$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/1ECAB88C1AD811F193E57F8A3E3D8C67.roa File: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (raw, json) Hash identifier: fuUoAX7qold+hBso2xjm+AtCXw9QMD6MxM+hCTTXcPw= Subject key identifier: CC:4D:67:EE:C3:37:BB:DC:47:E4:3F:08:77:46:D5:EB:EC:82:34:50 Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B98 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/1ECAB88C1AD811F193E57F8A3E3D8C67.roa Signing time: Thu 16 Apr 2026 19:28:18 +0000 ROA not before: Thu 16 Apr 2026 19:28:18 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138910 IP address blocks: 103.148.162.0/24 maxlen: 24 103.148.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2968 (0xb98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Apr 16 19:28:18 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e13852-1f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:f9:2f:45:4d:8f:79:f8:1a:a4:b0:c4:0f: 7b:df:76:5a:4c:8b:19:5e:31:55:20:b1:4e:04:91: 78:59:2a:16:f9:5a:9c:b1:4f:dc:21:4f:8c:eb:de: 46:94:e2:9e:ac:0c:46:ec:b7:7e:28:47:20:80:3e: ce:ad:17:14:91:7c:b8:0f:29:fc:cc:a9:c7:44:4b: ab:86:08:a4:a8:47:ac:7c:de:a6:5c:6e:8c:cc:93: 9d:73:13:23:d8:09:d7:81:81:e0:9a:14:83:76:f7: 14:0e:21:e7:1e:3b:fd:dc:44:7c:a0:b1:a5:b9:cb: 80:cf:52:24:89:9b:66:8d:7d:17:e8:95:8f:31:67: 43:69:1f:14:6f:a3:58:8b:70:f8:77:fb:b2:15:07: 83:1f:ab:86:57:02:07:c6:4d:06:96:b0:12:e3:46: b1:a3:50:8f:2e:ca:65:ec:f1:46:28:e0:03:16:cd: e4:70:c1:cc:b3:ca:b1:c3:00:30:96:03:a3:ee:1f: 91:0c:3b:6b:71:66:18:52:be:b8:39:80:eb:21:66: c7:56:c9:6d:47:39:26:f4:27:2e:f7:b7:a3:ef:0a: 66:18:62:19:0c:0f:de:e3:4c:23:97:56:40:f8:30: 5a:a7:64:c6:b6:42:30:d5:71:55:11:26:02:9d:96: 69:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4D:67:EE:C3:37:BB:DC:47:E4:3F:08:77:46:D5:EB:EC:82:34:50 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/1ECAB88C1AD811F193E57F8A3E3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.148.162.0/23 Signature Algorithm: sha256WithRSAEncryption d7:23:6f:75:ff:ff:5b:c2:5d:76:a6:11:37:61:14:55:41:79: f6:92:0f:a6:5b:69:82:ce:a1:0a:fc:01:61:bf:f4:29:e1:db: 25:02:14:80:12:2f:50:4e:d8:84:5b:db:38:8c:af:93:6e:86: 88:03:32:ac:90:99:dc:5a:cc:e5:21:72:c5:81:d4:29:7b:32: 0e:ca:c1:94:32:a7:d6:8d:e6:60:da:ba:50:72:93:60:24:e7: 7f:7a:79:6f:0c:7f:e1:81:22:84:14:43:06:29:94:1d:97:9a: e2:57:1c:b5:96:25:42:f9:a1:9a:c1:68:e4:9e:20:24:99:8e: 59:44:11:90:31:5b:58:26:18:48:8e:1f:de:03:59:f8:a6:7b: ac:88:97:14:a3:3a:68:92:cf:26:95:e1:dd:5e:f4:8e:90:fa: 65:3f:65:c8:24:ef:42:28:bf:ea:d8:aa:ac:7e:c5:30:60:5e: 1b:29:b2:df:4a:a5:88:0f:d5:54:07:72:2e:7f:06:7e:24:ad: 1d:6b:89:21:8e:91:76:a4:ac:80:a7:d2:22:e8:5f:5e:f3:bd: c6:2e:a1:a2:7b:67:e6:87:60:9c:86:cb:82:c1:ea:80:1b:ee: b1:46:8d:3d:d7:c8:e4:61:32:82:05:f4:f1:43:56:97:d2:be: 22:4f:55:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwNDE2MTkyODE4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWUxMzg1Mi0xZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAr5L0VNj3n4GqSwxA9733ZaTIsZXjFVILFOBJF4WSoW+VqcsU/cIU+M695G lOKerAxG7Ld+KEcggD7OrRcUkXy4Dyn8zKnHREurhgikqEesfN6mXG6MzJOdcxMj 2AnXgYHgmhSDdvcUDiHnHjv93ER8oLGlucuAz1IkiZtmjX0X6JWPMWdDaR8Ub6NY i3D4d/uyFQeDH6uGVwIHxk0GlrAS40axo1CPLspl7PFGKOADFs3kcMHMs8qxwwAw lgOj7h+RDDtrcWYYUr64OYDrIWbHVsltRzkm9Ccu97ej7wpmGGIZDA/e40wjl1ZA +DBap2TGtkIw1XFVESYCnZZpxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMxNZ+7D N7vcR+Q/CHdG1evsgjRQMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxRDMvMEE4NDU5RjQ1MjM1MTFFQTlBMENCMjczQzRGOUFFMDIvMUVDQUI4OEMx QUQ4MTFGMTkzRTU3RjhBM0UzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5SiMA0GCSqGSIb3DQEBCwUAA4IBAQDXI291//9bwl12phE3YRRV QXn2kg+mW2mCzqEK/AFhv/Qp4dslAhSAEi9QTtiEW9s4jK+TboaIAzKskJncWszl IXLFgdQpezIOysGUMqfWjeZg2rpQcpNgJOd/enlvDH/hgSKEFEMGKZQdl5riVxy1 liVC+aGawWjkniAkmY5ZRBGQMVtYJhhIjh/eA1n4pnusiJcUozpoks8mleHdXvSO kPplP2XIJO9CKL/q2KqsfsUwYF4bKbLfSqWID9VUB3IufwZ+JK0da4khjpF2pKyA p9Ii6F9e873GLqGie2fmh2CchsuCweqAG+6xRo0918jkYTKCBfTxQ1aX0r4iT1Vz -----END CERTIFICATE-----Generated at Fri Apr 17 11:59:44 2026 by rpki-client