$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/074283A632A511EF84ECD41AC4F9AE02.roa File: 074283A632A511EF84ECD41AC4F9AE02.roa (raw, json) Hash identifier: Ig/wbZdh4jHG/0RZspeIPFlmWVtGZIemOVk+yYX06AU= Subject key identifier: 54:E0:02:7B:C1:B2:FD:58:BF:59:C4:EE:F8:06:35:9D:F5:41:02:67 Certificate issuer: /CN=A91A4DA5/serialNumber=4630A4B026A93D0DFAA8ECEC579CC521382E4E58 Certificate serial: 014A Authority key identifier: 46:30:A4:B0:26:A9:3D:0D:FA:A8:EC:EC:57:9C:C5:21:38:2E:4E:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjCksCapPQ36qOzsV5zFITguTlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/074283A632A511EF84ECD41AC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:58:15 +0000 ROA not before: Mon 03 Mar 2025 08:29:13 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133396 IP address blocks: 103.226.252.0/24 maxlen: 24 103.226.253.0/24 maxlen: 24 103.226.254.0/24 maxlen: 24 103.226.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/RjCksCapPQ36qOzsV5zFITguTlg.crl rsync://rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/RjCksCapPQ36qOzsV5zFITguTlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjCksCapPQ36qOzsV5zFITguTlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4DA5, serialNumber=4630A4B026A93D0DFAA8ECEC579CC521382E4E58 Validity Not Before: Mar 3 08:29:13 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a587-e736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:f2:1b:f3:e7:8f:31:b9:ae:77:0d:06:35: 6e:97:a5:6d:a1:2e:e5:09:2d:5d:bf:98:15:79:b7: ec:6e:a2:d9:b7:42:be:7c:56:0a:92:12:c3:b7:d2: 0c:2f:2f:d1:58:d8:03:eb:48:3b:32:6b:e0:f2:73: 82:7d:73:02:2b:79:60:5e:11:cb:9d:62:bf:a2:2e: 41:bb:63:8a:9a:da:30:ad:84:58:d9:d5:c4:84:0f: 7d:1f:11:6d:12:d8:c3:40:46:d8:a5:11:79:d7:96: bb:dd:00:ef:0c:87:d5:eb:23:47:c8:14:80:05:c8: a2:17:da:33:a2:e4:bf:4e:5f:60:fe:61:46:ff:47: 7d:ad:20:6d:42:40:e8:ed:2a:e1:0f:77:c1:16:45: 18:78:f4:f7:2d:a3:52:c4:58:c7:79:39:b4:79:36: 51:ac:e6:e3:50:4f:cc:b3:ab:ed:5f:56:f3:36:97: ca:25:72:ec:94:9e:d8:cd:dd:aa:30:50:ee:6b:69: f5:3b:b8:c4:7f:3b:63:52:8f:5e:fb:93:1e:5e:36: 06:b2:b6:c9:85:ec:4f:d3:ce:88:91:a8:a0:7a:42: 6b:48:05:ec:55:bd:9a:8c:e2:82:4c:a0:e6:eb:b5: 36:50:a0:b0:b2:c8:dc:97:fe:9a:c3:ff:60:05:67: 35:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E0:02:7B:C1:B2:FD:58:BF:59:C4:EE:F8:06:35:9D:F5:41:02:67 X509v3 Authority Key Identifier: keyid:46:30:A4:B0:26:A9:3D:0D:FA:A8:EC:EC:57:9C:C5:21:38:2E:4E:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/RjCksCapPQ36qOzsV5zFITguTlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjCksCapPQ36qOzsV5zFITguTlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4DA5/BD34549C32A411EF822E0F1AC4F9AE02/074283A632A511EF84ECD41AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.226.252.