$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa File: 43272DE249AA11EABABC8610C4F9AE02.roa (raw, json) Hash identifier: EN5bKceIlvg4Fzp/ZSGEdBdeBxl7Q0LWmom5lkuMwpg= Subject key identifier: 83:83:41:1D:CE:83:9F:29:13:14:24:37:4F:AB:F8:BA:A9:91:9C:18 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B7A Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:11:15 +0000 ROA not before: Sun 16 Feb 2025 20:27:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140084 IP address blocks: 103.148.74.0/23 maxlen: 23 103.148.74.0/24 maxlen: 24 103.148.75.0/24 maxlen: 24 2001:df2:c180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2938 (0xb7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Feb 16 20:27:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a46523-29fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:64:4f:c2:2d:2e:6c:dc:72:59:a3:45:79: 89:61:b2:98:33:80:6b:55:41:ca:c5:de:11:25:cc: 53:6e:2f:07:12:83:49:31:21:fe:d1:13:89:bd:87: 94:f6:d2:4b:1a:ce:47:55:85:6f:54:d4:92:5f:2d: 50:cf:99:f0:2e:33:21:eb:e3:c4:b8:bf:ad:56:11: 6b:69:3e:c4:f6:86:e6:ad:73:03:f9:10:78:e0:14: 21:42:f3:ce:1a:e4:db:c7:99:5d:6c:b8:68:12:16: 4d:91:10:f2:40:26:3a:6a:42:82:15:6d:c0:42:3c: 27:62:39:23:1b:70:5e:90:22:ad:00:2c:6a:72:10: 1a:69:51:21:5a:47:94:ec:ec:64:cf:44:9c:02:2a: 2c:c7:67:a7:d6:f3:34:02:03:ff:fc:40:fa:11:bd: be:a4:13:25:38:86:80:34:18:db:4c:6f:63:4c:0d: b3:2e:42:d5:f2:40:14:39:4f:96:42:5f:e9:f8:f5: f1:2e:fb:19:3d:43:61:55:4a:92:cc:cd:0b:b9:f8: 17:c5:3d:5a:ae:1b:04:df:56:86:20:2f:bf:ac:55: 21:9a:ec:b9:c4:97:77:c4:a4:7f:d5:f0:a9:29:8d: 1b:56:bb:52:4b:4f:fa:11:fc:e0:36:9d:28:91:67: cb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:83:41:1D:CE:83:9F:29:13:14:24:37:4F:AB:F8:BA:A9:91:9C:18 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.74.0/23 IPv6: 2001:df2:c180::/48 Signature Algorithm: sha256WithRSAEncryption de:4f:ea:3b:44:59:f4:84:37:03:66:43:14:98:29:0d:ff:b6: 3a:bd:ee:cf:e5:57:0d:95:7a:7f:bb:a4:a3:57:8d:fd:c9:67: 2f:bd:f6:af:92:67:44:9b:6b:b5:75:e4:06:4b:e2:6b:38:f0: 7b:6e:48:74:15:3e:1f:65:04:25:c9:24:7e:b6:b6:27:f8:7c: 06:54:ce:cb:3e:78:8e:9a:f5:b3:fb:93:21:a1:b0:d6:24:f8: b8:8e:28:ff:88:a7:69:c3:5e:77:a5:a4:0d:1d:7c:79:c4:cd: 50:4a:17:18:33:bd:6c:11:98:be:2c:9e:88:25:65:30:30:8c: b6:da:6d:ce:5b:b2:cd:dc:0e:b8:00:ff:5e:48:3a:d1:43:0d: f2:02:bf:08:12:5e:89:5f:f9:f3:1f:00:4d:ea:c7:aa:23:fd: 44:7a:f3:d4:47:56:b9:2e:60:6c:b1:61:f3:45:96:8e:e7:6b: 8e:80:e4:66:8b:75:bb:c2:90:0e:f8:e0:2c:e4:80:cb:43:01: 85:9f:04:d5:a8:d7:aa:3b:c3:90:1f:32:33:06:97:8b:12:42: 62:49:14:16:3b:46:62:f8:43:e0:27:9e:e3:50:c6:82:54:0b: 46:bb:3e:84:42:0b:09:e7:5e:d1:3f:1e:cd:6e:0e:6b:01:6e: 3d:e5:2a:2d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwMjE2MjAyNzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjUyMy0yOWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsphkT8ItLmzcclmjRXmJYbKYM4BrVUHKxd4RJcxTbi8HEoNJMSH+0ROJvYeU 9tJLGs5HVYVvVNSSXy1Qz5nwLjMh6+PEuL+tVhFraT7E9obmrXMD+RB44BQhQvPO GuTbx5ldbLhoEhZNkRDyQCY6akKCFW3AQjwnYjkjG3BekCKtACxqchAaaVEhWkeU 7Oxkz0ScAiosx2en1vM0AgP//ED6Eb2+pBMlOIaANBjbTG9jTA2zLkLV8kAUOU+W Ql/p+PXxLvsZPUNhVUqSzM0LufgXxT1arhsE31aGIC+/rFUhmuy5xJd3xKR/1fCp KY0bVrtSS0/6EfzgNp0okWfL4wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIODQR3O g58pExQkN0+r+LqpkZwYMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ2N0QvODQ4RTdEMTg0OUE5MTFFQUE2RkREMzBGQzRGOUFFMDIvNDMyNzJERTI0 OUFBMTFFQUJBQkM4NjEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5RKMA8EAgACMAkDBwAgAQ3ywYAwDQYJKoZIhvcNAQELBQADggEB AN5P6jtEWfSENwNmQxSYKQ3/tjq97s/lVw2Ven+7pKNXjf3JZy+99q+SZ0Sba7V1 5AZL4ms48HtuSHQVPh9lBCXJJH62tif4fAZUzss+eI6a9bP7kyGhsNYk+LiOKP+I p2nDXnelpA0dfHnEzVBKFxgzvWwRmL4snoglZTAwjLbabc5bss3cDrgA/15IOtFD DfICvwgSXolf+fMfAE3qx6oj/UR689RHVrkuYGyxYfNFlo7na46A5GaLdbvCkA74 4CzkgMtDAYWfBNWo16o7w5AfMjMGl4sSQmJJFBY7RmL4Q+AnnuNQxoJUC0a7PoRC CwnnXtE/Hs1uDmsBbj3lKi0= -----END CERTIFICATE-----Generated at Mon Mar 2 08:06:36 2026 by rpki-client