$ rpki-client -vvf rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/AA134FD6BD1411EE95F45624C4F9AE02.roa File: AA134FD6BD1411EE95F45624C4F9AE02.roa (raw, json) Hash identifier: PppVk2NI0XPWKna+ZtR6ofXLD7gkTcUleObVM6K34rE= Subject key identifier: 0F:BC:9C:8C:E8:75:A4:EF:20:F2:AE:3D:9D:86:ED:B3:DC:BB:3A:2A Certificate issuer: /CN=A91D65C2/serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Certificate serial: 01BE Authority key identifier: 09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/AA134FD6BD1411EE95F45624C4F9AE02.roa Signing time: Thu 09 Apr 2026 04:37:14 +0000 ROA not before: Thu 09 Apr 2026 04:37:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18013 IP address blocks: 103.149.182.0/24 maxlen: 24 103.149.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D65C2, serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Validity Not Before: Apr 9 04:37:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d72cfa-705d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b2:36:49:da:dc:d5:37:88:45:27:70:48:c4: c8:98:77:d5:8e:af:5f:92:9a:d6:91:d6:ad:2c:a0: 25:e9:ba:f5:a7:ba:7c:10:4e:77:54:ce:ab:aa:2b: f3:9b:9a:cd:91:8c:2f:fc:50:60:b5:78:10:01:75: 64:be:21:28:ce:60:54:e4:1a:72:82:43:71:0b:f9: e5:f9:53:3b:f1:e1:89:5b:8b:72:ca:9f:ea:50:db: 75:5a:c3:e2:65:7f:b0:cc:54:47:49:27:4c:be:30: 82:69:e3:c6:b2:9b:25:e3:ae:00:30:73:45:f8:b3: 03:29:43:53:8e:77:93:9a:ab:5d:58:5f:1a:42:11: 80:67:06:ba:ad:67:07:2d:b9:43:16:d8:f3:f0:62: 55:5c:fb:e8:3e:61:2d:18:d2:7a:a4:48:98:13:60: 1a:8c:bf:e7:0c:6f:00:6c:42:1d:b1:fe:63:83:5c: 25:3e:8b:93:c0:79:40:54:f6:49:f0:ee:14:2a:f1: d7:10:f3:ce:0d:d5:57:fe:fb:e2:16:c3:7a:34:be: 2b:1e:f0:2d:5d:72:b0:04:19:11:93:4e:65:7e:04: ce:49:90:1c:46:76:e5:2c:62:3d:11:0e:eb:66:49: 90:c0:92:75:e2:d6:6c:62:62:89:10:f2:12:bb:1a: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BC:9C:8C:E8:75:A4:EF:20:F2:AE:3D:9D:86:ED:B3:DC:BB:3A:2A X509v3 Authority Key Identifier: keyid:09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/AA134FD6BD1411EE95F45624C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.182.0/23 Signature Algorithm: sha256WithRSAEncryption 72:bd:44:dd:22:19:57:36:d3:0f:50:b6:0d:aa:5d:ce:7b:93: 9c:65:d5:1b:b0:1e:c3:75:38:2b:58:3e:a7:01:31:6d:03:6e: 7b:cd:0a:4d:0a:0d:70:de:b8:e7:02:71:ff:45:79:29:1f:ad: 64:92:3f:0c:3b:4a:8a:8a:f7:83:4d:54:bf:05:2b:e3:35:9c: 0d:f3:42:4b:b3:c1:f8:47:1a:77:b0:29:ed:2f:5a:93:0c:61: 0e:4b:13:d1:8f:28:24:42:e7:3f:99:f4:02:ea:97:3f:b8:6c: 79:6e:f8:f2:3b:fe:3c:19:78:06:94:11:25:d7:e1:72:10:3c: 6b:7e:e8:31:c6:82:44:a9:5e:ef:aa:66:74:ed:45:cd:17:63: ef:0e:dc:6d:a6:a4:ae:ac:cd:1c:98:2f:6e:73:dc:e2:f0:e6: 65:56:a3:d6:9c:93:ae:c6:23:b6:f6:5a:de:49:58:c5:64:ff: 56:c9:d8:92:2f:53:3b:1d:6f:72:ac:f7:54:49:cf:dc:10:56: 3f:e3:fb:63:be:7d:e4:59:bb:66:4d:bb:35:00:7c:77:20:18: 66:1d:b5:61:15:bf:df:c4:88:3b:71:8f:a9:a4:c9:4f:4b:d7: 7e:ae:79:d8:a8:08:5d:5e:ad:9b:2c:80:b7:6f:70:06:6b:7e: 57:dd:da:7c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1QzIxMTAvBgNVBAUTKDA5MTNBMkUyOUMyNDcwMEUyMTQzMUUwNEMxRTM0OTdG RDVGOUE4MDAwHhcNMjYwNDA5MDQzNzE0WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MmNmYS03MDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbI2Sdrc1TeIRSdwSMTImHfVjq9fkprWkdatLKAl6br1p7p8EE53VM6rqivz m5rNkYwv/FBgtXgQAXVkviEozmBU5BpygkNxC/nl+VM78eGJW4tyyp/qUNt1WsPi ZX+wzFRHSSdMvjCCaePGspsl464AMHNF+LMDKUNTjneTmqtdWF8aQhGAZwa6rWcH LblDFtjz8GJVXPvoPmEtGNJ6pEiYE2AajL/nDG8AbEIdsf5jg1wlPouTwHlAVPZJ 8O4UKvHXEPPODdVX/vviFsN6NL4rHvAtXXKwBBkRk05lfgTOSZAcRnblLGI9EQ7r ZkmQwJJ14tZsYmKJEPISuxpCjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA+8nIzo daTvIPKuPZ2G7bPcuzoqMB8GA1UdIwQYMBaAFAkTouKcJHAOIUMeBMHjSX/V+agA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjVDMi83NkVFNzk1Q0Iw NjAxMUVFQkJCRjY1N0NDNEY5QUUwMi9DUk9pNHB3a2NBNGhReDRFd2VOSmY5WDVx QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NST2k0cHdrY0E0aFF4NEV3ZU5KZjlYNXFBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1QzIvNzZFRTc5NUNCMDYwMTFFRUJCQkY2NTdDQzRGOUFFMDIvQUExMzRGRDZC RDE0MTFFRTk1RjQ1NjI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5W2MA0GCSqGSIb3DQEBCwUAA4IBAQByvUTdIhlXNtMPULYNql3O e5OcZdUbsB7DdTgrWD6nATFtA257zQpNCg1w3rjnAnH/RXkpH61kkj8MO0qKiveD TVS/BSvjNZwN80JLs8H4Rxp3sCntL1qTDGEOSxPRjygkQuc/mfQC6pc/uGx5bvjy O/48GXgGlBEl1+FyEDxrfugxxoJEqV7vqmZ07UXNF2PvDtxtpqSurM0cmC9uc9zi 8OZlVqPWnJOuxiO29lreSVjFZP9WydiSL1M7HW9yrPdUSc/cEFY/4/tjvn3kWbtm Tbs1AHx3IBhmHbVhFb/fxIg7cY+ppMlPS9d+rnnYqAhdXq2bLIC3b3AGa35X3dp8 -----END CERTIFICATE-----Generated at Fri Apr 17 13:51:26 2026 by rpki-client