$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa File: F0223A56C8F711EFB2542D5FC4F9AE02.roa (raw, json) Hash identifier: K24GaWXpuGSc1Xj5InMQ40A+Qx2+8XHAnL30L+YucdU= Subject key identifier: C3:8D:47:8D:00:91:27:35:96:97:C2:62:23:EB:CA:CF:C9:E8:DB:92 Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 0465 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:49:43 +0000 ROA not before: Mon 17 Nov 2025 09:14:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.146.0/24 maxlen: 24 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:1000::/48 maxlen: 48 2407:3b40:1001::/48 maxlen: 48 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720, serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Nov 17 09:14:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46017-2d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ea:72:9d:08:0d:d3:a5:a5:88:2d:46:28:dc: 1c:04:45:87:e9:ac:0d:2b:bd:f3:ed:16:0b:2c:6a: 14:17:ef:ac:d4:57:54:93:e6:c6:8a:af:a5:63:15: 3d:cf:d6:5f:6e:83:ce:e4:8a:3b:1b:66:5e:fe:ca: ab:08:bb:17:7b:ab:ad:e6:82:4d:91:63:8a:e9:ae: 4d:4a:6a:95:10:73:55:15:65:11:e7:4b:e0:22:00: ce:6a:e5:b0:f7:bd:de:dc:37:c1:ba:1f:62:8e:28: 5b:ba:9f:34:ac:57:03:27:28:37:3d:f5:3b:b0:41: 5d:fc:08:a1:ac:b5:39:b3:1d:71:48:f9:ed:63:2e: 52:06:ae:6e:15:88:6a:7f:86:17:a8:dc:e3:00:66: 52:f8:36:e5:c0:64:69:4f:b6:98:23:35:e3:af:4c: 5f:41:fa:21:d4:13:f0:fa:05:cd:98:d0:43:92:2c: 1b:5f:01:59:42:34:d0:3d:4d:1e:cc:04:bd:2c:e5: b7:d4:68:a7:73:d8:21:a9:ef:d3:8d:38:48:11:fd: 4f:29:c6:6e:24:df:a9:87:d9:94:ef:53:6d:9c:97: e2:d2:1f:31:a1:69:19:68:49:a9:26:6d:be:a1:69: bb:8f:af:3f:f9:4a:e9:d8:a6:c5:be:1b:7a:9a:05: 8e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8D:47:8D:00:91:27:35:96:97:C2:62:23:EB:CA:CF:C9:E8:DB:92 X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/F0223A56C8F711EFB2542D5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.146.0/23 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption ad:b8:df:7d:42:82:39:6d:99:e0:1e:1b:1d:ec:f6:52:c3:0a: c1:4e:dc:2c:7f:49:88:66:03:05:f0:5b:97:d0:86:ee:fb:97: 2b:d9:6e:a2:39:4f:8c:96:a2:8d:ee:b6:7a:19:2c:4f:76:fc: 55:c4:57:9a:ca:7d:d8:49:98:c7:51:d4:aa:6b:9c:ca:22:e9: 8d:84:cf:c3:71:e7:b1:02:13:f9:f7:05:de:fe:f5:dc:7b:5c: fd:4d:25:fc:64:bb:8b:71:d6:fc:4c:ee:7f:b5:d9:9c:49:5b: 41:58:14:90:c9:67:fa:d4:b4:74:f7:25:af:94:c4:00:e5:f1: 2b:82:87:3c:40:48:49:0d:1b:8f:84:2f:26:e3:fd:dc:a9:a1: 28:e6:8c:04:49:d2:0a:78:51:12:e2:e1:5a:e4:00:6e:39:6a: 87:34:f6:46:1f:15:9d:80:25:3c:70:7a:98:1a:94:fc:c2:3d: 72:0f:60:1b:d9:68:1a:9f:43:fe:4c:24:aa:c4:4c:32:69:a5: 4b:f8:e4:77:19:0a:bb:1e:2b:49:48:c7:e1:17:64:3e:f0:5c: b7:df:10:d5:5c:74:42:e8:f1:41:ad:84:25:23:dd:b5:ae:c8: a8:0f:e6:91:8d:a9:a2:48:96:08:c0:ff:82:b5:f9:00:25:cc: d6:9c:cb:02 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjUxMTE3MDkxNDIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjAxNy0yZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkepynQgN06WliC1GKNwcBEWH6awNK73z7RYLLGoUF++s1FdUk+bGiq+lYxU9 z9ZfboPO5Io7G2Ze/sqrCLsXe6ut5oJNkWOK6a5NSmqVEHNVFWUR50vgIgDOauWw 973e3DfBuh9ijihbup80rFcDJyg3PfU7sEFd/AihrLU5sx1xSPntYy5SBq5uFYhq f4YXqNzjAGZS+DblwGRpT7aYIzXjr0xfQfoh1BPw+gXNmNBDkiwbXwFZQjTQPU0e zAS9LOW31Ginc9ghqe/TjThIEf1PKcZuJN+ph9mU71NtnJfi0h8xoWkZaEmpJm2+ oWm7j68/+Urp2KbFvht6mgWOqQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMONR40A kSc1lpfCYiPrys/J6NuSMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvRjAyMjNBNTZD OEY3MTFFRkIyNTQyRDVGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ4qSMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQCt uN99QoI5bZngHhsd7PZSwwrBTtwsf0mIZgMF8FuX0Ibu+5cr2W6iOU+MlqKN7rZ6 GSxPdvxVxFeayn3YSZjHUdSqa5zKIumNhM/DceexAhP59wXe/vXce1z9TSX8ZLuL cdb8TO5/tdmcSVtBWBSQyWf61LR09yWvlMQA5fErgoc8QEhJDRuPhC8m4/3cqaEo 5owESdIKeFES4uFa5ABuOWqHNPZGHxWdgCU8cHqYGpT8wj1yD2Ab2Wgan0P+TCSq xEwyaaVL+OR3GQq7HitJSMfhF2Q+8Fy33xDVXHRC6PFBrYQlI921rsioD+aRjami SJYIwP+CtfkAJczWnMsC -----END CERTIFICATE-----Generated at Mon Mar 2 06:05:31 2026 by rpki-client