$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/AF5AC6B69E3F11EEA6B6CB0DC4F9AE02.roa File: AF5AC6B69E3F11EEA6B6CB0DC4F9AE02.roa (raw, json) Hash identifier: 6y3yay/h++NSGBBxz/Y8FI7mavyuaqujeGQxUN1PwJ4= Subject key identifier: 25:C0:E0:5C:1B:C8:95:23:FA:22:63:99:2C:5D:D2:99:E3:BA:BA:97 Certificate issuer: /CN=A91F7FEA/serialNumber=FE0DBCC3CF50A1E0EB03D31296E39FBA880C1905 Certificate serial: 0B21 Authority key identifier: FE:0D:BC:C3:CF:50:A1:E0:EB:03:D3:12:96:E3:9F:BA:88:0C:19:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_g28w89QoeDrA9MSluOfuogMGQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/AF5AC6B69E3F11EEA6B6CB0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:38:29 +0000 ROA not before: Wed 28 Jan 2026 19:16:31 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 139870 IP address blocks: 103.146.42.0/23 maxlen: 23 103.146.42.0/24 maxlen: 24 103.146.43.0/24 maxlen: 24 103.244.140.0/22 maxlen: 22 103.244.140.0/24 maxlen: 24 103.244.141.0/24 maxlen: 24 103.244.142.0/24 maxlen: 24 103.244.143.0/24 maxlen: 24 2001:df2:4380::/48 maxlen: 48 2400:5fa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/_g28w89QoeDrA9MSluOfuogMGQU.crl rsync://rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/_g28w89QoeDrA9MSluOfuogMGQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_g28w89QoeDrA9MSluOfuogMGQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7FEA, serialNumber=FE0DBCC3CF50A1E0EB03D31296E39FBA880C1905 Validity Not Before: Jan 28 19:16:31 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45d75-e02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d1:1d:36:ba:08:eb:38:db:d9:6b:d2:9e:22: 7d:58:c8:7d:ef:41:87:98:82:46:53:04:99:af:10: 7f:fc:96:33:38:92:3d:c5:01:90:50:4a:cb:fd:05: a7:75:38:fa:53:2b:7b:5d:a6:3b:c2:2a:67:78:be: bd:a0:73:c1:9a:89:e5:01:e0:00:10:71:87:a4:12: 05:1d:bd:93:a4:57:8d:4e:af:22:e1:1e:79:e0:d6: b1:93:45:27:0c:e5:15:92:ef:f9:4d:17:bf:78:24: d7:6e:13:f9:f1:6f:63:90:80:e7:56:9d:42:6f:f6: 5d:80:32:eb:c1:65:27:5f:2b:13:63:98:7d:b4:98: 3c:d5:45:70:25:25:88:cf:20:31:49:8d:34:4a:1f: 09:68:e0:2e:8f:49:3b:f5:29:40:bc:df:47:76:8f: 8a:2a:21:21:ba:04:5d:a6:43:ea:5e:b8:c8:5e:7d: 20:2b:ad:2d:d4:bd:93:27:ef:5e:1a:d1:1e:94:32: 4b:25:94:18:b4:a1:c5:a7:e7:91:92:e8:02:3d:40: de:84:28:1e:44:0d:41:fb:7d:16:ff:f2:3a:41:1f: 63:c2:9b:68:62:19:e2:30:f8:22:e4:ec:b8:79:f3: 4e:03:08:28:6b:07:f9:81:1b:19:7b:c1:c1:b3:5b: 70:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C0:E0:5C:1B:C8:95:23:FA:22:63:99:2C:5D:D2:99:E3:BA:BA:97 X509v3 Authority Key Identifier: