$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa File: 49CB8044609511E8BF4FB410C4F9AE02.roa (raw, json) Hash identifier: 1Jx6UIAhpY+TKl1duUxRycSnQkH++fAZsYrbLG9AJn8= Subject key identifier: 33:09:AB:7C:48:60:F1:92:C9:6E:BA:60:AB:F2:05:CB:2C:56:33:E1 Certificate issuer: /CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Certificate serial: 153A Authority key identifier: 01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:17:37 +0000 ROA not before: Wed 28 May 2025 17:56:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38203 IP address blocks: 103.219.160.0/22 maxlen: 22 103.219.160.0/24 maxlen: 24 103.219.161.0/24 maxlen: 24 103.219.162.0/24 maxlen: 24 103.219.163.0/24 maxlen: 24 123.253.144.0/22 maxlen: 22 123.253.144.0/24 maxlen: 24 123.253.145.0/24 maxlen: 24 123.253.146.0/24 maxlen: 24 123.253.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5434 (0x153a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA31, serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Validity Not Before: May 28 17:56:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40431-19cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:9c:af:96:06:78:6d:5a:15:3c:03:77:87: c1:91:a7:b4:9a:c4:d9:e5:45:fd:09:4f:66:15:73: c2:c7:fd:a1:96:4f:7d:c8:f9:cb:5b:32:31:24:0d: 52:11:9e:e2:59:56:d8:b2:f9:61:9d:74:30:97:d5: b3:98:11:4b:8a:8d:60:38:f9:39:91:37:a6:64:12: c0:8a:89:de:db:92:3b:a7:72:c8:ff:35:23:fe:11: 80:67:50:3b:de:bb:b4:52:19:ec:46:1b:0d:49:5e: 3f:da:34:08:c0:1c:19:c6:6c:e4:2a:48:ae:dd:8c: 5e:fa:10:bb:67:96:b8:cf:9f:ea:1a:8c:99:e9:d9: 9d:49:6f:9f:a3:05:17:0c:fc:30:e5:6b:bc:2d:7f: 49:52:5a:4b:e6:dc:0f:56:47:47:61:90:8c:c6:07: 41:57:08:5b:64:ca:8d:7a:1b:87:48:bf:a4:dc:21: db:2e:66:9d:37:f3:d3:14:56:62:bc:d5:01:ec:60: 65:42:bd:e9:02:3c:e0:00:d5:83:86:89:40:d8:e8: fa:96:2a:2c:50:94:f3:f5:0a:41:ae:ab:f1:7b:f3: f8:55:68:d2:3f:97:f8:f8:83:b3:7e:bc:6b:b9:6c: bb:a8:6f:63:c6:ca:1f:1c:29:78:41:17:72:e0:0f: 25:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:09:AB:7C:48:60:F1:92:C9:6E:BA:60:AB:F2:05:CB:2C:56:33:E1 X509v3 Authority Key Identifier: keyid:01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.219.160.0/22 123.253.144.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:47:47:44:3e:a2:b2:ea:0c:c8:64:af:72:69:dc:19:2b:c8: 0b:79:5b:b2:4b:1d:14:80:d5:5c:5c:6a:ea:ef:fd:96:08:1a: 8a:7b:92:1e:64:b3:19:f1:ff:b4:90:b7:a5:2c:d0:cd:10:05: 5e:f5:31:01:4b:a4:60:91:36:59:fa:64:51:f6:a2:84:69:fc: 19:6f:f1:73:92:50:db:91:7c:96:bd:f4:0a:d0:e6:8b:54:06: 4f:22:d5:72:9c:c8:32:b6:62:eb:60:7d:65:e8:6f:d1:f3:75: 9e:52:23:5c:3a:2b:b3:ad:55:b7:cb:63:dc:69:10:41:59:bf: 77:88:cd:05:92:a5:d6:25:31:75:0b:9f:6d:2f:3e:b6:1d:c6: 2a:f7:01:c4:b6:72:f2:24:2d:3b:fe:c3:90:1e:8d:82:b8:3a: 00:fd:60:83:0c:86:4b:30:93:ef:45:f2:ce:44:78:36:0c:f6: ee:84:d6:b5:77:08:8d:61:61:a3:21:00:e8:9e:2c:26:00:6d: b4:98:a4:5f:5b:fc:d1:f2:6b:a5:60:c8:4f:a7:d8:9e:b3:c4: fe:f8:1c:5a:cb:eb:ec:7e:fa:ea:49:10:fe:fd:23:5c:50:18: fb:cd:91:86:83:7c:ec:8c:5d:bd:cd:5a:5a:6f:aa:fe:e4:5e: 28:8d:aa:28 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICFTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBMzExMTAvBgNVBAUTKDAxNDAyMjUzRjMxQkNBQ0ZGQjczRDY4NUQ3MDBDOUI2 Qjc0MTA0M0MwHhcNMjUwNTI4MTc1NjU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQzMS0xOWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTKcr5YGeG1aFTwDd4fBkae0msTZ5UX9CU9mFXPCx/2hlk99yPnLWzIxJA1S EZ7iWVbYsvlhnXQwl9WzmBFLio1gOPk5kTemZBLAione25I7p3LI/zUj/hGAZ1A7 3ru0UhnsRhsNSV4/2jQIwBwZxmzkKkiu3Yxe+hC7Z5a4z5/qGoyZ6dmdSW+fowUX DPww5Wu8LX9JUlpL5twPVkdHYZCMxgdBVwhbZMqNehuHSL+k3CHbLmadN/PTFFZi vNUB7GBlQr3pAjzgANWDholA2Oj6liosUJTz9QpBrqvxe/P4VWjSP5f4+IOzfrxr uWy7qG9jxsofHCl4QRdy4A8lnwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDMJq3xI YPGSyW66YKvyBcssVjPhMB8GA1UdIwQYMBaAFAFAIlPzG8rP+3PWhdcAyba3QQQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUEzMS9ERDY0NDg3ODYw OTQxMUU4QjU2QzE4MTBDNEY5QUUwMi9BVUFpVV9NYnlzXzdjOWFGMXdESnRyZEJC RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FVQWlVX01ieXNfN2M5YUYxd0RKdHJkQkJEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBMzEvREQ2NDQ4Nzg2MDk0MTFFOEI1NkMxODEwQzRGOUFFMDIvNDlDQjgwNDQ2 MDk1MTFFOEJGNEZCNDEwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9ugAwQCe/2QMA0GCSqGSIb3DQEBCwUAA4IBAQBuR0dEPqKy6gzI ZK9yadwZK8gLeVuySx0UgNVcXGrq7/2WCBqKe5IeZLMZ8f+0kLelLNDNEAVe9TEB S6RgkTZZ+mRR9qKEafwZb/FzklDbkXyWvfQK0OaLVAZPItVynMgytmLrYH1l6G/R 83WeUiNcOiuzrVW3y2PcaRBBWb93iM0FkqXWJTF1C59tLz62HcYq9wHEtnLyJC07 /sOQHo2CuDoA/WCDDIZLMJPvRfLORHg2DPbuhNa1dwiNYWGjIQDoniwmAG20mKRf W/zR8mulYMhPp9ies8T++Bxay+vsfvrqSRD+/SNcUBj7zZGGg3zsjF29zVpab6r+ 5F4ojaoo -----END CERTIFICATE-----Generated at Mon Mar 2 18:24:40 2026 by rpki-client