$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa File: B46C8BFA89AD11ED93CAB75FC4F9AE02.roa (raw, json) Hash identifier: B6zuGQHiLLMcpOAalP92RoQpZ8Tfo5uy0bH1HnD3XPM= Subject key identifier: A1:A5:7B:71:13:E5:4A:6A:E7:8A:CA:71:51:E1:9F:EE:C6:31:C3:8E Certificate issuer: /CN=A91DE570/serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Certificate serial: 0276 Authority key identifier: 71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:57:30 +0000 ROA not before: Wed 03 Dec 2025 00:59:37 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 141209 IP address blocks: 103.143.242.0/23 maxlen: 23 103.143.242.0/24 maxlen: 24 103.143.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE570, serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0 Validity Not Before: Dec 3 00:59:37 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41b99-7e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:02:73:3f:6e:b3:9b:8f:17:d7:08:84:c8: c2:75:1c:db:b5:ca:a0:2f:df:c4:82:30:ba:24:90: 81:69:d4:65:3d:9b:47:18:ff:d1:7f:7c:e9:0a:9f: ba:bd:e9:4e:f3:93:54:f9:c2:86:a0:97:07:13:cf: 73:83:25:34:2b:4c:b0:eb:65:a9:0f:75:f0:3d:28: 2d:9c:30:ec:41:98:1e:92:22:c7:0f:9d:9c:65:b8: 8d:64:0c:c0:36:41:5b:71:b8:f8:1d:ce:8c:48:fc: 64:a5:fa:d4:22:d3:7a:e4:d5:a6:82:8f:c1:1c:14: 7e:7b:17:45:c9:51:20:68:10:3d:17:78:50:33:ab: 61:0f:73:9c:64:f4:3c:24:9b:a1:e1:d1:0c:bf:9b: e4:5b:4d:34:48:48:69:f6:64:6b:35:75:66:88:de: 5a:f1:2a:65:37:04:e9:cf:cc:b2:d4:63:3d:d7:b7: 00:88:fc:b4:ab:b2:1c:55:67:1a:54:ba:1c:76:55: ce:51:ac:ee:48:d3:17:a3:12:70:7d:86:36:43:be: e8:3c:ef:ca:cc:23:1e:18:77:4c:fb:68:5e:84:b5: 2b:a0:92:b3:5a:da:4c:f3:b9:7c:45:4f:ac:c6:f4: ac:ab:c7:b8:4a:cd:7a:7b:ca:01:85:16:ad:80:fa: 33:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A5:7B:71:13:E5:4A:6A:E7:8A:CA:71:51:E1:9F:EE:C6:31:C3:8E X509v3 Authority Key Identifier: keyid:71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B46C8BFA89AD11ED93CAB75FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.143.242.0/23 Signature Algorithm: sha256WithRSAEncryption b4:70:5c:9e:c6:9c:6d:78:f4:46:8c:6c:54:97:58:f0:1a:2a: 7f:84:4e:e5:4d:0f:f6:7d:f5:7a:bb:7e:c1:55:04:92:54:c7: f7:cc:60:04:c5:5c:81:e8:e4:97:0f:8a:4b:86:07:de:7e:57: a0:99:32:e1:39:a2:f8:e2:df:04:ca:a2:11:d0:be:ab:f6:32: f6:f2:45:1d:1c:48:a8:cf:5d:83:45:6c:1f:7c:24:d9:c6:79: 44:f9:8c:15:14:a2:ae:07:40:7e:15:ab:76:bf:d1:45:76:c2: 1b:90:65:5f:eb:5e:53:54:b5:72:18:4e:92:fa:cc:11:ce:ad: ce:3e:8f:f7:b8:75:fc:19:69:49:09:77:f1:7a:06:e8:c2:b8: c6:fd:f1:87:4f:66:e4:b3:d8:46:d5:b2:5b:ff:0b:15:77:90: 30:8a:9c:34:1e:42:1d:ca:ea:b0:03:ab:49:5c:49:48:f6:27: d3:8f:6c:48:45:aa:ee:da:07:89:8d:8a:7b:1c:53:e0:8d:8a: b4:de:0e:0a:b3:f2:c5:da:ba:a5:ce:55:15:9c:f3:e5:71:4a: 7f:74:e9:96:42:92:10:97:62:fb:48:1f:f1:ac:cb:80:66:1e: ea:03:c4:cc:b3:9f:0a:78:e8:ab:fa:5c:fb:c1:27:ab:35:1f: 56:5f:4a:f8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1NzAxMTAvBgNVBAUTKDcxQzEyN0QxQzA2QUZDN0M0NTRERDEwOTNFQjJDQjdF MTJENzg3QzAwHhcNMjUxMjAzMDA1OTM3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI5OS03ZTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OwCcz9us5uPF9cIhMjCdRzbtcqgL9/EgjC6JJCBadRlPZtHGP/Rf3zpCp+6 velO85NU+cKGoJcHE89zgyU0K0yw62WpD3XwPSgtnDDsQZgekiLHD52cZbiNZAzA NkFbcbj4Hc6MSPxkpfrUItN65NWmgo/BHBR+exdFyVEgaBA9F3hQM6thD3OcZPQ8 JJuh4dEMv5vkW000SEhp9mRrNXVmiN5a8SplNwTpz8yy1GM917cAiPy0q7IcVWca VLocdlXOUazuSNMXoxJwfYY2Q77oPO/KzCMeGHdM+2hehLUroJKzWtpM87l8RU+s xvSsq8e4Ss16e8oBhRatgPozKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKGle3ET 5Upq54rKcVHhn+7GMcOOMB8GA1UdIwQYMBaAFHHBJ9HAavx8RU3RCT6yy34S14fA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTU3MC9DMkNCMTE5QzY1 ODMxMUVEOTYwMDJDMkNDNEY5QUUwMi9jY0VuMGNCcV9IeEZUZEVKUHJMTGZoTFho OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjRW4wY0JxX0h4RlRkRUpQckxMZmhMWGg4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1NzAvQzJDQjExOUM2NTgzMTFFRDk2MDAyQzJDQzRGOUFFMDIvQjQ2QzhCRkE4 OUFEMTFFRDkzQ0FCNzVGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4/yMA0GCSqGSIb3DQEBCwUAA4IBAQC0cFyexpxtePRGjGxUl1jw Gip/hE7lTQ/2ffV6u37BVQSSVMf3zGAExVyB6OSXD4pLhgfeflegmTLhOaL44t8E yqIR0L6r9jL28kUdHEioz12DRWwffCTZxnlE+YwVFKKuB0B+Fat2v9FFdsIbkGVf 615TVLVyGE6S+swRzq3OPo/3uHX8GWlJCXfxegbowrjG/fGHT2bks9hG1bJb/wsV d5Awipw0HkIdyuqwA6tJXElI9ifTj2xIRaru2geJjYp7HFPgjYq03g4Ks/LF2rql zlUVnPPlcUp/dOmWQpIQl2L7SB/xrMuAZh7qA8TMs58KeOir+lz7wSerNR9WX0r4 -----END CERTIFICATE-----Generated at Thu Mar 26 16:14:45 2026 by rpki-client