$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa File: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (raw, json) Hash identifier: GddQF0kXZAYcATo7qq+gH7xwi2gME5La/lz+podnzrI= Subject key identifier: 45:D0:A1:C1:0B:A7:D1:41:98:AB:A1:4A:9C:68:5A:02:B4:D4:81:E0 Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 06E3 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:45:25 +0000 ROA not before: Tue 26 Aug 2025 23:02:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136805 IP address blocks: 103.96.141.0/24 maxlen: 24 103.109.123.0/24 maxlen: 24 103.109.132.0/23 maxlen: 23 2001:df1:df00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Aug 26 23:02:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40ab5-f683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:34:2f:44:00:bf:17:38:ea:cc:b2:82:a0:45: dd:3a:4b:56:d7:0d:f6:cd:a9:f6:ed:0a:e8:7c:2e: f2:14:ef:23:30:fe:b3:8c:7b:34:b0:90:4f:28:f2: a7:f3:a7:e9:70:a2:dd:ee:10:e8:d8:c4:88:55:7f: fa:db:33:67:81:08:a7:51:60:81:ab:ff:e5:6b:ab: 39:91:b0:3d:37:88:8d:c8:ba:07:2c:92:04:4a:bd: c9:2c:b9:7d:dd:ee:aa:09:1e:48:b9:0d:9d:4a:9c: 62:8f:a1:e1:9d:c2:ba:52:78:2f:c0:dc:dc:89:ce: 69:bc:c7:c5:fd:54:66:60:72:21:19:9d:cd:56:2b: e8:22:23:18:05:9e:eb:c4:e3:4a:bf:b4:7c:78:7f: 6b:29:b4:e5:0c:b1:70:3c:7a:8b:e6:af:2c:71:42: 64:28:28:6f:4d:21:ed:09:f1:dc:73:c3:6f:0e:8c: 12:9b:fb:97:e7:c2:de:62:18:10:e5:c5:e3:76:ba: 3e:cf:c0:4d:83:df:9e:30:a1:8a:81:5b:d8:0c:11: 91:e8:ff:df:be:a1:36:e5:7a:5e:c6:e2:68:a4:19: 45:90:95:e4:f6:84:3c:85:c9:f9:f1:c7:2c:ec:96: b7:f7:37:47:f2:2b:64:ed:ac:a1:f4:34:67:f7:c3: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D0:A1:C1:0B:A7:D1:41:98:AB:A1:4A:9C:68:5A:02:B4:D4:81:E0 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.96.141.0/24 103.109.123.0/24 103.109.132.0/23 IPv6: 2001:df1:df00::/48 Signature Algorithm: sha256WithRSAEncryption b9:59:64:7a:b9:bc:d8:01:b1:28:55:8f:41:4b:58:57:e2:8f: 72:6b:f6:4d:e5:9f:66:92:2a:ac:32:6d:d1:71:f8:e7:cb:87: 7b:38:8d:bd:39:ae:13:2a:72:6f:2e:7d:f5:a4:fa:22:87:ca: d9:a5:8d:27:2b:4d:38:50:21:26:35:66:c8:76:fd:a4:51:3a: 21:84:a9:c3:04:09:86:f9:be:d6:18:97:46:9c:c5:a5:94:44: 20:66:ed:b8:0c:d8:9d:40:d4:f4:ac:26:4b:76:20:2a:5d:d9: 2d:97:3f:64:6b:e5:18:19:cb:ca:3e:d2:a4:48:c8:eb:63:e7: 30:cf:be:20:48:a9:8a:fb:ea:94:f3:e5:54:7a:ec:41:51:cb: 01:0b:46:89:5b:d1:d1:bb:b6:7e:2e:b8:d8:dc:b1:99:06:fd: 03:ae:e9:0e:52:6d:f8:06:c4:2d:76:53:2b:68:ed:28:3b:2b: a1:c6:9c:fd:99:cd:81:e9:b7:c0:1b:70:79:93:70:a7:50:5c: dc:11:81:e4:3e:14:20:6f:fc:67:fb:99:00:14:40:08:0f:40: 7b:2a:ff:46:5e:8b:5f:d1:1f:ba:88:85:88:fc:35:99:1b:a9: 16:31:4e:f6:2c:ef:e2:2b:f9:20:71:71:94:01:6f:3e:e1:e6: 4f:3d:8c:38 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwODI2MjMwMjQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGFiNS1mNjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDQvRAC/FzjqzLKCoEXdOktW1w32zan27QrofC7yFO8jMP6zjHs0sJBPKPKn 86fpcKLd7hDo2MSIVX/62zNngQinUWCBq//la6s5kbA9N4iNyLoHLJIESr3JLLl9 3e6qCR5IuQ2dSpxij6HhncK6UngvwNzcic5pvMfF/VRmYHIhGZ3NVivoIiMYBZ7r xONKv7R8eH9rKbTlDLFwPHqL5q8scUJkKChvTSHtCfHcc8NvDowSm/uX58LeYhgQ 5cXjdro+z8BNg9+eMKGKgVvYDBGR6P/fvqE25XpexuJopBlFkJXk9oQ8hcn58ccs 7Ja39zdH8itk7ayh9DRn98MFIQIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFEXQocEL p9FBmKuhSpxoWgK01IHgMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkzNUQvRjUwMEY3Mjg4QUI4MTFFQjg3MDdFMTFBQzRGOUFFMDIvNDdFQjc2NDI4 QUJBMTFFQjhBODVDMDFCQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQAZ2CNAwQAZ217AwQBZ22EMA8EAgACMAkDBwAgAQ3x3wAwDQYJKoZI hvcNAQELBQADggEBALlZZHq5vNgBsShVj0FLWFfij3Jr9k3ln2aSKqwybdFx+OfL h3s4jb05rhMqcm8uffWk+iKHytmljScrTThQISY1Zsh2/aRROiGEqcMECYb5vtYY l0acxaWURCBm7bgM2J1A1PSsJkt2ICpd2S2XP2Rr5RgZy8o+0qRIyOtj5zDPviBI qYr76pTz5VR67EFRywELRolb0dG7tn4uuNjcsZkG/QOu6Q5SbfgGxC12Uyto7Sg7 K6HGnP2ZzYHpt8AbcHmTcKdQXNwRgeQ+FCBv/Gf7mQAUQAgPQHsq/0Zei1/RH7qI hYj8NZkbqRYxTvYs7+Ir+SBxcZQBbz7h5k89jDg= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:05 2026 by rpki-client