$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa File: A38F041873C011EEB1A68245C4F9AE02.roa (raw, json) Hash identifier: HPmVyYKtLcFExM8piBe7+ZZtOvggOUmjJGRPn2DOqcA= Subject key identifier: B8:46:83:0C:44:42:76:8E:F7:38:A2:45:41:56:F9:22:BD:F9:F2:F5 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 01BF Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:40:05 +0000 ROA not before: Wed 03 Sep 2025 04:52:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151652 IP address blocks: 103.249.203.0/24 maxlen: 24 2001:df2:ca40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3, serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Sep 3 04:52:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3ed55-9793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:00:c6:76:70:64:eb:01:4b:5e:18:3f:07:4c: bf:c1:90:32:c6:d6:6e:f5:a4:bf:5a:af:8f:fb:d6: 8a:51:2f:34:dd:81:f8:a4:a7:5e:e2:4d:5c:b5:09: 1e:78:3c:5d:04:b6:d4:bb:2c:94:15:94:33:7a:e9: 10:09:ce:5a:ef:a0:98:2a:e0:1e:ce:44:07:f4:73: ef:a0:f7:2e:c3:76:a9:cd:a5:40:6a:6e:08:c4:44: 6c:98:e5:8f:6c:9e:7f:7d:da:7b:6a:18:e3:65:e0: d0:19:36:b0:7b:fc:46:8a:58:8d:73:ad:1c:15:1e: a7:af:fc:da:37:79:4b:0d:12:c8:26:9a:3d:a7:0c: 60:d0:da:45:8c:42:1d:4c:cd:6b:b3:01:a2:a9:b0: ed:64:6a:d2:5f:17:1d:c5:95:16:a8:dd:bb:6d:ad: e2:b9:1a:7c:d9:73:b6:ea:ed:9b:e9:c5:8e:b6:c0: db:f9:1c:aa:07:a9:1f:b7:3a:8d:ab:38:ed:45:16: 21:14:f3:cc:da:cb:0e:b0:54:b3:ea:33:ae:81:0a: 73:ac:8d:dc:0d:13:a9:c3:2b:17:e2:4e:0b:62:23: d4:95:a7:3d:0a:9a:d8:24:bc:c6:ec:79:22:25:ba: 41:d7:66:bc:13:57:ac:8b:11:66:94:be:0a:21:94: 31:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:46:83:0C:44:42:76:8E:F7:38:A2:45:41:56:F9:22:BD:F9:F2:F5 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.249.203.0/24 IPv6: 2001:df2:ca40::/48 Signature Algorithm: sha256WithRSAEncryption 10:48:22:22:a8:14:13:c6:3a:a4:cb:32:b1:e6:4a:f6:07:3b: 74:50:27:fe:7c:6e:90:3f:d1:a5:d1:69:0c:c8:c9:32:0c:e8: f8:d3:86:8c:51:8b:d6:0a:a4:24:61:6e:e4:ef:b8:59:7d:26: 68:eb:e1:87:30:d7:64:fd:a5:a4:e0:95:4c:5d:17:a8:ad:1a: 27:c9:27:d8:fa:3a:34:0b:d8:50:dc:0d:7f:65:7f:a8:d3:7e: 7b:be:2a:0b:3c:c7:d0:1e:97:10:97:0a:06:c1:a1:98:d4:90: 5e:41:7b:a6:2c:86:9e:40:5f:e1:3a:26:f6:d0:39:13:78:4d: e1:31:47:c2:aa:4b:37:fb:39:aa:20:b9:f8:c8:3c:48:fa:43: 02:1e:7b:15:26:3e:a2:df:f8:7c:60:64:f5:64:e5:98:bf:80: d5:99:7b:3c:9c:67:98:67:83:f6:45:33:ba:1e:28:2a:62:80: 59:95:e2:a1:48:89:70:68:fc:43:a1:7a:6c:7c:e5:fa:cc:be: 96:fe:0f:b2:c5:96:1c:a2:18:77:b3:5e:16:85:b1:ee:02:ce: e6:87:77:c7:5b:be:9c:0c:e2:d8:aa:c8:84:0f:6c:ac:68:ff: 62:5d:81:7f:ec:60:a6:e0:96:cc:b4:1e:d0:9d:d0:e8:79:21: fc:cf:8a:b0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjUwOTAzMDQ1MjMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWQ1NS05NzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQDGdnBk6wFLXhg/B0y/wZAyxtZu9aS/Wq+P+9aKUS803YH4pKde4k1ctQke eDxdBLbUuyyUFZQzeukQCc5a76CYKuAezkQH9HPvoPcuw3apzaVAam4IxERsmOWP bJ5/fdp7ahjjZeDQGTawe/xGiliNc60cFR6nr/zaN3lLDRLIJpo9pwxg0NpFjEId TM1rswGiqbDtZGrSXxcdxZUWqN27ba3iuRp82XO26u2b6cWOtsDb+RyqB6kftzqN qzjtRRYhFPPM2ssOsFSz6jOugQpzrI3cDROpwysX4k4LYiPUlac9CprYJLzG7Hki JbpB12a8E1esixFmlL4KIZQx5wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLhGgwxE QnaO9ziiRUFW+SK9+fL1MB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQyRTMvNEY0MTc5QTQ3M0MwMTFFRUI4MjdGNDQ0QzRGOUFFMDIvQTM4RjA0MTg3 M0MwMTFFRUIxQTY4MjQ1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ/nLMA8EAgACMAkDBwAgAQ3yykAwDQYJKoZIhvcNAQELBQADggEB ABBIIiKoFBPGOqTLMrHmSvYHO3RQJ/58bpA/0aXRaQzIyTIM6PjThoxRi9YKpCRh buTvuFl9Jmjr4Ycw12T9paTglUxdF6itGifJJ9j6OjQL2FDcDX9lf6jTfnu+Kgs8 x9AelxCXCgbBoZjUkF5Be6Yshp5AX+E6JvbQORN4TeExR8KqSzf7OaogufjIPEj6 QwIeexUmPqLf+HxgZPVk5Zi/gNWZezycZ5hng/ZFM7oeKCpigFmV4qFIiXBo/EOh emx85frMvpb+D7LFlhyiGHezXhaFse4CzuaHd8dbvpwM4tiqyIQPbKxo/2JdgX/s YKbglsy0HtCd0Oh5IfzPirA= -----END CERTIFICATE-----Generated at Mon Mar 2 06:19:46 2026 by rpki-client