$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/1489D376FB2611EFBA3F0167C4F9AE02.roa File: 1489D376FB2611EFBA3F0167C4F9AE02.roa (raw, json) Hash identifier: MMDAkBT8dwrfvYzJiNfMzsz7yHu7krdnJt0J0a8S0+8= Subject key identifier: 2C:ED:7E:28:5F:45:C5:7A:9D:34:D8:13:2F:C9:F5:4D:8A:48:AB:9E Certificate issuer: /CN=A91F0769/serialNumber=2FCB3C25565C940417BEE2AAF8838CE433E2B83A Certificate serial: D6 Authority key identifier: 2F:CB:3C:25:56:5C:94:04:17:BE:E2:AA:F8:83:8C:E4:33:E2:B8:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8s8JVZclAQXvuKq-IOM5DPiuDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/1489D376FB2611EFBA3F0167C4F9AE02.roa Signing time: Thu 09 Apr 2026 06:41:41 +0000 ROA not before: Thu 09 Apr 2026 06:41:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135357 IP address blocks: 103.212.228.0/22 maxlen: 22 103.212.228.0/24 maxlen: 24 103.212.229.0/24 maxlen: 24 103.212.230.0/24 maxlen: 24 103.212.231.0/24 maxlen: 24 160.202.168.0/22 maxlen: 22 160.202.168.0/24 maxlen: 24 160.202.169.0/24 maxlen: 24 160.202.170.0/24 maxlen: 24 160.202.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/L8s8JVZclAQXvuKq-IOM5DPiuDo.crl rsync://rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/L8s8JVZclAQXvuKq-IOM5DPiuDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8s8JVZclAQXvuKq-IOM5DPiuDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0769, serialNumber=2FCB3C25565C940417BEE2AAF8838CE433E2B83A Validity Not Before: Apr 9 06:41:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d74a25-147f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c9:51:b3:5d:33:e8:aa:87:24:a0:e3:87:92: 4d:02:ec:6d:6e:7c:c4:b1:ff:57:07:a5:69:bb:05: fa:a3:1d:fe:54:00:7c:04:f0:9c:83:22:eb:91:84: 5b:0c:1c:ce:9e:f4:20:3f:29:b5:60:78:b5:15:15: a0:fe:43:c8:67:69:7b:0f:2d:46:54:e9:b2:ff:9f: ab:4a:38:dc:b0:c1:52:5d:90:b0:c7:49:34:fc:e9: 5d:7f:0f:80:d2:13:5b:67:46:69:c2:ca:5c:b1:b4: 4a:dd:2e:5d:89:a2:11:3e:f7:e0:47:c4:07:42:c7: 14:82:e4:a1:f9:17:fa:78:3c:89:0c:e3:49:3f:fa: a1:8e:3b:35:cd:eb:a9:1e:d6:c4:96:da:2b:da:2a: 75:a6:33:88:c9:f9:4c:9b:fb:92:30:dd:b6:24:c8: f9:86:62:84:61:65:8b:2e:81:fd:5e:7e:2d:9b:cc: 5a:9f:87:22:23:ff:ac:de:27:90:f8:7d:b2:43:3d: 66:f4:65:9c:2b:86:71:40:b9:e8:1b:30:8d:de:82: 39:ae:7e:01:6c:34:70:31:43:f8:8f:1e:42:4c:5e: de:b5:12:a3:8a:dd:67:e9:e6:7d:42:4f:44:f2:cc: 65:36:44:09:18:18:0c:ed:57:ef:de:ab:d6:da:46: 86:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:ED:7E:28:5F:45:C5:7A:9D:34:D8:13:2F:C9:F5:4D:8A:48:AB:9E X509v3 Authority Key Identifier: