$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/2FFDFB74A5F111EC89780C38C4F9AE02.roa File: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (raw, json) Hash identifier: OiBvrzdUg3NqY/AvkOcWY8IElMaVk3LH+da3dKWzBQY= Subject key identifier: C4:99:2B:30:61:45:F0:16:C1:99:34:37:03:AB:E7:9A:92:31:41:72 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 0421 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/2FFDFB74A5F111EC89780C38C4F9AE02.roa Signing time: Fri 13 Mar 2026 00:33:46 +0000 ROA not before: Fri 13 Mar 2026 00:33:46 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 141737 IP address blocks: 103.182.212.0/23 maxlen: 23 103.182.212.0/24 maxlen: 24 103.182.213.0/24 maxlen: 24 2001:df0:7fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Mar 13 00:33:46 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b35b6a-ae3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:49:c8:b5:77:5c:69:b0:49:59:47:9d:73: ff:39:d6:1f:cf:1d:83:5b:c6:32:48:cb:d1:53:e2: 2c:8b:a1:bb:d5:1c:92:bf:db:ef:e4:ac:a1:37:7e: 31:3d:1e:33:6c:85:b2:a3:6d:00:c1:99:b5:ea:b2: 54:1d:b5:c2:d1:8c:2b:4a:02:7e:2d:cd:7b:e1:93: 5c:b0:4e:d6:9f:dd:21:a7:46:4f:4d:78:79:af:73: 69:ce:4d:89:fc:a8:44:80:c3:6d:eb:e2:8c:37:8d: d1:05:44:95:62:18:a3:69:ff:31:d2:f7:0a:96:cf: c3:fc:3e:3f:80:34:fb:c1:76:4f:13:7b:a6:b2:73: 83:17:a2:5f:a1:31:75:a3:db:7e:41:ad:54:72:6c: 53:0c:19:c2:96:22:3b:36:c3:4e:81:0f:24:d5:92: 59:88:fd:e0:15:2d:04:34:f9:ff:a9:01:41:37:08: 11:34:8b:20:4f:50:99:f7:40:4f:2f:7d:65:52:1a: 27:f4:90:c3:03:b8:3f:34:18:5f:7c:0a:e3:67:16: b2:b4:21:b3:b7:90:ac:df:ad:4f:0b:76:68:42:81: 20:1d:98:de:96:1e:fc:a0:11:f3:3b:c8:9c:30:c7: 26:62:94:78:d6:77:9d:be:32:e7:61:a1:a2:73:4a: b8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:99:2B:30:61:45:F0:16:C1:99:34:37:03:AB:E7:9A:92:31:41:72 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/2FFDFB74A5F111EC89780C38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.182.212.0/23 IPv6: 2001:df0:7fc0::/48 Signature Algorithm: sha256WithRSAEncryption 02:bc:e7:f6:56:c5:16:fb:07:28:b8:3a:47:86:3b:98:17:ae: 8d:2d:c2:ef:bc:f9:1f:b7:07:4c:e4:f5:a5:37:15:11:a5:fa: f3:9c:c6:ce:17:37:58:99:a5:85:c3:4d:3a:c9:e9:ba:32:50: ba:e3:c6:c6:99:ba:ea:9f:87:71:4e:bc:8c:28:4a:b8:fe:6d: 12:a9:31:01:74:47:9f:78:15:d9:98:7f:f4:5b:fa:23:da:cb: 05:fc:71:1e:97:0d:07:f3:d9:7c:f2:bc:ae:7e:14:cc:b2:f6: ea:e0:76:04:6f:d0:69:52:47:4c:a1:57:e2:38:9a:1b:5f:ea: 02:0d:64:fb:eb:3b:3f:1d:6c:d1:f2:d4:d4:aa:bc:d0:43:fd: af:1b:07:e3:1e:9c:be:79:61:11:f5:a2:f8:93:5f:f2:bc:00: 23:87:f5:02:fb:93:3a:5a:59:02:35:ac:05:98:6e:b6:0a:0c: 8b:68:4e:aa:7f:68:8c:62:b3:52:36:f7:20:95:6e:25:81:3a: 3f:fa:13:57:e8:26:d4:50:25:d0:9d:55:53:31:e3:3f:b2:3e: f2:3d:e7:4d:30:bf:1f:08:4b:76:18:5a:99:83:2d:2b:f1:be: 14:a6:70:61:b0:8d:98:ff:d2:24:69:b6:98:4c:e9:4c:28:b0: 7a:e5:02:15 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjYwMzEzMDAzMzQ2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzNWI2YS1hZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bhJyLV3XGmwSVlHnXP/OdYfzx2DW8YySMvRU+Isi6G71RySv9vv5KyhN34x PR4zbIWyo20AwZm16rJUHbXC0YwrSgJ+Lc174ZNcsE7Wn90hp0ZPTXh5r3Npzk2J /KhEgMNt6+KMN43RBUSVYhijaf8x0vcKls/D/D4/gDT7wXZPE3umsnODF6JfoTF1 o9t+Qa1UcmxTDBnCliI7NsNOgQ8k1ZJZiP3gFS0ENPn/qQFBNwgRNIsgT1CZ90BP L31lUhon9JDDA7g/NBhffArjZxaytCGzt5Cs361PC3ZoQoEgHZjelh78oBHzO8ic MMcmYpR41nedvjLnYaGic0q4sQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMSZKzBh RfAWwZk0NwOr55qSMUFyMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEQzEvNTBDNjAyN0FBNTA2MTFFQzgyQTI0MzdEQzRGOUFFMDIvMkZGREZCNzRB NUYxMTFFQzg5NzgwQzM4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7bUMA8EAgACMAkDBwAgAQ3wf8AwDQYJKoZIhvcNAQELBQADggEB AAK85/ZWxRb7Byi4OkeGO5gXro0twu+8+R+3B0zk9aU3FRGl+vOcxs4XN1iZpYXD TTrJ6boyULrjxsaZuuqfh3FOvIwoSrj+bRKpMQF0R594FdmYf/Rb+iPaywX8cR6X DQfz2XzyvK5+FMyy9urgdgRv0GlSR0yhV+I4mhtf6gINZPvrOz8dbNHy1NSqvNBD /a8bB+MenL55YRH1oviTX/K8ACOH9QL7kzpaWQI1rAWYbrYKDItoTqp/aIxis1I2 9yCVbiWBOj/6E1foJtRQJdCdVVMx4z+yPvI9500wvx8IS3YYWpmDLSvxvhSmcGGw jZj/0iRptphM6UwosHrlAhU= -----END CERTIFICATE-----Generated at Sat Mar 28 12:08:50 2026 by rpki-client