$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa File: 7043D43679BB11ECB6D72266C4F9AE02.roa (raw, json) Hash identifier: 4apSZMW7Vfs833gnnmQpU2EzXDtEcmjJdHV9lEBaG8o= Subject key identifier: 56:2C:22:64:82:81:DE:C7:F4:E0:36:BD:BA:27:8E:D6:C5:4F:28:D3 Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E64 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:37:27 +0000 ROA not before: Thu 04 Sep 2025 18:28:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133929 IP address blocks: 103.141.236.0/23 maxlen: 23 103.141.236.0/24 maxlen: 24 103.141.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3684 (0xe64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Sep 4 18:28:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a424f7-9b78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:51:8a:5f:6b:88:54:e1:b8:e9:35:05:52:32: 39:e4:dd:c6:ac:4b:f2:81:20:c6:ab:97:5f:6c:2f: ac:cb:6b:80:a8:23:e5:02:4a:2d:ed:ee:87:ee:23: 46:a2:66:fd:50:1b:b1:c7:90:0e:07:e3:fe:43:78: 09:5c:04:a9:1c:65:c9:a7:87:79:e0:f1:00:2a:e2: 0a:17:31:c8:ef:9a:f5:a0:de:72:c9:db:bb:d2:0b: b2:b3:18:5a:79:3b:b9:6c:d6:ec:dc:b8:98:d2:14: 3e:c0:99:88:d2:8a:c9:82:27:75:86:2f:bc:2e:e1: 90:72:a5:41:c0:94:e0:a1:82:98:33:89:d7:d3:25: 4e:58:4e:68:79:db:db:8c:2d:11:0a:0e:12:bf:7b: c7:1d:e4:37:5d:3d:25:99:bf:52:1e:4a:34:1f:d1: a4:62:9b:27:72:74:22:8a:2b:df:52:6b:63:c2:d9: 21:96:08:09:b7:55:34:32:6b:d5:0f:71:e2:13:c0: c8:71:31:45:08:10:51:6f:0e:37:c7:d2:76:66:d0: 1d:a3:43:ac:d1:43:5c:5a:56:8e:ba:58:ca:34:67: 07:e6:bc:54:e0:56:fd:5a:d6:bd:51:45:83:72:1a: 5d:79:52:7c:de:d0:0c:d0:20:df:0f:7c:f1:0d:ad: 62:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2C:22:64:82:81:DE:C7:F4:E0:36:BD:BA:27:8E:D6:C5:4F:28:D3 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.141.236.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:f1:e2:ad:ac:98:c0:9a:67:1f:25:ae:32:16:f5:32:9d:6f: ff:69:4f:a3:1e:fa:0a:8f:ad:14:b0:81:05:89:de:3e:dc:2a: f6:05:1e:df:8e:30:c9:48:10:54:0b:1d:1c:a5:17:6c:7d:38: 8b:35:c6:b5:d6:45:49:12:f4:ac:a5:dc:5a:82:5b:97:0f:6a: a8:ae:0f:ab:7c:6b:68:45:45:16:da:07:b5:43:9f:fc:af:8e: f5:d4:87:fc:d0:bb:91:b4:64:c3:cf:31:58:11:ca:9b:5e:a7: 31:76:f1:b9:25:ed:85:21:bc:13:85:4f:82:57:ab:2b:09:4d: 7e:4e:34:3e:a1:b9:cf:b4:5b:d2:53:42:33:12:ae:0a:d4:3d: f5:40:09:21:d3:ae:64:fe:6a:98:9f:0a:54:5b:d1:87:d2:e5: 7e:31:15:7e:82:d9:5c:26:54:63:f9:3b:bc:c5:9e:7a:e4:51: f7:c5:26:8a:28:fd:0b:a5:b7:4d:0b:93:e4:37:84:52:24:35: 8d:dd:15:a9:51:d4:5f:1c:69:32:16:b0:25:3a:ca:4a:25:8e: bd:90:ff:6d:9a:17:a2:79:84:48:87:96:34:22:3c:32:b6:57: 42:82:3a:ae:cb:4d:e6:26:2c:21:d1:35:4b:de:ab:34:04:a4: ab:28:96:c0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwOTA0MTgyODMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjRmNy05Yjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjFGKX2uIVOG46TUFUjI55N3GrEvygSDGq5dfbC+sy2uAqCPlAkot7e6H7iNG omb9UBuxx5AOB+P+Q3gJXASpHGXJp4d54PEAKuIKFzHI75r1oN5yydu70guysxha eTu5bNbs3LiY0hQ+wJmI0orJgid1hi+8LuGQcqVBwJTgoYKYM4nX0yVOWE5oedvb jC0RCg4Sv3vHHeQ3XT0lmb9SHko0H9GkYpsncnQiiivfUmtjwtkhlggJt1U0MmvV D3HiE8DIcTFFCBBRbw43x9J2ZtAdo0Os0UNcWlaOuljKNGcH5rxU4Fb9Wta9UUWD chpdeVJ83tAM0CDfD3zxDa1iDwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFYsImSC gd7H9OA2vbonjtbFTyjTMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwNzYvQTQwOEY1ODJCOTA0MTFFOUIxRDUwQjQxQzRGOUFFMDIvNzA0M0Q0MzY3 OUJCMTFFQ0I2RDcyMjY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ43sMA0GCSqGSIb3DQEBCwUAA4IBAQCK8eKtrJjAmmcfJa4yFvUy nW//aU+jHvoKj60UsIEFid4+3Cr2BR7fjjDJSBBUCx0cpRdsfTiLNca11kVJEvSs pdxagluXD2qorg+rfGtoRUUW2ge1Q5/8r4711If80LuRtGTDzzFYEcqbXqcxdvG5 Je2FIbwThU+CV6srCU1+TjQ+obnPtFvSU0IzEq4K1D31QAkh065k/mqYnwpUW9GH 0uV+MRV+gtlcJlRj+Tu8xZ565FH3xSaKKP0LpbdNC5PkN4RSJDWN3RWpUdRfHGky FrAlOspKJY69kP9tmheieYRIh5Y0IjwytldCgjquy03mJiwh0TVL3qs0BKSrKJbA -----END CERTIFICATE-----Generated at Thu Mar 26 04:14:12 2026 by rpki-client