$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/AA5ADA7C579511ECA9BDE14AC4F9AE02.roa File: AA5ADA7C579511ECA9BDE14AC4F9AE02.roa (raw, json) Hash identifier: +cG95cMT4bOP7gonlzVBmEDm9qPAdHE8HAO4W9Qjhh4= Subject key identifier: 05:91:B2:92:74:2A:38:2E:86:2C:8C:B3:3A:26:BA:EC:ED:4C:C1:3D Certificate issuer: /CN=A91D5BA2/serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Certificate serial: 04E1 Authority key identifier: 6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/AA5ADA7C579511ECA9BDE14AC4F9AE02.roa Signing time: Wed 04 Mar 2026 23:32:23 +0000 ROA not before: Wed 04 Mar 2026 23:32:23 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133951 IP address blocks: 103.49.204.0/24 maxlen: 24 103.93.19.0/24 maxlen: 24 103.112.46.0/24 maxlen: 24 103.114.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BA2, serialNumber=6CAC2B720885E823824C1967EDFC363EC874768D Validity Not Before: Mar 4 23:32:23 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a8c107-2417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:8a:b7:f4:31:86:81:58:81:49:51:cc:bd:55: 3b:7a:e8:27:8a:9e:33:21:56:19:7e:8e:30:16:b4: df:c2:dd:bd:31:f5:89:26:65:57:4c:c9:7f:bf:4a: 3c:98:f8:d3:ce:07:8c:72:0f:d5:a7:fd:8f:0b:4a: f9:2a:88:97:2c:47:19:88:6b:20:15:b9:87:b1:20: ab:47:4f:62:6c:f1:f1:69:67:f7:3f:1d:17:27:6e: 2c:b8:70:3a:46:3c:8e:ce:21:26:9d:06:41:06:87: cd:f9:a9:2c:59:52:34:9b:23:37:cf:80:4d:8c:6f: dc:da:49:2b:2d:07:52:0c:1c:87:ee:9a:9f:8f:58: 85:d7:87:88:8e:2c:89:58:4f:ec:dd:94:7d:dc:f5: f2:9e:8a:ca:fc:a8:69:bb:46:2a:1b:6f:99:26:c6: 36:2e:f1:3d:aa:ee:2a:b2:25:b8:97:0f:c4:d6:8f: 68:8c:ec:8d:e2:e3:50:26:38:b9:87:d0:df:79:0a: a1:35:1f:1e:cc:25:f3:3a:de:03:55:a3:19:7a:b9: c1:2f:7c:b4:1e:75:51:fd:f8:51:7e:80:9f:68:7a: e7:ec:48:57:8d:3d:6b:99:59:fe:cb:66:21:07:2f: fb:04:e2:15:01:7e:8c:61:35:9e:55:1c:e4:3d:9b: 0b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:91:B2:92:74:2A:38:2E:86:2C:8C:B3:3A:26:BA:EC:ED:4C:C1:3D X509v3 Authority Key Identifier: keyid:6C:AC:2B:72:08:85:E8:23:82:4C:19:67:ED:FC:36:3E:C8:74:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/bKwrcgiF6COCTBln7fw2Psh0do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKwrcgiF6COCTBln7fw2Psh0do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BA2/14FEC2EC579311ECBA2FB048C4F9AE02/AA5ADA7C579511ECA9BDE14AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.204.0/24 103.93.19.0/24 103.112.46.0/24 103.114.231.0/24 Signature Algorithm: