$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa File: 4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa (raw, json) Hash identifier: MuFeUXJQMqi0fVou2JntsqZgqjdBB8a9imttA6TArYU= Subject key identifier: 96:F5:F8:82:6C:2F:2E:71:8C:65:EB:AB:A8:B8:D7:05:5B:12:FF:04 Certificate issuer: /CN=A91B9008/serialNumber=6CBB6767F63A0CB9B7A74914B4A657417E4C578A Certificate serial: 01A3 Authority key identifier: 6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa Signing time: Tue 17 Mar 2026 03:38:27 +0000 ROA not before: Tue 17 Mar 2026 03:38:27 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140089 IP address blocks: 103.148.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9008, serialNumber=6CBB6767F63A0CB9B7A74914B4A657417E4C578A Validity Not Before: Mar 17 03:38:27 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69b8ccb3-0e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:a8:3a:5c:c1:0e:c7:74:c4:fa:fc:7b:ee: 0b:ea:66:2f:59:b9:27:05:25:cf:39:07:35:17:2b: 6e:05:14:08:2f:90:e1:03:da:04:c5:d6:d6:61:ad: 14:b7:f4:57:23:3d:a6:8a:4b:ec:0d:a0:4b:ad:df: 91:2a:14:c9:93:10:08:5c:a0:14:ba:48:cd:63:08: 80:17:e0:65:58:54:b1:de:4d:5d:1c:e0:33:9f:7a: ba:69:f6:09:2a:29:67:a9:28:f8:99:0c:c4:2b:37: 71:d6:d9:ac:cb:da:09:dc:ee:5f:ea:b2:f3:71:8b: 35:26:a6:72:1e:0d:d8:fa:42:30:b8:46:fa:bb:d7: 21:cd:ae:60:21:7c:0b:86:d1:99:60:6b:ca:35:a8: 80:ac:e0:d3:5e:70:c7:d0:b8:41:5c:10:4a:56:5b: 6f:c9:a9:c3:c6:5e:eb:c5:79:f8:8a:6a:cd:3f:01: 8f:c2:dd:1f:df:b9:3e:a4:78:72:91:af:c7:8f:7c: c6:64:ad:d8:f3:16:a0:5e:f2:6d:3f:76:69:db:f0: 8a:78:c0:55:17:75:64:89:ac:df:3b:73:cc:75:d9: 1a:8c:f1:6a:af:ef:e5:d2:91:3e:24:17:c1:c9:ff: d7:6e:c8:42:bb:60:6f:26:9d:0d:e3:9b:c3:5c:ba: 04:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F5:F8:82:6C:2F:2E:71:8C:65:EB:AB:A8:B8:D7:05:5B:12:FF:04 X509v3 Authority Key Identifier: keyid:6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.90.0/24 Signature Algorithm: sha256WithRSAEncryption 24:be:5d:59:33:a0:ee:92:91:0c:fc:29:1c:b4:0a:53:dc:25: a6:31:10:48:8e:08:03:ac:ca:b6:a4:14:1b:79:b4:22:6f:aa: 56:0a:08:26:26:13:95:24:b0:67:19:02:5a:8b:cd:a8:3c:2b: fd:f6:e5:1b:33:fb:60:8b:6d:db:af:ab:58:b3:20:63:00:a6: 21:6e:09:3e:2a:65:88:52:07:bd:3a:2a:fd:dd:6f:8f:0b:0a: 1b:6f:f5:39:df:39:ea:25:35:59:b7:2d:35:a4:94:95:4b:7d: c7:65:ac:15:51:3a:e7:91:b3:7f:c3:64:87:11:a5:80:2d:57: d1:ff:fa:80:e3:0f:7a:2f:4c:81:db:e7:59:46:44:c0:2c:53: 68:2c:d7:1b:74:8f:99:f1:2d:cb:42:4c:1a:6c:20:cc:cb:ea: df:33:fa:a2:58:c4:ce:18:3f:f8:19:1f:bd:de:bb:48:f1:c9: ca:d1:98:4a:71:75:88:7c:20:44:66:5f:d1:0c:ec:e2:b4:23: d5:fa:7a:58:a8:38:41:57:09:21:83:8a:19:58:8d:c7:f4:20: 17:6b:14:11:de:b2:8c:6c:0b:9e:59:78:b0:eb:4f:a5:d8:57: 3f:b2:99:ab:c3:85:ba:96:a1:9c:70:f2:2e:3d:42:a0:22:de: b0:48:16:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMDgxMTAvBgNVBAUTKDZDQkI2NzY3RjYzQTBDQjlCN0E3NDkxNEI0QTY1NzQx N0U0QzU3OEEwHhcNMjYwMzE3MDMzODI3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4Y2NiMy0wZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eqoOlzBDsd0xPr8e+4L6mYvWbknBSXPOQc1FytuBRQIL5DhA9oExdbWYa0U t/RXIz2mikvsDaBLrd+RKhTJkxAIXKAUukjNYwiAF+BlWFSx3k1dHOAzn3q6afYJ KilnqSj4mQzEKzdx1tmsy9oJ3O5f6rLzcYs1JqZyHg3Y+kIwuEb6u9chza5gIXwL htGZYGvKNaiArODTXnDH0LhBXBBKVltvyanDxl7rxXn4imrNPwGPwt0f37k+pHhy ka/Hj3zGZK3Y8xagXvJtP3Zp2/CKeMBVF3VkiazfO3PMddkajPFqr+/l0pE+JBfB yf/XbshCu2BvJp0N45vDXLoEgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJb1+IJs Ly5xjGXrq6i41wVbEv8EMB8GA1UdIwQYMBaAFGy7Z2f2Ogy5t6dJFLSmV0F+TFeK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAwOC8wQThGQkIxQUI0 MzIxMUVFQTI2NDQ0MENDNEY5QUUwMi9iTHRuWl9ZNkRMbTNwMGtVdEtaWFFYNU1W NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMdG5aX1k2RExtM3Awa1V0S1pYUVg1TVY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkwMDgvMEE4RkJCMUFCNDMyMTFFRUEyNjQ0NDBDQzRGOUFFMDIvNENGREYwM0FC NERCMTFFRTlGRjZGQjU5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5RaMA0GCSqGSIb3DQEBCwUAA4IBAQAkvl1ZM6DukpEM/CkctApT 3CWmMRBIjggDrMq2pBQbebQib6pWCggmJhOVJLBnGQJai82oPCv99uUbM/tgi23b r6tYsyBjAKYhbgk+KmWIUge9Oir93W+PCwobb/U53znqJTVZty01pJSVS33HZawV UTrnkbN/w2SHEaWALVfR//qA4w96L0yB2+dZRkTALFNoLNcbdI+Z8S3LQkwabCDM y+rfM/qiWMTOGD/4GR+93rtI8cnK0ZhKcXWIfCBEZl/RDOzitCPV+npYqDhBVwkh g4oZWI3H9CAXaxQR3rKMbAueWXiw60+l2Fc/spmrw4W6lqGccPIuPUKgIt6wSBbL -----END CERTIFICATE-----Generated at Thu Mar 26 04:04:38 2026 by rpki-client