$ rpki-client -vvf rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/C1C296F45A7111EBB1700884C4F9AE02.roa File: C1C296F45A7111EBB1700884C4F9AE02.roa (raw, json) Hash identifier: lzR6pyvl0y5+kPNyylXFhv+PwYmB2saEThM6foq0LbY= Subject key identifier: 9A:3C:97:AF:EE:B3:71:61:6A:DB:E6:7C:76:C0:50:E8:BC:54:C7:CA Certificate issuer: /CN=A91518AF/serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Certificate serial: 0772 Authority key identifier: 1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/C1C296F45A7111EBB1700884C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:29:24 +0000 ROA not before: Mon 08 Dec 2025 21:02:38 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 0 IP address blocks: 103.159.71.0/24 maxlen: 24 103.174.251.0/24 maxlen: 24 2001:df5:7880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91518AF, serialNumber=1A6934CAB5213D8B43FD54358938DD1F31A1690A Validity Not Before: Dec 8 21:02:38 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43124-e600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:ac:2b:01:cb:07:3c:15:b7:99:1f:62:96: 6f:f4:e6:46:cb:a1:08:bd:68:84:ee:21:79:83:54: ec:04:49:a3:40:df:93:4a:a6:ca:fa:9c:9b:95:de: 74:12:8f:21:ca:31:b5:44:39:94:e4:6a:18:f9:22: 23:95:e1:9d:45:31:28:da:93:a1:8a:d5:ea:cf:4a: 44:74:90:39:3d:3f:d8:27:5a:26:c3:5c:76:fb:46: b9:9c:a1:2c:dd:17:ad:5e:8a:fd:e9:3d:28:2c:55: a7:89:83:76:e3:97:fc:5c:36:fa:bc:7e:01:8b:37: 6b:84:c3:33:48:3a:17:89:be:ab:ab:c7:7d:5f:88: c0:4d:07:0b:f8:23:10:22:90:02:1b:be:63:c0:aa: 5b:55:63:b1:1b:c1:65:d5:c1:6b:9b:97:c2:c4:30: 22:38:b0:8a:41:0e:db:fe:c5:c8:97:58:c6:99:c7: 36:aa:45:32:32:d5:fa:4d:90:74:09:c5:98:6b:17: b5:c1:c1:64:dc:98:6a:d2:c4:56:80:7c:82:4f:e3: 5e:c9:01:7e:cb:07:a6:fd:bc:95:ef:bf:75:4f:9c: c5:45:60:f3:a6:82:03:98:65:65:0c:a1:d4:7f:e8: 49:76:59:ef:0b:69:48:cd:7e:8c:d5:26:a6:d5:73: 4c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3C:97:AF:EE:B3:71:61:6A:DB:E6:7C:76:C0:50:E8:BC:54:C7:CA X509v3 Authority Key Identifier: keyid:1A:69:34:CA:B5:21:3D:8B:43:FD:54:35:89:38:DD:1F:31:A1:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gmk0yrUhPYtD_VQ1iTjdHzGhaQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91518AF/D792F47456C011EB8BC35B74C4F9AE02/C1C296F45A7111EBB1700884C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.71.0/24 103.174.251.0/24 IPv6: 2001:df5:7880::/48 Signature Algorithm: sha256WithRSAEncryption