$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa File: 491FFA9A177011ECA96DF680C4F9AE02.roa (raw, json) Hash identifier: pnyxT9fzqZ2JZTKKceDF98fPU2nq8VujgoO8G+Dnb0U= Subject key identifier: 11:64:AA:BC:CD:A0:49:C5:8B:1C:72:86:57:6D:69:89:EA:43:07:93 Certificate issuer: /CN=A91ED3AE/serialNumber=19B9A52CC902503ECDE302BD0247747EA9193B60 Certificate serial: 0588 Authority key identifier: 19:B9:A5:2C:C9:02:50:3E:CD:E3:02:BD:02:47:74:7E:A9:19:3B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:06:52 +0000 ROA not before: Wed 31 Dec 2025 23:18:57 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131242 IP address blocks: 103.173.90.0/23 maxlen: 23 103.173.90.0/24 maxlen: 24 103.173.91.0/24 maxlen: 24 2001:df7:9380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.crl rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED3AE, serialNumber=19B9A52CC902503ECDE302BD0247747EA9193B60 Validity Not Before: Dec 31 23:18:57 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4641c-42ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:c7:5f:1a:1e:2c:8f:17:8b:56:00:9d:2c: ee:5f:f5:1e:82:b9:9c:40:69:13:21:1a:89:61:f0: b6:ba:cb:e4:ac:be:e8:2b:0e:cc:54:84:85:94:a4: 2f:ba:bb:95:e7:69:f6:b9:c5:71:0f:44:a5:ff:00: 7b:aa:18:b9:5e:fd:5b:bd:56:cb:c0:46:8c:30:95: 6b:86:df:31:d4:35:87:41:a5:b1:b3:e0:19:08:3e: 6e:34:a6:72:02:80:66:48:1f:cb:91:b3:21:54:7a: c2:6b:42:f0:6e:71:50:b5:83:fb:b9:9d:d6:dd:39: e0:44:35:c6:df:d3:10:ae:89:cc:2f:52:39:da:24: bd:c9:5c:32:3a:81:e3:67:2e:9b:6a:94:00:91:1f: a6:41:17:1e:3b:09:97:e1:43:14:d1:4c:56:f5:21: d6:4c:3e:9b:9b:f1:55:fe:22:00:6e:6f:9b:c8:1f: 5f:11:d0:a8:10:1e:18:a1:5e:0f:e6:91:1c:93:76: c3:35:50:58:41:64:f1:7d:82:41:98:5b:be:db:6b: 22:db:61:8a:c2:30:f6:2a:67:c2:d2:64:57:2f:1f: 14:e9:86:f4:48:34:f2:bb:20:ba:18:b9:44:2e:6e: cf:1d:0b:8c:fe:db:7f:85:5d:cb:08:7c:3d:d4:8c: 1f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:64:AA:BC:CD:A0:49:C5:8B:1C:72:86:57:6D:69:89:EA:43:07:93 X509v3 Authority Key Identifier: keyid:19:B9:A5:2C:C9:02:50:3E:CD:E3:02:BD:02:47:74:7E:A9:19:3B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/GbmlLMkCUD7N4wK9Akd0fqkZO2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GbmlLMkCUD7N4wK9Akd0fqkZO2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED3AE/4112CB58176511EC8B16A371C4F9AE02/491FFA9A177011ECA96DF680C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.173.90.0/23 IPv6: 2001:df7:9380::/48 Signature Algorithm: