$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/2037569602BD11EBB333DA0FC4F9AE02.roa File: 2037569602BD11EBB333DA0FC4F9AE02.roa (raw, json) Hash identifier: ttDGmX8Wz8ITP3sU4vGhTPNCup0+jAVIOIBp2YmhCbk= Subject key identifier: AE:FC:EE:56:44:A4:95:81:1D:C7:C8:60:69:4D:C7:EF:D7:C8:C4:1D Certificate issuer: /CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Certificate serial: 0840 Authority key identifier: 3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/2037569602BD11EBB333DA0FC4F9AE02.roa Signing time: Wed 04 Mar 2026 21:27:33 +0000 ROA not before: Wed 04 Mar 2026 21:27:33 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133943 IP address blocks: 103.49.38.0/24 maxlen: 24 103.49.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD3FB, serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Validity Not Before: Mar 4 21:27:33 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a8a3c5-48b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:22:c5:ee:4e:dd:fc:ed:e2:02:09:34:b3:1d: 66:3d:e0:9f:a6:21:d0:aa:d8:06:c0:9b:3c:8f:d2: 3f:ae:7c:52:d3:0a:70:14:13:c5:a4:8a:d8:39:6a: 4b:5a:da:e8:e8:6d:da:15:ee:74:94:ff:b7:85:80: 11:5b:25:b6:9b:22:eb:e4:5c:c1:15:42:7c:86:3c: 89:6b:84:04:ce:a7:22:e5:73:4f:f9:60:e2:3f:77: 9c:40:f2:d9:ad:6f:09:3b:cb:07:c0:39:a4:a3:d6: 70:f3:68:e5:f0:3b:98:70:25:ec:fe:78:79:cf:4f: 78:fa:2d:e9:e3:ba:07:3a:a2:c2:c9:32:28:c7:9c: cd:d3:f7:70:42:f0:58:4b:78:38:4e:14:ba:33:40: 86:f0:cf:aa:3a:40:c0:1d:b4:89:ef:f3:f0:13:93: d6:29:b6:3e:94:79:a7:d8:95:cb:03:cb:5f:76:0b: dd:86:e0:b1:82:39:60:29:40:3f:1d:49:44:db:f5: 40:63:b1:f3:cd:d6:d0:4a:90:3a:22:2e:db:65:7c: 3a:bb:04:41:69:60:a5:84:ae:61:d7:17:ae:dd:75: 9c:a8:ab:00:67:9b:94:65:60:16:1c:9b:55:18:76: 38:d6:21:37:7f:ec:33:3f:e9:33:c6:b3:13:c4:c0: 07:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FC:EE:56:44:A4:95:81:1D:C7:C8:60:69:4D:C7:EF:D7:C8:C4:1D X509v3 Authority Key Identifier: keyid:3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/2037569602BD11EBB333DA0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.38.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:d5:57:53:77:ad:88:04:89:0a:a8:7f:f6:74:13:a9:d6:3d: 7d:0e:d3:76:e8:45:aa:84:6e:5e:5b:58:f2:a2:b2:ac:1c:66: 86:cc:27:26:ac:c8:a0:1c:1f:0c:3e:8d:8f:61:c0:d8:7e:3c: 61:f0:bc:26:1a:77:94:ff:56:6d:98:d5:75:ad:7b:76:6b:a7: e2:3f:b3:bc:0b:16:ee:a7:3d:37:1f:5a:45:54:93:ba:ed:43: 28:4b:ae:89:e7:42:f3:8b:e3:2d:5a:d9:92:e7:5f:df:fb:6b: d7:e4:03:9a:f2:6a:ac:f8:df:6e:a6:2e:94:dd:26:fc:33:30: e0:78:80:4f:43:7d:88:37:e4:b7:0f:df:9a:40:ca:5c:5f:9e: 5e:d9:48:39:dc:e0:f3:97:0e:71:21:8d:14:35:6c:b6:d8:96: 97:ad:b3:cb:6b:a8:bc:6e:61:92:ef:3b:ca:14:60:bd:e8:90: 93:f0:75:3c:cf:2c:2e:35:5a:10:22:b5:ab:d6:b3:97:8d:1c: 50:5e:b4:6a:39:db:c1:c5:6d:fe:ce:55:7d:04:1e:10:dc:fe: 04:39:b8:1b:4b:7a:98:2d:f6:fe:ee:a1:c5:eb:71:b1:63:80: eb:4b:33:93:65:fc:43:d2:46:3e:55:0e:67:cd:ba:36:70:91: f9:42:e3:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzRkIxMTAvBgNVBAUTKDNEMUY3RkIxNDY0MTBBM0MzMzVCMzNDNDk4MkE3MzYz OEJFNTQwOUUwHhcNMjYwMzA0MjEyNzMzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4YTNjNS00OGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSLF7k7d/O3iAgk0sx1mPeCfpiHQqtgGwJs8j9I/rnxS0wpwFBPFpIrYOWpL Wtro6G3aFe50lP+3hYARWyW2myLr5FzBFUJ8hjyJa4QEzqci5XNP+WDiP3ecQPLZ rW8JO8sHwDmko9Zw82jl8DuYcCXs/nh5z094+i3p47oHOqLCyTIox5zN0/dwQvBY S3g4ThS6M0CG8M+qOkDAHbSJ7/PwE5PWKbY+lHmn2JXLA8tfdgvdhuCxgjlgKUA/ HUlE2/VAY7HzzdbQSpA6Ii7bZXw6uwRBaWClhK5h1xeu3XWcqKsAZ5uUZWAWHJtV GHY41iE3f+wzP+kzxrMTxMAHnQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFK787lZE pJWBHcfIYGlNx+/XyMQdMB8GA1UdIwQYMBaAFD0ff7FGQQo8M1szxJgqc2OL5UCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDNGQi80MjEyQkM5RTAy QkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNqd3pXelBFbUNwelk0dmxR SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSOV9zVVpCQ2p3eld6UEVtQ3B6WTR2bFFKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQzRkIvNDIxMkJDOUUwMkJCMTFFQkIzRDQwNDBCQzRGOUFFMDIvMjAzNzU2OTYw MkJEMTFFQkIzMzNEQTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZzEmMA0GCSqGSIb3DQEBCwUAA4IBAQCf1VdTd62IBIkKqH/2dBOp 1j19DtN26EWqhG5eW1jyorKsHGaGzCcmrMigHB8MPo2PYcDYfjxh8LwmGneU/1Zt mNV1rXt2a6fiP7O8Cxbupz03H1pFVJO67UMoS66J50Lzi+MtWtmS51/f+2vX5AOa 8mqs+N9upi6U3Sb8MzDgeIBPQ32IN+S3D9+aQMpcX55e2Ug53ODzlw5xIY0UNWy2 2JaXrbPLa6i8bmGS7zvKFGC96JCT8HU8zywuNVoQIrWr1rOXjRxQXrRqOdvBxW3+ zlV9BB4Q3P4EObgbS3qYLfb+7qHF63GxY4DrSzOTZfxD0kY+VQ5nzbo2cJH5QuOv -----END CERTIFICATE-----Generated at Sat Mar 28 13:43:43 2026 by rpki-client