sha256WithRSAEncryption 59:18:a6:27:f7:bf:af:34:ce:85:27:24:5a:75:91:2b:b4:2d: 6a:c8:e9:b3:d1:9f:4e:cd:8d:cb:13:85:2b:3d:3f:e1:07:c2: 1f:0e:ff:74:84:eb:2d:1b:56:86:9d:8e:5f:92:81:1c:25:ac: bf:c0:25:93:52:ce:26:76:d1:cc:9c:fc:38:10:2e:7c:7c:67: 12:5c:84:f5:e5:60:ff:e3:df:cd:e8:7d:e7:ac:8d:8a:ff:15: 94:df:45:c1:af:02:d8:00:86:0a:1a:35:d3:35:93:b9:ea:cf: 9a:dd:90:b1:3f:54:31:70:c5:07:45:f2:09:6c:15:a5:0b:8f: b6:26:5b:27:a0:5c:69:d0:1d:10:46:57:2f:5c:6f:be:b4:a4: 0e:21:a7:3f:66:17:9e:b6:bf:b4:70:73:a5:ec:7d:4b:c6:0f: 49:a4:81:e4:54:cb:0d:9f:53:6d:53:67:1a:73:cf:c8:b9:d0: 13:c9:03:40:3a:59:ad:f7:e9:7f:43:36:cd:63:d4:2e:77:bd: f1:ca:5b:48:00:a7:21:f1:c3:c2:b1:e9:cf:31:1c:1c:fe:3a: 05:88:c6:c8:d8:9f:34:e8:2a:0a:00:a0:bd:ce:38:36:09:8d: b8:6e:30:96:35:01:81:66:03:6b:8b:c7:72:a1:5e:3a:36:1c: 7f:77:d2:78 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCQTIxMTAvBgNVBAUTKDZDQUMyQjcyMDg4NUU4MjM4MjRDMTk2N0VERkMzNjNF Qzg3NDc2OEQwHhcNMjYwMzA0MjMzMjIzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4YzEwNy0yNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkYq39DGGgViBSVHMvVU7eugnip4zIVYZfo4wFrTfwt29MfWJJmVXTMl/v0o8 mPjTzgeMcg/Vp/2PC0r5KoiXLEcZiGsgFbmHsSCrR09ibPHxaWf3Px0XJ24suHA6 RjyOziEmnQZBBofN+aksWVI0myM3z4BNjG/c2kkrLQdSDByH7pqfj1iF14eIjiyJ WE/s3ZR93PXynorK/Khpu0YqG2+ZJsY2LvE9qu4qsiW4lw/E1o9ojOyN4uNQJji5 h9DfeQqhNR8ezCXzOt4DVaMZernBL3y0HnVR/fhRfoCfaHrn7EhXjT1rmVn+y2Yh By/7BOIVAX6MYTWeVRzkPZsLlQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFAWRspJ0 KjguhiyMszomuuztTME9MB8GA1UdIwQYMBaAFGysK3IIhegjgkwZZ+38Nj7IdHaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJBMi8xNEZFQzJFQzU3 OTMxMUVDQkEyRkIwNDhDNEY5QUUwMi9iS3dyY2dpRjZDT0NUQmxuN2Z3MlBzaDBk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLd3JjZ2lGNkNPQ1RCbG43ZncyUHNoMGRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVCQTIvMTRGRUMyRUM1NzkzMTFFQ0JBMkZCMDQ4QzRGOUFFMDIvQUE1QURBN0M1 Nzk1MTFFQ0E5QkRFMTRBQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAZzHMAwQAZ10TAwQAZ3AuAwQAZ3LnMA0GCSqGSIb3DQEBCwUAA4IB AQBZGKYn97+vNM6FJyRadZErtC1qyOmz0Z9OzY3LE4UrPT/hB8IfDv90hOstG1aG nY5fkoEcJay/wCWTUs4mdtHMnPw4EC58fGcSXIT15WD/49/N6H3nrI2K/xWU30XB rwLYAIYKGjXTNZO56s+a3ZCxP1QxcMUHRfIJbBWlC4+2JlsnoFxp0B0QRlcvXG++ tKQOIac/Zheetr+0cHOl7H1Lxg9JpIHkVMsNn1NtU2cac8/IudATyQNAOlmt9+l/ QzbNY9Qud73xyltIAKch8cPCsenPMRwc/joFiMbI2J806CoKAKC9zjg2CY24bjCW NQGBZgNri8dyoV46Nhx/d9J4 -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:16 2026 by rpki-client