$ rpki-client -vvf rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/46D7B1B468F911EFAB3D9424C4F9AE02.roa File: 46D7B1B468F911EFAB3D9424C4F9AE02.roa (raw, json) Hash identifier: EANYonIlLAQsD77itNqvU5Ar2XS9wRUAE//HQHxkYJ8= Subject key identifier: AB:31:80:2B:99:A3:E8:4F:9A:2F:3E:22:EA:B1:7C:85:1D:1A:62:C3 Certificate issuer: /CN=A91A16CF/serialNumber=829F0F40884DD991121005B07D09A2CBFFB4DEC6 Certificate serial: 0C97 Authority key identifier: 82:9F:0F:40:88:4D:D9:91:12:10:05:B0:7D:09:A2:CB:FF:B4:DE:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/46D7B1B468F911EFAB3D9424C4F9AE02.roa Signing time: Sat 14 Mar 2026 02:13:38 +0000 ROA not before: Sat 14 Mar 2026 02:13:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134734 IP address blocks: 103.198.132.0/22 maxlen: 22 103.198.132.0/24 maxlen: 24 2403:60c0::/32 maxlen: 36 2403:60c0:100::/40 maxlen: 40 2403:60c0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.crl rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A16CF, serialNumber=829F0F40884DD991121005B07D09A2CBFFB4DEC6 Validity Not Before: Mar 14 02:13:38 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b4c452-ab2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:49:f1:54:19:73:84:8f:6a:26:47:70:35:69: 01:5e:ad:fc:01:19:05:13:15:a1:5f:92:03:7b:39: 65:52:67:ee:76:3e:c9:d5:70:a5:31:96:fc:b8:e5: a3:cb:03:0c:c0:f1:04:75:6c:5f:81:6a:db:9f:7d: ff:c8:6b:a8:30:e5:ce:f8:1a:43:cb:ea:fa:b3:95: ac:94:87:f3:66:4e:48:65:b2:e9:73:8b:02:f3:6b: 4d:94:e8:a2:52:bb:10:af:a2:b8:0d:db:77:6e:5d: 18:16:be:9a:4f:5c:39:ca:9d:7f:57:de:a9:7d:ca: 1e:27:e5:f9:60:41:ff:5e:92:65:1b:53:d5:97:b7: 95:cf:bf:08:a6:17:34:b5:7c:b5:15:1c:5b:8a:6d: 03:00:4f:8b:21:ce:23:c8:29:89:04:33:10:b1:b3: 23:01:42:10:56:64:87:fd:0f:11:50:ac:33:7c:59: 79:5e:47:5b:02:ad:64:6f:76:4a:9a:a8:fe:b4:04: 8a:91:2f:3c:ca:d1:a8:f8:4a:b2:2a:9e:b7:6d:52: 0f:18:e4:79:b9:8d:c5:1d:99:3e:6f:c1:29:40:8b: e9:91:0d:f4:65:d8:e9:d8:d9:2c:cb:82:22:98:a6: 72:4d:d1:74:62:3b:4b:40:1e:8c:be:a3:d6:f4:16: b6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:31:80:2B:99:A3:E8:4F:9A:2F:3E:22:EA:B1:7C:85:1D:1A:62:C3 X509v3 Authority Key Identifier: keyid:82:9F:0F:40:88:4D:D9:91:12:10:05:B0:7D:09:A2:CB:FF:B4:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/gp8PQIhN2ZESEAWwfQmiy_-03sY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gp8PQIhN2ZESEAWwfQmiy_-03sY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A16CF/2CAD508819A211EAAE811C71C4F9AE02/46D7B1B468F911EFAB3D9424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.198.132.0/22 