$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/B96DD308BF4311EE844DDD58C4F9AE02.roa File: B96DD308BF4311EE844DDD58C4F9AE02.roa (raw, json) Hash identifier: s2McCJvzrvLO2L5m921n+BYOsXPsp44AliQovvr+vWQ= Subject key identifier: D3:08:12:D4:88:B5:9A:03:05:7E:2F:2A:30:5C:DE:9F:69:71:F5:32 Certificate issuer: /CN=A91AB2EB/serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Certificate serial: 0194 Authority key identifier: 55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/B96DD308BF4311EE844DDD58C4F9AE02.roa Signing time: Sat 07 Mar 2026 04:39:04 +0000 ROA not before: Sat 07 Mar 2026 04:39:04 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135343 IP address blocks: 103.214.192.0/22 maxlen: 22 103.214.192.0/24 maxlen: 24 103.214.193.0/24 maxlen: 24 103.214.194.0/24 maxlen: 24 103.214.195.0/24 maxlen: 24 144.48.140.0/22 maxlen: 22 144.48.140.0/24 maxlen: 24 144.48.141.0/24 maxlen: 24 144.48.142.0/24 maxlen: 24 144.48.143.0/24 maxlen: 24 2001:df1:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB2EB, serialNumber=5559831ADCEDECA5FA92FC4EB5D2EDE62E37A8CD Validity Not Before: Mar 7 04:39:04 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69ababe8-b3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cf:28:0a:08:76:12:03:6a:80:5f:e6:48:9d: d1:e1:5b:f8:6a:3d:ac:35:8d:fa:b6:1b:6a:fc:44: c8:11:68:db:32:09:d9:d8:02:9e:4c:cf:d2:74:67: 6b:30:8e:73:e7:07:11:d1:7b:65:f0:ff:69:a2:ed: 65:f6:4a:36:0b:d0:20:0a:b6:9d:00:05:d5:65:65: 34:e1:16:96:47:43:ae:e5:5f:29:fc:a0:95:e2:a3: 19:b3:d0:af:94:ec:3c:b9:e8:a0:46:c6:c5:0f:03: 1d:0a:c2:8c:d5:f1:d2:48:3d:18:71:d7:22:65:cd: b1:b0:50:ea:30:93:e9:45:d4:3e:4e:21:4c:61:0f: f3:2f:75:1f:0c:4c:b9:ce:c4:69:d5:7d:5f:cb:35: 40:8a:40:ef:a6:5d:99:54:66:d5:ff:9e:f3:24:31: c0:79:5a:8b:89:58:e7:34:29:dc:e9:3f:e9:3f:b1: 00:88:95:6f:4a:a2:b3:2d:04:e3:6e:c5:c0:c6:6c: da:53:c5:3d:a6:e4:fe:e8:42:f3:12:20:11:6a:18: 0a:03:a5:a0:d9:b6:c7:56:2f:83:a5:98:5d:16:3b: fc:ee:fa:d4:6b:2c:04:0d:b0:9b:e0:37:16:3a:45: a2:45:a4:aa:f5:d9:63:2a:23:d5:11:c0:0d:50:99: a6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:08:12:D4:88:B5:9A:03:05:7E:2F:2A:30:5C:DE:9F:69:71:F5:32 X509v3 Authority Key Identifier: keyid:55:59:83:1A:DC:ED:EC:A5:FA:92:FC:4E:B5:D2:ED:E6:2E:37:A8:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/VVmDGtzt7KX6kvxOtdLt5i43qM0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VVmDGtzt7KX6kvxOtdLt5i43qM0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB2EB/430B5A78BF4311EE8FD30758C4F9AE02/B96DD308BF4311EE844DDD58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.214.192.0/22 