$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa File: 3AFE6DA8F72911EDB956BA86C4F9AE02.roa (raw, json) Hash identifier: Q7p+Vr+s6fqUfDypnxwb8pNNEvIPoH0DeJoVihgWG1Q= Subject key identifier: D4:2D:41:4E:2C:55:BF:D1:BE:16:E1:15:11:24:6F:9D:00:90:07:A2 Certificate issuer: /CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Certificate serial: 0B11 Authority key identifier: AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:28:27 +0000 ROA not before: Thu 22 May 2025 20:05:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142647 IP address blocks: 103.149.32.0/24 maxlen: 24 103.149.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2833 (0xb11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6BFA, serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Validity Not Before: May 22 20:05:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a406bb-8716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c6:86:61:3c:55:e6:ba:de:2c:40:17:49:7b: 57:bb:60:8c:31:73:6f:f9:5c:7f:5e:02:2e:f4:c2: fa:9c:26:3a:84:f3:d9:78:46:63:c6:c4:86:30:df: d9:65:f1:ff:fa:a4:b0:7b:05:e5:2c:5f:7d:76:e9: cf:3d:1b:51:4e:31:6b:83:0d:75:2a:98:2d:b1:4c: cb:28:23:8b:a1:2b:5e:51:fe:54:67:fd:a3:67:62: 7a:7f:55:95:f2:c5:b1:a0:6e:12:db:9f:5d:04:ad: a7:42:96:2b:6b:12:cb:40:b9:52:d8:e1:ce:06:5a: 68:ea:cb:46:23:ff:1a:6c:58:f5:71:b8:9d:8d:12: 97:be:cf:ef:67:3d:2a:88:9c:d7:35:51:fc:47:3a: ce:38:e0:ea:07:1c:48:16:9d:e5:db:24:6b:89:eb: ea:d1:8f:21:23:1a:c5:09:97:bf:ae:07:98:9d:e1: 34:b2:7b:bc:d2:9b:62:e1:07:1f:a2:bb:eb:9f:86: 90:f9:63:f4:b1:45:b1:64:d3:1c:6f:07:9c:9f:33: 42:cb:82:12:a7:ba:92:04:ac:c2:b4:98:62:d1:33: 9e:0a:f9:85:dc:ec:76:4a:1a:ff:3e:52:82:81:bf: 6d:e8:11:b2:8a:76:f1:f1:a4:4b:35:b8:5f:f3:f2: e9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2D:41:4E:2C:55:BF:D1:BE:16:E1:15:11:24:6F:9D:00:90:07:A2 X509v3 Authority Key Identifier: keyid:AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.32.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:c6:fd:3e:2f:4d:11:b3:d4:fa:dd:0e:e3:1e:63:60:69:41: 0f:19:f8:f0:f4:00:7e:e2:e1:cb:e8:00:1d:24:45:7e:53:8e: b5:61:dd:81:4d:36:ae:29:54:02:c5:0a:26:64:46:53:02:1e: 11:a6:9d:f0:eb:83:d9:55:d2:fe:ea:ac:73:7d:4b:6b:25:0f: 8a:dd:85:fa:82:7e:c5:7a:fd:de:08:1d:2f:1a:6f:4a:e0:d8: 84:a0:eb:32:c1:3b:b4:bd:43:17:ca:9d:94:ff:73:14:cb:05: db:1e:1b:06:14:57:40:35:12:9e:0f:c1:ec:c0:ef:21:ef:50: 45:c7:30:1e:68:7c:be:16:81:bb:c1:d5:96:3c:23:ff:d7:07: 81:93:8b:27:7c:3a:e7:53:eb:d5:fc:34:67:e5:0d:ce:1e:b2: f9:b6:99:be:04:9d:4c:9c:e7:97:dc:84:46:be:ec:62:ae:bb: 6e:3b:dc:ce:25:80:cb:a0:a0:aa:8e:f6:8c:af:19:ed:7d:5a: da:6b:ee:f5:f5:f2:25:90:3e:15:3b:5e:8b:72:02:ef:90:08: e3:a9:c8:2f:63:5f:51:cc:c1:b7:e5:dc:d6:53:28:4c:f7:c3: 59:0a:46:b1:47:dc:8c:6a:41:e5:42:72:8b:9a:6c:72:49:dd: a4:9d:ea:03 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZCRkExMTAvBgNVBAUTKEFBNjJDNzlGRTE4NDM5NDEyQzVCMDJDRjRCRUI1NEFC MkVCQkUxODgwHhcNMjUwNTIyMjAwNTE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDZiYi04NzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMaGYTxV5rreLEAXSXtXu2CMMXNv+Vx/XgIu9ML6nCY6hPPZeEZjxsSGMN/Z ZfH/+qSwewXlLF99dunPPRtRTjFrgw11KpgtsUzLKCOLoSteUf5UZ/2jZ2J6f1WV 8sWxoG4S259dBK2nQpYraxLLQLlS2OHOBlpo6stGI/8abFj1cbidjRKXvs/vZz0q iJzXNVH8RzrOOODqBxxIFp3l2yRrievq0Y8hIxrFCZe/rgeYneE0snu80pti4Qcf orvrn4aQ+WP0sUWxZNMcbwecnzNCy4ISp7qSBKzCtJhi0TOeCvmF3Ox2Shr/PlKC gb9t6BGyinbx8aRLNbhf8/LpYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNQtQU4s Vb/RvhbhFREkb50AkAeiMB8GA1UdIwQYMBaAFKpix5/hhDlBLFsCz0vrVKsuu+GI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkJGQS80MEQ0QjdFQzY2 MDMxMUVBOTlBRDRGNDZDNEY5QUUwMi9xbUxIbi1HRU9VRXNXd0xQUy10VXF5Njc0 WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FtTEhuLUdFT1VFc1d3TFBTLXRVcXk2NzRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZCRkEvNDBENEI3RUM2NjAzMTFFQTk5QUQ0RjQ2QzRGOUFFMDIvM0FGRTZEQThG NzI5MTFFREI5NTZCQTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5UgMA0GCSqGSIb3DQEBCwUAA4IBAQB9xv0+L00Rs9T63Q7jHmNg aUEPGfjw9AB+4uHL6AAdJEV+U461Yd2BTTauKVQCxQomZEZTAh4Rpp3w64PZVdL+ 6qxzfUtrJQ+K3YX6gn7Fev3eCB0vGm9K4NiEoOsywTu0vUMXyp2U/3MUywXbHhsG FFdANRKeD8HswO8h71BFxzAeaHy+FoG7wdWWPCP/1weBk4snfDrnU+vV/DRn5Q3O HrL5tpm+BJ1MnOeX3IRGvuxirrtuO9zOJYDLoKCqjvaMrxntfVraa+719fIlkD4V O16LcgLvkAjjqcgvY19RzMG35dzWUyhM98NZCkaxR9yMakHlQnKLmmxySd2kneoD -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:48 2026 by rpki-client