$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/4140D222AB0511F0AD64C814C4F9AE02.roa File: 4140D222AB0511F0AD64C814C4F9AE02.roa (raw, json) Hash identifier: lm+nFcqH0a+9WsNgR01SH0qMnw/FVhg7/KwG6EmLyBA= Subject key identifier: 21:38:F7:5C:CC:68:BA:B5:A0:28:AF:FE:5C:A2:1B:E0:5C:3E:D9:FD Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 4E Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/4140D222AB0511F0AD64C814C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:54:10 +0000 ROA not before: Fri 17 Oct 2025 02:59:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139223 IP address blocks: 103.139.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Oct 17 02:59:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48b52-f1f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:c0:66:79:c8:6e:13:8e:ba:61:5c:6f:69: f8:52:e2:d5:62:3e:c0:09:10:21:3a:b0:36:b7:4a: 6d:dc:92:fa:be:61:a2:27:36:3a:12:0c:e1:e7:de: 7b:da:c5:18:0c:21:6f:4a:af:19:7d:1e:14:d8:1d: d1:a5:3b:ac:20:f5:07:2c:80:11:75:c6:d4:43:5f: bc:44:f5:4a:7e:53:05:c5:b3:79:d6:26:34:9f:43: 8d:09:42:1f:4d:07:02:c0:5f:55:a1:a2:e9:24:2b: e7:4f:f6:ba:dd:58:41:4d:57:f8:73:ef:a1:60:5b: 46:78:25:34:e3:e6:9b:f5:d0:ef:f7:53:ce:30:a2: 5c:27:0e:7a:f5:82:40:7e:df:46:78:98:30:c2:cb: f2:a3:a9:41:86:c6:b5:3d:57:fe:ab:01:a2:05:e3: 22:3c:72:9a:5c:e8:9d:3a:2d:6d:d2:31:64:df:07: 3d:83:5e:90:f7:6c:69:2e:3c:20:bc:cb:8f:85:d2: 98:4f:b7:65:d3:8f:5e:2f:33:c3:f0:06:a4:0c:d9: 8c:db:ae:81:8f:9f:ce:f4:12:fb:12:43:4d:be:88: 64:d7:4b:e2:0f:21:83:30:25:e3:ab:fe:17:04:38: 1a:62:aa:66:dc:a3:93:43:e6:0b:57:ff:3d:b8:28: 12:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:38:F7:5C:CC:68:BA:B5:A0:28:AF:FE:5C:A2:1B:E0:5C:3E:D9:FD X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/4140D222AB0511F0AD64C814C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.139.253.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:f6:1b:63:46:1a:0c:d3:88:10:66:28:5f:ab:84:c8:3c:3a: d1:b5:c7:d4:1a:be:60:f1:53:fc:bd:5c:2a:ab:07:ef:c4:f1: 74:15:7a:a9:06:eb:c7:95:6e:c7:d0:2c:a1:60:7c:54:97:49: 68:fc:54:ca:1e:33:a3:8b:a3:a5:3c:c3:b3:20:f6:3c:ba:d8: df:40:98:12:9e:91:13:c3:81:d7:e4:91:a8:43:08:da:21:f7: e1:36:e4:28:95:36:e2:d3:9d:c0:ab:8b:da:a6:d9:ec:1a:c8: 09:68:ce:b3:76:5d:cf:ed:21:eb:aa:d0:7b:c3:87:08:a9:cf: 15:33:6d:97:d2:e3:0b:59:bf:65:28:5b:f4:95:04:cb:24:a6: 5a:8f:b0:b5:cb:fd:46:57:f9:18:e0:d3:5b:8a:67:15:f7:95: 37:1a:06:01:f9:ad:71:15:a9:54:ba:94:24:59:9a:9b:6c:66: 05:8d:7b:65:e6:21:00:ff:41:dc:01:76:5d:07:a5:2c:95:20: 4f:f5:73:fc:24:40:5e:f5:23:1c:18:4c:da:4c:ef:25:cc:11: d7:de:89:2f:f0:95:c8:de:5c:a7:fd:e1:e1:47:f6:92:04:a8: 8a:b1:ea:0a:b0:b1:d0:53:a2:25:5f:d7:98:d5:ad:9f:61:93: e0:01:82:a9 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNTEwMTcwMjU5MTFaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ4YjUyLWYxZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCufMBmechuE466YVxvafhS4tViPsAJECE6sDa3Sm3ckvq+YaInNjoSDOHn3nva xRgMIW9Krxl9HhTYHdGlO6wg9QcsgBF1xtRDX7xE9Up+UwXFs3nWJjSfQ40JQh9N BwLAX1WhoukkK+dP9rrdWEFNV/hz76FgW0Z4JTTj5pv10O/3U84wolwnDnr1gkB+ 30Z4mDDCy/KjqUGGxrU9V/6rAaIF4yI8cppc6J06LW3SMWTfBz2DXpD3bGkuPCC8 y4+F0phPt2XTj14vM8PwBqQM2YzbroGPn870EvsSQ02+iGTXS+IPIYMwJeOr/hcE OBpiqmbco5ND5gtX/z24KBKzAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUITj3XMxo urWgKK/+XKIb4Fw+2f0wHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENEOS80MTBCQkMxNDRFNkMxMUVBODkwNDk3NDdDNEY5QUUwMi80MTQwRDIyMkFC MDUxMUYwQUQ2NEM4MTRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABni/0wDQYJKoZIhvcNAQELBQADggEBAFv2G2NGGgzTiBBmKF+rhMg8 OtG1x9QavmDxU/y9XCqrB+/E8XQVeqkG68eVbsfQLKFgfFSXSWj8VMoeM6OLo6U8 w7Mg9jy62N9AmBKekRPDgdfkkahDCNoh9+E25CiVNuLTncCri9qm2ewayAlozrN2 Xc/tIeuq0HvDhwipzxUzbZfS4wtZv2UoW/SVBMskplqPsLXL/UZX+Rjg01uKZxX3 lTcaBgH5rXEVqVS6lCRZmptsZgWNe2XmIQD/QdwBdl0HpSyVIE/1c/wkQF71IxwY TNpM7yXMEdfeiS/wlcjeXKf94eFH9pIEqIqx6gqwsdBToiVf15jVrZ9hk+ABgqk= -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:57 2026 by rpki-client