$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa File: E940EF3464B611EA9B743415C4F9AE02.roa (raw, json) Hash identifier: Y6ZAD+rA9y34d9ugsvcjGacV31nqvDcvZSHYb1SHDaI= Subject key identifier: 35:AA:DD:A5:F4:16:49:AE:8C:0C:34:56:3C:33:29:2C:7F:52:A1:23 Certificate issuer: /CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Certificate serial: 1713 Authority key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:32:00 +0000 ROA not before: Thu 31 Jul 2025 17:25:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4647 IP address blocks: 103.246.28.0/22 maxlen: 24 203.30.140.0/24 maxlen: 24 2404:fc80::/32 maxlen: 36 2404:fc80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5907 (0x1713) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDE0E, serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Validity Not Before: Jul 31 17:25:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a423b0-a9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:19:df:1a:fd:98:f4:a8:21:91:78:db:00: 6e:4d:cb:f3:8f:12:79:cb:90:ae:bf:40:56:18:73: 17:8a:b3:aa:fc:dd:0e:70:95:85:19:1a:3c:39:14: 3f:f6:80:c7:84:31:41:35:09:41:08:e5:37:52:5b: e3:33:4d:fd:25:b4:07:18:4e:ca:8e:d9:1f:c7:47: 17:40:b7:99:82:9e:26:0c:2a:1b:3a:8d:c1:33:f9: 75:57:9e:c8:b2:d4:36:aa:e3:dc:e6:14:8a:bd:1a: 8a:31:3b:dc:5a:c1:dc:1f:ab:8f:26:38:0d:fd:10: a7:e8:41:ed:d6:28:d1:9d:38:cf:35:53:44:8c:bf: 63:54:d9:79:ea:1d:58:65:29:1f:5c:aa:5d:2f:ca: f9:ec:3e:6c:d9:35:d2:cc:2d:0d:aa:fb:24:74:31: 46:3d:c8:ef:92:49:53:d5:a3:e6:43:f8:59:06:d3: f6:44:6b:d1:54:fb:b6:93:a9:c1:50:dc:1a:3f:70: df:6a:e1:75:31:72:2b:22:07:f2:a2:f5:b3:43:a6: e7:54:7e:10:c2:d8:2e:88:ba:4b:c2:2e:ed:2b:26: 78:ee:ba:4b:37:46:0b:c3:0c:9a:32:ac:19:49:ad: 36:23:58:7e:01:73:5c:34:67:0e:1e:81:40:61:f6: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AA:DD:A5:F4:16:49:AE:8C:0C:34:56:3C:33:29:2C:7F:52:A1:23 X509v3 Authority Key Identifier: keyid:73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.246.28.0/22 203.30.140.0/24 IPv6: 2404:fc80::/32 Signature Algorithm: sha256WithRSAEncryption 65:b8:5d:84:37:51:e3:62:47:f0:7e:97:02:06:92:5c:9c:e2: 37:58:0d:58:a6:c4:f3:53:ca:bb:a8:72:dd:51:83:f9:88:7d: d6:6b:20:84:da:94:63:cd:1b:a4:15:f8:07:9a:3f:63:64:b1: 2a:1c:71:c1:e3:d6:1a:c4:3d:09:37:9f:78:a5:fe:1e:02:7d: 3e:87:3b:0f:38:11:28:32:dd:63:5f:28:48:4b:01:d8:29:01: 85:db:98:b3:bb:10:5b:0b:ae:10:41:41:a1:cd:ef:24:17:20: 5f:93:47:13:dd:fa:d9:70:57:5b:a0:e5:fe:d9:04:2c:fa:8b: 92:ec:03:cd:2f:55:58:58:ff:d1:ca:23:04:fe:f3:88:19:22: 18:2c:82:73:1a:23:06:0f:86:39:77:13:47:b6:3b:ae:94:92: 97:f6:e4:d1:5f:d3:16:55:eb:4d:9e:bf:9a:31:1a:b8:9e:26: 7a:98:2a:0a:eb:95:ba:a3:60:95:d9:c7:9f:4c:5d:fd:25:db: 59:35:f3:7c:bc:41:f5:62:c8:23:1e:58:3a:93:e6:73:b2:06: 8d:a7:c6:34:ab:c7:2c:04:f1:7e:9b:b6:29:50:88:05:01:2c: 43:4a:40:c4:1a:be:1d:dc:c0:f1:c1:7d:7f:e6:c7:c8:b2:5e: e1:94:3c:a4 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFMEUxMTAvBgNVBAUTKDczMTE0MUFGMEE3OTNBQTMxNkVGN0RERDJGMUIwNUY4 OTFDNTY2QjIwHhcNMjUwNzMxMTcyNTQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjNiMC1hOWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59kZ3xr9mPSoIZF42wBuTcvzjxJ5y5Cuv0BWGHMXirOq/N0OcJWFGRo8ORQ/ 9oDHhDFBNQlBCOU3UlvjM039JbQHGE7Kjtkfx0cXQLeZgp4mDCobOo3BM/l1V57I stQ2quPc5hSKvRqKMTvcWsHcH6uPJjgN/RCn6EHt1ijRnTjPNVNEjL9jVNl56h1Y ZSkfXKpdL8r57D5s2TXSzC0NqvskdDFGPcjvkklT1aPmQ/hZBtP2RGvRVPu2k6nB UNwaP3DfauF1MXIrIgfyovWzQ6bnVH4QwtguiLpLwi7tKyZ47rpLN0YLwwyaMqwZ Sa02I1h+AXNcNGcOHoFAYfa6twIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDWq3aX0 FkmujAw0VjwzKSx/UqEjMB8GA1UdIwQYMBaAFHMRQa8KeTqjFu993S8bBfiRxWay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREUwRS82RTFFN0RFNDA1 N0MxMUU4ODJGRThFMjhDNEY5QUUwMi9jeEZCcndwNU9xTVc3MzNkTHhzRi1KSEZa ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4RkJyd3A1T3FNVzczM2RMeHNGLUpIRlpySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFMEUvNkUxRTdERTQwNTdDMTFFODgyRkU4RTI4QzRGOUFFMDIvRTk0MEVGMzQ2 NEI2MTFFQTlCNzQzNDE1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ/YcAwQAyx6MMA0EAgACMAcDBQAkBPyAMA0GCSqGSIb3DQEBCwUA A4IBAQBluF2EN1HjYkfwfpcCBpJcnOI3WA1YpsTzU8q7qHLdUYP5iH3WayCE2pRj zRukFfgHmj9jZLEqHHHB49YaxD0JN594pf4eAn0+hzsPOBEoMt1jXyhISwHYKQGF 25izuxBbC64QQUGhze8kFyBfk0cT3frZcFdboOX+2QQs+ouS7APNL1VYWP/RyiME /vOIGSIYLIJzGiMGD4Y5dxNHtjuulJKX9uTRX9MWVetNnr+aMRq4niZ6mCoK65W6 o2CV2cefTF39JdtZNfN8vEH1YsgjHlg6k+ZzsgaNp8Y0q8csBPF+m7YpUIgFASxD SkDEGr4d3MDxwX1/5sfIsl7hlDyk -----END CERTIFICATE-----Generated at Mon Mar 2 23:41:22 2026 by rpki-client