$ rpki-client -vvf rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa File: C3A53484B06011EEA1D18B7FC4F9AE02.roa (raw, json) Hash identifier: WHu7Po3iuSGpMUahf46gbHaY1bGGSyPBy/TPYTAU2lQ= Subject key identifier: 2E:4C:D8:1E:41:1B:71:D9:5D:E9:C5:C0:E3:BC:96:06:04:E6:F8:71 Certificate issuer: /CN=A91D65C2/serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Certificate serial: 01A4 Authority key identifier: 09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:21:16 +0000 ROA not before: Sat 05 Apr 2025 05:10:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151630 IP address blocks: 103.149.182.0/23 maxlen: 23 103.149.182.0/24 maxlen: 24 103.149.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D65C2, serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Validity Not Before: Apr 5 05:10:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4212c-638f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:7f:4b:97:98:b9:f7:d2:09:a7:7a:32:bb: 58:36:99:52:80:d1:c2:a0:74:b0:f5:1c:be:7e:a7: b0:6b:8a:eb:ea:e5:3a:a7:07:58:8f:10:df:2d:db: 7d:f1:99:b0:fe:39:b2:78:be:37:c4:7e:bd:d1:4a: 0f:1b:11:9d:a3:16:eb:12:b3:eb:83:9b:b7:d6:31: 9b:bb:95:7d:4c:d1:bb:b4:45:d8:55:6c:d3:5c:91: 4c:87:2b:83:39:0d:3c:b3:b3:ce:a9:45:45:33:c3: 69:44:60:00:9a:64:38:f0:58:c5:92:d7:0e:00:fb: 3a:9e:99:5e:7d:1f:f5:fd:a5:e7:33:b4:d1:75:16: da:95:03:d4:c8:a7:1a:b7:7b:38:75:c9:1a:a2:ae: cf:f6:da:b7:97:de:94:83:98:36:40:79:ab:b9:14: fd:6b:e2:46:a4:b0:8a:7f:ac:e5:df:49:77:62:58: fd:83:0f:50:6c:60:e8:4a:6a:1c:46:42:c0:26:53: de:9e:d3:38:0a:7f:ac:1d:46:1c:86:84:31:c2:b6: 9f:c5:2d:53:d9:94:10:a6:32:a0:ac:87:18:2d:7b: 90:fd:d1:f5:cc:6c:5c:77:82:9c:6d:7e:62:99:16: cf:bc:3c:26:9e:68:00:02:4e:03:45:dd:c7:8a:c1: 32:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4C:D8:1E:41:1B:71:D9:5D:E9:C5:C0:E3:BC:96:06:04:E6:F8:71 X509v3 Authority Key Identifier: keyid:09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.182.0/23 Signature Algorithm: sha256WithRSAEncryption 46:c7:08:8d:e4:b3:6e:3f:fa:33:78:ab:24:67:f9:88:b0:32: b0:cb:94:be:b0:41:8b:fd:c1:17:1e:b2:9e:96:7d:55:d3:34: b9:32:18:bb:b2:85:0b:88:5f:c5:38:98:ee:c4:2a:7d:87:6a: a5:40:5b:72:1c:00:87:90:31:f8:5b:d9:5a:42:3d:c4:15:e6: 81:0c:49:5c:4e:1c:7a:37:e4:60:30:c1:35:fd:a4:dd:5e:27: 62:6a:ff:09:97:07:22:88:11:8b:48:f8:7c:b5:89:8a:ca:73: c9:d1:ea:55:42:34:e5:2f:00:97:65:31:bf:e6:76:a6:b2:5d: 6a:de:de:58:c1:47:0e:a6:02:27:6f:56:b5:98:6f:b6:da:99: 84:16:61:6c:73:2a:7c:dc:0f:80:88:7f:65:35:75:ca:cf:8c: b1:90:19:e1:c3:4b:83:c1:1a:c2:1e:cd:30:9c:f7:77:5d:5a: c7:6b:d1:c9:64:d0:8d:91:3a:60:0b:35:d2:0e:91:ae:c6:c4: ce:32:09:63:ee:81:85:a9:2d:e2:86:3d:71:a4:2c:4c:15:ad: b2:66:b3:c7:cf:c9:b8:bb:25:67:b0:40:0c:d3:ca:11:55:5d: af:d1:69:8a:cc:d1:e8:01:17:8a:74:03:73:4e:0d:f1:d2:d9: 0c:67:28:84 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1QzIxMTAvBgNVBAUTKDA5MTNBMkUyOUMyNDcwMEUyMTQzMUUwNEMxRTM0OTdG RDVGOUE4MDAwHhcNMjUwNDA1MDUxMDIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjEyYy02MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/h/S5eYuffSCad6MrtYNplSgNHCoHSw9Ry+fqewa4rr6uU6pwdYjxDfLdt9 8Zmw/jmyeL43xH690UoPGxGdoxbrErPrg5u31jGbu5V9TNG7tEXYVWzTXJFMhyuD OQ08s7POqUVFM8NpRGAAmmQ48FjFktcOAPs6nplefR/1/aXnM7TRdRbalQPUyKca t3s4dckaoq7P9tq3l96Ug5g2QHmruRT9a+JGpLCKf6zl30l3Ylj9gw9QbGDoSmoc RkLAJlPentM4Cn+sHUYchoQxwrafxS1T2ZQQpjKgrIcYLXuQ/dH1zGxcd4KcbX5i mRbPvDwmnmgAAk4DRd3HisEymQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC5M2B5B G3HZXenFwOO8lgYE5vhxMB8GA1UdIwQYMBaAFAkTouKcJHAOIUMeBMHjSX/V+agA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjVDMi83NkVFNzk1Q0Iw NjAxMUVFQkJCRjY1N0NDNEY5QUUwMi9DUk9pNHB3a2NBNGhReDRFd2VOSmY5WDVx QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NST2k0cHdrY0E0aFF4NEV3ZU5KZjlYNXFBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1QzIvNzZFRTc5NUNCMDYwMTFFRUJCQkY2NTdDQzRGOUFFMDIvQzNBNTM0ODRC MDYwMTFFRUExRDE4QjdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5W2MA0GCSqGSIb3DQEBCwUAA4IBAQBGxwiN5LNuP/ozeKskZ/mI sDKwy5S+sEGL/cEXHrKeln1V0zS5Mhi7soULiF/FOJjuxCp9h2qlQFtyHACHkDH4 W9laQj3EFeaBDElcThx6N+RgMME1/aTdXidiav8JlwciiBGLSPh8tYmKynPJ0epV QjTlLwCXZTG/5namsl1q3t5YwUcOpgInb1a1mG+22pmEFmFscyp83A+AiH9lNXXK z4yxkBnhw0uDwRrCHs0wnPd3XVrHa9HJZNCNkTpgCzXSDpGuxsTOMglj7oGFqS3i hj1xpCxMFa2yZrPHz8m4uyVnsEAM08oRVV2v0WmKzNHoAReKdANzTg3x0tkMZyiE -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:00 2026 by rpki-client