$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa File: 3D3FCB5EC8F911EFA0603266C4F9AE02.roa (raw, json) Hash identifier: marPgOXL8N+mZEolgjf6BCSnTAslQuOQxfYiwn9AQDQ= Subject key identifier: 48:94:FD:68:E6:B8:E5:C4:A0:A2:10:0B:99:C6:BB:82:57:08:0D:A7 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 0464 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:49:42 +0000 ROA not before: Sat 31 May 2025 01:06:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139042 IP address blocks: 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40:8000::/36 maxlen: 36 2407:3b40:b000::/36 maxlen: 36 2407:3b40:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: May 31 01:06:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46016-03e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:f4:76:97:4e:29:71:44:fe:10:f5:2b:67: a5:ad:3b:ff:6c:02:b6:56:86:58:c6:f2:68:9c:29: 22:e7:b3:cd:26:b3:40:65:31:d5:68:21:2d:12:26: c0:22:0c:f0:20:6a:81:f9:9c:21:32:83:d6:97:de: 14:37:af:33:85:7d:66:3f:22:e2:e2:28:7e:49:27: ad:3e:75:b2:42:c3:d2:16:8f:08:43:cb:33:ea:e8: 39:c0:ec:26:5c:e4:b9:1c:50:a4:da:d4:fc:72:a7: fb:a5:e0:f0:2a:e7:d6:2b:5f:3b:bc:f8:71:8b:47: cd:8e:ee:a9:a5:a7:2a:53:57:0b:df:35:38:77:24: 58:9d:d2:6d:42:2f:e6:11:c4:6b:3a:38:a3:6b:30: 06:af:2f:91:86:04:3d:bf:92:77:40:e7:f6:a4:2b: 40:42:06:4c:ae:b8:bc:d1:6f:8f:7c:42:c9:c0:16: f0:87:8a:37:07:aa:55:fc:25:cb:d1:d2:68:57:11: 39:04:12:99:66:0c:69:15:bb:8a:8c:9c:36:46:8b: 90:5e:36:56:46:e2:90:0b:54:48:c0:c8:b7:20:0e: 2d:92:a9:e0:23:93:9f:24:4d:c4:ee:9e:d4:2d:ec: 03:eb:a4:84:5c:64:a2:29:7b:d1:7d:38:dd:33:e5: 21:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:94:FD:68:E6:B8:E5:C4:A0:A2:10:0B:99:C6:BB:82:57:08:0D:A7 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/3D3FCB5EC8F911EFA0603266C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.147.0/24 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 9c:70:b1:f3:47:a6:95:f6:3e:13:c8:68:42:b5:76:b5:26:11: 9b:5f:f3:2a:b8:2f:c6:7e:9b:d4:5b:a3:a1:d4:e2:8d:a9:2b: aa:10:70:16:03:cd:64:9b:40:80:a0:e8:66:e1:90:bb:c9:9c: 2e:06:df:4e:86:fa:63:61:77:6e:a0:5d:57:e2:47:99:04:75: 58:e6:dc:91:47:c4:0d:c3:87:0c:4c:4a:a3:10:5c:df:34:ff: fa:f5:46:22:69:2f:fe:ba:c5:49:1d:20:fd:d2:8b:06:5c:50: 1f:99:34:51:f9:73:72:51:29:42:11:da:a7:c0:d2:97:41:bf: 65:79:0f:68:fb:5c:ae:4f:e3:b1:80:da:23:2f:5e:44:9f:d3: 8a:c0:d8:c9:0f:8d:e1:9b:f8:b3:94:d3:d3:4b:26:9a:e7:c6: b7:26:43:c7:57:c2:67:80:70:b0:00:d6:b6:83:f1:10:28:08: 4f:2c:d6:72:48:f1:1f:c9:3e:01:e6:12:04:c5:3e:c7:af:9d: 39:01:55:11:d9:6e:04:26:b3:b1:c4:f2:31:e4:c0:f9:b7:bd: 5b:b1:ef:de:bb:5d:f7:44:a9:0d:81:f3:29:1d:f9:6a:49:9e: 10:0b:04:e7:9d:e2:24:3b:4f:07:99:9c:0f:47:78:cf:e4:96: 56:39:01:74 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUwNTMxMDEwNjU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjAxNi0wM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMH0dpdOKXFE/hD1K2elrTv/bAK2VoZYxvJonCki57PNJrNAZTHVaCEtEibA IgzwIGqB+ZwhMoPWl94UN68zhX1mPyLi4ih+SSetPnWyQsPSFo8IQ8sz6ug5wOwm XOS5HFCk2tT8cqf7peDwKufWK187vPhxi0fNju6ppacqU1cL3zU4dyRYndJtQi/m EcRrOjijazAGry+RhgQ9v5J3QOf2pCtAQgZMrri80W+PfELJwBbwh4o3B6pV/CXL 0dJoVxE5BBKZZgxpFbuKjJw2RouQXjZWRuKQC1RIwMi3IA4tkqngI5OfJE3E7p7U LewD66SEXGSiKXvRfTjdM+UhfwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEiU/Wjm uOXEoKIQC5nGu4JXCA2nMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvM0QzRkNCNUVD OEY5MTFFRkEwNjAzMjY2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAZ4qTMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQCc cLHzR6aV9j4TyGhCtXa1JhGbX/MquC/GfpvUW6Oh1OKNqSuqEHAWA81km0CAoOhm 4ZC7yZwuBt9OhvpjYXduoF1X4keZBHVY5tyRR8QNw4cMTEqjEFzfNP/69UYiaS/+ usVJHSD90osGXFAfmTRR+XNyUSlCEdqnwNKXQb9leQ9o+1yuT+OxgNojL15En9OK wNjJD43hm/izlNPTSyaa58a3JkPHV8JngHCwANa2g/EQKAhPLNZySPEfyT4B5hIE xT7Hr505AVUR2W4EJrOxxPIx5MD5t71bse/eu133RKkNgfMpHflqSZ4QCwTnneIk O08HmZwPR3jP5JZWOQF0 -----END CERTIFICATE-----Generated at Mon Mar 2 06:18:59 2026 by rpki-client