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:a8:62:d6:fd:8e:b6:33:ac:60:fc:b2:fd:cb:eb:20:50:5b: 9f:36:dd:2d:f2:8d:f0:d4:ab:92:cb:15:ce:60:41:c5:37:e9: 99:be:7d:4b:b2:14:cb:03:3c:2a:42:5d:e8:c2:d3:3a:72:bf: a1:d2:ff:73:66:79:e7:12:7a:a6:77:fa:98:cf:d0:94:7b:85: 9a:af:ae:41:47:74:f6:d4:6b:7b:57:9e:76:5f:a6:eb:38:06: e6:b2:a8:f7:37:b7:8e:d5:fc:27:1f:a6:a5:33:33:b5:c2:88: 70:c4:ed:18:bd:09:bd:12:c1:f1:5f:d3:d2:5b:2b:ab:15:fe: 2e:da:00:61:0c:5a:e0:da:0e:c6:d3:e0:21:bf:fa:f5:a3:04: a9:9b:40:87:01:87:50:30:d8:2e:e6:b6:ee:b9:de:45:44:bb: 28:ca:8d:34:3a:c7:42:bf:79:6b:2f:11:fa:2a:73:32:b5:4a: 4a:70:27:fa:c3:07:45:77:d1:e0:61:29:c9:00:48:80:d1:d5: 26:9c:35:3a:5b:08:e3:5c:d1:a1:07:f6:19:4c:38:53:15:ed: 47:3a:70:eb:57:04:72:05:08:ef:a1:d5:00:55:25:18:a9:b4: da:dc:2e:5a:14:04:b4:23:00:38:6d:54:1c:36:dd:62:2d:bf: 28:bd:fa:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTREQTUxMTAvBgNVBAUTKDQ2MzBBNEIwMjZBOTNEMERGQUE4RUNFQzU3OUNDNTIx MzgyRTRFNTgwHhcNMjUwMzAzMDgyOTEzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTU4Ny1lNzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6/yG/PnjzG5rncNBjVul6VtoS7lCS1dv5gVebfsbqLZt0K+fFYKkhLDt9IM Ly/RWNgD60g7Mmvg8nOCfXMCK3lgXhHLnWK/oi5Bu2OKmtowrYRY2dXEhA99HxFt EtjDQEbYpRF515a73QDvDIfV6yNHyBSABciiF9ozouS/Tl9g/mFG/0d9rSBtQkDo 7SrhD3fBFkUYePT3LaNSxFjHeTm0eTZRrObjUE/Ms6vtX1bzNpfKJXLslJ7Yzd2q MFDua2n1O7jEfztjUo9e+5MeXjYGsrbJhexP086IkaigekJrSAXsVb2ajOKCTKDm 67U2UKCwssjcl/6aw/9gBWc1wwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFTgAnvB sv1Yv1nE7vgGNZ31QQJnMB8GA1UdIwQYMBaAFEYwpLAmqT0N+qjs7FecxSE4Lk5Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNERBNS9CRDM0NTQ5QzMy QTQxMUVGODIyRTBGMUFDNEY5QUUwMi9SakNrc0NhcFBRMzZxT3pzVjV6RklUZ3VU bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JqQ2tzQ2FwUFEzNnFPenNWNXpGSVRndVRsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTREQTUvQkQzNDU0OUMzMkE0MTFFRjgyMkUwRjFBQzRGOUFFMDIvMDc0MjgzQTYz MkE1MTFFRjg0RUNENDFBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ+L8MA0GCSqGSIb3DQEBCwUAA4IBAQBKqGLW/Y62M6xg/LL9y+sg UFufNt0t8o3w1KuSyxXOYEHFN+mZvn1LshTLAzwqQl3owtM6cr+h0v9zZnnnEnqm d/qYz9CUe4War65BR3T21Gt7V552X6brOAbmsqj3N7eO1fwnH6alMzO1wohwxO0Y vQm9EsHxX9PSWyurFf4u2gBhDFrg2g7G0+Ahv/r1owSpm0CHAYdQMNgu5rbuud5F RLsoyo00OsdCv3lrLxH6KnMytUpKcCf6wwdFd9HgYSnJAEiA0dUmnDU6WwjjXNGh B/YZTDhTFe1HOnDrVwRyBQjvodUAVSUYqbTa3C5aFAS0IwA4bVQcNt1iLb8ovfpq -----END CERTIFICATE-----Generated at Mon Mar 2 20:14:56 2026 by rpki-client