$ rpki-client -vvf rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/0B421064DD2411EFA5DECA6CC4F9AE02.roa File: 0B421064DD2411EFA5DECA6CC4F9AE02.roa (raw, json) Hash identifier: +S1F0zYbzMvWkIw6OtTYzr4kRvSGMZIIi7dYMQVKPYc= Subject key identifier: 43:78:38:09:46:DE:D7:7C:8F:0D:28:8D:0E:EB:D9:27:05:57:A3:46 Certificate issuer: /CN=A91F38FD/serialNumber=9CB5CA8072E269CE0555A600B217920EB9E1AC4F Certificate serial: 01D8 Authority key identifier: 9C:B5:CA:80:72:E2:69:CE:05:55:A6:00:B2:17:92:0E:B9:E1:AC:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/0B421064DD2411EFA5DECA6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:03:25 +0000 ROA not before: Wed 29 Oct 2025 03:48:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151837 IP address blocks: 103.240.4.0/23 maxlen: 23 103.240.4.0/24 maxlen: 24 2401:72e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.crl rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F38FD, serialNumber=9CB5CA8072E269CE0555A600B217920EB9E1AC4F Validity Not Before: Oct 29 03:48:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4391d-8306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:24:da:95:f5:23:42:37:89:73:c3:fa:6b:8e: 4a:99:4c:74:0c:e2:bc:07:d0:55:e4:14:99:1d:ba: 04:7c:ad:96:05:47:54:a8:95:6c:54:eb:59:e4:f5: a6:50:bb:64:e7:09:14:72:26:6f:fb:67:52:f7:7d: f9:bc:55:71:d9:7e:02:8e:8e:8d:ea:76:e4:53:73: 83:15:6a:42:ee:13:f6:58:f8:fc:01:59:88:38:ec: 07:e3:81:a0:52:2b:e6:25:82:b4:e7:76:94:2a:16: 6d:40:0e:09:9c:69:13:d7:e3:94:9f:68:18:a2:ba: e6:20:36:dd:45:89:05:f2:49:06:2e:8b:9f:f7:d6: 23:40:0f:69:04:fb:2f:a8:c7:6c:5f:02:ff:fe:29: 87:9c:78:d8:2e:83:6d:27:2d:48:ed:e7:9b:bf:6c: a6:f4:81:08:17:28:45:21:f2:11:df:aa:02:3b:66: 4a:4a:47:14:b5:a6:fb:32:b7:27:11:68:fc:c4:6d: b9:26:65:62:1c:2c:01:06:7f:4e:25:e7:c0:11:da: c9:54:75:67:4e:f8:15:50:76:53:3a:b1:4a:57:44: 7b:36:4b:d1:bd:00:1c:f0:39:24:c4:dd:e9:48:4f: 45:d0:17:9c:cf:76:f4:3f:a4:5a:e9:67:a1:18:73: 6a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:78:38:09:46:DE:D7:7C:8F:0D:28:8D:0E:EB:D9:27:05:57:A3:46 X509v3 Authority Key Identifier: keyid:9C:B5:CA:80:72:E2:69:CE:05:55:A6:00:B2:17:92:0E:B9:E1:AC:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/nLXKgHLiac4FVaYAsheSDrnhrE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLXKgHLiac4FVaYAsheSDrnhrE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F38FD/A5A6F37A61F811EE9F79401AC4F9AE02/0B421064DD2411EFA5DECA6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.240.4.0/23 