$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/49036D2CB0D711E58B185E0FC4F9AE02.roa File: 49036D2CB0D711E58B185E0FC4F9AE02.roa (raw, json) Hash identifier: xX3Ba5H5Sw2Jw8gIsRp9N0DgboX0HpbidadIyPU/Yzs= Subject key identifier: 70:5D:A0:16:32:55:7B:5F:54:89:7D:C8:33:DB:71:5D:02:E3:09:A2 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 354F Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/49036D2CB0D711E58B185E0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:21:27 +0000 ROA not before: Fri 28 Mar 2025 14:51:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38478 IP address blocks: 103.15.120.0/22 maxlen: 22 103.15.120.0/24 maxlen: 24 103.15.121.0/24 maxlen: 24 103.15.122.0/24 maxlen: 24 103.15.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13647 (0x354f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Mar 28 14:51:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a46786-76d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:89:58:31:b4:2a:98:46:b5:14:bc:13:09: a0:5c:e1:79:51:46:f2:67:05:b5:3d:94:68:a1:a3: 4b:21:f8:c4:9c:0b:e6:63:eb:5e:47:93:52:09:9c: 45:dd:4e:65:29:bb:59:07:27:a0:d5:47:7c:65:eb: c1:cf:f4:09:63:7b:10:0e:ac:3e:46:e7:7b:4a:d9: 79:36:d7:e0:15:22:4c:2b:1c:44:0b:92:d8:0c:70: 28:9c:10:c8:e5:bd:e4:4b:4e:19:cb:26:10:54:6f: c8:97:7f:0d:b8:0c:12:5d:a3:29:87:13:ba:85:c1: 7d:73:99:e4:1f:c1:20:43:4d:8d:cf:f9:fa:7d:0f: 49:73:5e:4b:73:8b:78:18:78:8c:42:91:d2:3c:d1: fc:61:ac:8a:66:fc:3e:82:ec:53:45:d2:ed:2a:40: 54:2f:92:b5:04:49:be:8d:ac:18:6c:37:00:43:f2: 4f:42:3b:41:60:24:cc:06:45:03:89:1f:9d:31:74: 3d:f2:fc:e0:24:1b:b9:0c:33:e9:4c:6d:ad:d1:f0: be:02:d1:08:53:72:4d:41:eb:c2:70:ba:41:af:bb: 46:5b:37:5f:4b:02:b2:b1:10:7c:60:6b:e6:8f:2a: dc:d9:3a:75:90:69:40:ce:4f:9a:39:33:9a:2a:45: 96:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5D:A0:16:32:55:7B:5F:54:89:7D:C8:33:DB:71:5D:02:E3:09:A2 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/49036D2CB0D711E58B185E0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.15.120.0/22 Signature Algorithm: sha256WithRSAEncryption 93:14:72:e5:3f:e4:42:ec:86:45:02:7a:33:86:56:27:a5:48: 60:92:3b:6f:3d:53:30:4c:cf:97:c0:74:c8:39:e9:3d:67:64: b4:68:65:2f:20:5a:2c:59:c0:ae:d7:96:25:3a:37:28:ff:01: 07:f8:8d:55:2c:b3:0d:49:74:3e:5d:cf:98:20:64:0f:23:53: 2e:80:63:45:2b:63:c7:84:7e:1a:ce:69:74:08:91:ba:bc:69: 51:29:2a:38:55:30:af:65:5b:04:84:ff:67:fd:72:e5:ba:16: 6d:b9:cc:25:69:83:cd:98:53:00:81:cd:0f:a2:0c:14:3f:b4: 57:4e:c0:f7:e7:7d:dc:a8:df:36:17:6d:32:81:d5:1c:25:25: f8:36:49:d8:ad:5f:5e:b6:89:73:ea:94:b9:24:28:6f:2b:05: dd:75:e4:98:95:6e:2b:45:bf:db:ad:9b:b6:9d:a5:0c:19:58: e8:78:ca:69:ef:5e:15:78:c5:d4:f7:cb:7b:78:25:20:4c:04: 08:6c:cb:4c:97:83:ec:93:ef:41:95:dc:02:7d:20:a7:b4:55: a3:a7:33:a1:1c:d1:30:a7:f1:c0:d0:0d:62:13:f6:1d:f9:f1: ad:5e:3f:2a:fa:89:03:08:7c:77:64:1e:0d:ec:f2:4d:f9:54: 6c:69:c2:22 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwMzI4MTQ1MTAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njc4Ni03NmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjaJWDG0KphGtRS8EwmgXOF5UUbyZwW1PZRooaNLIfjEnAvmY+teR5NSCZxF 3U5lKbtZByeg1Ud8ZevBz/QJY3sQDqw+Rud7Stl5NtfgFSJMKxxEC5LYDHAonBDI 5b3kS04ZyyYQVG/Il38NuAwSXaMphxO6hcF9c5nkH8EgQ02Nz/n6fQ9Jc15Lc4t4 GHiMQpHSPNH8YayKZvw+guxTRdLtKkBUL5K1BEm+jawYbDcAQ/JPQjtBYCTMBkUD iR+dMXQ98vzgJBu5DDPpTG2t0fC+AtEIU3JNQevCcLpBr7tGWzdfSwKysRB8YGvm jyrc2Tp1kGlAzk+aOTOaKkWWYQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHBdoBYy VXtfVIl9yDPbcV0C4wmiMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk0ODQvNkZGMERERTAxRDk0MTFFMjlERUNCNUY4MDhCMDJDRDIvNDkwMzZEMkNC MEQ3MTFFNThCMTg1RTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZw94MA0GCSqGSIb3DQEBCwUAA4IBAQCTFHLlP+RC7IZFAnozhlYn pUhgkjtvPVMwTM+XwHTIOek9Z2S0aGUvIFosWcCu15YlOjco/wEH+I1VLLMNSXQ+ Xc+YIGQPI1MugGNFK2PHhH4azml0CJG6vGlRKSo4VTCvZVsEhP9n/XLluhZtucwl aYPNmFMAgc0PogwUP7RXTsD3533cqN82F20ygdUcJSX4NknYrV9etolz6pS5JChv KwXddeSYlW4rRb/brZu2naUMGVjoeMpp714VeMXU98t7eCUgTAQIbMtMl4Psk+9B ldwCfSCntFWjpzOhHNEwp/HA0A1iE/Yd+fGtXj8q+okDCHx3ZB4N7PJN+VRsacIi -----END CERTIFICATE-----Generated at Mon Mar 2 09:21:27 2026 by rpki-client