$ rpki-client -vvf rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/738240A246DC11EEAF1D2C1DC4F9AE02.roa File: 738240A246DC11EEAF1D2C1DC4F9AE02.roa (raw, json) Hash identifier: vwpk66j6u7gHZndjLm88aLBptA1qs1JYs9XWsnQwXWY= Subject key identifier: 70:4D:EE:03:F3:BF:76:03:77:76:6F:0E:A4:49:DF:BF:EB:E5:58:A9 Certificate issuer: /CN=A91D477A/serialNumber=112940DF56532B5D9A597869ACA931E783E8ACBF Certificate serial: 0AA8 Authority key identifier: 11:29:40:DF:56:53:2B:5D:9A:59:78:69:AC:A9:31:E7:83:E8:AC:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ESlA31ZTK12aWXhprKkx54PorL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/738240A246DC11EEAF1D2C1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:29:19 +0000 ROA not before: Sat 10 May 2025 20:05:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137551 IP address blocks: 103.112.240.0/22 maxlen: 24 103.120.120.0/22 maxlen: 22 103.120.120.0/24 maxlen: 24 103.120.121.0/24 maxlen: 24 103.120.122.0/24 maxlen: 24 103.120.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/ESlA31ZTK12aWXhprKkx54PorL8.crl rsync://rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/ESlA31ZTK12aWXhprKkx54PorL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ESlA31ZTK12aWXhprKkx54PorL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D477A, serialNumber=112940DF56532B5D9A597869ACA931E783E8ACBF Validity Not Before: May 10 20:05:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a406ef-4842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ac:af:4c:35:3e:9a:3a:d7:f0:9d:de:10:0f: bd:89:98:09:ca:6d:36:d5:24:c3:59:b7:ac:d5:25: 8e:c8:3e:e9:07:fe:5c:3e:ea:d1:5e:80:f3:40:ec: 79:47:4f:16:a3:36:2b:25:0b:1c:07:1a:77:42:44: 2a:7c:cb:4d:a2:fb:45:80:d5:da:77:1a:97:b3:9e: 36:0b:f4:e1:54:c1:3d:ab:0d:f0:a7:52:08:46:94: 0b:a2:05:d6:e5:9d:72:0c:dd:1f:0c:96:56:91:33: 12:13:3d:00:13:f9:86:0c:4f:1f:80:ae:b1:13:21: 2a:44:07:3d:a9:24:5b:36:22:2a:a1:f3:60:b4:cb: 3c:b8:0d:23:d1:37:07:b8:d6:ff:0f:da:59:f0:8a: d1:73:9f:e2:af:e0:e6:08:33:47:be:7e:8e:81:c7: 31:b2:a2:54:7b:94:a0:78:37:38:42:6e:08:45:bf: b1:b2:f5:3b:c5:7a:59:fc:28:38:31:5a:f6:df:b7: 23:77:56:f9:bf:45:21:cc:84:86:ad:4a:51:e2:a3: e6:3f:7f:3f:ca:da:12:40:35:aa:ea:ab:17:55:91: c8:ed:57:fa:73:d3:58:28:66:99:a2:e5:61:cb:e6: 2b:b9:bf:31:ea:7f:91:3d:3e:0d:d3:fd:9e:48:a3: 2d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4D:EE:03:F3:BF:76:03:77:76:6F:0E:A4:49:DF:BF:EB:E5:58:A9 X509v3 Authority Key Identifier: keyid:11:29:40:DF:56:53:2B:5D:9A:59:78:69:AC:A9:31:E7:83:E8:AC:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/ESlA31ZTK12aWXhprKkx54PorL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ESlA31ZTK12aWXhprKkx54PorL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D477A/C828943273E811EA88F0227FC4F9AE02/738240A246DC11EEAF1D2C1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.112.240.0/22 