$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa File: 4AE6CFF8B25211EBA977EE09C4F9AE02.roa (raw, json) Hash identifier: E3B7SIPhenuhPyKu2+7i6Xocl1nhH+IBRWSToKqn9cY= Subject key identifier: 58:4E:A0:FD:C3:DA:9C:8C:D3:3C:0E:D6:EA:A4:24:EE:24:0E:3C:08 Certificate issuer: /CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Certificate serial: 1248 Authority key identifier: D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa Signing time: Mon 02 Mar 2026 17:20:55 +0000 ROA not before: Mon 02 Mar 2026 17:20:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138495 IP address blocks: 103.126.244.0/22 maxlen: 24 2404:1540::/32 maxlen: 32 2404:1540:1000::/36 maxlen: 36 2404:1540:1000::/48 maxlen: 48 2404:1540:1001::/48 maxlen: 48 2404:1540:1002::/48 maxlen: 48 2404:1540:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4680 (0x1248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8336, serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Validity Not Before: Mar 2 17:20:55 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5c6f7-4be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:fd:ae:7b:d8:a9:31:59:28:0a:5b:f6:0f: fc:15:28:68:a5:0b:3d:79:72:58:fc:33:48:8e:15: 3e:d8:b9:50:f0:e7:cb:fa:32:58:11:05:4a:fd:a4: 48:23:4d:ce:56:00:96:b2:90:63:f9:64:0c:05:50: e6:77:43:07:45:f7:03:79:94:08:65:40:37:60:ae: 1c:ac:07:c9:15:59:db:14:c5:85:96:13:c6:09:12: 48:3a:04:7b:04:70:fc:7b:82:7f:05:01:39:62:72: e5:8e:4e:dd:90:ed:60:7b:4e:f9:f0:a9:ca:e6:ca: 90:31:04:26:4e:30:5c:3a:0e:f7:16:23:a2:bd:8d: aa:54:dc:86:55:29:b2:04:6d:d6:c9:1c:15:7d:2f: e1:4c:5a:6a:9d:9c:eb:a2:71:5e:40:eb:74:94:51: 75:17:27:18:cf:28:77:e7:23:bf:fb:ae:55:0c:02: 3c:aa:60:8b:7f:e2:3d:e2:65:03:48:a4:5c:5f:e1: fe:02:88:28:b3:49:de:27:2a:f6:76:4b:66:54:fc: ed:dd:c4:00:72:78:a4:1d:52:b3:c2:ab:67:ea:a8: 7c:16:9f:02:92:da:6b:12:78:b0:15:8a:8b:c5:fa: 89:e8:ed:3e:50:6a:79:1d:8c:e4:ce:6d:69:da:44: df:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:4E:A0:FD:C3:DA:9C:8C:D3:3C:0E:D6:EA:A4:24:EE:24:0E:3C:08 X509v3 Authority Key Identifier: keyid:D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.244.0/22 IPv6: 2404:1540::/32 Signature Algorithm: sha256WithRSAEncryption 93:3c:d1:4b:16:3f:bf:3f:dd:3e:a8:2d:80:38:46:88:64:3d: 5c:a9:96:bf:74:2f:23:a3:46:10:2f:ab:77:e4:47:2d:90:1d: 1d:93:83:de:16:b5:5d:77:e9:45:d8:98:32:2c:ca:bc:34:92: 6c:39:4d:14:19:2b:0e:71:b6:5e:e8:c2:9c:60:4a:78:da:28: e1:fc:1c:ae:82:f8:e4:85:6a:e2:f4:3c:82:70:58:21:df:b9: 18:91:b9:e9:b1:a8:1e:33:4b:d0:ae:79:e7:24:54:2f:ac:8b: 44:27:c3:88:16:ae:fa:c4:0d:e0:9d:67:41:ff:47:a8:44:3b: 43:59:55:4d:8f:9c:2b:17:7f:89:9a:f0:e7:d6:e6:74:28:79: ce:07:37:d1:ee:9c:d9:ba:af:b3:55:01:bc:41:b5:d2:4a:aa: 5a:4e:59:7d:62:fb:8d:84:18:1a:44:55:6d:11:d7:35:0d:45: 8f:5e:60:8d:01:5d:1d:fc:2c:1e:73:fc:0d:f9:d5:1d:bc:dc: d6:aa:80:54:5b:b7:76:ed:d4:a0:1f:fb:d9:a6:dd:d7:fa:00: 59:f5:c4:9f:a5:c5:f6:8c:8a:ac:16:7b:3c:b3:27:60:68:fc: f4:8f:e3:82:32:6d:c2:81:61:69:bb:17:b3:2d:94:e7:c0:bc: fb:75:e0:dd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzMzYxMTAvBgNVBAUTKEQ3N0YzNzk3NTIzNUFCREU1RjQ5ODlGQkYzRkU5MzhE NTI3QzE5NDgwHhcNMjYwMzAyMTcyMDU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YzZmNy00YmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpX9rnvYqTFZKApb9g/8FShopQs9eXJY/DNIjhU+2LlQ8OfL+jJYEQVK/aRI I03OVgCWspBj+WQMBVDmd0MHRfcDeZQIZUA3YK4crAfJFVnbFMWFlhPGCRJIOgR7 BHD8e4J/BQE5YnLljk7dkO1ge0758KnK5sqQMQQmTjBcOg73FiOivY2qVNyGVSmy BG3WyRwVfS/hTFpqnZzronFeQOt0lFF1FycYzyh35yO/+65VDAI8qmCLf+I94mUD SKRcX+H+Aogos0neJyr2dktmVPzt3cQAcnikHVKzwqtn6qh8Fp8CktprEniwFYqL xfqJ6O0+UGp5HYzkzm1p2kTflQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFFhOoP3D 2pyM0zwO1uqkJO4kDjwIMB8GA1UdIwQYMBaAFNd/N5dSNaveX0mJ+/P+k41SfBlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODMzNi8zN0UxNjczRUZE MUQxMUU4QjNFMzZFNTdDNEY5QUUwMi8xMzgzbDFJMXE5NWZTWW43OF82VGpWSjhH VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzODNsMUkxcTk1ZlNZbjc4XzZUalZKOEdVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgzMzYvMzdFMTY3M0VGRDFEMTFFOEIzRTM2RTU3QzRGOUFFMDIvNEFFNkNGRjhC MjUyMTFFQkE5NzdFRTA5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ370MA0EAgACMAcDBQAkBBVAMA0GCSqGSIb3DQEBCwUAA4IBAQCT PNFLFj+/P90+qC2AOEaIZD1cqZa/dC8jo0YQL6t35EctkB0dk4PeFrVdd+lF2Jgy LMq8NJJsOU0UGSsOcbZe6MKcYEp42ijh/ByugvjkhWri9DyCcFgh37kYkbnpsage M0vQrnnnJFQvrItEJ8OIFq76xA3gnWdB/0eoRDtDWVVNj5wrF3+JmvDn1uZ0KHnO BzfR7pzZuq+zVQG8QbXSSqpaTll9YvuNhBgaRFVtEdc1DUWPXmCNAV0d/Cwec/wN +dUdvNzWqoBUW7d27dSgH/vZpt3X+gBZ9cSfpcX2jIqsFns8sydgaPz0j+OCMm3C gWFpuxezLZTnwLz7deDd -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:29 2026 by rpki-client