$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa File: E40A00021F9311ECAF64925DC4F9AE02.roa (raw, json) Hash identifier: HwE2Q0NQdpDz1uIc7O5V43S4b46xyejHY0vWphKjiw0= Subject key identifier: 27:42:8F:5D:9D:BA:59:15:65:73:E4:E2:5E:A1:E0:E0:21:01:16:CA Certificate issuer: /CN=A91B9EBB/serialNumber=2D64FA3478C99491768E66E6E997E9FAA95CA2D3 Certificate serial: 0C22 Authority key identifier: 2D:64:FA:34:78:C9:94:91:76:8E:66:E6:E9:97:E9:FA:A9:5C:A2:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:56:41 +0000 ROA not before: Tue 30 Sep 2025 19:19:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139605 IP address blocks: 103.142.54.0/23 maxlen: 23 103.142.54.0/24 maxlen: 24 103.142.55.0/24 maxlen: 24 2001:df7:a980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.crl rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EBB, serialNumber=2D64FA3478C99491768E66E6E997E9FAA95CA2D3 Validity Not Before: Sep 30 19:19:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44599-1e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8a:3e:1d:01:ac:f1:a0:33:de:f6:40:f2:16: 80:53:dd:14:46:05:b6:bf:6f:67:b8:e9:a5:95:1f: f3:f3:9e:3a:93:00:af:96:8c:71:a7:66:a0:2e:f9: 85:b0:d6:0f:1c:16:f0:75:64:84:2b:fd:a0:82:9f: b9:0e:82:17:88:8d:f5:dd:c6:bc:c8:e2:bf:cb:dc: e0:6f:e1:f1:63:e3:19:8f:50:f2:8e:92:b0:a0:2f: 7a:1d:c8:0b:8c:78:be:5e:83:23:d7:93:39:7f:77: 98:72:7c:58:d6:65:df:f2:15:87:0a:5e:98:05:5a: a1:5a:a8:65:f9:6a:eb:5b:88:14:1d:1d:a9:eb:6f: 0a:15:90:b4:2e:27:c0:c0:a1:63:5f:74:4c:35:bf: 5a:80:df:18:8f:30:26:8a:dd:6f:d0:db:74:10:b8: 6e:0d:9a:bc:a6:e4:27:19:7d:d6:91:3e:1a:21:d0: e2:27:84:46:f8:cb:08:da:8e:5e:d2:9a:b3:f2:41: 5e:48:1c:55:01:b3:9e:48:75:d0:69:6b:b2:ac:37: 00:b8:bf:de:83:fa:99:8b:ff:61:bd:a0:58:92:ad: aa:74:a5:77:03:17:90:0e:17:01:02:11:61:8f:93: 2f:d6:23:5c:5c:38:34:8e:77:b6:5b:b7:08:a6:4c: 9d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:42:8F:5D:9D:BA:59:15:65:73:E4:E2:5E:A1:E0:E0:21:01:16:CA X509v3 Authority Key Identifier: keyid:2D:64:FA:34:78:C9:94:91:76:8E:66:E6:E9:97:E9:FA:A9:5C:A2:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.142.54.0/23 IPv6: 2001:df7:a980::/48 Signature Algorithm: sha256WithRSAEncryption 92:2d:26:5a:cf:b1:c9:68:b3:1c:72:f3:aa:5d:c7:8b:5f:bd: d7:a4:0c:b4:7d:8a:47:ca:6a:59:c9:ff:2c:b5:19:94:2e:fe: 06:d9:0a:fa:e2:19:f6:22:0a:0e:5c:4e:23:23:d6:b8:35:5e: db:e0:64:4e:5b:3b:3c:2e:14:17:4e:55:cd:64:ba:07:89:94: 98:12:86:12:4b:ef:6a:3f:aa:41:25:23:35:0b:fe:ca:2a:fe: 84:51:63:a9:22:5b:2a:41:67:c7:c7:c6:16:e4:43:2b:72:3c: e5:e6:1c:82:8a:fe:d0:8b:a7:f9:27:4f:b2:4f:e3:21:fa:31: 4e:bb:90:dd:d8:5a:28:c3:d7:a5:d6:51:17:61:10:85:64:cd: 7a:91:a7:59:7f:90:4a:54:e7:5b:08:0f:4c:c3:fa:c4:11:b0: b2:c7:fa:71:ba:d0:14:e7:13:3a:ea:25:23:fa:ed:92:ad:90: 58:5e:35:0e:28:65:12:0f:9a:d0:54:cd:5b:4c:c2:1a:c5:4a: fb:f9:76:63:55:fa:64:b5:9e:43:12:23:3c:df:2c:a3:8a:2d: fd:7a:80:fa:fa:0f:f7:0f:50:47:ed:28:82:fb:b6:30:9d:19: 72:a6:58:66:76:dc:13:5a:20:f6:d2:9f:8f:6f:1b:88:ad:22: e6:d7:fc:29 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQkIxMTAvBgNVBAUTKDJENjRGQTM0NzhDOTk0OTE3NjhFNjZFNkU5OTdFOUZB QTk1Q0EyRDMwHhcNMjUwOTMwMTkxOTE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDU5OS0xZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4o+HQGs8aAz3vZA8haAU90URgW2v29nuOmllR/z8546kwCvloxxp2agLvmF sNYPHBbwdWSEK/2ggp+5DoIXiI313ca8yOK/y9zgb+HxY+MZj1DyjpKwoC96HcgL jHi+XoMj15M5f3eYcnxY1mXf8hWHCl6YBVqhWqhl+WrrW4gUHR2p628KFZC0LifA wKFjX3RMNb9agN8YjzAmit1v0Nt0ELhuDZq8puQnGX3WkT4aIdDiJ4RG+MsI2o5e 0pqz8kFeSBxVAbOeSHXQaWuyrDcAuL/eg/qZi/9hvaBYkq2qdKV3AxeQDhcBAhFh j5Mv1iNcXDg0jne2W7cIpkydPQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCdCj12d ulkVZXPk4l6h4OAhARbKMB8GA1UdIwQYMBaAFC1k+jR4yZSRdo5m5umX6fqpXKLT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVCQi9GOTI2M0QxNjJC MDcxMUVBQjg1QkI4N0NDNEY5QUUwMi9MV1Q2TkhqSmxKRjJqbWJtNlpmcC1xbGNv dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXVDZOSGpKbEpGMmptYm02WmZwLXFsY290TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFQkIvRjkyNjNEMTYyQjA3MTFFQUI4NUJCODdDQzRGOUFFMDIvRTQwQTAwMDIx RjkzMTFFQ0FGNjQ5MjVEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ442MA8EAgACMAkDBwAgAQ33qYAwDQYJKoZIhvcNAQELBQADggEB AJItJlrPsclosxxy86pdx4tfvdekDLR9ikfKalnJ/yy1GZQu/gbZCvriGfYiCg5c TiMj1rg1XtvgZE5bOzwuFBdOVc1kugeJlJgShhJL72o/qkElIzUL/soq/oRRY6ki WypBZ8fHxhbkQytyPOXmHIKK/tCLp/knT7JP4yH6MU67kN3YWijD16XWURdhEIVk zXqRp1l/kEpU51sID0zD+sQRsLLH+nG60BTnEzrqJSP67ZKtkFheNQ4oZRIPmtBU zVtMwhrFSvv5dmNV+mS1nkMSIzzfLKOKLf16gPr6D/cPUEftKIL7tjCdGXKmWGZ2 3BNaIPbSn49vG4itIubX/Ck= -----END CERTIFICATE-----Generated at Thu Mar 26 11:31:44 2026 by rpki-client