IPv6: 2401:72e0::/32 Signature Algorithm: sha256WithRSAEncryption 26:d4:dc:52:cd:15:02:f3:0f:6f:66:0c:27:bd:12:15:e2:d6: 34:dc:d4:e8:10:a5:56:31:35:70:3f:00:26:a2:8a:cb:f3:88: d8:a3:f7:4b:85:e0:6c:dd:31:f8:02:95:92:22:43:d1:49:52: a2:40:ba:89:ff:a0:5c:96:9c:03:4a:01:f6:7d:e3:dc:36:0b: 9e:53:d3:c8:a9:81:6c:df:3e:af:1b:a7:77:3a:45:7b:25:65: b0:8c:42:4e:aa:40:ad:61:c2:f7:1b:4e:cd:ac:90:a9:0a:4d: 5b:fd:57:00:da:63:cf:31:12:33:e3:35:a8:ca:87:ae:b6:d1: 0c:5a:15:98:63:0c:9a:4a:e7:e1:30:11:b6:4f:c1:a8:2d:c6: 1a:ba:2e:35:95:42:66:f7:f7:78:9a:80:27:6c:e2:21:19:7f: 55:b2:0f:25:c3:2f:fd:af:f4:06:b9:3e:a0:8d:0a:37:6c:8a: 0b:0c:70:f2:bf:8e:15:c8:d4:8b:f6:07:f1:29:49:31:8b:8f: 7f:37:9c:c9:ce:cc:f9:9e:ba:b8:1c:3b:ff:1b:52:44:c2:f3: 82:18:b3:39:a0:f3:34:8e:e7:ce:a1:99:c2:08:6c:e3:6c:da: ef:d7:09:84:04:24:eb:e7:73:35:a5:da:ff:e0:a4:96:bc:60: 7b:47:49:0a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4RkQxMTAvBgNVBAUTKDlDQjVDQTgwNzJFMjY5Q0UwNTU1QTYwMEIyMTc5MjBF QjlFMUFDNEYwHhcNMjUxMDI5MDM0ODA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzkxZC04MzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCTalfUjQjeJc8P6a45KmUx0DOK8B9BV5BSZHboEfK2WBUdUqJVsVOtZ5PWm ULtk5wkUciZv+2dS9335vFVx2X4Cjo6N6nbkU3ODFWpC7hP2WPj8AVmIOOwH44Gg UivmJYK053aUKhZtQA4JnGkT1+OUn2gYorrmIDbdRYkF8kkGLouf99YjQA9pBPsv qMdsXwL//imHnHjYLoNtJy1I7eebv2ym9IEIFyhFIfIR36oCO2ZKSkcUtab7Mrcn EWj8xG25JmViHCwBBn9OJefAEdrJVHVnTvgVUHZTOrFKV0R7NkvRvQAc8DkkxN3p SE9F0Becz3b0P6Ra6WehGHNqAQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEN4OAlG 3td8jw0ojQ7r2ScFV6NGMB8GA1UdIwQYMBaAFJy1yoBy4mnOBVWmALIXkg654axP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzhGRC9BNUE2RjM3QTYx RjgxMUVFOUY3OTQwMUFDNEY5QUUwMi9uTFhLZ0hMaWFjNEZWYVlBc2hlU0Rybmhy RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MWEtnSExpYWM0RlZhWUFzaGVTRHJuaHJFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM4RkQvQTVBNkYzN0E2MUY4MTFFRTlGNzk0MDFBQzRGOUFFMDIvMEI0MjEwNjRE RDI0MTFFRkE1REVDQTZDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ/AEMA0EAgACMAcDBQAkAXLgMA0GCSqGSIb3DQEBCwUAA4IBAQAm 1NxSzRUC8w9vZgwnvRIV4tY03NToEKVWMTVwPwAmoorL84jYo/dLheBs3TH4ApWS IkPRSVKiQLqJ/6BclpwDSgH2fePcNgueU9PIqYFs3z6vG6d3OkV7JWWwjEJOqkCt YcL3G07NrJCpCk1b/VcA2mPPMRIz4zWoyoeuttEMWhWYYwyaSufhMBG2T8GoLcYa ui41lUJm9/d4moAnbOIhGX9Vsg8lwy/9r/QGuT6gjQo3bIoLDHDyv44VyNSL9gfx KUkxi49/N5zJzsz5nrq4HDv/G1JEwvOCGLM5oPM0jufOoZnCCGzjbNrv1wmEBCTr 53M1pdr/4KSWvGB7R0kK -----END CERTIFICATE-----Generated at Mon Mar 2 08:13:10 2026 by rpki-client