keyid:2F:CB:3C:25:56:5C:94:04:17:BE:E2:AA:F8:83:8C:E4:33:E2:B8:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/L8s8JVZclAQXvuKq-IOM5DPiuDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8s8JVZclAQXvuKq-IOM5DPiuDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0769/545688CAFB2411EFB76B9F4BC4F9AE02/1489D376FB2611EFBA3F0167C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.212.228.0/22 160.202.168.0/22 Signature Algorithm: sha256WithRSAEncryption b4:f0:f8:b0:0c:c1:11:33:01:e7:73:1f:b8:95:35:70:73:ec: a7:e1:db:13:6c:9d:20:0a:11:8b:41:c3:80:af:49:0e:e2:62: 07:b3:62:8d:4c:f0:dd:ce:6e:31:1b:2b:c7:0f:77:7f:3a:6b: 5e:3b:0c:0e:54:22:c6:46:63:ef:4c:be:89:c5:b6:8e:98:fe: 15:b4:90:cd:29:59:41:b1:ad:25:bb:e0:e1:c9:fb:72:92:dc: bf:77:8b:ce:5c:e7:4e:60:40:1e:50:08:ad:be:f6:b9:9f:be: 9c:8a:21:4e:7b:62:dd:1b:97:33:c1:1f:3d:2d:aa:98:bc:8b: aa:76:19:59:9d:6b:6d:81:53:5a:16:e8:e6:d0:58:ab:15:11: a3:86:3c:6f:2f:fb:76:9f:f0:ae:ca:5a:d4:e7:57:6a:1b:43: 09:14:7b:1a:c4:a1:bd:ad:4b:2d:a7:0a:de:b3:43:4e:29:9d: 00:32:ea:0a:cb:78:ae:37:d9:f6:54:9f:15:8b:54:64:e0:f7: fc:1e:28:8a:fd:b5:ef:49:ae:c8:72:74:d5:78:8c:71:05:ad: c4:54:1f:34:e5:6f:17:fb:4a:12:c7:04:e7:08:7b:c9:a1:0e: 28:00:8b:4a:ed:61:5a:7b:bb:ce:8f:35:86:4c:e5:cb:14:a6: f5:b7:5f:e3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3NjkxMTAvBgNVBAUTKDJGQ0IzQzI1NTY1Qzk0MDQxN0JFRTJBQUY4ODM4Q0U0 MzNFMkI4M0EwHhcNMjYwNDA5MDY0MTQxWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3NGEyNS0xNDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8lRs10z6KqHJKDjh5JNAuxtbnzEsf9XB6VpuwX6ox3+VAB8BPCcgyLrkYRb DBzOnvQgPym1YHi1FRWg/kPIZ2l7Dy1GVOmy/5+rSjjcsMFSXZCwx0k0/Oldfw+A 0hNbZ0ZpwspcsbRK3S5diaIRPvfgR8QHQscUguSh+Rf6eDyJDONJP/qhjjs1zeup HtbEltor2ip1pjOIyflMm/uSMN22JMj5hmKEYWWLLoH9Xn4tm8xan4ciI/+s3ieQ +H2yQz1m9GWcK4ZxQLnoGzCN3oI5rn4BbDRwMUP4jx5CTF7etRKjit1n6eZ9Qk9E 8sxlNkQJGBgM7Vfv3qvW2kaGIQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCztfihf RcV6nTTYEy/J9U2KSKueMB8GA1UdIwQYMBaAFC/LPCVWXJQEF77iqviDjOQz4rg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDc2OS81NDU2ODhDQUZC MjQxMUVGQjc2QjlGNEJDNEY5QUUwMi9MOHM4SlZaY2xBUVh2dUtxLUlPTTVEUGl1 RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4czhKVlpjbEFRWHZ1S3EtSU9NNURQaXVEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA3NjkvNTQ1Njg4Q0FGQjI0MTFFRkI3NkI5RjRCQzRGOUFFMDIvMTQ4OUQzNzZG QjI2MTFFRkJBM0YwMTY3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9TkAwQCoMqoMA0GCSqGSIb3DQEBCwUAA4IBAQC08PiwDMERMwHn cx+4lTVwc+yn4dsTbJ0gChGLQcOAr0kO4mIHs2KNTPDdzm4xGyvHD3d/OmteOwwO VCLGRmPvTL6JxbaOmP4VtJDNKVlBsa0lu+Dhyftykty/d4vOXOdOYEAeUAitvva5 n76ciiFOe2LdG5czwR89LaqYvIuqdhlZnWttgVNaFujm0FirFRGjhjxvL/t2n/Cu ylrU51dqG0MJFHsaxKG9rUstpwres0NOKZ0AMuoKy3iuN9n2VJ8Vi1Rk4Pf8HiiK /bXvSa7IcnTVeIxxBa3EVB805W8X+0oSxwTnCHvJoQ4oAItK7WFae7vOjzWGTOXL FKb1t1/j -----END CERTIFICATE-----Generated at Fri Apr 17 19:20:05 2026 by rpki-client