:BF:86 X509v3 Authority Key Identifier: keyid:D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.205.132.0/24 103.205.134.0/23 144.48.108.0/22 Signature Algorithm: sha256WithRSAEncryption 43:50:10:c2:7d:c0:80:ba:cc:a9:cc:c9:d0:3e:20:34:7c:0f: 4f:16:34:ea:3f:9a:ad:14:17:79:11:7c:2c:00:41:c3:c1:27: 79:bb:3e:39:d2:7c:06:9c:2e:7f:1f:a2:54:5a:ca:cb:20:d8: 12:54:5a:30:29:e2:96:72:55:11:6e:ae:c9:76:ce:54:40:ef: db:2b:98:83:13:e4:11:1f:58:ee:4b:64:60:65:26:a2:3f:fa: bf:4d:8a:e4:0b:e3:fd:53:c0:ec:b0:4b:5f:c0:01:3c:d6:e9: 67:98:27:21:d1:16:cc:63:40:c9:14:e9:c8:a3:37:70:ba:9e: 8b:f5:d5:b7:2b:b9:65:13:25:66:79:40:00:99:92:86:5a:e6: d8:56:0d:84:41:cf:85:32:2a:ca:59:20:97:fe:e4:30:a0:88: d2:bc:9a:17:c7:a9:6e:2e:8f:86:50:db:40:b2:8d:d8:a5:0e: 74:be:eb:e3:8f:cc:83:bf:a4:ba:4f:cc:f1:98:9f:1e:e7:e8: 6c:15:c2:af:3a:c0:16:d8:65:ad:65:b9:91:8a:da:24:45:55: 3d:c6:bf:d8:25:1b:1e:f8:6f:95:e0:00:75:a9:9f:4e:12:df: 60:f8:ae:4b:15:1a:f6:0e:91:0d:8a:98:a1:c3:cd:3f:3d:08: 8f:14:ee:6e -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICHH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcwRTIxMTAvBgNVBAUTKEQ0RDE3Nzk5RUFDOUM5OTYyQjMyNUZFRDg3RjkzMEMy RUFDODJDQUYwHhcNMjUwMzA0MTY1MzM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjMyNS0xNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2feegWO64Cm2TCHfrhKUiesyKXFb4EQBCRgQTIDDkwaraqEGTMV2oO1eAkr1 Q5kaphYfJxwx02CGiQw5Spf9CjZBUnACqBveiZio3RpGDiwWgad2mT3jj4biHD+o CPs4UuWOAn3TGoinI7yZN8yCchMu9rkX9zTpke3ZasuYm8ytlxn584A3ei0eZtVa aT9Vr394Cds8tx+qT0dynjpOleJYwUW7CImPqhffG2vJFr6HVCDGDmiV5tEo5w+k d/iL5r0E+JaBDkTYiRopGYrbwvZZr8pYTHG9HeylD4P5BE8edAEmylIPMfCt6Mqv lXifNkdkIlo966fxs6zTlaVKsQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOC1h7tE lfCgTE+6JTo/Mrb3Pr+GMB8GA1UdIwQYMBaAFNTRd5nqycmWKzJf7Yf5MMLqyCyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzBFMi84MTAxMjU4Q0Y5 QTgxMUU2QTRFRkUwMkVDNEY5QUUwMi8xTkYzbWVySnlaWXJNbF90aF9rd3d1cklM SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFORjNtZXJKeVpZck1sX3RoX2t3d3VySUxLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcwRTIvODEwMTI1OENGOUE4MTFFNkE0RUZFMDJFQzRGOUFFMDIvQUM4MTI0OTA5 QTQ5MTFFNzg1N0NBNjJGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ82EAwQBZ82GAwQCkDBsMA0GCSqGSIb3DQEBCwUAA4IBAQBDUBDC fcCAusypzMnQPiA0fA9PFjTqP5qtFBd5EXwsAEHDwSd5uz450nwGnC5/H6JUWsrL INgSVFowKeKWclURbq7Jds5UQO/bK5iDE+QRH1juS2RgZSaiP/q/TYrkC+P9U8Ds sEtfwAE81ulnmCch0RbMY0DJFOnIozdwup6L9dW3K7llEyVmeUAAmZKGWubYVg2E Qc+FMirKWSCX/uQwoIjSvJoXx6luLo+GUNtAso3YpQ50vuvjj8yDv6S6T8zxmJ8e 5+hsFcKvOsAW2GWtZbmRitokRVU9xr/YJRse+G+V4AB1qZ9OEt9g+K5LFRr2DpEN ipihw80/PQiPFO5u -----END CERTIFICATE-----Generated at Mon Mar 2 09:46:20 2026 by rpki-client