$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa File: 49CB8044609511E8BF4FB410C4F9AE02.roa (raw, json) Hash identifier: KetxO2c/m1hfbpu+fHHVSXWu4n33BGdK2NDIr+efxS8= Subject key identifier: 01:D2:90:DC:BC:47:44:82:FD:59:3E:9E:6E:21:E9:48:C3:6F:08:CC Certificate issuer: /CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Certificate serial: 1568 Authority key identifier: 01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa Signing time: Fri 22 May 2026 17:21:00 +0000 ROA not before: Fri 22 May 2026 17:21:00 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 38203 IP address blocks: 103.219.160.0/22 maxlen: 22 103.219.160.0/24 maxlen: 24 103.219.161.0/24 maxlen: 24 103.219.162.0/24 maxlen: 24 103.219.163.0/24 maxlen: 24 123.253.144.0/22 maxlen: 22 123.253.144.0/24 maxlen: 24 123.253.145.0/24 maxlen: 24 123.253.146.0/24 maxlen: 24 123.253.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 16:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5480 (0x1568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA31, serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Validity Not Before: May 22 17:21:00 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a10907c-6841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:ad:56:de:b3:0b:d4:7d:af:85:c7:5a:0f: 33:26:5b:da:f7:83:9f:31:c8:b7:4a:ac:0e:4a:83: e7:cc:7d:dc:fb:39:0e:86:6d:ea:93:c8:e1:68:77: 0b:36:6e:b7:84:24:49:dc:69:1a:b9:7f:91:e5:92: f0:62:4f:89:a9:ab:f5:53:45:1c:00:de:91:d3:f0: 89:08:4e:75:b5:9d:93:f0:9a:d0:e4:f2:8a:75:65: 74:1c:f6:ba:45:3a:55:4e:66:36:12:9e:14:76:0d: a4:b5:9f:37:7f:9a:d7:4e:f9:fa:1d:7a:49:d4:9a: ba:dd:b1:ca:7f:03:37:ba:05:64:49:f5:59:08:65: 25:fa:49:bd:45:08:4d:46:d2:cc:6b:69:ad:f7:37: 35:d3:e5:f8:df:46:6b:5a:7a:23:a8:15:88:74:d1: 7c:6d:ed:42:a5:14:6c:80:24:ce:19:16:76:b4:21: 97:5e:70:a2:32:d4:9c:b2:3d:af:82:7e:64:bb:24: 4a:e1:4a:cb:d2:69:3a:99:86:36:13:ec:60:63:de: 9b:1b:bb:61:cc:9d:90:10:7b:56:f6:ee:06:80:f3: f9:f4:75:b2:f5:42:bd:2c:8b:ae:58:02:ac:b2:54: 3e:fd:f1:2e:68:88:ed:b4:21:e5:bf:9d:d6:c0:e9: 55:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D2:90:DC:BC:47:44:82:FD:59:3E:9E:6E:21:E9:48:C3:6F:08:CC X509v3 Authority Key Identifier: keyid:01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.219.160.0/22 123.253.144.0/22 Signature Algorithm: sha256WithRSAEncryption 89:fa:41:b8:fd:24:a5:49:6f:a9:f2:f6:03:cd:24:dd:08:12: b1:74:fc:f1:ae:6e:e8:09:c4:7a:bb:46:85:19:6e:cc:e1:89: f4:c4:35:9b:fa:2a:15:73:6d:55:fc:1c:a7:14:e8:82:01:c8: 17:e4:f6:02:c3:3f:b2:bf:94:94:46:86:6c:f7:f3:cb:1b:41: f6:e1:3e:eb:4d:84:48:63:fc:40:a6:27:7f:90:74:6a:4e:12: c3:a4:91:74:a8:50:9d:5a:56:dd:ae:9f:6c:3f:2d:7d:89:6a: 13:f4:32:f3:c2:a1:1f:38:5f:3a:62:ff:e9:b8:9b:5d:ee:ae: e7:f2:7f:9a:3e:55:b1:00:71:91:18:cb:f2:77:dc:b9:79:f7: b3:ba:1a:46:dc:8d:9c:b2:46:90:93:6a:a8:65:17:b6:73:dc: f5:10:c0:de:d9:2d:07:c5:42:45:d4:36:14:19:06:50:e5:3e: c0:78:69:73:23:09:de:26:15:bb:75:bb:89:82:68:4e:a4:c8: 1a:cd:54:df:6b:70:fc:7f:bd:6f:b4:6a:99:01:e8:99:8f:bf: d4:1e:75:6e:c5:ed:f9:bf:0b:08:73:e3:6c:f1:88:01:64:eb: e0:c0:14:24:ea:dc:fe:0f:0b:01:02:47:14:40:14:ae:45:8e: b1:a2:c8:04 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICFWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBMzExMTAvBgNVBAUTKDAxNDAyMjUzRjMxQkNBQ0ZGQjczRDY4NUQ3MDBDOUI2 Qjc0MTA0M0MwHhcNMjYwNTIyMTcyMTAwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwOTA3Yy02ODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEOtVt6zC9R9r4XHWg8zJlva94OfMci3SqwOSoPnzH3c+zkOhm3qk8jhaHcL Nm63hCRJ3GkauX+R5ZLwYk+Jqav1U0UcAN6R0/CJCE51tZ2T8JrQ5PKKdWV0HPa6 RTpVTmY2Ep4Udg2ktZ83f5rXTvn6HXpJ1Jq63bHKfwM3ugVkSfVZCGUl+km9RQhN RtLMa2mt9zc10+X430ZrWnojqBWIdNF8be1CpRRsgCTOGRZ2tCGXXnCiMtScsj2v gn5kuyRK4UrL0mk6mYY2E+xgY96bG7thzJ2QEHtW9u4GgPP59HWy9UK9LIuuWAKs slQ+/fEuaIjttCHlv53WwOlVlQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAHSkNy8 R0SC/Vk+nm4h6UjDbwjMMB8GA1UdIwQYMBaAFAFAIlPzG8rP+3PWhdcAyba3QQQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUEzMS9ERDY0NDg3ODYw OTQxMUU4QjU2QzE4MTBDNEY5QUUwMi9BVUFpVV9NYnlzXzdjOWFGMXdESnRyZEJC RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FVQWlVX01ieXNfN2M5YUYxd0RKdHJkQkJEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBMzEvREQ2NDQ4Nzg2MDk0MTFFOEI1NkMxODEwQzRGOUFFMDIvNDlDQjgwNDQ2 MDk1MTFFOEJGNEZCNDEwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9ugAwQCe/2QMA0GCSqGSIb3DQEBCwUAA4IBAQCJ+kG4/SSlSW+p 8vYDzSTdCBKxdPzxrm7oCcR6u0aFGW7M4Yn0xDWb+ioVc21V/BynFOiCAcgX5PYC wz+yv5SURoZs9/PLG0H24T7rTYRIY/xApid/kHRqThLDpJF0qFCdWlbdrp9sPy19 iWoT9DLzwqEfOF86Yv/puJtd7q7n8n+aPlWxAHGRGMvyd9y5efezuhpG3I2cskaQ k2qoZRe2c9z1EMDe2S0HxUJF1DYUGQZQ5T7AeGlzIwneJhW7dbuJgmhOpMgazVTf a3D8f71vtGqZAeiZj7/UHnVuxe35vwsIc+Ns8YgBZOvgwBQk6tz+DwsBAkcUQBSu RY6xosgE -----END CERTIFICATE-----Generated at Sat Jun 13 23:33:46 2026 by rpki-client