$ rpki-client -vvf rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/46B3DF5A46E111EDB39B8526C4F9AE02.roa File: 46B3DF5A46E111EDB39B8526C4F9AE02.roa (raw, json) Hash identifier: H39g8dr+SeKDcbalwcxYhJxFV4J5TXxdT3MCN2geYeM= Subject key identifier: 4C:66:DC:3F:15:2D:64:80:A0:2C:8D:29:DD:61:64:A7:06:9A:80:2F Certificate issuer: /CN=A919C1A2/serialNumber=579972E60EA6F46384891AD0E3F41790C80805F1 Certificate serial: 0287 Authority key identifier: 57:99:72:E6:0E:A6:F4:63:84:89:1A:D0:E3:F4:17:90:C8:08:05:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/46B3DF5A46E111EDB39B8526C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:09:39 +0000 ROA not before: Fri 05 Dec 2025 00:09:20 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137221 IP address blocks: 103.105.74.0/23 maxlen: 23 103.105.74.0/24 maxlen: 24 103.105.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.crl rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C1A2, serialNumber=579972E60EA6F46384891AD0E3F41790C80805F1 Validity Not Before: Dec 5 00:09:20 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a42c83-30f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:ec:35:03:5e:ad:49:93:bb:77:46:c5:2c: d8:cc:28:d5:c1:5c:38:24:ae:2b:d6:c7:74:df:4d: a3:13:82:36:f5:38:9e:dd:78:00:b7:b4:6f:9f:68: 64:35:6e:4d:d7:e5:51:b4:6b:52:4f:0f:bc:f4:15: 25:df:c8:c0:49:81:54:a8:61:ce:24:a2:82:d3:26: 59:90:b7:6d:1b:f6:a3:38:61:03:a2:06:6d:18:fc: 6e:66:d8:d7:23:4e:43:ce:f7:76:78:cd:8e:ee:d9: 51:1f:76:12:86:c6:b5:7b:1e:13:fc:db:4f:9b:e8: 63:9e:12:48:da:8d:84:3d:68:94:69:f5:b1:33:b7: ae:78:53:a6:53:16:ea:27:8a:7f:80:b1:3f:6c:11: 1e:65:52:59:2d:3f:fe:d1:3c:15:5f:22:c4:b7:77: 1a:e7:90:4f:8c:69:eb:df:99:f6:86:53:00:5b:15: 4e:f0:e3:d7:4d:bc:2b:f5:44:7c:1a:b7:8a:3a:25: 6a:12:7d:ad:b2:06:f0:cd:d4:36:30:c7:66:23:62: b2:ec:93:a2:93:07:ce:fe:55:61:7b:44:e8:1e:b0: a2:38:72:80:7e:f2:ed:39:25:32:f7:3e:2f:36:28: 7b:a1:bd:9b:dc:56:26:3d:2e:52:d5:2a:64:98:35: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:66:DC:3F:15:2D:64:80:A0:2C:8D:29:DD:61:64:A7:06:9A:80:2F X509v3 Authority Key Identifier: keyid:57:99:72:E6:0E:A6:F4:63:84:89:1A:D0:E3:F4:17:90:C8:08:05:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/46B3DF5A46E111EDB39B8526C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.105.74.0/23 Signature Algorithm: sha256WithRSAEncryption 22:90:53:dc:cc:2f:a7:11:f8:66:ec:00:70:c4:a3:0e:2d:08: eb:3d:71:4e:20:58:a4:28:ef:36:92:57:68:c1:93:1f:e6:fc: c1:23:30:6e:75:32:42:46:ff:37:4c:c2:f0:c5:c7:f7:39:57: 5e:92:7e:91:7b:25:35:52:fd:0c:0a:31:73:30:d1:9a:7d:9c: bc:9b:f5:26:f0:d3:80:41:56:66:b4:d3:cb:af:73:27:a6:0d: de:f1:98:c9:23:c3:ed:f1:50:ea:f1:60:2d:4d:76:03:1f:04: 1f:fa:ab:74:21:33:0d:16:8a:07:2e:08:ee:54:18:31:a4:39: aa:46:75:28:23:15:be:70:26:42:89:38:30:ff:a1:cc:2e:f0: c6:2c:e8:82:e5:e2:03:46:a5:a2:1b:b8:99:59:cc:cf:d5:5f: 65:21:6b:1a:78:ad:25:7c:6a:a2:03:57:32:25:e8:f4:a8:45: a8:b9:fa:4e:2b:ec:32:00:ea:79:90:6c:de:24:3c:49:92:af: 6e:24:c7:d1:a1:85:88:70:c0:c3:d2:4d:b3:0e:c8:9d:4b:29: 54:90:74:23:02:fd:f7:7e:69:d1:d8:43:13:1d:55:d1:84:2e: 85:1c:90:f5:6c:37:4b:a2:cd:fb:e3:50:29:34:05:5e:6d:d8: 5f:ff:4f:f1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMxQTIxMTAvBgNVBAUTKDU3OTk3MkU2MEVBNkY0NjM4NDg5MUFEMEUzRjQxNzkw QzgwODA1RjEwHhcNMjUxMjA1MDAwOTIwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmM4My0zMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMvsNQNerUmTu3dGxSzYzCjVwVw4JK4r1sd0302jE4I29Tie3XgAt7Rvn2hk NW5N1+VRtGtSTw+89BUl38jASYFUqGHOJKKC0yZZkLdtG/ajOGEDogZtGPxuZtjX I05Dzvd2eM2O7tlRH3YShsa1ex4T/NtPm+hjnhJI2o2EPWiUafWxM7eueFOmUxbq J4p/gLE/bBEeZVJZLT/+0TwVXyLEt3ca55BPjGnr35n2hlMAWxVO8OPXTbwr9UR8 GreKOiVqEn2tsgbwzdQ2MMdmI2Ky7JOikwfO/lVhe0ToHrCiOHKAfvLtOSUy9z4v Nih7ob2b3FYmPS5S1SpkmDVyGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFExm3D8V LWSAoCyNKd1hZKcGmoAvMB8GA1UdIwQYMBaAFFeZcuYOpvRjhIka0OP0F5DICAXx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzFBMi80NzRDRDg0NDQ2 REQxMUVEOTI0MDIzMjBDNEY5QUUwMi9WNWx5NWc2bTlHT0VpUnJRNF9RWGtNZ0lC ZkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1bHk1ZzZtOUdPRWlSclE0X1FYa01nSUJmRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMxQTIvNDc0Q0Q4NDQ0NkREMTFFRDkyNDAyMzIwQzRGOUFFMDIvNDZCM0RGNUE0 NkUxMTFFREIzOUI4NTI2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ2lKMA0GCSqGSIb3DQEBCwUAA4IBAQAikFPczC+nEfhm7ABwxKMO LQjrPXFOIFikKO82kldowZMf5vzBIzBudTJCRv83TMLwxcf3OVdekn6ReyU1Uv0M CjFzMNGafZy8m/Um8NOAQVZmtNPLr3Mnpg3e8ZjJI8Pt8VDq8WAtTXYDHwQf+qt0 ITMNFooHLgjuVBgxpDmqRnUoIxW+cCZCiTgw/6HMLvDGLOiC5eIDRqWiG7iZWczP 1V9lIWsaeK0lfGqiA1cyJej0qEWoufpOK+wyAOp5kGzeJDxJkq9uJMfRoYWIcMDD 0k2zDsidSylUkHQjAv33fmnR2EMTHVXRhC6FHJD1bDdLos3741ApNAVebdhf/0/x -----END CERTIFICATE-----Generated at Mon Mar 2 11:17:47 2026 by rpki-client