$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/07412A002D3111F1B77CD687BC833773.roa File: 07412A002D3111F1B77CD687BC833773.roa (raw, json) Hash identifier: m3KakV6D8uqf1vPRe2G0m6SVTDUuzIzt+KLbrHZc+PI= Subject key identifier: D0:C3:DE:B3:3D:90:9C:65:F4:BA:42:79:10:A0:72:A0:04:71:57:67 Certificate issuer: /CN=A91C2663/serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Certificate serial: 23B3 Authority key identifier: 1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/07412A002D3111F1B77CD687BC833773.roa Signing time: Tue 31 Mar 2026 18:41:41 +0000 ROA not before: Tue 31 Mar 2026 18:41:41 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 30456 IP address blocks: 103.241.212.0/24 maxlen: 24 103.241.214.0/24 maxlen: 24 103.241.215.0/24 maxlen: 24 202.165.124.0/22 maxlen: 22 202.165.124.0/24 maxlen: 24 202.165.125.0/24 maxlen: 24 202.165.126.0/24 maxlen: 24 202.165.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9139 (0x23b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2663, serialNumber=1A97C2F4711F7BC802E268AC66F110862BE57888 Validity Not Before: Mar 31 18:41:41 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69cc1565-6db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:0c:57:73:8e:60:11:93:d1:ef:88:9c:7a: 85:6b:86:91:e8:5c:95:38:bc:d6:9b:56:7c:7f:16: 66:f7:29:f1:11:57:41:42:ca:4d:b4:5f:cd:f9:10: 15:39:48:14:02:60:0e:e3:a8:f8:36:c4:6f:c6:60: 84:e1:f8:00:67:e8:f5:fa:01:b4:56:c2:64:5d:ba: 02:a4:c6:50:4f:c8:0f:9f:1b:c5:ca:64:ee:05:84: 80:65:dc:80:e8:0c:74:a1:d3:1e:3f:f5:e8:ea:e2: e6:56:ab:93:54:33:cc:54:4c:0b:d5:03:2f:6a:be: 42:81:70:40:82:17:01:9d:7c:83:97:f1:fa:88:0b: d2:4a:ea:89:f6:02:48:a3:ba:e8:f2:5b:09:98:73: 77:d3:25:96:16:13:8c:ea:95:bd:b3:93:ab:aa:eb: b7:cb:b3:b7:44:59:e0:5c:fe:8d:97:39:78:a4:00: 9c:66:30:be:02:e6:78:2d:9a:c9:54:8a:b0:59:5b: 63:d4:03:9b:b4:5d:ca:1d:f7:68:a7:c9:17:b6:8b: ad:67:4b:ee:92:ec:d0:b1:91:a3:90:a9:0c:ce:84: 0a:7e:9b:02:14:b6:1a:c9:45:1d:71:c8:ab:d5:e5: 56:6f:eb:a9:de:cb:bc:ac:dc:8a:1d:91:39:10:fa: 87:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C3:DE:B3:3D:90:9C:65:F4:BA:42:79:10:A0:72:A0:04:71:57:67 X509v3 Authority Key Identifier: keyid:1A:97:C2:F4:71:1F:7B:C8:02:E2:68:AC:66:F1:10:86:2B:E5:78:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/GpfC9HEfe8gC4misZvEQhivleIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GpfC9HEfe8gC4misZvEQhivleIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2663/B8AEF138A94C11E58291CA67C4F9AE02/07412A002D3111F1B77CD687BC833773.roa sbgp-ipAddrBlock: critical IPv4: 103.241.212.0/24 