$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa File: 618AD7B6638A11F08BC2A840C4F9AE02.roa (raw, json) Hash identifier: l1iCGSn/PX7oFU8pYAYmto407lNna+dcfVIeQPwpey4= Subject key identifier: BE:2A:CB:BD:98:F7:D3:86:97:59:EE:BB:97:B2:7B:7F:43:77:8C:49 Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0D25 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:28:45 +0000 ROA not before: Thu 04 Dec 2025 17:59:02 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38716 IP address blocks: 103.241.0.0/22 maxlen: 22 103.241.0.0/24 maxlen: 24 103.241.1.0/24 maxlen: 24 103.241.2.0/24 maxlen: 24 103.241.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3365 (0xd25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Dec 4 17:59:02 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4693d-de47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:35:f5:92:f9:ab:03:2c:9c:3b:e6:a7:43: 7c:98:37:d5:4c:ee:c0:96:d6:fd:c6:e0:7a:f3:9f: 4b:cb:b7:a9:e7:f7:62:e9:0e:f4:80:a5:82:15:2b: 1b:9b:b9:4c:aa:54:53:99:3e:9d:11:e6:9a:28:73: 85:0b:59:ef:04:53:d0:f1:19:21:09:55:e6:b0:c0: 35:d7:f3:f4:9c:56:2b:ec:6a:3f:c2:f3:75:ed:ec: 5d:76:50:9f:f1:d5:81:a8:3c:90:2b:c2:de:cc:bf: d7:7e:a9:d0:84:70:d6:8c:86:98:f4:67:28:70:bf: 27:7e:49:0f:b3:02:60:6d:e2:02:f6:49:17:ba:ef: cb:f9:48:72:9d:85:2f:c9:80:a9:ab:20:09:25:cf: 33:6d:28:16:4e:04:5a:50:97:62:b1:03:45:d0:c8: c5:77:b9:99:e6:b2:55:3b:6c:ea:0c:a0:c1:46:d2: 43:cc:83:ba:b6:af:f8:c7:eb:40:44:84:0e:03:b6: f4:b7:14:ee:bb:d4:da:0d:28:95:ca:34:1d:cb:5d: 2e:bd:60:11:02:bc:b8:dc:fd:df:a4:5b:c6:a0:37: f0:7e:9e:d8:ec:7a:3f:09:d1:8d:8a:23:88:60:b3: 2c:7e:35:68:30:53:67:2d:f3:fc:ca:44:a4:03:d4: 19:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:2A:CB:BD:98:F7:D3:86:97:59:EE:BB:97:B2:7B:7F:43:77:8C:49 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/618AD7B6638A11F08BC2A840C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.241.0.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:6a:fa:52:e8:eb:18:01:d4:84:5a:53:a4:26:16:e3:36:7b: a5:dc:71:00:a5:b7:46:a8:7b:db:2c:c7:a4:75:74:05:8f:df: 1c:b2:b7:2d:db:f9:44:e2:34:fc:ac:65:b0:dc:11:f5:e7:b0: 9c:b4:5f:57:58:3b:8a:42:95:8f:5d:4e:86:c0:3c:db:d1:cd: ce:6b:28:84:1f:ad:e8:32:32:a0:06:1b:c2:49:d6:f8:b5:6a: db:f2:da:9d:fc:06:d5:f5:b2:cc:91:19:45:93:be:90:56:09: 84:41:cf:45:70:2a:1d:7e:e1:8f:18:2d:e9:bd:7d:8e:5a:93: b8:5a:02:bf:d2:e7:1c:8e:ad:8c:c1:ea:cb:07:38:3c:70:4a: 7b:ee:33:98:2d:2c:74:92:f3:c2:e3:63:c1:fc:df:4c:b9:34: b1:b6:25:10:6b:30:a8:04:63:2a:ae:a8:a7:ab:da:13:45:78: 98:21:7e:83:0f:b4:f8:fa:e1:24:d1:6d:5b:fb:14:e1:33:2d: 02:d4:0a:41:04:ae:13:c3:30:75:34:02:c2:57:91:5a:bf:3a: c6:4b:f3:b2:f1:e6:41:22:d0:4c:78:f4:59:3c:15:73:36:84: 8e:94:43:09:5d:12:91:8e:fb:e1:52:0d:37:b1:c2:45:a6:9e: e4:a6:32:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUxMjA0MTc1OTAyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkzZC1kZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl819ZL5qwMsnDvmp0N8mDfVTO7Altb9xuB6859Ly7ep5/di6Q70gKWCFSsb m7lMqlRTmT6dEeaaKHOFC1nvBFPQ8RkhCVXmsMA11/P0nFYr7Go/wvN17exddlCf 8dWBqDyQK8LezL/XfqnQhHDWjIaY9GcocL8nfkkPswJgbeIC9kkXuu/L+UhynYUv yYCpqyAJJc8zbSgWTgRaUJdisQNF0MjFd7mZ5rJVO2zqDKDBRtJDzIO6tq/4x+tA RIQOA7b0txTuu9TaDSiVyjQdy10uvWARAry43P3fpFvGoDfwfp7Y7Ho/CdGNiiOI YLMsfjVoMFNnLfP8ykSkA9QZzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL4qy72Y 99OGl1nuu5eye39Dd4xJMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQTMvMjA5MURDOEUwNTAxMTFFQUJEOUIyMDJDQzRGOUFFMDIvNjE4QUQ3QjY2 MzhBMTFGMDhCQzJBODQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/EAMA0GCSqGSIb3DQEBCwUAA4IBAQB9avpS6OsYAdSEWlOkJhbj Nnul3HEApbdGqHvbLMekdXQFj98csrct2/lE4jT8rGWw3BH157CctF9XWDuKQpWP XU6GwDzb0c3OayiEH63oMjKgBhvCSdb4tWrb8tqd/AbV9bLMkRlFk76QVgmEQc9F cCodfuGPGC3pvX2OWpO4WgK/0uccjq2MwerLBzg8cEp77jOYLSx0kvPC42PB/N9M uTSxtiUQazCoBGMqrqinq9oTRXiYIX6DD7T4+uEk0W1b+xThMy0C1ApBBK4TwzB1 NALCV5FavzrGS/Oy8eZBItBMePRZPBVzNoSOlEMJXRKRjvvhUg03scJFpp7kpjL0 -----END CERTIFICATE-----Generated at Thu Mar 26 12:18:17 2026 by rpki-client