$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa File: C08A3ED6E03C11EF991E147AC4F9AE02.roa (raw, json) Hash identifier: sBJZeZ++/x7I1pXhx5Ucb2PyYvnG4JjYuOXlXA0qZVU= Subject key identifier: E9:4C:5E:61:17:2E:E5:60:DB:F5:E6:84:F3:C2:60:A9:8C:36:C9:0E Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 034F Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa Signing time: Thu 16 Apr 2026 07:42:37 +0000 ROA not before: Thu 16 Apr 2026 07:42:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138358 IP address blocks: 103.159.36.0/24 maxlen: 24 2001:df5:7380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Apr 16 07:42:37 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69e092ed-1609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f1:39:f8:7d:0c:ff:2a:c6:60:cc:20:aa:2a: 69:0e:ba:95:ab:ed:a6:2a:93:5e:70:12:36:6f:ee: 1f:62:87:76:0a:15:bf:e1:8a:55:00:e0:f3:77:9c: e2:0b:2b:79:98:5f:81:2e:6a:86:ec:89:be:4a:0b: ea:4d:41:bb:54:fd:d4:9b:90:5b:23:b5:c6:69:3e: 0b:a0:d7:5b:77:ea:09:84:48:38:12:ad:94:4f:fd: d6:8b:e5:24:96:d9:00:16:25:b3:9f:02:50:0c:0c: 8f:5b:0f:1e:fa:a5:69:3c:39:8c:b4:a5:bf:fa:21: 01:5c:8f:d3:51:62:2c:be:02:64:0a:d2:dd:18:80: dd:ee:68:93:ab:1c:2f:6f:76:87:9b:5f:75:38:97: f7:db:8f:c9:95:db:40:9f:2d:4f:15:38:81:24:fe: e7:84:78:03:89:fc:8a:36:85:b5:bf:f4:c0:70:d7: 2e:b6:3a:77:52:20:51:17:9f:7b:59:56:2b:e7:3c: b0:43:af:ab:0a:5c:c2:78:9f:de:4c:70:1c:5f:3e: 15:35:27:a1:e9:72:51:50:05:08:a4:57:dc:bb:ab: 55:6d:9e:c2:c0:46:e1:b6:2c:7f:e7:8f:db:8f:a1: 75:09:36:33:80:c9:d3:04:d7:28:30:de:3d:9d:07: a4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4C:5E:61:17:2E:E5:60:DB:F5:E6:84:F3:C2:60:A9:8C:36:C9:0E X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/C08A3ED6E03C11EF991E147AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.36.0/24 IPv6: 2001:df5:7380::/48 Signature Algorithm: sha256WithRSAEncryption 7e:10:26:55:7e:c8:fd:c6:8c:33:b1:3d:9d:89:32:d4:3c:c9: ef:50:84:f4:76:b9:62:0f:07:4a:d0:14:8f:bc:08:9d:82:a0: a2:b0:e7:0e:e8:d7:55:4b:da:08:cc:0b:62:21:da:00:c6:51: b5:a7:21:19:9f:1b:09:0b:19:b3:53:f2:17:9e:8e:f9:77:87: cc:fe:fc:02:98:b2:ca:fb:ba:ba:fb:c6:46:ed:94:fe:14:e0: d8:11:b3:5e:76:40:61:cb:ed:19:61:60:dc:29:76:6f:35:68: ca:d0:70:77:bb:2f:1e:ef:9c:f9:d4:8e:ce:3c:f6:80:27:64: 7b:ea:cc:47:f0:3c:7a:8e:2c:36:42:2c:eb:f4:99:27:92:6f: 37:af:49:5b:10:25:35:a1:a6:e1:aa:aa:9a:81:ba:8d:3f:ba: 69:ac:92:d0:78:ba:67:64:ef:86:6c:6e:8c:2f:8a:7b:38:65: b2:68:fb:f5:19:d1:5d:19:b0:7e:28:e1:83:80:9a:16:1f:02: c7:d3:1c:8a:e0:c2:28:94:d6:b5:b1:b5:10:43:3a:fd:7e:d7: cd:c1:6d:1f:a4:88:3c:95:f1:f0:90:03:47:01:8e:81:01:e1: 2e:d5:67:40:f3:bf:fb:7e:e6:7f:99:6e:63:e0:da:2d:91:35: a6:ea:bb:5c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjYwNDE2MDc0MjM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwOTJlZC0xNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/E5+H0M/yrGYMwgqippDrqVq+2mKpNecBI2b+4fYod2ChW/4YpVAODzd5zi Cyt5mF+BLmqG7Im+SgvqTUG7VP3Um5BbI7XGaT4LoNdbd+oJhEg4Eq2UT/3Wi+Uk ltkAFiWznwJQDAyPWw8e+qVpPDmMtKW/+iEBXI/TUWIsvgJkCtLdGIDd7miTqxwv b3aHm191OJf324/JldtAny1PFTiBJP7nhHgDifyKNoW1v/TAcNcutjp3UiBRF597 WVYr5zywQ6+rClzCeJ/eTHAcXz4VNSeh6XJRUAUIpFfcu6tVbZ7CwEbhtix/54/b j6F1CTYzgMnTBNcoMN49nQekDQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOlMXmEX LuVg2/XmhPPCYKmMNskOMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI5Q0IvMUY5MDJCMEUwNUFGMTFFREE3MTc2NDJCQzRGOUFFMDIvQzA4QTNFRDZF MDNDMTFFRjk5MUUxNDdBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ58kMA8EAgACMAkDBwAgAQ31c4AwDQYJKoZIhvcNAQELBQADggEB AH4QJlV+yP3GjDOxPZ2JMtQ8ye9QhPR2uWIPB0rQFI+8CJ2CoKKw5w7o11VL2gjM C2Ih2gDGUbWnIRmfGwkLGbNT8heejvl3h8z+/AKYssr7urr7xkbtlP4U4NgRs152 QGHL7RlhYNwpdm81aMrQcHe7Lx7vnPnUjs489oAnZHvqzEfwPHqOLDZCLOv0mSeS bzevSVsQJTWhpuGqqpqBuo0/ummsktB4umdk74Zsbowvins4ZbJo+/UZ0V0ZsH4o 4YOAmhYfAsfTHIrgwiiU1rWxtRBDOv1+183BbR+kiDyV8fCQA0cBjoEB4S7VZ0Dz v/t+5n+ZbmPg2i2RNabqu1w= -----END CERTIFICATE-----Generated at Fri Apr 17 19:57:09 2026 by rpki-client