$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa File: 4967CEF66AD311EF88752B40C4F9AE02.roa (raw, json) Hash identifier: 2E8TxWMjtyfBN4dXvaFWAjwM2GATLTc/hBVzxXu9PAI= Subject key identifier: 3B:FB:8C:1D:3C:2D:84:A0:11:20:CE:E1:27:24:74:CB:58:10:FD:D5 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 0A52 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:39:58 +0000 ROA not before: Sat 04 Oct 2025 20:20:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147302 IP address blocks: 103.72.0.0/24 maxlen: 24 103.72.2.0/24 maxlen: 24 103.72.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15, serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Oct 4 20:20:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45dce-0857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:78:59:77:4d:55:1c:3e:a5:a9:b9:08:77:5d: a3:f6:9b:7e:34:7a:17:c2:a9:c0:a8:47:6d:20:c2: d2:f4:04:72:a8:5d:ad:e2:5d:88:e1:8a:ac:a2:10: a8:33:f7:5a:fa:f2:cf:17:55:e1:8b:e4:81:18:59: ea:de:53:b5:0a:b0:e4:7c:d0:b5:7b:7c:a9:8c:22: 0c:63:ea:0a:f1:85:81:9c:43:96:b8:ac:0f:2f:5d: 73:da:df:d2:b6:47:43:88:95:75:00:ce:94:8d:f8: 3b:b4:12:58:6b:61:db:62:96:85:3f:8d:6b:16:54: 49:6f:d5:1c:9b:23:02:83:91:31:ad:26:47:80:09: 9f:27:d3:b0:ab:c4:30:bf:cd:23:09:c6:b3:29:2d: b1:cb:6c:d8:63:97:cf:48:fa:2b:e4:1e:e7:6e:be: bc:8a:71:87:9c:d3:ad:56:7d:96:e6:20:3a:27:69: 67:10:8a:1a:38:19:4b:be:04:8b:41:77:35:aa:d7: a3:52:1c:29:15:db:d0:91:79:3d:d8:7a:64:df:42: 15:4e:a8:3d:4a:42:6e:71:62:2f:14:36:6c:8a:c0: 0a:96:a1:a1:f4:85:44:7f:0e:19:d0:28:b0:8b:23: 3e:e7:16:7d:ea:74:6b:1e:f6:ce:8e:73:8f:77:19: 0c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FB:8C:1D:3C:2D:84:A0:11:20:CE:E1:27:24:74:CB:58:10:FD:D5 X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.0.0/24 103.72.2.0/23 Signature Algorithm: sha256WithRSAEncryption 02:a0:30:e7:df:01:30:29:e5:92:8c:4b:a9:c6:f7:a7:6f:ee: c3:4a:01:ea:27:fa:10:ae:e3:3e:bb:da:1e:c9:41:b7:9a:4b: ab:6d:3d:01:00:e6:ff:35:05:bd:c8:37:95:a0:2e:e8:74:05: 62:eb:3e:1f:b6:a7:4e:53:5d:0c:b6:b6:cc:23:aa:93:85:e1: 0f:07:d4:0b:9c:ce:89:b6:02:99:b5:03:9a:4d:09:40:b2:d5: 18:4b:83:91:56:1a:c2:83:d2:aa:32:a1:0c:e0:6d:d4:55:3a: b4:8b:25:a9:f6:01:d0:a2:2c:fd:2c:40:1b:31:00:9a:7c:0f: 26:84:2c:74:81:02:d8:16:c3:7f:de:2f:36:11:86:ca:ae:81: 38:c5:c8:58:40:6d:9d:96:61:ad:a4:b3:6c:a2:70:fd:75:e7: 3e:1d:00:38:30:14:b2:58:bc:9d:a3:02:bc:d2:4a:3b:eb:03: 3a:91:c6:ad:1f:ad:f6:85:6e:ec:ed:68:32:bd:79:7a:f0:59: 43:fe:e5:68:98:e2:df:18:cc:1d:f6:3b:39:da:fb:aa:df:85: df:d4:90:b9:87:09:91:3a:1a:ce:32:83:dd:7b:3c:ba:55:36: 3b:bd:e9:1f:01:91:ec:4b:fd:60:3b:3d:c1:03:36:f1:18:49: de:ee:c4:67 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjUxMDA0MjAyMDEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWRjZS0wODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnhZd01VHD6lqbkId12j9pt+NHoXwqnAqEdtIMLS9ARyqF2t4l2I4YqsohCo M/da+vLPF1Xhi+SBGFnq3lO1CrDkfNC1e3ypjCIMY+oK8YWBnEOWuKwPL11z2t/S tkdDiJV1AM6Ujfg7tBJYa2HbYpaFP41rFlRJb9UcmyMCg5ExrSZHgAmfJ9Owq8Qw v80jCcazKS2xy2zYY5fPSPor5B7nbr68inGHnNOtVn2W5iA6J2lnEIoaOBlLvgSL QXc1qtejUhwpFdvQkXk92Hpk30IVTqg9SkJucWIvFDZsisAKlqGh9IVEfw4Z0Ciw iyM+5xZ96nRrHvbOjnOPdxkMuwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDv7jB08 LYSgESDO4SckdMtYEP3VMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZGMTUvQjQ3ODVCRTg4RDRDMTFFQUJCREQzQTc0QzRGOUFFMDIvNDk2N0NFRjY2 QUQzMTFFRjg4NzUyQjQwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ0gAAwQBZ0gCMA0GCSqGSIb3DQEBCwUAA4IBAQACoDDn3wEwKeWS jEupxvenb+7DSgHqJ/oQruM+u9oeyUG3mkurbT0BAOb/NQW9yDeVoC7odAVi6z4f tqdOU10MtrbMI6qTheEPB9QLnM6JtgKZtQOaTQlAstUYS4ORVhrCg9KqMqEM4G3U VTq0iyWp9gHQoiz9LEAbMQCafA8mhCx0gQLYFsN/3i82EYbKroE4xchYQG2dlmGt pLNsonD9dec+HQA4MBSyWLydowK80ko76wM6kcatH632hW7s7WgyvXl68FlD/uVo mOLfGMwd9js52vuq34Xf1JC5hwmROhrOMoPdezy6VTY7vekfAZHsS/1gOz3BAzbx GEne7sRn -----END CERTIFICATE-----Generated at Mon Mar 2 15:09:19 2026 by rpki-client