$ rpki-client -vvf rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa File: C49E2E22FF0111E591C15659C4F9AE02.roa (raw, json) Hash identifier: HhQxUt8kfX+mJlXHn9AIcVCVvv1AbgL+l8SBK6m5XSw= Subject key identifier: 0B:F6:F3:69:E6:B7:D4:BB:A4:C5:49:E6:5A:3B:E0:53:98:D1:AF:B4 Certificate issuer: /CN=A919B5BB/serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Certificate serial: 2165 Authority key identifier: CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:28:13 +0000 ROA not before: Mon 04 Aug 2025 16:23:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133610 IP address blocks: 103.43.93.0/24 maxlen: 24 103.238.63.0/24 maxlen: 24 2001:df1:9200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8549 (0x2165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B5BB, serialNumber=CAC4478F0FDD9AE41E24E9FC67F851FF43C33309 Validity Not Before: Aug 4 16:23:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a422cd-b472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:f0:11:4d:32:e4:03:ea:2d:cc:57:37:75:ea: b0:ba:83:61:66:4b:4c:e4:1f:f3:04:c1:95:87:f2: f6:64:13:81:7a:84:ae:29:63:64:10:b2:5e:7d:4a: 88:41:90:ac:9a:08:02:3b:c3:da:03:66:e6:57:35: 4b:b8:b1:50:db:2b:6f:1e:b2:c9:bc:84:22:65:4a: 70:c3:97:83:aa:d2:8e:29:7a:7a:c4:b1:65:7b:b4: b4:9c:c6:e0:65:bc:c8:bd:64:42:37:f2:cb:51:dd: 2b:72:78:eb:7d:d6:ac:92:ff:56:17:71:95:ed:5e: 5a:37:51:54:ee:07:5c:f5:08:6a:35:d5:41:ae:26: ed:2f:65:9e:29:26:0a:bd:e5:31:97:4b:fe:6e:dd: b8:83:7e:fa:49:29:19:f1:74:22:01:1a:6c:20:09: 2c:2b:f9:6c:cd:fc:66:86:0b:ef:c4:93:2c:9d:b7: 5d:59:65:7c:8a:dd:c4:ed:bc:21:5c:da:f1:03:92: a9:79:43:c2:fd:13:59:9f:ab:19:43:b8:0b:5b:87: 93:75:bd:0d:31:4a:a8:20:52:b5:65:22:92:f6:58: 00:ed:2e:2f:47:eb:28:df:26:ea:37:eb:a1:f8:8f: 83:f8:19:ab:65:f0:4e:e3:b9:73:7b:a3:b6:2c:33: 6c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F6:F3:69:E6:B7:D4:BB:A4:C5:49:E6:5A:3B:E0:53:98:D1:AF:B4 X509v3 Authority Key Identifier: keyid:CA:C4:47:8F:0F:DD:9A:E4:1E:24:E9:FC:67:F8:51:FF:43:C3:33:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysRHjw_dmuQeJOn8Z_hR_0PDMwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B5BB/44BBC14CFF0111E5B1CFB058C4F9AE02/C49E2E22FF0111E591C15659C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.43.93.0/24 103.238.63.0/24 IPv6: 2001:df1:9200::/48 Signature Algorithm: sha256WithRSAEncryption ba:19:0e:b1:b2:69:c6:f5:f0:95:65:4c:bf:7a:2a:0e:6a:6f: