$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa File: D45022C8CEC211EE80F08B36C4F9AE02.roa (raw, json) Hash identifier: iG/FIqaT6KtwO+xKsXOo+peJz09fYygQm2FEIezx1zo= Subject key identifier: 67:E0:2E:F7:51:9C:4A:4B:2A:C8:02:F5:E5:9B:84:72:51:18:94:1B Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: 0185 Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:07:56 +0000 ROA not before: Mon 11 Aug 2025 05:13:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24225 IP address blocks: 103.67.240.0/23 maxlen: 24 103.67.242.0/24 maxlen: 24 103.67.243.0/24 maxlen: 24 203.160.48.0/24 maxlen: 24 203.160.50.0/23 maxlen: 24 2405:da80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6, serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: Aug 11 05:13:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58bac-37a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7f:25:e2:7c:66:34:3f:ea:86:70:c4:34:8d: bc:bd:d1:a1:92:10:22:d3:78:e8:d6:19:b4:39:cd: a7:10:a7:ac:c1:c3:89:f7:38:ce:f9:35:09:5d:8c: 98:04:f0:bc:a1:2e:af:2c:1e:17:c1:85:a2:01:61: 31:11:74:ca:a7:da:e6:9d:fa:67:3e:4e:55:39:bf: 2a:7e:c3:43:2b:95:57:5c:ef:3a:3b:bc:7e:08:86: b6:38:4c:3b:0b:cd:dc:3a:e1:78:51:bf:cd:1a:68: 21:cb:25:98:40:4f:4b:35:82:2b:d5:4c:cd:32:72: 26:95:ca:17:a1:9c:bf:27:b9:59:91:ce:9f:b5:3e: f9:a6:d4:bc:18:30:08:be:1d:2d:a9:96:d9:f8:da: d6:78:64:91:b9:14:40:ed:79:0d:ee:99:b4:ec:5d: fd:14:16:1b:ad:02:e0:4b:16:fd:c5:cc:e7:65:2e: 79:82:c8:92:64:2c:d2:76:9f:91:06:43:4e:c7:a7: 61:4e:81:56:d9:6e:15:75:96:ed:ce:e1:ff:b5:56: 68:09:ee:6b:8e:cf:9e:c8:3e:47:ae:1b:f1:0f:f6: 8a:a5:96:b6:88:1f:de:1f:75:08:08:fb:8c:74:75: e8:e3:11:df:61:19:04:8d:58:a3:74:6e:03:9f:c7: 73:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E0:2E:F7:51:9C:4A:4B:2A:C8:02:F5:E5:9B:84:72:51:18:94:1B X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/D45022C8CEC211EE80F08B36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.67.240.0/22 203.160.48.0/24 203.160.50.0/23 IPv6: 2405:da80::/32 Signature Algorithm: sha256WithRSAEncryption 9c:0f:72:18:e2:f4:1e:56:41:f2:2b:7c:23:45:a5:36:4b:ce: bd:41:3f:c3:00:ea:3a:2b:b4:b2:59:d0:9a:45:13:0f:50:56: 90:e0:82:8a:10:82:b2:22:09:4b:1f:fa:66:eb:1b:1f:36:4c: 7c:bc:fa:5c:e2:4c:ae:c5:7f:d8:6c:22:92:9b:1c:06:a0:1a: a5:14:44:7c:ad:04:54:66:a4:53:04:37:55:5c:f5:73:40:12: 2a:eb:be:88:1a:07:ba:a9:d6:d1:97:da:3f:f8:ce:72:0e:a3: dc:16:c9:68:93:eb:51:11:1d:4f:09:89:d6:17:e7:5a:f7:a6: d1:36:ed:dc:16:80:76:ae:8f:e7:f0:35:81:79:cb:43:b8:bc: a9:16:0b:2e:f0:8d:8e:86:79:08:4a:dd:84:55:d9:84:d7:13: 32:e4:6c:32:6b:0f:2f:e1:93:39:ff:21:98:8c:1e:f2:2f:36: 35:cc:ee:2d:90:05:24:b6:0a:2f:b7:bb:de:25:3f:4b:e1:95: 72:73:0a:74:fd:83:ad:69:97:ea:03:80:c7:ac:76:eb:53:a0: c7:97:3e:c8:12:41:90:93:96:49:05:b3:3f:7e:6c:7c:f7:ad: c4:e4:26:21:49:4c:91:f1:7e:77:57:5d:bf:62:cb:75:2b:0f: 84:97:1a:3c -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ3QjYxMTAvBgNVBAUTKDBDRDkwNEM3RUIzOTBBRDFBNTVEQkFGNEZDNTAwNTRD MDg1NDZFMkIwHhcNMjUwODExMDUxMzA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJhYy0zN2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArX8l4nxmND/qhnDENI28vdGhkhAi03jo1hm0Oc2nEKeswcOJ9zjO+TUJXYyY BPC8oS6vLB4XwYWiAWExEXTKp9rmnfpnPk5VOb8qfsNDK5VXXO86O7x+CIa2OEw7 C83cOuF4Ub/NGmghyyWYQE9LNYIr1UzNMnImlcoXoZy/J7lZkc6ftT75ptS8GDAI vh0tqZbZ+NrWeGSRuRRA7XkN7pm07F39FBYbrQLgSxb9xcznZS55gsiSZCzSdp+R BkNOx6dhToFW2W4VdZbtzuH/tVZoCe5rjs+eyD5HrhvxD/aKpZa2iB/eH3UICPuM dHXo4xHfYRkEjVijdG4Dn8dz7wIDAQABo4ICezCCAncwHQYDVR0OBBYEFGfgLvdR nEpLKsgC9eWbhHJRGJQbMB8GA1UdIwQYMBaAFAzZBMfrOQrRpV269PxQBUwIVG4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDdCNi85MDVEN0ZFRUNF QzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0R2xYYnIwX0ZBRlRBaFVi aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ3QjYvOTA1RDdGRUVDRUMxMTFFRThDRjAxNzQwQzRGOUFFMDIvRDQ1MDIyQzhD RUMyMTFFRTgwRjA4QjM2QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZ0PwAwQAy6AwAwQBy6AyMA0EAgACMAcDBQAkBdqAMA0GCSqGSIb3 DQEBCwUAA4IBAQCcD3IY4vQeVkHyK3wjRaU2S869QT/DAOo6K7SyWdCaRRMPUFaQ 4IKKEIKyIglLH/pm6xsfNkx8vPpc4kyuxX/YbCKSmxwGoBqlFER8rQRUZqRTBDdV XPVzQBIq676IGge6qdbRl9o/+M5yDqPcFslok+tRER1PCYnWF+da96bRNu3cFoB2 ro/n8DWBectDuLypFgsu8I2OhnkISt2EVdmE1xMy5Gwyaw8v4ZM5/yGYjB7yLzY1 zO4tkAUktgovt7veJT9L4ZVycwp0/YOtaZfqA4DHrHbrU6DHlz7IEkGQk5ZJBbM/ fmx8963E5CYhSUyR8X53V12/Yst1Kw+Elxo8 -----END CERTIFICATE-----Generated at Sat Mar 28 10:24:04 2026 by rpki-client