144.48.140.0/22 IPv6: 2001:df1:b200::/48 Signature Algorithm: sha256WithRSAEncryption c5:05:e9:4e:ad:a9:fc:26:88:b9:87:08:fa:2a:4e:3e:fa:e7: 2a:f1:af:e0:c5:95:c1:dd:78:70:09:8a:2f:e7:3c:7b:45:e1: 44:da:39:d6:2e:e9:54:e8:fd:6c:39:41:3d:56:52:80:e1:f8: 34:10:a4:3a:26:f8:64:20:e6:f8:79:ef:e7:bb:69:bc:f3:27: 78:78:9e:59:b9:0f:dc:35:8b:13:9c:b3:4d:a7:8e:03:71:e0: 89:94:59:48:9c:05:17:f7:ca:3e:f0:d9:f7:6b:e1:5f:62:55: 8b:f9:0a:78:3b:0d:6c:38:fc:68:8f:9d:4f:65:0c:e2:cd:26: 72:d6:97:d4:16:80:05:8d:04:be:99:a2:1b:30:3f:34:08:d6: 95:9b:23:e1:20:04:6b:16:7b:e3:fe:25:b1:94:df:d8:a1:19: 29:42:84:c6:8d:c3:90:bb:61:48:49:ef:52:81:84:54:c8:dc: 09:02:8e:e4:d7:eb:d5:64:76:24:fc:48:46:30:03:1e:d7:de: dc:22:bd:86:d0:df:c4:e2:a7:d3:b7:85:47:25:eb:68:90:74: 04:78:62:4f:05:0b:5c:b4:b1:15:71:fa:92:f6:c4:d5:03:6c: 1d:9b:f5:1e:b8:13:3a:d6:f0:79:c6:1c:22:15:66:7a:64:b0: e8:23:c5:c7 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyRUIxMTAvBgNVBAUTKDU1NTk4MzFBRENFREVDQTVGQTkyRkM0RUI1RDJFREU2 MkUzN0E4Q0QwHhcNMjYwMzA3MDQzOTA0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYWJlOC1iM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s8oCgh2EgNqgF/mSJ3R4Vv4aj2sNY36thtq/ETIEWjbMgnZ2AKeTM/SdGdr MI5z5wcR0Xtl8P9pou1l9ko2C9AgCradAAXVZWU04RaWR0Ou5V8p/KCV4qMZs9Cv lOw8ueigRsbFDwMdCsKM1fHSSD0YcdciZc2xsFDqMJPpRdQ+TiFMYQ/zL3UfDEy5 zsRp1X1fyzVAikDvpl2ZVGbV/57zJDHAeVqLiVjnNCnc6T/pP7EAiJVvSqKzLQTj bsXAxmzaU8U9puT+6ELzEiARahgKA6Wg2bbHVi+DpZhdFjv87vrUaywEDbCb4DcW OkWiRaSq9dljKiPVEcANUJmmowIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFNMIEtSI tZoDBX4vKjBc3p9pcfUyMB8GA1UdIwQYMBaAFFVZgxrc7eyl+pL8TrXS7eYuN6jN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjJFQi80MzBCNUE3OEJG NDMxMUVFOEZEMzA3NThDNEY5QUUwMi9WVm1ER3R6dDdLWDZrdnhPdGRMdDVpNDNx TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZWbURHdHp0N0tYNmt2eE90ZEx0NWk0M3FNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyRUIvNDMwQjVBNzhCRjQzMTFFRThGRDMwNzU4QzRGOUFFMDIvQjk2REQzMDhC RjQzMTFFRTg0NERERDU4QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ9bAAwQCkDCMMA8EAgACMAkDBwAgAQ3xsgAwDQYJKoZIhvcNAQEL BQADggEBAMUF6U6tqfwmiLmHCPoqTj765yrxr+DFlcHdeHAJii/nPHtF4UTaOdYu 6VTo/Ww5QT1WUoDh+DQQpDom+GQg5vh57+e7abzzJ3h4nlm5D9w1ixOcs02njgNx 4ImUWUicBRf3yj7w2fdr4V9iVYv5Cng7DWw4/GiPnU9lDOLNJnLWl9QWgAWNBL6Z ohswPzQI1pWbI+EgBGsWe+P+JbGU39ihGSlChMaNw5C7YUhJ71KBhFTI3AkCjuTX 69VkdiT8SEYwAx7X3twivYbQ38Tip9O3hUcl62iQdAR4Yk8FC1y0sRVx+pL2xNUD bB2b9R64EzrW8HnGHCIVZnpksOgjxcc= -----END CERTIFICATE-----Generated at Thu Mar 26 14:26:20 2026 by rpki-client