103.120.120.0/22 Signature Algorithm: sha256WithRSAEncryption 72:af:54:08:04:5d:d2:58:a5:f0:c1:e8:3b:26:cb:69:21:96: 6d:be:c2:da:d0:2c:0b:11:27:eb:74:47:91:3a:f1:f2:07:df: 47:83:81:85:14:b9:15:73:b0:1c:ce:9b:e2:7b:ea:14:f4:f6: b6:9b:d0:9d:9d:e2:f4:b5:22:53:79:c9:51:bc:bc:a3:e8:30: 54:70:08:0a:d6:83:d9:fd:dd:fe:e8:36:76:87:cc:ba:e4:43: 0f:12:17:78:26:d4:5e:51:9f:f0:06:ca:d4:f8:46:17:08:c2: 35:85:ca:07:4d:06:4d:24:7d:55:1f:50:69:6a:5e:6c:1b:47: 81:a8:03:e5:ce:23:cc:98:0a:49:d9:3f:20:19:fd:4c:55:2a: 72:10:f2:6e:82:32:73:9e:03:a4:1e:f1:4e:39:2b:5d:b5:37: 12:08:1b:51:7e:60:2f:ba:a9:71:1d:11:e4:4a:c6:95:89:33: 4e:a0:86:ac:81:b3:b8:49:e0:6b:fe:58:1b:22:55:97:4c:cc: 9c:87:0c:a3:88:03:ba:8f:1f:46:46:00:23:38:c2:1d:fe:e0: 18:52:1f:b1:5a:03:cb:aa:d2:38:ce:e4:6d:ed:df:e7:60:61: 91:84:8b:6a:b9:41:47:7d:d4:39:25:c3:b6:e0:02:8b:4f:56: 73:17:26:97 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ3N0ExMTAvBgNVBAUTKDExMjk0MERGNTY1MzJCNUQ5QTU5Nzg2OUFDQTkzMUU3 ODNFOEFDQkYwHhcNMjUwNTEwMjAwNTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZlZi00ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqyvTDU+mjrX8J3eEA+9iZgJym021STDWbes1SWOyD7pB/5cPurRXoDzQOx5 R08WozYrJQscBxp3QkQqfMtNovtFgNXadxqXs542C/ThVME9qw3wp1IIRpQLogXW 5Z1yDN0fDJZWkTMSEz0AE/mGDE8fgK6xEyEqRAc9qSRbNiIqofNgtMs8uA0j0TcH uNb/D9pZ8IrRc5/ir+DmCDNHvn6OgccxsqJUe5SgeDc4Qm4IRb+xsvU7xXpZ/Cg4 MVr237cjd1b5v0UhzISGrUpR4qPmP38/ytoSQDWq6qsXVZHI7Vf6c9NYKGaZouVh y+Yrub8x6n+RPT4N0/2eSKMt2wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHBN7gPz v3YDd3ZvDqRJ37/r5VipMB8GA1UdIwQYMBaAFBEpQN9WUytdmll4aaypMeeD6Ky/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDc3QS9DODI4OTQzMjcz RTgxMUVBODhGMDIyN0ZDNEY5QUUwMi9FU2xBMzFaVEsxMmFXWGhwcktreDU0UG9y TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VTbEEzMVpUSzEyYVdYaHByS2t4NTRQb3JMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ3N0EvQzgyODk0MzI3M0U4MTFFQTg4RjAyMjdGQzRGOUFFMDIvNzM4MjQwQTI0 NkRDMTFFRUFGMUQyQzFEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ3DwAwQCZ3h4MA0GCSqGSIb3DQEBCwUAA4IBAQByr1QIBF3SWKXw weg7JstpIZZtvsLa0CwLESfrdEeROvHyB99Hg4GFFLkVc7Aczpvie+oU9Pa2m9Cd neL0tSJTeclRvLyj6DBUcAgK1oPZ/d3+6DZ2h8y65EMPEhd4JtReUZ/wBsrU+EYX CMI1hcoHTQZNJH1VH1Bpal5sG0eBqAPlziPMmApJ2T8gGf1MVSpyEPJugjJzngOk HvFOOStdtTcSCBtRfmAvuqlxHRHkSsaViTNOoIasgbO4SeBr/lgbIlWXTMychwyj iAO6jx9GRgAjOMId/uAYUh+xWgPLqtI4zuRt7d/nYGGRhItquUFHfdQ5JcO24AKL T1ZzFyaX -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:46 2026 by rpki-client