$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa File: 3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa (raw, json) Hash identifier: 4RRmMdc7Rf2ClPViD0sDgOtm0UcOno4i6F5k0dMakCI= Subject key identifier: FF:66:46:8E:80:8B:F9:A8:E5:B7:64:2A:AD:57:8C:4F:58:CE:A0:F5 Certificate issuer: /CN=A91BFA29/serialNumber=17F33DB826A142D337C5EB9984BE2DC4F9BC6429 Certificate serial: 3537 Authority key identifier: 17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:25:14 +0000 ROA not before: Mon 10 Feb 2025 15:30:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132125 IP address blocks: 103.247.72.0/22 maxlen: 24 2402:f300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13623 (0x3537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFA29, serialNumber=17F33DB826A142D337C5EB9984BE2DC4F9BC6429 Validity Not Before: Feb 10 15:30:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42219-a68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:25:ae:af:cc:8a:bc:f1:98:e8:0b:b9:66:7e: 89:2a:dd:93:9f:5c:d8:4e:99:84:4d:d2:ab:ca:2d: 4a:1f:49:0d:f1:85:29:e0:f6:cd:5c:37:ef:68:b2: 27:32:0b:5f:b1:ac:36:07:85:a1:15:65:3c:41:1f: 06:92:c0:6e:70:7f:04:f5:73:42:12:a1:61:b7:5f: 1f:ce:45:15:fd:29:31:e8:b0:22:1f:d7:2e:8d:b6: 25:e2:3d:e0:20:f7:13:83:9e:91:c5:12:82:27:9e: 58:95:13:63:b0:c1:b0:43:53:7a:8d:3f:c3:57:cc: 27:e7:4f:af:5b:1f:ae:8b:63:aa:ae:ae:02:a9:10: 9a:9d:32:63:22:2e:c0:75:56:9b:42:4c:c9:c3:08: 34:ef:14:7f:4a:8c:d7:45:2a:1d:c2:02:cd:4e:2f: 69:e0:0d:78:2a:f2:4c:fc:4a:d6:61:88:d4:91:5a: b6:77:0b:63:c9:d1:fc:00:ab:93:bb:94:41:14:82: 27:ff:f8:ec:aa:fd:5b:c1:f4:c1:5e:b7:7a:ed:ff: aa:30:be:4e:48:47:46:1d:f5:1b:cb:f4:ac:31:9a: 12:0f:80:a8:a7:29:c1:32:12:df:29:97:e1:f4:e2: 53:73:5e:82:76:a0:50:fb:9f:39:a1:71:d5:e5:54: 7b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:66:46:8E:80:8B:F9:A8:E5:B7:64:2A:AD:57:8C:4F:58:CE:A0:F5 X509v3 Authority Key Identifier: keyid:17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.247.72.0/22 IPv6: 2402:f300::/32 Signature Algorithm: sha256WithRSAEncryption 0a:6a:c7:33:97:85:4b:36:8e:7a:c2:e9:a3:27:09:5b:01:30: ad:3b:02:86:ac:e4:7d:ca:ae:42:40:4e:de:e4:55:9a:18:b6: 4e:17:81:8e:1c:17:dc:65:b2:93:5e:8d:d8:8c:ec:35:5c:7d: 31:c1:26:bb:14:e2:1c:a4:0d:13:8d:fa:fa:fe:6a:4f:3a:a9: dd:3e:ed:d9:18:df:9b:38:59:11:e1:70:38:52:70:77:63:7e: 9b:e3:0f:de:3c:ef:e5:d0:b9:34:87:35:44:98:67:cc:ed:1c: 24:63:d9:12:46:59:ad:f8:0e:43:b8:89:fc:27:e6:4a:a5:d7: aa:86:92:05:05:ff:0b:ea:be:0c:72:0a:eb:55:6c:80:34:0e: 10:3c:d0:35:70:d1:55:21:fc:7d:f2:38:95:a0:8f:6c:68:8a: cc:65:b0:29:2d:83:b4:4f:54:b7:b5:0b:4c:4a:f9:7a:be:21: 3b:dd:7e:82:39:4c:99:d7:8c:b6:c7:8b:0b:7b:a7:0a:8d:26: 19:02:f9:44:83:e5:5c:00:7d:b1:39:07:fd:68:18:4c:70:76: 97:d7:87:3e:a7:31:fa:bb:ea:54:79:03:3e:bd:98:28:8f:cf: 30:b2:8c:39:02:67:fb:87:f8:9f:36:f0:c1:57:0f:b7:83:34: a7:e3:8f:08 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICNTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZBMjkxMTAvBgNVBAUTKDE3RjMzREI4MjZBMTQyRDMzN0M1RUI5OTg0QkUyREM0 RjlCQzY0MjkwHhcNMjUwMjEwMTUzMDU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjIxOS1hNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yWur8yKvPGY6Au5Zn6JKt2Tn1zYTpmETdKryi1KH0kN8YUp4PbNXDfvaLIn Mgtfsaw2B4WhFWU8QR8GksBucH8E9XNCEqFht18fzkUV/Skx6LAiH9cujbYl4j3g IPcTg56RxRKCJ55YlRNjsMGwQ1N6jT/DV8wn50+vWx+ui2Oqrq4CqRCanTJjIi7A dVabQkzJwwg07xR/SozXRSodwgLNTi9p4A14KvJM/ErWYYjUkVq2dwtjydH8AKuT u5RBFIIn//jsqv1bwfTBXrd67f+qML5OSEdGHfUby/SsMZoSD4CopynBMhLfKZfh 9OJTc16CdqBQ+585oXHV5VR7QwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFP9mRo6A i/mo5bdkKq1XjE9YzqD1MB8GA1UdIwQYMBaAFBfzPbgmoULTN8XrmYS+LcT5vGQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkEyOS8wRjFBNEU2NDFE QUExMUUyOEU3MjdEQTUwOEIwMkNEMi9GX005dUNhaFF0TTN4ZXVaaEw0dHhQbTha Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfTTl1Q2FoUXRNM3hldVpoTDR0eFBtOFpDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZBMjkvMEYxQTRFNjQxREFBMTFFMjhFNzI3REE1MDhCMDJDRDIvM0E0MkRBQjhE RTYzMTFFOEJGQjFCRjE2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ/dIMA0EAgACMAcDBQAkAvMAMA0GCSqGSIb3DQEBCwUAA4IBAQAK asczl4VLNo56wumjJwlbATCtOwKGrOR9yq5CQE7e5FWaGLZOF4GOHBfcZbKTXo3Y jOw1XH0xwSa7FOIcpA0Tjfr6/mpPOqndPu3ZGN+bOFkR4XA4UnB3Y36b4w/ePO/l 0Lk0hzVEmGfM7RwkY9kSRlmt+A5DuIn8J+ZKpdeqhpIFBf8L6r4McgrrVWyANA4Q PNA1cNFVIfx98jiVoI9saIrMZbApLYO0T1S3tQtMSvl6viE73X6COUyZ14y2x4sL e6cKjSYZAvlEg+VcAH2xOQf9aBhMcHaX14c+pzH6u+pUeQM+vZgoj88wsow5Amf7 h/ifNvDBVw+3gzSn448I -----END CERTIFICATE-----Generated at Mon Mar 2 06:41:45 2026 by rpki-client