$ rpki-client -vvf rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa File: C3A53484B06011EEA1D18B7FC4F9AE02.roa (raw, json) Hash identifier: mmPmljEgq/UT3GHcfHd5W8JqbEjou9e+RRjhVJG9hpU= Subject key identifier: 2E:48:AE:AD:DB:CC:55:00:55:A5:8E:E8:1A:1D:DC:BB:A4:24:63:FA Certificate issuer: /CN=A91D65C2/serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Certificate serial: 01BD Authority key identifier: 09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa Signing time: Thu 09 Apr 2026 04:37:12 +0000 ROA not before: Thu 09 Apr 2026 04:37:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 151630 IP address blocks: 103.149.182.0/23 maxlen: 23 103.149.182.0/24 maxlen: 24 103.149.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D65C2, serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Validity Not Before: Apr 9 04:37:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d72cf8-6567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:05:af:06:48:12:e4:d3:fe:b8:3f:cc:45:5e: 1b:cc:7d:f1:86:a0:10:b6:24:8b:1a:72:f5:0b:ee: 5e:d3:74:81:f8:b8:8a:fe:e0:e8:52:ff:90:6a:3d: be:9b:40:b1:28:64:9d:c8:e7:7f:c8:72:58:71:15: f4:3b:06:c4:51:b2:44:34:90:38:b9:0e:ea:88:25: 9a:47:b1:2f:f1:3f:cf:88:ac:48:79:66:5f:36:59: 3a:c4:c7:18:9a:c9:4a:70:2f:47:38:68:d7:58:f6: 2c:4f:98:1d:e6:34:fd:e0:00:92:59:6d:6a:46:a6: 91:db:c3:39:84:90:58:8c:78:e2:8b:db:6b:76:77: 92:a8:6d:29:b5:44:b8:9b:00:f0:80:9c:37:77:00: 40:8f:87:f4:5c:92:9c:c2:15:ee:8b:f1:9b:19:09: 8d:b1:d9:8b:df:36:a9:bd:ba:8a:64:08:ca:cd:87: 94:37:0d:cc:6a:10:dc:a0:ae:a5:f7:3f:4d:50:a6: 74:ac:a2:c0:a0:e0:60:1a:a0:0e:b9:dc:f1:e9:cc: 5a:84:91:fb:e5:98:77:28:9a:04:58:42:0a:2f:17: 1d:39:c6:c4:f5:8f:b9:44:e8:f8:cd:fe:ba:b4:64: b8:5f:d5:07:95:93:54:62:56:71:e8:7d:fe:04:73: 8b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:48:AE:AD:DB:CC:55:00:55:A5:8E:E8:1A:1D:DC:BB:A4:24:63:FA X509v3 Authority Key Identifier: keyid:09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.182.0/23 Signature Algorithm: sha256WithRSAEncryption 38:4d:15:1e:f1:19:5f:85:55:ec:2b:3b:ec:30:ef:5a:e6:74: 68:c8:97:b9:ae:f5:30:06:a8:ea:c4:98:19:c2:ad:34:1e:2d: 85:6e:8d:ab:01:3d:5d:e1:ce:76:ea:2b:96:e0:c0:a6:ed:3a: bd:0e:e7:2b:d1:05:66:32:a9:cd:d8:2f:5e:03:44:22:c5:52: b0:1c:7b:e1:f2:2a:de:c0:a1:7f:c3:2a:14:98:02:88:ac:08: 49:5f:83:9c:3d:8b:88:95:92:92:9e:4e:d8:a5:b7:45:e2:08: ca:1b:71:75:dc:cf:c9:69:e6:42:9b:0c:23:68:29:d6:1a:ff: a8:ce:ff:e1:db:c7:99:5f:30:c5:fe:a6:a6:df:70:6c:72:f5: f7:6e:f9:f9:f1:df:e1:1a:33:5b:6c:da:23:57:b8:ed:91:c3: 35:2a:e8:a0:8b:dd:1c:e4:19:49:34:ec:0b:24:73:28:f7:19: 6f:fb:e6:fe:d5:55:82:7b:8b:9a:a5:ea:be:4a:d0:1b:ad:fe: 91:46:aa:03:b9:52:4e:9c:f7:84:53:ad:9e:b7:a7:98:e7:2b: 62:4a:c7:1f:8b:fd:2f:67:4e:b8:b6:7a:a5:7b:f5:ed:0a:e1: 5d:3f:15:3c:da:e7:f4:f9:0d:16:f3:ea:79:69:d0:c0:ff:5b: fd:ba:19:6d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1QzIxMTAvBgNVBAUTKDA5MTNBMkUyOUMyNDcwMEUyMTQzMUUwNEMxRTM0OTdG RDVGOUE4MDAwHhcNMjYwNDA5MDQzNzEyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MmNmOC02NTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwWvBkgS5NP+uD/MRV4bzH3xhqAQtiSLGnL1C+5e03SB+LiK/uDoUv+Qaj2+ m0CxKGSdyOd/yHJYcRX0OwbEUbJENJA4uQ7qiCWaR7Ev8T/PiKxIeWZfNlk6xMcY mslKcC9HOGjXWPYsT5gd5jT94ACSWW1qRqaR28M5hJBYjHjii9trdneSqG0ptUS4 mwDwgJw3dwBAj4f0XJKcwhXui/GbGQmNsdmL3zapvbqKZAjKzYeUNw3MahDcoK6l 9z9NUKZ0rKLAoOBgGqAOudzx6cxahJH75Zh3KJoEWEIKLxcdOcbE9Y+5ROj4zf66 tGS4X9UHlZNUYlZx6H3+BHOLPQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC5Irq3b zFUAVaWO6Bod3LukJGP6MB8GA1UdIwQYMBaAFAkTouKcJHAOIUMeBMHjSX/V+agA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjVDMi83NkVFNzk1Q0Iw NjAxMUVFQkJCRjY1N0NDNEY5QUUwMi9DUk9pNHB3a2NBNGhReDRFd2VOSmY5WDVx QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NST2k0cHdrY0E0aFF4NEV3ZU5KZjlYNXFBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1QzIvNzZFRTc5NUNCMDYwMTFFRUJCQkY2NTdDQzRGOUFFMDIvQzNBNTM0ODRC MDYwMTFFRUExRDE4QjdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5W2MA0GCSqGSIb3DQEBCwUAA4IBAQA4TRUe8RlfhVXsKzvsMO9a 5nRoyJe5rvUwBqjqxJgZwq00Hi2Fbo2rAT1d4c526iuW4MCm7Tq9Ducr0QVmMqnN 2C9eA0QixVKwHHvh8irewKF/wyoUmAKIrAhJX4OcPYuIlZKSnk7YpbdF4gjKG3F1 3M/JaeZCmwwjaCnWGv+ozv/h28eZXzDF/qam33BscvX3bvn58d/hGjNbbNojV7jt kcM1Kuigi90c5BlJNOwLJHMo9xlv++b+1VWCe4uapeq+StAbrf6RRqoDuVJOnPeE U62et6eY5ytiSscfi/0vZ064tnqle/XtCuFdPxU82uf0+Q0W8+p5adDA/1v9uhlt -----END CERTIFICATE-----Generated at Fri Apr 17 23:59:46 2026 by rpki-client