$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa File: 43272DE249AA11EABABC8610C4F9AE02.roa (raw, json) Hash identifier: apuF+CHb5V3hRVn20QwCD8T6GZ5V5YYEYw6cYSsjqgE= Subject key identifier: D1:CC:DC:D3:90:E0:FB:E2:85:49:34:FB:55:4B:2C:6D:2A:04:65:60 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B87 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa Signing time: Sun 08 Mar 2026 19:24:27 +0000 ROA not before: Sun 08 Mar 2026 19:24:27 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140084 IP address blocks: 103.148.74.0/23 maxlen: 23 103.148.74.0/24 maxlen: 24 103.148.75.0/24 maxlen: 24 2001:df2:c180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2951 (0xb87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Mar 8 19:24:27 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69adccea-0648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:43:6b:ce:6e:3e:d2:02:2e:7c:9e:0f:88: 39:64:0d:d1:d7:c2:57:45:3f:a4:6c:01:85:83:95: bb:61:5c:71:42:6d:0e:2a:8f:42:6a:03:0b:aa:2d: b2:4d:29:c0:60:1a:d3:3f:32:91:0a:50:69:54:42: 45:72:cf:4c:8b:99:d2:73:24:00:0b:61:ca:2a:2d: e0:d7:7b:41:7d:f6:90:13:98:4a:23:c1:38:b0:8f: a7:ea:bd:b8:27:e1:14:b4:cb:89:49:f8:ee:1a:d9: 4a:9e:b1:5c:ba:50:f5:17:78:d2:d9:98:50:1a:72: f3:17:b8:d1:9e:21:80:e4:e8:44:b9:96:e7:c0:ea: 37:f0:d9:7e:8e:3b:97:7b:1c:7a:67:2a:39:98:b3: db:4e:70:b6:27:cc:2c:e4:07:ee:28:6c:cf:cf:e1: 62:40:b7:4b:b0:09:86:59:f8:82:e2:f9:b2:de:8e: 52:4a:ae:33:ac:07:02:a5:84:f8:44:3d:53:a2:bc: 73:29:b6:f4:5f:3c:03:8f:55:f0:7e:fd:41:33:81: 1c:ec:16:8b:c9:2c:9a:7b:92:57:3c:2d:31:8d:28: c7:88:bb:4c:58:06:d0:6c:14:2f:df:a8:76:da:26: c1:cb:58:c0:8a:4b:72:7f:12:d6:67:4c:71:b7:78: d5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CC:DC:D3:90:E0:FB:E2:85:49:34:FB:55:4B:2C:6D:2A:04:65:60 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.74.0/23 IPv6: 2001:df2:c180::/48 Signature Algorithm: sha256WithRSAEncryption 3c:26:e0:c4:d9:56:19:26:09:3d:bd:24:1b:e4:fa:0f:08:68: 76:17:9b:6a:49:91:45:4c:43:4b:82:47:38:6b:fc:b4:e2:38: a8:b3:c9:bb:1d:41:68:d0:57:4b:44:61:34:74:4d:4c:7c:84: 2b:97:80:9d:fb:72:2a:e3:a1:7d:4d:79:11:52:ac:48:7d:ed: 32:fa:d0:9b:5d:94:e5:0c:30:ae:a6:17:be:c0:a7:6a:da:b2: f2:83:60:47:88:eb:b2:db:10:74:e1:92:54:86:00:fb:bf:cb: 98:ee:1b:c2:93:66:33:ca:d3:f5:21:46:3c:09:de:d0:48:8a: 62:dd:9b:0f:b8:64:db:f7:03:ad:36:5c:9b:21:8d:58:dc:4b: f3:24:fa:d4:ea:d7:fc:fc:a9:eb:86:e5:32:38:18:91:b5:96: eb:43:f1:b7:a6:95:f9:a8:1b:e9:7e:22:39:16:9d:b5:62:90: 29:17:07:0d:df:d1:ef:61:b5:81:e9:9f:14:0b:66:e3:53:fc: 7b:01:86:bd:19:3a:9c:27:a7:e2:21:b0:03:36:44:c3:d8:6f: 73:8a:6a:a4:ba:cf:31:c1:35:12:6d:df:a7:c9:17:21:a8:c4: 8d:69:e2:06:8e:49:83:aa:54:9f:9c:5b:ea:78:8f:6e:7d:b1: f2:20:93:78 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjYwMzA4MTkyNDI3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFkY2NlYS0wNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEpDa85uPtICLnyeD4g5ZA3R18JXRT+kbAGFg5W7YVxxQm0OKo9CagMLqi2y TSnAYBrTPzKRClBpVEJFcs9Mi5nScyQAC2HKKi3g13tBffaQE5hKI8E4sI+n6r24 J+EUtMuJSfjuGtlKnrFculD1F3jS2ZhQGnLzF7jRniGA5OhEuZbnwOo38Nl+jjuX exx6Zyo5mLPbTnC2J8ws5AfuKGzPz+FiQLdLsAmGWfiC4vmy3o5SSq4zrAcCpYT4 RD1TorxzKbb0XzwDj1Xwfv1BM4Ec7BaLySyae5JXPC0xjSjHiLtMWAbQbBQv36h2 2ibBy1jAiktyfxLWZ0xxt3jVnwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNHM3NOQ 4PvihUk0+1VLLG0qBGVgMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ2N0QvODQ4RTdEMTg0OUE5MTFFQUE2RkREMzBGQzRGOUFFMDIvNDMyNzJERTI0 OUFBMTFFQUJBQkM4NjEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5RKMA8EAgACMAkDBwAgAQ3ywYAwDQYJKoZIhvcNAQELBQADggEB ADwm4MTZVhkmCT29JBvk+g8IaHYXm2pJkUVMQ0uCRzhr/LTiOKizybsdQWjQV0tE YTR0TUx8hCuXgJ37cirjoX1NeRFSrEh97TL60JtdlOUMMK6mF77Ap2rasvKDYEeI 67LbEHThklSGAPu/y5juG8KTZjPK0/UhRjwJ3tBIimLdmw+4ZNv3A602XJshjVjc S/Mk+tTq1/z8qeuG5TI4GJG1lutD8bemlfmoG+l+IjkWnbVikCkXBw3f0e9htYHp nxQLZuNT/HsBhr0ZOpwnp+IhsAM2RMPYb3OKaqS6zzHBNRJt36fJFyGoxI1p4gaO SYOqVJ+cW+p4j259sfIgk3g= -----END CERTIFICATE-----Generated at Thu Mar 26 06:26:37 2026 by rpki-client