$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/4AB01838FF1D11F0816C691B85EE528E.roa File: 4AB01838FF1D11F0816C691B85EE528E.roa (raw, json) Hash identifier: 73GQqCwii1vmNrsS7r1xrrm5FcLJovRSf9upFdGwKjE= Subject key identifier: FA:CE:09:80:DC:6D:D3:C7:FE:AE:E9:9A:DD:5C:B3:78:7E:AD:9B:5D Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 01EE Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/4AB01838FF1D11F0816C691B85EE528E.roa Signing time: Sun 01 Mar 2026 17:17:21 +0000 ROA not before: Sat 21 Feb 2026 02:23:00 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18155 IP address blocks: 103.161.216.0/23 maxlen: 23 103.161.216.0/24 maxlen: 24 103.161.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Feb 21 02:23:00 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a474a1-92ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:64:e3:77:88:72:6b:84:3c:71:dd:ea:7c:2e: d5:48:84:a5:94:2e:92:40:85:83:9e:b2:e2:58:30: b2:1a:55:09:45:9a:24:04:e8:08:f4:24:01:0b:5d: c2:d9:be:8e:68:72:1b:7a:d9:5e:4d:e7:85:70:03: 22:95:d0:dc:65:7f:26:10:f3:6f:70:a5:40:c7:e1: f6:81:7c:9b:78:fb:0b:b0:b9:20:bf:15:fb:37:64: 40:1e:2a:d7:8e:a4:aa:f9:5b:95:dc:df:ea:0d:d6: c8:6a:92:58:3c:bf:04:e1:8d:36:9c:76:89:4c:72: 7a:0f:06:b0:bb:64:4d:52:14:07:75:24:53:90:05: 69:d1:aa:af:0e:4c:b7:f6:d4:54:6a:bb:b6:d9:6b: bd:8b:a7:d8:3f:9b:2f:7d:08:26:82:8f:3a:38:a5: 1c:08:c9:36:68:27:d2:e1:08:c4:e5:50:69:f6:75: 17:da:e0:94:b9:a1:3d:d8:2f:cf:96:79:2f:3b:67: c1:d4:cd:a1:e3:4f:0c:9b:87:31:a0:c4:99:e0:b3: 3a:79:42:42:a3:9c:4f:1c:b8:2e:13:50:b0:f3:0c: d1:50:34:29:0d:a7:33:ee:7c:05:63:ea:e7:87:c3: 06:1f:6c:a0:53:e0:6b:99:fc:b8:e1:96:b1:39:9d: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CE:09:80:DC:6D:D3:C7:FE:AE:E9:9A:DD:5C:B3:78:7E:AD:9B:5D X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/4AB01838FF1D11F0816C691B85EE528E.roa sbgp-ipAddrBlock: critical IPv4: 103.161.216.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:f7:b6:22:29:c7:0c:0f:8f:7d:58:27:34:ce:1f:47:f8:7f: e2:e7:2d:7b:3a:1e:64:28:8d:7b:d3:7a:a7:33:30:4a:4e:6c: 06:04:ed:8b:32:86:cc:41:16:cc:0e:cd:a8:f1:d4:29:16:9e: d4:b9:ca:f3:8b:aa:9d:a5:d8:ae:68:96:a3:a5:16:d0:67:cf: f2:79:b9:fa:a4:76:b2:92:6b:f5:a1:34:1e:18:ef:11:ed:ec: 8b:5d:55:cb:89:0e:c7:14:e1:b5:4e:62:ef:a2:fe:ba:2b:06: 70:42:e2:5e:ac:53:d6:95:b4:64:52:86:71:e4:fc:31:c5:86: b0:9f:f0:d1:eb:da:7d:fe:bb:db:8c:25:02:26:15:d5:3f:62: 93:9d:43:15:2a:3f:3f:72:b4:2d:aa:6c:76:7e:78:9d:7e:a4: 07:88:93:e5:63:09:86:3b:8d:0d:98:b7:99:bf:01:af:84:b2: d5:7a:d9:e8:a7:c7:b6:28:10:7f:f6:ea:01:5f:57:a6:6c:eb: 1f:b4:8c:36:83:82:ea:d2:14:61:83:f4:d7:8f:b7:8e:51:9c: 53:bb:d1:db:46:ff:ad:d9:3e:fd:6c:9f:62:b5:f6:00:43:fc: 0f:b5:02:f2:6e:d8:0b:6e:f2:56:a4:c7:ce:d1:45:d0:e0:26: 65:44:fb:df -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjYwMjIxMDIyMzAwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzRhMS05MmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGTjd4hya4Q8cd3qfC7VSISllC6SQIWDnrLiWDCyGlUJRZokBOgI9CQBC13C 2b6OaHIbetleTeeFcAMildDcZX8mEPNvcKVAx+H2gXybePsLsLkgvxX7N2RAHirX jqSq+VuV3N/qDdbIapJYPL8E4Y02nHaJTHJ6Dwawu2RNUhQHdSRTkAVp0aqvDky3 9tRUaru22Wu9i6fYP5svfQgmgo86OKUcCMk2aCfS4QjE5VBp9nUX2uCUuaE92C/P lnkvO2fB1M2h408Mm4cxoMSZ4LM6eUJCo5xPHLguE1Cw8wzRUDQpDacz7nwFY+rn h8MGH2ygU+Brmfy44ZaxOZ2eaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPrOCYDc bdPH/q7pmt1cs3h+rZtdMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUzMjMvOUU2MUU0MjQ1MjVGMTFFRTgwQkEwRDc0QzRGOUFFMDIvNEFCMDE4MzhG RjFEMTFGMDgxNkM2OTFCODVFRTUyOEUucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6HYMA0GCSqGSIb3DQEBCwUAA4IBAQCM97YiKccMD499WCc0zh9H +H/i5y17Oh5kKI1703qnMzBKTmwGBO2LMobMQRbMDs2o8dQpFp7Uucrzi6qdpdiu aJajpRbQZ8/yebn6pHaykmv1oTQeGO8R7eyLXVXLiQ7HFOG1TmLvov66KwZwQuJe rFPWlbRkUoZx5PwxxYawn/DR69p9/rvbjCUCJhXVP2KTnUMVKj8/crQtqmx2fnid fqQHiJPlYwmGO40NmLeZvwGvhLLVetnop8e2KBB/9uoBX1embOsftIw2g4Lq0hRh g/TXj7eOUZxTu9HbRv+t2T79bJ9itfYAQ/wPtQLybtgLbvJWpMfO0UXQ4CZlRPvf -----END CERTIFICATE-----Generated at Fri Mar 27 00:07:26 2026 by rpki-client