$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/65798E8A1F7D11F18F98CA06223D8C67.roa File: 65798E8A1F7D11F18F98CA06223D8C67.roa (raw, json) Hash identifier: RZFsnQn6HA9v12vUgYh/78hGLqlY8AmjxFGu89yIv54= Subject key identifier: 30:04:42:B6:E6:77:1C:7B:37:D9:04:91:BA:8D:6E:DA:5F:45:FB:F5 Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 04D0 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/65798E8A1F7D11F18F98CA06223D8C67.roa Signing time: Sat 14 Mar 2026 08:49:25 +0000 ROA not before: Sat 14 Mar 2026 08:49:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45814 IP address blocks: 103.48.24.0/24 maxlen: 24 103.48.25.0/24 maxlen: 24 103.104.84.0/24 maxlen: 24 103.104.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1232 (0x4d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Mar 14 08:49:25 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b52115-f6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ed:04:0b:56:9d:1a:12:a2:22:d6:ec:d7:8c: 3c:91:ee:23:f8:19:2e:36:69:f8:9e:7a:ef:25:0e: 6f:d4:0e:7e:c5:8d:9d:57:7a:91:58:84:87:7c:10: 2d:f8:2e:ef:0f:99:2b:05:30:8a:7e:85:2d:b2:90: a0:61:59:03:d2:ad:54:f5:08:02:9c:44:42:85:1c: 0b:b9:65:33:67:46:f8:50:5f:a7:ea:b9:13:a8:80: 2a:67:f1:69:3a:a3:13:65:eb:08:dd:9a:ac:e6:1c: be:26:d8:6f:3d:98:36:e3:f2:84:db:78:20:5c:ae: 54:6b:e7:d9:b7:98:a3:23:39:5c:ec:8f:38:e1:b2: fd:60:49:27:07:06:6e:3d:45:f8:cb:a9:f4:d1:cb: 85:8b:e9:5d:f5:ab:15:27:f5:88:b7:26:cb:05:41: 4d:2a:d4:fd:c4:57:d0:3a:8b:d1:72:03:f8:26:4a: 83:7b:16:04:7b:60:9c:0c:f1:bb:86:03:b9:c5:d4: b4:01:8f:66:8e:a2:39:f3:aa:3e:84:c6:61:dc:ad: 64:de:82:65:8b:63:95:ae:91:85:e2:41:06:04:28: 12:85:27:ca:ee:22:23:b3:37:b6:86:e8:1c:70:6a: 22:23:08:91:87:10:5f:86:01:89:38:8b:5c:07:c2: 30:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:04:42:B6:E6:77:1C:7B:37:D9:04:91:BA:8D:6E:DA:5F:45:FB:F5 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/65798E8A1F7D11F18F98CA06223D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.48.24.0/23 103.104.84.0/23 Signature Algorithm: sha256WithRSAEncryption b2:e0:b1:4a:02:ce:a4:b7:67:4e:0c:b3:95:ee:ed:7d:43:85: ad:b7:e2:7e:97:bb:65:20:68:5d:3f:96:99:1d:2d:10:26:9a: fe:07:da:14:39:3e:94:6e:29:45:e0:85:83:28:d6:96:6e:74: 94:b6:d1:91:02:b7:ad:3e:fd:11:f0:0f:40:99:e4:2d:27:84: d3:56:e3:29:50:6d:42:e5:14:f3:c5:bf:65:c1:05:46:16:16: 17:55:3a:67:59:60:f2:85:a2:0e:02:89:7d:5c:af:eb:2c:67: 7d:1b:5e:ea:f9:e7:57:f1:a0:58:9a:b6:81:f0:f7:3f:cf:7c: 09:2a:8b:d4:5c:eb:e9:de:08:fe:3a:2a:b5:b6:f8:74:7b:8f: 13:53:a4:dc:e3:eb:82:3b:c1:6e:ae:57:c1:3f:87:9d:7e:37: a4:54:8c:c5:f4:8d:0c:9e:f8:61:59:5f:1a:18:39:84:f6:d3: 10:ad:39:e0:3b:c8:7e:93:94:3d:1d:e9:b1:84:4b:98:d3:46: 76:62:a0:18:c5:02:eb:b5:da:be:86:0b:95:5b:18:a4:33:e2: 06:2f:57:ff:62:37:ea:ea:60:b7:de:17:ff:14:3d:2d:e9:53: f0:f3:05:5d:b7:c0:c7:0e:31:19:f3:f4:2a:88:5b:05:cb:6b: 2f:e4:48:ac -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjYwMzE0MDg0OTI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI1MjExNS1mNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+0EC1adGhKiItbs14w8ke4j+BkuNmn4nnrvJQ5v1A5+xY2dV3qRWISHfBAt +C7vD5krBTCKfoUtspCgYVkD0q1U9QgCnERChRwLuWUzZ0b4UF+n6rkTqIAqZ/Fp OqMTZesI3Zqs5hy+JthvPZg24/KE23ggXK5Ua+fZt5ijIzlc7I844bL9YEknBwZu PUX4y6n00cuFi+ld9asVJ/WItybLBUFNKtT9xFfQOovRcgP4JkqDexYEe2CcDPG7 hgO5xdS0AY9mjqI586o+hMZh3K1k3oJli2OVrpGF4kEGBCgShSfK7iIjsze2hugc cGoiIwiRhxBfhgGJOItcB8Iw1QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDAEQrbm dxx7N9kEkbqNbtpfRfv1MB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCNEYvREQ3MzI2NDg2OEJDMTFFQzg3ODA3OTQ4QzRGOUFFMDIvNjU3OThFOEEx RjdEMTFGMThGOThDQTA2MjIzRDhDNjcucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZzAYAwQBZ2hUMA0GCSqGSIb3DQEBCwUAA4IBAQCy4LFKAs6kt2dO DLOV7u19Q4Wtt+J+l7tlIGhdP5aZHS0QJpr+B9oUOT6UbilF4IWDKNaWbnSUttGR AretPv0R8A9AmeQtJ4TTVuMpUG1C5RTzxb9lwQVGFhYXVTpnWWDyhaIOAol9XK/r LGd9G17q+edX8aBYmraB8Pc/z3wJKovUXOvp3gj+Oiq1tvh0e48TU6Tc4+uCO8Fu rlfBP4edfjekVIzF9I0MnvhhWV8aGDmE9tMQrTngO8h+k5Q9HemxhEuY00Z2YqAY xQLrtdq+hguVWxikM+IGL1f/Yjfq6mC33hf/FD0t6VPw8wVdt8DHDjEZ8/QqiFsF y2sv5Eis -----END CERTIFICATE-----Generated at Thu Mar 26 08:59:07 2026 by rpki-client