103.241.214.0/23 202.165.124.0/22 Signature Algorithm: sha256WithRSAEncryption a9:f9:88:c9:4f:db:1d:2a:a1:7f:cd:e7:7a:0d:fe:5d:68:27: fa:2e:31:19:59:8d:c0:72:15:05:c0:e4:c8:c3:8e:b7:a9:1e: ec:5d:cf:86:7e:f7:df:e0:f4:3d:7a:02:dd:8b:5a:36:76:15: 17:96:ab:60:a6:2e:26:ab:f7:02:0a:7b:23:e0:6d:71:3f:b2: 5b:41:61:11:31:1f:53:b5:11:49:03:c5:c5:dc:ab:9e:03:f9: 86:e4:9e:ed:d4:a3:ab:f5:5d:94:7c:5c:4d:b4:f9:5f:02:c9: de:67:64:f8:c8:95:f3:ea:f6:27:1c:7e:78:f1:0e:49:4f:dd: c2:cb:27:35:e2:2e:19:fa:89:b5:6a:53:27:14:de:46:32:b6: 6f:d4:db:e0:a9:dc:da:bb:22:f5:fa:fe:5c:b2:19:ef:ce:15: d8:fd:98:14:21:8c:2b:fb:ef:8f:43:f1:c6:ca:44:b4:98:76: 96:76:3c:bb:a0:c9:76:92:7a:0c:97:54:90:cb:3d:44:69:1f: 5f:ee:9d:24:e3:03:d6:f4:24:66:a9:04:52:45:d0:35:74:b2: 83:9d:21:53:4d:3b:50:b8:e3:28:1a:98:ff:b4:be:cf:bf:db: 15:b5:59:ac:7e:42:cd:23:ac:24:13:9f:82:90:63:d0:6f:06: a9:52:1f:4d -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICI7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NjMxMTAvBgNVBAUTKDFBOTdDMkY0NzExRjdCQzgwMkUyNjhBQzY2RjExMDg2 MkJFNTc4ODgwHhcNMjYwMzMxMTg0MTQxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMTU2NS02ZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wQMV3OOYBGT0e+InHqFa4aR6FyVOLzWm1Z8fxZm9ynxEVdBQspNtF/N+RAV OUgUAmAO46j4NsRvxmCE4fgAZ+j1+gG0VsJkXboCpMZQT8gPnxvFymTuBYSAZdyA 6Ax0odMeP/Xo6uLmVquTVDPMVEwL1QMvar5CgXBAghcBnXyDl/H6iAvSSuqJ9gJI o7ro8lsJmHN30yWWFhOM6pW9s5Orquu3y7O3RFngXP6Nlzl4pACcZjC+AuZ4LZrJ VIqwWVtj1AObtF3KHfdop8kXtoutZ0vukuzQsZGjkKkMzoQKfpsCFLYayUUdccir 1eVWb+up3su8rNyKHZE5EPqHYwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNDD3rM9 kJxl9LpCeRCgcqAEcVdnMB8GA1UdIwQYMBaAFBqXwvRxH3vIAuJorGbxEIYr5XiI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY2My9COEFFRjEzOEE5 NEMxMUU1ODI5MUNBNjdDNEY5QUUwMi9HcGZDOUhFZmU4Z0M0bWlzWnZFUWhpdmxl SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwZkM5SEVmZThnQzRtaXNadkVRaGl2bGVJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI2NjMvQjhBRUYxMzhBOTRDMTFFNTgyOTFDQTY3QzRGOUFFMDIvMDc0MTJBMDAy RDMxMTFGMUI3N0NENjg3QkM4MzM3NzMucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ/HUAwQBZ/HWAwQCyqV8MA0GCSqGSIb3DQEBCwUAA4IBAQCp+YjJ T9sdKqF/zed6Df5daCf6LjEZWY3AchUFwOTIw463qR7sXc+Gfvff4PQ9egLdi1o2 dhUXlqtgpi4mq/cCCnsj4G1xP7JbQWERMR9TtRFJA8XF3KueA/mG5J7t1KOr9V2U fFxNtPlfAsneZ2T4yJXz6vYnHH548Q5JT93Cyyc14i4Z+om1alMnFN5GMrZv1Nvg qdzauyL1+v5cshnvzhXY/ZgUIYwr+++PQ/HGykS0mHaWdjy7oMl2knoMl1SQyz1E aR9f7p0k4wPW9CRmqQRSRdA1dLKDnSFTTTtQuOMoGpj/tL7Pv9sVtVmsfkLNI6wk E5+CkGPQbwapUh9N -----END CERTIFICATE-----Generated at Fri Apr 17 23:29:26 2026 by rpki-client