b7:51:96:69:bd:7e:0f:a0:43:44:5f:b6:b1:5a:66:69:46:54: fe:4f:f9:45:6b:6a:1c:01:b7:e5:79:ec:7d:38:3d:ac:f8:8e: 19:12:c2:c5:fd:73:3b:4e:7e:e3:8c:c6:a9:c9:5b:85:20:c8: d9:f5:72:b7:83:73:64:1e:5e:07:f2:93:1d:87:46:04:ca:d3: b8:d1:b7:96:7e:6c:23:1e:22:8c:67:d6:60:43:29:9c:39:c9: 23:c5:2a:62:41:bf:c5:c2:dc:fb:05:c6:56:9e:c4:96:6c:88: 92:d8:92:64:29:2a:7f:bd:18:f7:2c:f4:96:79:fd:32:6a:e2: 98:0a:92:06:7f:a1:0d:f0:30:bf:5e:d7:7f:13:ad:00:4f:03: 2c:71:c7:3d:29:4f:27:b9:3a:fb:90:b2:71:3b:ef:d6:a1:9b: 4d:40:93:b6:35:3c:8f:46:a7:5b:6a:48:ca:95:d6:e7:a6:b6: 72:ac:93:05:ab:1d:71:8a:29:f8:64:86:6a:26:f4:f6:7c:70: 3d:23:95:69:a5:35:58:13:1d:ee:2b:7b:41:5c:ad:06:40:03: c1:3b:dc:e7:75:d7:6d:df:e2:9c:e1:37:b4:f6:8e:e6:3b:6d: fd:b6:f7:d4 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICIWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI1QkIxMTAvBgNVBAUTKENBQzQ0NzhGMEZERDlBRTQxRTI0RTlGQzY3Rjg1MUZG NDNDMzMzMDkwHhcNMjUwODA0MTYyMzUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjJjZC1iNDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh/ARTTLkA+otzFc3deqwuoNhZktM5B/zBMGVh/L2ZBOBeoSuKWNkELJefUqI QZCsmggCO8PaA2bmVzVLuLFQ2ytvHrLJvIQiZUpww5eDqtKOKXp6xLFle7S0nMbg ZbzIvWRCN/LLUd0rcnjrfdaskv9WF3GV7V5aN1FU7gdc9QhqNdVBribtL2WeKSYK veUxl0v+bt24g376SSkZ8XQiARpsIAksK/lszfxmhgvvxJMsnbddWWV8it3E7bwh XNrxA5KpeUPC/RNZn6sZQ7gLW4eTdb0NMUqoIFK1ZSKS9lgA7S4vR+so3ybqN+uh +I+D+BmrZfBO47lze6O2LDNsgwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFAv282nm t9S7pMVJ5lo74FOY0a+0MB8GA1UdIwQYMBaAFMrER48P3ZrkHiTp/Gf4Uf9DwzMJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjVCQi80NEJCQzE0Q0ZG MDExMUU1QjFDRkIwNThDNEY5QUUwMi95c1JIandfZG11UWVKT244Wl9oUl8wUERN d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzUkhqd19kbXVRZUpPbjhaX2hSXzBQRE13ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI1QkIvNDRCQkMxNENGRjAxMTFFNUIxQ0ZCMDU4QzRGOUFFMDIvQzQ5RTJFMjJG RjAxMTFFNTkxQzE1NjU5QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZytdAwQAZ+4/MA8EAgACMAkDBwAgAQ3xkgAwDQYJKoZIhvcNAQEL BQADggEBALoZDrGyacb18JVlTL96Kg5qb7dRlmm9fg+gQ0RftrFaZmlGVP5P+UVr ahwBt+V57H04Paz4jhkSwsX9cztOfuOMxqnJW4UgyNn1creDc2QeXgfykx2HRgTK 07jRt5Z+bCMeIoxn1mBDKZw5ySPFKmJBv8XC3PsFxlaexJZsiJLYkmQpKn+9GPcs 9JZ5/TJq4pgKkgZ/oQ3wML9e138TrQBPAyxxxz0pTye5OvuQsnE779ahm01Ak7Y1 PI9Gp1tqSMqV1uemtnKskwWrHXGKKfhkhmom9PZ8cD0jlWmlNVgTHe4re0FcrQZA A8E73Od1123f4pzhN7T2juY7bf2299Q= -----END CERTIFICATE-----Generated at Mon Mar 2 10:01:09 2026 by rpki-client