$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa File: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: YN95xNIiCMWNGdl4rk75ApRqVC/9aQWMU1hl+gidJAM= Subject key identifier: 17:43:CB:6D:0C:9E:C4:8F:79:81:62:AF:FE:99:0D:76:57:3C:6F:F8 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0566 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:49:54 +0000 ROA not before: Tue 09 Sep 2025 00:05:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Sep 9 00:05:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46e32-8177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:66:4b:f7:af:7e:e8:df:01:33:ff:67:a0:8e: e3:4e:a1:04:4e:60:c1:2c:22:57:79:21:db:bb:a2: de:31:e7:69:56:23:08:d9:27:d9:41:90:1f:ac:00: 4c:ab:1a:fe:a3:0c:5e:de:78:44:00:b8:ca:3c:3b: 53:8e:c9:6b:6f:83:4e:9a:66:25:51:f3:9e:5b:29: 52:41:c6:64:26:51:3d:18:db:c8:c9:6d:a0:b0:11: 12:12:58:de:ed:76:d0:cb:8e:ad:27:93:d8:a8:41: 65:1f:e1:db:4f:95:24:27:7a:52:bc:c0:c6:e6:33: c5:ba:ee:e6:d0:2e:76:da:1a:1c:51:64:6e:04:da: 82:37:17:6d:40:73:23:50:6b:90:5e:45:00:33:e4: fa:b7:9d:d5:0f:75:38:1e:ed:fa:72:4c:e7:90:1b: ff:de:86:3b:85:08:fc:45:a2:2e:d9:a6:ae:ef:d9: 48:a2:05:00:ad:c2:8d:41:65:17:f4:71:a9:af:e9: 09:ae:f7:8b:66:80:ce:1f:45:58:2d:0c:82:1d:17: d6:13:e6:c1:e1:2f:7a:c6:b7:db:e9:df:42:67:1d: 1d:55:6e:f2:43:1d:94:e0:95:5d:2b:76:d4:e2:55: c7:f1:be:85:09:2a:9b:df:d8:e2:e4:58:b1:8c:6c: 7a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:43:CB:6D:0C:9E:C4:8F:79:81:62:AF:FE:99:0D:76:57:3C:6F:F8 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:98:1d:b8:21:c5:56:e1:40:6b:47:4c:80:5a:8f:15:65:01: 36:22:b1:67:a9:1b:81:02:08:ba:bf:65:6e:dc:08:48:f6:b9: a1:06:97:ea:1c:ff:6b:01:68:fd:00:96:b4:3a:aa:ca:00:08: dd:67:97:52:b2:69:14:7f:98:58:4a:da:78:5b:1e:16:08:dd: 45:be:d4:1e:c4:70:6a:51:20:c7:5a:fe:49:d1:43:16:72:11: 30:c1:33:87:d3:0e:a6:5d:ec:99:cd:6b:b5:7e:dc:b2:6e:c5: 73:53:bd:3b:1d:fd:42:a6:18:42:df:e6:b9:b4:77:ce:48:2e: f1:e4:01:d7:fc:02:8e:3d:15:78:ca:c6:63:13:b9:73:7a:fc: d9:07:f3:9f:bf:3e:6d:71:49:ba:ba:88:f6:a2:fd:11:d8:21: 77:0a:c3:19:65:39:11:a4:61:91:9f:31:21:e4:24:c0:25:a5: af:9d:53:45:0b:5c:1d:25:f8:af:f2:9d:a5:2a:44:b2:1d:c1: d6:ff:b1:29:1a:c3:d1:d8:ce:44:fa:1c:34:11:fa:8d:ba:8a: 89:5c:7a:03:6d:1b:61:1a:38:88:ae:07:f0:f8:af:e0:fe:be: 6e:68:cb:02:8d:af:8c:f9:b7:f1:9c:ce:61:55:82:07:07:98: 88:b1:bb:62 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwOTA5MDAwNTI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmUzMi04MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGZL969+6N8BM/9noI7jTqEETmDBLCJXeSHbu6LeMedpViMI2SfZQZAfrABM qxr+owxe3nhEALjKPDtTjslrb4NOmmYlUfOeWylSQcZkJlE9GNvIyW2gsBESElje 7XbQy46tJ5PYqEFlH+HbT5UkJ3pSvMDG5jPFuu7m0C522hocUWRuBNqCNxdtQHMj UGuQXkUAM+T6t53VD3U4Hu36ckznkBv/3oY7hQj8RaIu2aau79lIogUArcKNQWUX 9HGpr+kJrveLZoDOH0VYLQyCHRfWE+bB4S96xrfb6d9CZx0dVW7yQx2U4JVdK3bU 4lXH8b6FCSqb39ji5FixjGx6bQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBdDy20M nsSPeYFir/6ZDXZXPG/4MB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUVGQTNERDAy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ0YxAwQAZ0YzAwQAtjaHMA0GCSqGSIb3DQEBCwUAA4IBAQA6mB24 IcVW4UBrR0yAWo8VZQE2IrFnqRuBAgi6v2Vu3AhI9rmhBpfqHP9rAWj9AJa0OqrK AAjdZ5dSsmkUf5hYStp4Wx4WCN1FvtQexHBqUSDHWv5J0UMWchEwwTOH0w6mXeyZ zWu1ftyybsVzU707Hf1CphhC3+a5tHfOSC7x5AHX/AKOPRV4ysZjE7lzevzZB/Of vz5tcUm6uoj2ov0R2CF3CsMZZTkRpGGRnzEh5CTAJaWvnVNFC1wdJfiv8p2lKkSy HcHW/7EpGsPR2M5E+hw0EfqNuoqJXHoDbRthGjiIrgfw+K/g/r5uaMsCja+M+bfx nM5hVYIHB5iIsbti -----END CERTIFICATE-----Generated at Thu Mar 26 11:11:47 2026 by rpki-client