$ rpki-client -vvf rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa File: AFF4E1F89EB711EC8210607DC4F9AE02.roa (raw, json) Hash identifier: r355JtbsChvpKdcC5nW7ewoVZ03Rj0iVIbKKdmTNzQU= Subject key identifier: 28:A7:B0:8A:1E:D8:FF:6D:04:B3:66:14:CD:41:D8:89:E2:80:BD:BF Certificate issuer: /CN=A91365B9/serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Certificate serial: 0426 Authority key identifier: C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:50:32 +0000 ROA not before: Tue 02 Dec 2025 23:28:52 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138678 IP address blocks: 103.144.0.0/24 maxlen: 24 103.144.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91365B9, serialNumber=C2A2EB4CF9102778A42E15CCD20A584EDCEDC272 Validity Not Before: Dec 2 23:28:52 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43618-10d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5c:c8:51:fd:f8:b7:d7:33:6c:3c:05:00:66: d8:f6:ad:ef:87:70:67:2e:35:8c:eb:e6:89:84:f3: 93:71:d6:39:25:c1:f5:6e:06:2a:43:fc:a9:53:dc: 6e:f8:96:15:0e:64:53:41:7f:e8:f8:b7:e5:cd:d6: 2b:63:b2:e3:73:23:d5:5a:ed:fe:8a:2b:ce:ea:2a: 28:66:c1:ab:7f:93:1c:3e:d3:27:39:be:b9:a6:9c: 73:67:5f:d0:36:50:e8:95:a8:21:6e:c2:80:52:71: f9:89:be:22:b0:f6:c4:4b:a0:85:0b:0c:71:f9:c9: 0c:2a:58:08:0c:bb:61:65:3d:61:12:ca:3d:c9:5f: 73:e5:8f:27:d9:71:2c:99:81:14:5d:cb:07:fd:5b: ce:9e:4d:56:3c:4d:a0:13:af:eb:c1:47:79:8d:04: fe:98:e1:cd:4b:47:98:01:0d:61:59:7b:12:d1:64: f3:6b:96:55:d9:95:1a:cc:4c:e5:4c:9d:1f:de:ea: 50:fd:ea:8a:1b:5c:6d:75:df:6e:cb:95:52:ca:cb: e4:07:fd:bd:83:0e:d3:9a:61:1b:23:7e:21:50:fb: 31:d0:32:39:bf:36:39:d9:18:03:43:97:bb:86:dc: 56:17:e7:22:ec:67:cb:bf:c5:a6:41:2a:db:b3:b4: 23:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A7:B0:8A:1E:D8:FF:6D:04:B3:66:14:CD:41:D8:89:E2:80:BD:BF X509v3 Authority Key Identifier: keyid:C2:A2:EB:4C:F9:10:27:78:A4:2E:15:CC:D2:0A:58:4E:DC:ED:C2:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/wqLrTPkQJ3ikLhXM0gpYTtztwnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqLrTPkQJ3ikLhXM0gpYTtztwnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91365B9/745D77029EB411ECBF0E1477C4F9AE02/AFF4E1F89EB711EC8210607DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.0.0/23 Signature Algorithm: sha256WithRSAEncryption 67:fc:66:93:27:8c:d0:94:0c:ae:f5:b6:49:c3:06:aa:2b:76: a0:3b:33:2d:f4:7c:81:d3:6d:80:4a:30:0a:04:c4:33:ed:81: 64:11:20:b2:9f:3b:fe:4b:f4:4a:ab:0b:3a:b0:eb:9e:d1:ef: a8:ab:56:e5:ec:cf:ab:a5:5a:1b:77:f0:b0:94:9d:1a:cd:e3: b8:24:82:68:62:af:f1:16:72:4e:f8:61:9b:9e:03:d9:ec:61: f2:76:4d:44:b3:1c:5f:16:43:9f:d8:d8:36:fc:d9:18:53:74: a3:02:2f:35:3b:93:a6:84:f2:7b:7b:80:33:46:23:cd:4a:89: 0f:f0:7e:d1:1b:45:00:93:0a:c9:c2:6a:26:50:92:1f:3e:29: 19:e2:a6:92:b5:18:81:46:b1:a9:2b:4c:cf:a6:58:f9:ef:5f: 5e:4d:71:aa:de:d3:de:ad:26:6a:df:22:38:e7:65:5f:0b:35: 55:f0:25:13:1f:e6:f0:3a:ab:56:78:ef:ce:6d:bd:3d:2a:35: b3:e6:d1:24:02:7a:31:e6:82:2e:e1:c7:01:f0:c5:51:a6:13: b5:fb:ac:63:12:a6:ad:6e:60:43:b1:06:7e:21:27:73:6f:e0: b4:3c:15:56:df:8b:01:5d:c3:5b:40:97:a7:ce:dc:ed:df:30: 66:d7:b3:20 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY1QjkxMTAvBgNVBAUTKEMyQTJFQjRDRjkxMDI3NzhBNDJFMTVDQ0QyMEE1ODRF RENFREMyNzIwHhcNMjUxMjAyMjMyODUyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzYxOC0xMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlzIUf34t9czbDwFAGbY9q3vh3BnLjWM6+aJhPOTcdY5JcH1bgYqQ/ypU9xu +JYVDmRTQX/o+LflzdYrY7LjcyPVWu3+iivO6iooZsGrf5McPtMnOb65ppxzZ1/Q NlDolaghbsKAUnH5ib4isPbES6CFCwxx+ckMKlgIDLthZT1hEso9yV9z5Y8n2XEs mYEUXcsH/VvOnk1WPE2gE6/rwUd5jQT+mOHNS0eYAQ1hWXsS0WTza5ZV2ZUazEzl TJ0f3upQ/eqKG1xtdd9uy5VSysvkB/29gw7TmmEbI34hUPsx0DI5vzY52RgDQ5e7 htxWF+ci7GfLv8WmQSrbs7QjAQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCinsIoe 2P9tBLNmFM1B2InigL2/MB8GA1UdIwQYMBaAFMKi60z5ECd4pC4VzNIKWE7c7cJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjVCOS83NDVENzcwMjlF QjQxMUVDQkYwRTE0NzdDNEY5QUUwMi93cUxyVFBrUUozaWtMaFhNMGdwWVR0enR3 bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dxTHJUUGtRSjNpa0xoWE0wZ3BZVHR6dHduSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY1QjkvNzQ1RDc3MDI5RUI0MTFFQ0JGMEUxNDc3QzRGOUFFMDIvQUZGNEUxRjg5 RUI3MTFFQzgyMTA2MDdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5AAMA0GCSqGSIb3DQEBCwUAA4IBAQBn/GaTJ4zQlAyu9bZJwwaq K3agOzMt9HyB022ASjAKBMQz7YFkESCynzv+S/RKqws6sOue0e+oq1bl7M+rpVob d/CwlJ0azeO4JIJoYq/xFnJO+GGbngPZ7GHydk1EsxxfFkOf2Ng2/NkYU3SjAi81 O5OmhPJ7e4AzRiPNSokP8H7RG0UAkwrJwmomUJIfPikZ4qaStRiBRrGpK0zPplj5 719eTXGq3tPerSZq3yI452VfCzVV8CUTH+bwOqtWeO/Obb09KjWz5tEkAnox5oIu 4ccB8MVRphO1+6xjEqatbmBDsQZ+ISdzb+C0PBVW34sBXcNbQJenztzt3zBm17Mg -----END CERTIFICATE-----Generated at Sat Mar 28 12:13:23 2026 by rpki-client