sha256WithRSAEncryption 3a:6e:74:a2:ca:54:63:a6:74:1a:5d:9e:94:fa:7d:2f:24:f9: 59:08:cc:a2:d0:34:ce:48:15:e6:6d:09:46:5c:c8:c5:bf:98: 32:83:47:6f:25:7f:80:56:61:fb:dd:89:85:01:c5:20:dd:9f: ea:c1:74:66:45:67:c2:f0:1e:7c:b6:3f:ae:b6:6f:2e:6b:69: 27:76:01:6f:d7:60:b2:81:94:cd:f9:09:cf:3e:45:5c:cc:29: 5d:cf:f5:94:7f:d1:c3:56:f0:32:c4:57:0b:1e:c2:3f:67:48: 12:fd:2a:63:c8:a5:6e:a8:32:16:f2:29:77:6f:e2:67:94:10: 07:fa:d6:66:dd:1a:ee:ed:58:eb:ff:72:e5:12:af:2b:05:10: e0:60:65:d7:a0:1c:7a:7d:2f:85:13:c4:68:f4:6e:77:cd:aa: df:d5:85:4f:f9:aa:3d:b7:df:32:17:70:4c:ac:f8:bf:5e:66: 62:a9:44:8c:37:75:cd:c3:1b:91:3b:4f:01:3c:8f:93:95:82: 6e:9b:dd:c9:b6:f0:80:c5:54:05:58:59:9e:d5:1a:0f:bc:70: e8:37:20:18:e1:c6:78:46:cb:c1:31:41:ec:c8:4c:51:54:7f: 0e:d8:dc:12:5a:27:2f:59:7d:9e:e2:31:ec:02:a4:d8:76:bb: f4:c0:7b:9b -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQzQUUxMTAvBgNVBAUTKDE5QjlBNTJDQzkwMjUwM0VDREUzMDJCRDAyNDc3NDdF QTkxOTNCNjAwHhcNMjUxMjMxMjMxODU3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQxYy00MmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ITHXxoeLI8Xi1YAnSzuX/UegrmcQGkTIRqJYfC2usvkrL7oKw7MVISFlKQv uruV52n2ucVxD0Sl/wB7qhi5Xv1bvVbLwEaMMJVrht8x1DWHQaWxs+AZCD5uNKZy AoBmSB/LkbMhVHrCa0LwbnFQtYP7uZ3W3TngRDXG39MQronML1I52iS9yVwyOoHj Zy6bapQAkR+mQRceOwmX4UMU0UxW9SHWTD6bm/FV/iIAbm+byB9fEdCoEB4YoV4P 5pEck3bDNVBYQWTxfYJBmFu+22si22GKwjD2KmfC0mRXLx8U6Yb0SDTyuyC6GLlE Lm7PHQuM/tt/hV3LCHw91Iwf/QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBFkqrzN oEnFixxyhldtaYnqQweTMB8GA1UdIwQYMBaAFBm5pSzJAlA+zeMCvQJHdH6pGTtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDNBRS80MTEyQ0I1ODE3 NjUxMUVDOEIxNkEzNzFDNEY5QUUwMi9HYm1sTE1rQ1VEN040d0s5QWtkMGZxa1pP MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dibWxMTWtDVUQ3TjR3SzlBa2QwZnFrWk8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQzQUUvNDExMkNCNTgxNzY1MTFFQzhCMTZBMzcxQzRGOUFFMDIvNDkxRkZBOUEx NzcwMTFFQ0E5NkRGNjgwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ61aMA8EAgACMAkDBwAgAQ33k4AwDQYJKoZIhvcNAQELBQADggEB ADpudKLKVGOmdBpdnpT6fS8k+VkIzKLQNM5IFeZtCUZcyMW/mDKDR28lf4BWYfvd iYUBxSDdn+rBdGZFZ8LwHny2P662by5raSd2AW/XYLKBlM35Cc8+RVzMKV3P9ZR/ 0cNW8DLEVwsewj9nSBL9KmPIpW6oMhbyKXdv4meUEAf61mbdGu7tWOv/cuUSrysF EOBgZdegHHp9L4UTxGj0bnfNqt/VhU/5qj233zIXcEys+L9eZmKpRIw3dc3DG5E7 TwE8j5OVgm6b3cm28IDFVAVYWZ7VGg+8cOg3IBjhxnhGy8ExQezITFFUfw7Y3BJa Jy9ZfZ7iMewCpNh2u/TAe5s= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:26 2026 by rpki-client