b2:ac:c6:38:93:82:01:d5:f2:ac:05:86:61:a7:45:9d:ac:6d: 8d:08:3f:38:c6:5d:1e:e7:cb:8b:6d:e3:71:4b:8a:93:20:e6: ea:69:42:4c:ea:04:ca:1e:41:6b:94:26:27:18:00:4f:8a:35: 0e:14:e9:6e:0a:99:ad:93:0f:77:19:25:4b:c0:41:66:2f:c0: 16:79:8c:72:ca:87:66:df:58:de:27:7d:29:61:bd:52:e1:70: 69:bc:e1:fd:e4:89:45:1a:00:ac:b8:a6:2c:de:89:1b:c4:f5: 0b:ad:40:c9:0c:d2:05:81:9e:9a:a6:46:ce:26:e2:43:15:d7: 7f:aa:d9:3e:7b:d2:54:1f:7b:67:e7:7b:98:5f:67:af:43:c0: f8:dc:ed:e4:2f:f8:3e:02:a7:9f:a5:91:d4:07:81:cf:10:b2: 14:47:60:09:08:a5:9b:76:b8:73:63:fc:03:7c:d4:a1:e7:a2: 45:f9:05:6c:d3:12:e2:a9:70:2d:e6:6e:05:89:0d:99:02:c6: ca:1c:39:1a:be:f4:d4:01:e5:a2:3b:c7:78:a8:08:17:20:b0: 22:f1:2c:33:00:dc:26:8d:a4:72:86:07:89:9f:6b:2a:12:83: 0c:c0:8d:d1:e4:9a:57:1d:19:d7:38:74:28:8b:3f:a9:eb:8f: 84:ad:82:58 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4QUYxMTAvBgNVBAUTKDFBNjkzNENBQjUyMTNEOEI0M0ZENTQzNTg5MzhERDFG MzFBMTY5MEEwHhcNMjUxMjA4MjEwMjM4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzEyNC1lNjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU2sKwHLBzwVt5kfYpZv9OZGy6EIvWiE7iF5g1TsBEmjQN+TSqbK+pybld50 Eo8hyjG1RDmU5GoY+SIjleGdRTEo2pOhitXqz0pEdJA5PT/YJ1omw1x2+0a5nKEs 3RetXor96T0oLFWniYN245f8XDb6vH4BizdrhMMzSDoXib6rq8d9X4jATQcL+CMQ IpACG75jwKpbVWOxG8Fl1cFrm5fCxDAiOLCKQQ7b/sXIl1jGmcc2qkUyMtX6TZB0 CcWYaxe1wcFk3Jhq0sRWgHyCT+NeyQF+ywem/byV7791T5zFRWDzpoIDmGVlDKHU f+hJdlnvC2lIzX6M1Sam1XNMOwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFJo8l6/u s3FhatvmfHbAUOi8VMfKMB8GA1UdIwQYMBaAFBppNMq1IT2LQ/1UNYk43R8xoWkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MThBRi9ENzkyRjQ3NDU2 QzAxMUVCOEJDMzVCNzRDNEY5QUUwMi9HbWsweXJVaFBZdERfVlExaVRqZEh6R2hh UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtazB5clVoUFl0RF9WUTFpVGpkSHpHaGFRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE4QUYvRDc5MkY0NzQ1NkMwMTFFQjhCQzM1Qjc0QzRGOUFFMDIvQzFDMjk2RjQ1 QTcxMTFFQkIxNzAwODg0QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ59HAwQAZ677MA8EAgACMAkDBwAgAQ31eIAwDQYJKoZIhvcNAQEL BQADggEBALKsxjiTggHV8qwFhmGnRZ2sbY0IPzjGXR7ny4tt43FLipMg5uppQkzq BMoeQWuUJicYAE+KNQ4U6W4Kma2TD3cZJUvAQWYvwBZ5jHLKh2bfWN4nfSlhvVLh cGm84f3kiUUaAKy4pizeiRvE9QutQMkM0gWBnpqmRs4m4kMV13+q2T570lQfe2fn e5hfZ69DwPjc7eQv+D4Cp5+lkdQHgc8QshRHYAkIpZt2uHNj/AN81KHnokX5BWzT EuKpcC3mbgWJDZkCxsocORq+9NQB5aI7x3ioCBcgsCLxLDMA3CaNpHKGB4mfayoS gwzAjdHkmlcdGdc4dCiLP6nrj4Stglg= -----END CERTIFICATE-----Generated at Thu Mar 26 11:37:58 2026 by rpki-client