$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa File: 6243075E653411EB98060C17C4F9AE02.roa (raw, json) Hash identifier: v0uC7Tgqg5Ka5gyjZsM8cExfBYnQ3ib9cJkCqTADvOs= Subject key identifier: 31:49:74:0B:E8:77:08:52:B3:1A:C0:4B:BD:81:64:AD:51:46:0D:96 Certificate issuer: /CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Certificate serial: 0798 Authority key identifier: 2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:07:07 +0000 ROA not before: Thu 30 Oct 2025 19:38:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 135130 IP address blocks: 103.122.249.0/24 maxlen: 24 103.122.250.0/23 maxlen: 23 103.122.250.0/24 maxlen: 24 103.122.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 19:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E, serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Validity Not Before: Oct 30 19:38:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48e5b-330f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:ad:8b:37:6b:81:29:74:73:f1:1e:51:20: 33:b7:fc:5c:34:90:27:12:43:c1:7b:a8:51:84:11: a2:3c:36:27:68:99:1a:f0:9f:a3:6f:25:2f:ba:b9: 79:c0:d4:88:04:e4:5b:72:4d:b9:5a:85:a1:93:cd: 81:56:61:11:75:20:e5:8b:a2:d5:7a:8a:62:db:c3: 09:e2:2d:f6:08:27:13:0b:21:e7:65:3c:42:18:3d: 1d:2e:ed:b7:bf:83:24:ba:d1:49:62:28:0e:15:ac: 0d:23:4b:07:3b:52:c6:02:b2:31:92:82:05:ce:ac: 77:17:53:15:68:3f:0f:68:3c:04:fd:97:40:46:98: 7d:8c:89:54:8f:49:34:45:9f:43:d0:78:f9:30:9a: 92:fa:3c:45:35:92:31:28:dc:1a:21:67:56:14:b8: 2b:28:32:6e:c9:1a:98:07:de:f6:63:9a:68:73:c8: 2e:31:10:ae:76:9c:bb:e4:89:b5:87:51:34:d6:15: 5d:84:9d:49:9c:09:aa:57:e2:81:65:88:07:54:af: 2c:cb:30:58:33:de:0c:19:af:ff:0f:99:4e:4f:ae: 1a:64:e5:4e:14:39:ba:99:8c:e0:f4:65:41:79:0b: 7b:8f:0f:05:53:6c:26:e1:84:91:ab:fc:d2:b3:7b: bb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:49:74:0B:E8:77:08:52:B3:1A:C0:4B:BD:81:64:AD:51:46:0D:96 X509v3 Authority Key Identifier: keyid:2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.249.0-103.122.251.255 Signature Algorithm: sha256WithRSAEncryption 7f:db:be:40:7b:24:4f:07:3b:68:14:01:0f:f8:fb:59:dc:59: 3b:d9:80:cf:99:6d:3b:ca:f3:0c:3b:99:28:a4:f6:81:86:54: fe:05:a6:13:d5:8c:79:3e:c8:f2:ef:d2:0b:3c:12:04:c1:48: 9b:d4:d3:ec:00:21:cc:5e:a4:89:4c:0d:4f:ed:8c:32:d8:88: 94:1e:49:08:5a:ce:6b:2a:46:35:a3:22:54:e5:46:db:7b:32: 2e:38:9d:5a:06:e4:b5:da:20:5d:a5:86:c8:0b:77:2d:18:7a: 97:99:89:76:be:d2:76:60:80:0f:c1:59:28:71:62:9e:c0:fd: e2:d5:ef:50:04:09:a3:37:b3:5d:c8:38:91:28:46:8c:54:07: 25:af:e5:96:e0:f1:4d:e0:c9:7e:99:a0:8c:b3:bd:ea:40:89: e5:b1:ae:d1:c7:5b:75:ae:5f:65:26:06:13:fb:0a:83:ab:e0: f7:6c:6e:1e:a0:61:c0:cf:21:15:b5:ee:f0:31:ce:d5:11:4b: a2:b0:e7:2b:4e:29:d0:e1:1e:f1:46:46:68:c2:b3:c9:01:d7: 69:82:21:a5:6c:3a:d4:08:88:86:84:07:27:33:cf:7e:e6:e2: a4:ab:2a:90:ce:51:08:5f:69:bb:e3:89:a1:11:55:c0:d5:8c: 41:f9:fd:6c -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDJBQzBBQjRCNUYzQkI1QjBFRjc5QkQyMUE2NDlDQUZG RTdGOUMyMEEwHhcNMjUxMDMwMTkzODU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGU1Yi0zMzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wOtizdrgSl0c/EeUSAzt/xcNJAnEkPBe6hRhBGiPDYnaJka8J+jbyUvurl5 wNSIBORbck25WoWhk82BVmERdSDli6LVeopi28MJ4i32CCcTCyHnZTxCGD0dLu23 v4MkutFJYigOFawNI0sHO1LGArIxkoIFzqx3F1MVaD8PaDwE/ZdARph9jIlUj0k0 RZ9D0Hj5MJqS+jxFNZIxKNwaIWdWFLgrKDJuyRqYB972Y5poc8guMRCudpy75Im1 h1E01hVdhJ1JnAmqV+KBZYgHVK8syzBYM94MGa//D5lOT64aZOVOFDm6mYzg9GVB eQt7jw8FU2wm4YSRq/zSs3u7zwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFDFJdAvo dwhSsxrAS72BZK1RRg2WMB8GA1UdIwQYMBaAFCrAq0tfO7Ww73m9IaZJyv/n+cIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9Lc0NyUzE4N3RiRHZlYjBocGtuS18tZjV3 Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzQ3JTMTg3dGJEdmViMGhwa25LXy1mNXdnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyN0UvQ0NENkVEMUM2OERGMTFFQTk3QjE1NTI0QzRGOUFFMDIvNjI0MzA3NUU2 NTM0MTFFQjk4MDYwQzE3QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBABnevkDBAJnevgwDQYJKoZIhvcNAQELBQADggEBAH/bvkB7JE8H O2gUAQ/4+1ncWTvZgM+ZbTvK8ww7mSik9oGGVP4FphPVjHk+yPLv0gs8EgTBSJvU 0+wAIcxepIlMDU/tjDLYiJQeSQhazmsqRjWjIlTlRtt7Mi44nVoG5LXaIF2lhsgL dy0YepeZiXa+0nZggA/BWShxYp7A/eLV71AECaM3s13IOJEoRoxUByWv5Zbg8U3g yX6ZoIyzvepAieWxrtHHW3WuX2UmBhP7CoOr4Pdsbh6gYcDPIRW17vAxztURS6Kw 5ytOKdDhHvFGRmjCs8kB12mCIaVsOtQIiIaEByczz37m4qSrKpDOUQhfabvjiaER VcDVjEH5/Ww= -----END CERTIFICATE-----Generated at Tue Mar 3 00:41:22 2026 by rpki-client