$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/684DDD32CAB311ECBBCE9843C4F9AE02.roa File: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (raw, json) Hash identifier: CQAaHQlUoziy3+k69fgN/Wsw5rtFHgLNTPy96hrXthw= Subject key identifier: AC:E6:FB:7C:14:DF:8A:F2:6B:A9:23:61:C0:5B:C9:E5:06:37:2E:45 Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 03B5 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/684DDD32CAB311ECBBCE9843C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:20:51 +0000 ROA not before: Wed 07 May 2025 01:07:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149660 IP address blocks: 103.185.222.0/23 maxlen: 23 103.185.222.0/24 maxlen: 24 103.185.223.0/24 maxlen: 24 2001:df0:9b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B, serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: May 7 01:07:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e8d3-1be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a2:db:9a:55:90:7a:68:fb:de:e8:9b:cb:c5: 5d:06:f7:37:4d:3d:f0:7f:17:d4:05:2c:35:11:df: b6:fa:48:e2:8c:63:73:bf:07:0f:22:50:27:89:df: e0:17:32:f1:bd:7f:d8:0b:f6:da:df:35:0d:fd:ca: 26:66:51:18:8f:ba:d9:6e:dd:24:e4:08:61:b3:2c: ac:be:47:1c:87:a2:fd:1a:50:9c:86:68:c1:dc:f7: 1b:71:8f:be:f8:20:3c:ad:8e:a0:a8:3f:b3:35:aa: 00:3f:f3:69:8b:5f:90:e9:be:3d:ce:82:b0:11:16: 5d:29:a7:20:b0:a9:9e:2d:6d:26:cd:31:67:f2:5a: 9c:f2:7a:ab:c7:56:eb:c2:ab:53:7e:c4:d1:d0:fc: f6:5a:ec:27:02:6d:51:68:7d:93:23:09:c6:d7:03: 0f:a5:49:75:ec:62:b3:8d:96:d0:76:18:da:86:3d: a6:f5:c7:85:cd:ca:fd:22:72:a2:0e:9b:8f:6b:8e: dc:34:12:1f:da:13:db:cc:a7:70:31:40:1f:78:c7: 80:f0:47:84:cc:39:b8:af:6b:d4:05:8e:d2:2a:b9: 0a:29:23:b0:4f:d5:9a:60:65:b6:2e:55:d9:5c:50: a2:60:b1:0d:cf:76:21:02:4f:00:ab:9d:a4:20:13: 3b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E6:FB:7C:14:DF:8A:F2:6B:A9:23:61:C0:5B:C9:E5:06:37:2E:45 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/684DDD32CAB311ECBBCE9843C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.185.222.0/23 IPv6: 2001:df0:9b40::/48 Signature Algorithm: sha256WithRSAEncryption 19:67:19:e8:a2:83:c1:78:f9:9e:9a:7e:e7:d0:de:21:cd:92: ed:d8:72:cf:06:75:27:e9:97:9f:b6:d1:99:f7:91:44:53:87: 1b:98:59:50:11:a5:bf:38:fc:b2:31:60:ef:4e:e2:cd:bd:e4: c5:a5:4a:08:c7:5c:c9:5a:a3:30:ec:1a:80:b9:1a:d2:4f:e2: 5d:10:d9:ea:b7:87:dd:da:90:d7:db:93:94:40:cb:c6:6b:86: 8a:15:49:76:96:bb:f8:72:95:1f:96:35:78:a8:e1:85:4e:c2: ab:e5:f9:b5:4a:d0:65:c6:09:12:1e:de:88:b0:47:8a:49:57: 70:52:25:ac:06:fc:b4:8c:8c:47:b5:a0:c7:67:3f:6e:fe:9b: cb:87:6d:3f:ad:fb:92:f7:09:72:e6:6f:aa:69:6c:bc:09:68: 17:01:77:bb:c3:9d:93:5a:ce:50:f7:9b:65:a3:a8:1d:41:4a: e5:0d:86:2e:45:48:c3:62:50:06:86:5e:5f:d2:49:e3:1f:18: 8a:3b:c2:51:1a:a4:b6:40:c6:d0:49:7c:1e:78:eb:a6:52:30: 8b:53:c7:56:65:db:8c:f4:d1:9a:f8:4c:c4:d7:a7:c9:bf:56: 02:9a:03:d5:c1:be:df:65:e5:eb:3e:72:84:87:ab:b7:e9:01: 3d:f7:3a:d1 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjUwNTA3MDEwNzQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZThkMy0xYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6LbmlWQemj73uiby8VdBvc3TT3wfxfUBSw1Ed+2+kjijGNzvwcPIlAnid/g FzLxvX/YC/ba3zUN/comZlEYj7rZbt0k5Ahhsyysvkcch6L9GlCchmjB3PcbcY++ +CA8rY6gqD+zNaoAP/Npi1+Q6b49zoKwERZdKacgsKmeLW0mzTFn8lqc8nqrx1br wqtTfsTR0Pz2WuwnAm1RaH2TIwnG1wMPpUl17GKzjZbQdhjahj2m9ceFzcr9InKi DpuPa47cNBIf2hPbzKdwMUAfeMeA8EeEzDm4r2vUBY7SKrkKKSOwT9WaYGW2LlXZ XFCiYLENz3YhAk8Aq52kIBM77QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKzm+3wU 34rya6kjYcBbyeUGNy5FMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ5M0IvREJBRDM3QTBDQUFFMTFFQzgyNDEyODBEQzRGOUFFMDIvNjg0REREMzJD QUIzMTFFQ0JCQ0U5ODQzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7neMA8EAgACMAkDBwAgAQ3wm0AwDQYJKoZIhvcNAQELBQADggEB ABlnGeiig8F4+Z6afufQ3iHNku3Ycs8GdSfpl5+20Zn3kURThxuYWVARpb84/LIx YO9O4s295MWlSgjHXMlaozDsGoC5GtJP4l0Q2eq3h93akNfbk5RAy8ZrhooVSXaW u/hylR+WNXio4YVOwqvl+bVK0GXGCRIe3oiwR4pJV3BSJawG/LSMjEe1oMdnP27+ m8uHbT+t+5L3CXLmb6ppbLwJaBcBd7vDnZNazlD3m2WjqB1BSuUNhi5FSMNiUAaG Xl/SSeMfGIo7wlEapLZAxtBJfB5466ZSMItTx1Zl24z00Zr4TMTXp8m/VgKaA9XB vt9l5es+coSHq7fpAT33OtE= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:22 2026 by rpki-client