IPv6: 2403:60c0::/32 Signature Algorithm: sha256WithRSAEncryption 62:3b:18:a2:4b:2e:5e:97:df:78:70:87:1e:3c:ae:b5:1a:f3: be:3f:86:a1:94:c2:2e:c7:c4:53:f8:da:91:ab:13:9e:e3:74: 94:f4:1b:63:f2:e5:7d:66:6a:9f:9e:e9:b9:ec:aa:ce:e8:01: 09:e1:1f:e8:69:fe:1e:71:bf:e2:f8:45:8f:28:1a:6e:b5:20: ae:02:47:84:67:85:49:e8:0e:cf:e0:a7:b0:52:c2:9a:8a:5c: 4b:de:b8:73:c2:4d:5e:ae:ad:8e:da:e8:0d:d3:aa:e0:e3:c9: 51:02:89:5b:25:55:0d:b3:5f:ed:3b:74:b9:59:a0:29:60:82: f3:e3:b5:12:50:66:40:32:e0:8e:2c:db:d7:a9:0e:df:90:fc: 8d:1b:f5:29:75:70:f4:08:53:a9:2c:00:a1:59:b3:3f:6c:da: ad:88:a6:2c:8e:31:be:7b:70:55:77:6d:d0:b0:77:da:cb:7b: cd:1f:5a:61:de:f3:98:84:81:eb:40:62:23:ec:e6:47:1f:41: 89:0f:98:b3:9b:f1:f5:64:31:3a:28:ac:8e:53:04:33:dc:a6: c4:c6:a1:21:71:0e:64:53:bd:85:f2:82:17:80:53:aa:ea:34: 7a:a5:de:71:66:79:82:2b:91:6e:96:b9:60:a8:7f:68:b9:0c: 8a:58:bc:f1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE2Q0YxMTAvBgNVBAUTKDgyOUYwRjQwODg0REQ5OTExMjEwMDVCMDdEMDlBMkNC RkZCNERFQzYwHhcNMjYwMzE0MDIxMzM4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI0YzQ1Mi1hYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EnxVBlzhI9qJkdwNWkBXq38ARkFExWhX5IDezllUmfudj7J1XClMZb8uOWj ywMMwPEEdWxfgWrbn33/yGuoMOXO+BpDy+r6s5WslIfzZk5IZbLpc4sC82tNlOii UrsQr6K4Ddt3bl0YFr6aT1w5yp1/V96pfcoeJ+X5YEH/XpJlG1PVl7eVz78Iphc0 tXy1FRxbim0DAE+LIc4jyCmJBDMQsbMjAUIQVmSH/Q8RUKwzfFl5XkdbAq1kb3ZK mqj+tASKkS88ytGo+EqyKp63bVIPGOR5uY3FHZk+b8EpQIvpkQ30Zdjp2Nksy4Ii mKZyTdF0YjtLQB6MvqPW9Ba2swIDAQABo4ICbzCCAmswHQYDVR0OBBYEFKsxgCuZ o+hPmi8+IuqxfIUdGmLDMB8GA1UdIwQYMBaAFIKfD0CITdmREhAFsH0Josv/tN7G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTZDRi8yQ0FENTA4ODE5 QTIxMUVBQUU4MTFDNzFDNEY5QUUwMi9ncDhQUUloTjJaRVNFQVd3ZlFtaXlfLTAz c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwOFBRSWhOMlpFU0VBV3dmUW1peV8tMDNzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE2Q0YvMkNBRDUwODgxOUEyMTFFQUFFODExQzcxQzRGOUFFMDIvNDZEN0IxQjQ2 OEY5MTFFRkFCM0Q5NDI0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ8aEMA0EAgACMAcDBQAkA2DAMA0GCSqGSIb3DQEBCwUAA4IBAQBi OxiiSy5el994cIcePK61GvO+P4ahlMIux8RT+NqRqxOe43SU9Btj8uV9Zmqfnum5 7KrO6AEJ4R/oaf4ecb/i+EWPKBputSCuAkeEZ4VJ6A7P4KewUsKailxL3rhzwk1e rq2O2ugN06rg48lRAolbJVUNs1/tO3S5WaApYILz47USUGZAMuCOLNvXqQ7fkPyN G/UpdXD0CFOpLAChWbM/bNqtiKYsjjG+e3BVd23QsHfay3vNH1ph3vOYhIHrQGIj 7OZHH0GJD5izm/H1ZDE6KKyOUwQz3KbExqEhcQ5kU72F8oIXgFOq6jR6pd5xZnmC K5FulrlgqH9ouQyKWLzx -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:39 2026 by rpki-client