$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa File: AD286018B29C11EDB216812EC4F9AE02.roa (raw, json) Hash identifier: IMnX87QNvHpbvo82n1RR69kUclsVgTYA0yTOvxNI1Gg= Subject key identifier: 8D:C2:1D:7E:06:9C:53:5B:EA:98:53:EE:E7:83:B4:B8:25:0E:D0:A0 Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 0253 Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa Signing time: Tue 31 Mar 2026 02:35:34 +0000 ROA not before: Tue 31 Mar 2026 02:35:34 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 147314 IP address blocks: 103.89.240.0/23 maxlen: 23 103.89.240.0/24 maxlen: 24 103.89.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Mar 31 02:35:34 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb32f5-7f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:9b:61:78:b8:31:f8:44:45:40:9f:99:54: 48:c9:43:55:4a:9f:99:59:8f:d8:b1:b5:c3:35:f7: 42:ad:e3:59:51:0e:36:48:28:1d:39:2f:03:66:90: 40:b2:c4:37:0e:d6:34:a6:ce:fa:59:e4:76:2f:d5: 2b:9e:c1:ae:ff:21:20:ed:9e:16:aa:e0:cd:bc:3a: ec:6c:32:1a:52:c4:86:4f:79:24:f8:53:7c:62:11: e1:b1:3b:6d:c0:af:1c:8c:7a:ed:47:af:2f:a9:19: 32:50:c6:f3:c4:62:6b:a7:34:d3:d9:02:a2:a1:63: 95:c1:09:a7:db:29:cd:45:d7:69:34:af:0b:de:ee: e1:f8:b6:21:d9:9f:70:e8:af:0b:12:4c:eb:8c:59: 4b:74:64:e1:af:80:1a:6f:2d:0b:78:8f:b3:42:cc: 93:41:d3:cb:bb:cb:c0:c7:0d:2e:12:84:70:63:94: a9:16:a1:bf:09:09:fb:4a:cf:ed:76:d3:3d:8e:5e: da:db:af:16:3b:d6:f4:77:4e:e3:5c:7a:55:9e:4e: 11:82:27:b2:c3:f2:3b:5e:b4:37:d0:c5:52:ea:54: 7f:e0:72:e3:fe:fd:42:a0:7d:04:a3:af:f0:bf:e2: dc:7b:e3:51:84:f3:44:ae:fc:1f:4a:3d:52:d6:20: dc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C2:1D:7E:06:9C:53:5B:EA:98:53:EE:E7:83:B4:B8:25:0E:D0:A0 X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/AD286018B29C11EDB216812EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.240.0/23 Signature Algorithm: sha256WithRSAEncryption 22:1d:5e:73:52:d0:db:10:22:0f:8b:5c:57:e1:f0:c5:0e:d9: 90:78:31:bf:95:2d:57:e8:c0:9e:5a:a9:73:72:bf:bb:2e:59: ad:35:ee:fa:f4:95:c1:79:1c:b7:c5:d8:1b:80:fa:05:7c:52: 8d:16:b6:fb:5d:9b:30:f5:f1:91:4a:2b:b5:c4:61:be:d1:45: 60:55:94:a0:da:9a:b7:ad:1c:17:4d:84:53:ed:e0:43:51:df: 60:3e:5f:ef:c0:ac:4a:94:a4:e5:cf:b6:a0:d7:67:14:2a:c6: 78:7a:52:e2:23:ba:e1:8b:4f:cd:60:a8:7f:bf:43:c6:87:30: f5:bb:9d:2e:0d:97:29:93:90:cb:b5:cf:41:99:5f:1f:f7:1a: f8:0d:c3:1f:db:0b:1b:58:0b:fe:eb:39:bd:84:bd:76:d3:16: 25:dc:ec:18:08:6d:9b:54:7d:73:04:91:80:27:94:82:d8:de: f5:ee:ce:fd:d9:5a:4f:c1:d1:0a:ad:de:b6:d8:7d:f8:b1:0d: ab:6b:49:34:58:94:99:8c:f0:ec:9b:04:5c:9e:35:2f:b9:42: 92:3a:1e:f6:dd:f8:cd:bd:59:19:3d:4f:9a:70:05:dc:a5:1a: 19:57:46:4e:58:29:96:d3:28:da:56:57:42:20:73:7d:fb:31: 9d:a4:07:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjYwMzMxMDIzNTM0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMzJmNS03ZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwSbYXi4MfhERUCfmVRIyUNVSp+ZWY/YsbXDNfdCreNZUQ42SCgdOS8DZpBA ssQ3DtY0ps76WeR2L9UrnsGu/yEg7Z4WquDNvDrsbDIaUsSGT3kk+FN8YhHhsTtt wK8cjHrtR68vqRkyUMbzxGJrpzTT2QKioWOVwQmn2ynNRddpNK8L3u7h+LYh2Z9w 6K8LEkzrjFlLdGThr4Aaby0LeI+zQsyTQdPLu8vAxw0uEoRwY5SpFqG/CQn7Ss/t dtM9jl7a268WO9b0d07jXHpVnk4Rgieyw/I7XrQ30MVS6lR/4HLj/v1CoH0Eo6/w v+Lce+NRhPNErvwfSj1S1iDciQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI3CHX4G nFNb6phT7ueDtLglDtCgMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZCNEMvQzQ3MEIyMkFCMjk3MTFFRDk0RUYwOTI2QzRGOUFFMDIvQUQyODYwMThC MjlDMTFFREIyMTY4MTJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ1nwMA0GCSqGSIb3DQEBCwUAA4IBAQAiHV5zUtDbECIPi1xX4fDF DtmQeDG/lS1X6MCeWqlzcr+7LlmtNe769JXBeRy3xdgbgPoFfFKNFrb7XZsw9fGR Siu1xGG+0UVgVZSg2pq3rRwXTYRT7eBDUd9gPl/vwKxKlKTlz7ag12cUKsZ4elLi I7rhi0/NYKh/v0PGhzD1u50uDZcpk5DLtc9BmV8f9xr4DcMf2wsbWAv+6zm9hL12 0xYl3OwYCG2bVH1zBJGAJ5SC2N717s792VpPwdEKrd622H34sQ2ra0k0WJSZjPDs mwRcnjUvuUKSOh723fjNvVkZPU+acAXcpRoZV0ZOWCmW0yjaVldCIHN9+zGdpAdC -----END CERTIFICATE-----Generated at Fri Apr 17 11:03:49 2026 by rpki-client