keyid:FE:0D:BC:C3:CF:50:A1:E0:EB:03:D3:12:96:E3:9F:BA:88:0C:19:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/_g28w89QoeDrA9MSluOfuogMGQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_g28w89QoeDrA9MSluOfuogMGQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7FEA/1EE3AEEC604811EA8C690B38C4F9AE02/AF5AC6B69E3F11EEA6B6CB0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.146.42.0/23 103.244.140.0/22 IPv6: 2001:df2:4380::/48 2400:5fa0::/32 Signature Algorithm: sha256WithRSAEncryption 1a:3b:ad:47:31:78:f2:3d:e0:97:5b:75:86:de:22:fb:ca:bd: 6b:14:31:34:2c:f4:1a:9c:3c:da:53:df:d7:50:ff:96:a2:8a: c5:44:41:53:5a:30:4c:a1:63:da:2d:e2:8a:6e:00:d9:7e:f8: 01:22:bd:5f:ce:be:bd:e8:db:91:15:62:37:5c:cf:a5:cb:d9: ec:2d:42:50:08:72:f5:32:e0:1e:a2:74:30:5d:5d:a6:21:e8: 14:7c:bc:ee:73:1c:f8:a2:b1:fa:32:b1:a9:6d:c9:4f:e8:e5: 85:8e:71:dd:e4:b3:30:be:06:6c:d5:83:64:a7:fa:96:99:3b: 63:04:98:6a:7a:86:2d:3a:12:9b:92:f7:12:3c:05:c4:36:48: ba:d5:9a:76:3c:2f:c6:bc:e2:34:b5:9c:c0:bf:90:08:93:3a: ae:f1:1f:a7:9c:af:15:7b:29:83:49:16:7b:96:8b:de:6d:ca: 42:16:88:38:8c:19:a7:95:dc:50:3d:6d:07:aa:65:3b:77:0c: 18:82:15:70:0c:dc:fd:ee:8d:79:e8:5e:ce:a5:d6:ed:34:a2: c3:f3:2f:76:bd:58:1a:52:80:aa:6f:64:70:a3:8d:ec:2a:64: 76:3a:31:54:4c:7f:c0:28:74:17:b8:e4:b1:9b:80:08:12:7f: 12:12:d2:4c -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdGRUExMTAvBgNVBAUTKEZFMERCQ0MzQ0Y1MEExRTBFQjAzRDMxMjk2RTM5RkJB ODgwQzE5MDUwHhcNMjYwMTI4MTkxNjMxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWQ3NS1lMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tEdNroI6zjb2WvSniJ9WMh970GHmIJGUwSZrxB//JYzOJI9xQGQUErL/QWn dTj6Uyt7XaY7wipneL69oHPBmonlAeAAEHGHpBIFHb2TpFeNTq8i4R554Naxk0Un DOUVku/5TRe/eCTXbhP58W9jkIDnVp1Cb/ZdgDLrwWUnXysTY5h9tJg81UVwJSWI zyAxSY00Sh8JaOAuj0k79SlAvN9Hdo+KKiEhugRdpkPqXrjIXn0gK60t1L2TJ+9e GtEelDJLJZQYtKHFp+eRkugCPUDehCgeRA1B+30W//I6QR9jwptoYhniMPgi5Oy4 efNOAwgoawf5gRsZe8HBs1twWQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFCXA4Fwb yJUj+iJjmSxd0pnjurqXMB8GA1UdIwQYMBaAFP4NvMPPUKHg6wPTEpbjn7qIDBkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0ZFQS8xRUUzQUVFQzYw NDgxMUVBOEM2OTBCMzhDNEY5QUUwMi9fZzI4dzg5UW9lRHJBOU1TbHVPZnVvZ01H UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19nMjh3ODlRb2VEckE5TVNsdU9mdW9nTUdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdGRUEvMUVFM0FFRUM2MDQ4MTFFQThDNjkwQjM4QzRGOUFFMDIvQUY1QUM2QjY5 RTNGMTFFRUE2QjZDQjBEQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQBZ5IqAwQCZ/SMMBYEAgACMBADBwAgAQ3yQ4ADBQAkAF+gMA0GCSqG SIb3DQEBCwUAA4IBAQAaO61HMXjyPeCXW3WG3iL7yr1rFDE0LPQanDzaU9/XUP+W oorFREFTWjBMoWPaLeKKbgDZfvgBIr1fzr696NuRFWI3XM+ly9nsLUJQCHL1MuAe onQwXV2mIegUfLzucxz4orH6MrGpbclP6OWFjnHd5LMwvgZs1YNkp/qWmTtjBJhq eoYtOhKbkvcSPAXENki61Zp2PC/GvOI0tZzAv5AIkzqu8R+nnK8VeymDSRZ7love bcpCFog4jBmnldxQPW0HqmU7dwwYghVwDNz97o156F7OpdbtNKLD8y92vVgaUoCq b2Rwo43sKmR2OjFUTH/AKHQXuOSxm4AIEn8SEtJM -----END CERTIFICATE-----Generated at Mon Mar 2 09:39:17 2026 by rpki-client