$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa File: 61B47D886B5211EDB97A2834C4F9AE02.roa (raw, json) Hash identifier: jlEGSFgrtpFxgrLft8aSqTV3lW+FCxpfsVhhvgy0Afc= Subject key identifier: BB:DD:3F:BB:5C:5D:AF:47:FD:9D:F6:B4:89:59:38:33:A0:C3:42:9A Certificate issuer: /CN=A91DFA83/serialNumber=B53450382E45F8A3D7D62910F379C789D147FFB0 Certificate serial: 0276 Authority key identifier: B5:34:50:38:2E:45:F8:A3:D7:D6:29:10:F3:79:C7:89:D1:47:FF:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:55:04 +0000 ROA not before: Thu 05 Feb 2026 12:21:24 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 132022 IP address blocks: 103.246.204.0/24 maxlen: 24 103.246.205.0/24 maxlen: 24 103.246.206.0/24 maxlen: 24 103.246.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.crl rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA83, serialNumber=B53450382E45F8A3D7D62910F379C789D147FFB0 Validity Not Before: Feb 5 12:21:24 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43728-89e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:12:25:a6:a8:06:15:ce:1e:bb:f8:03:63: a0:00:45:a4:dd:51:b4:17:c1:b0:88:c9:5d:6b:71: bf:9d:fe:86:48:89:b2:2c:88:92:95:3e:be:4c:7b: 8c:5d:82:73:bf:81:b7:ea:4b:bc:2b:07:4f:43:f2: 69:8f:03:07:bb:f6:81:14:0e:9b:66:4f:c2:a2:e1: 3b:0b:37:01:f9:6b:89:9a:60:0e:ce:ca:7d:4e:26: 04:6e:da:de:27:eb:1a:42:1f:fc:52:86:7a:13:6d: 36:d3:01:05:89:08:7b:db:ee:51:f2:bd:dd:6a:2e: 3c:85:a5:29:0e:15:2a:65:3b:b6:e5:07:c2:c9:85: 56:bf:35:16:a6:5e:89:78:e0:56:15:fe:66:5d:10: d0:01:83:b7:46:12:af:b9:a5:1d:af:91:49:d6:f9: ac:05:9d:cb:43:de:38:1a:c6:05:44:84:c7:e8:3f: 56:31:d8:42:33:70:bc:0e:2a:96:28:20:26:27:1a: bd:cd:bc:f0:57:f3:da:6f:ae:06:1b:7c:de:92:c1: e0:e5:3d:ed:2d:11:99:28:50:4f:a5:1f:9e:16:e9: 4f:8b:f8:97:78:4d:43:61:3c:62:6f:ce:e1:c5:ea: 35:40:6f:bf:f3:a9:c6:d0:34:b5:f0:32:4d:51:a5: 2a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:3F:BB:5C:5D:AF:47:FD:9D:F6:B4:89:59:38:33:A0:C3:42:9A X509v3 Authority Key Identifier: keyid:B5:34:50:38:2E:45:F8:A3:D7:D6:29:10:F3:79:C7:89:D1:47:FF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/tTRQOC5F-KPX1ikQ83nHidFH_7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTRQOC5F-KPX1ikQ83nHidFH_7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA83/64AF80026B3211EDB4ECB768C4F9AE02/61B47D886B5211EDB97A2834C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.246.204.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:3a:d6:cd:99:23:fc:16:61:c9:a3:7f:9d:7d:e8:97:56:f5: 2e:57:9f:b3:35:96:d8:41:58:2a:61:b7:32:bf:a5:cb:dd:a7: 90:c4:21:0a:9b:04:ad:89:a8:56:ca:d8:91:20:ae:3f:43:e1: b2:fb:59:28:43:7a:4f:a0:b7:15:d7:b5:24:74:c0:bc:fd:d3: 4c:66:0f:35:8e:07:98:58:34:24:b2:75:e0:95:e5:94:da:81: e5:6f:5b:dc:ad:44:55:51:a2:73:8b:7c:27:93:5b:b9:e3:af: b8:65:58:0a:0e:aa:1c:d2:ab:7d:4c:28:93:9a:b1:68:39:94: 03:6b:de:0e:27:40:63:78:c8:00:0c:ed:27:6f:86:44:69:8b: 06:46:5a:97:96:50:68:2a:88:2b:dd:0c:5e:c5:57:ed:67:9e: c4:d6:57:82:35:48:75:93:bf:7f:8c:5c:9d:11:24:8f:84:e0: 6f:cb:32:94:58:39:01:d1:89:dc:c8:0d:f1:68:f1:86:85:31: 2c:24:75:f9:f2:ea:a9:a7:31:54:b7:75:19:be:ea:27:1b:44: 87:57:2d:78:9f:a3:ee:c4:33:75:35:52:e0:3f:12:89:76:22: dc:b5:1b:9d:02:a1:95:e4:2b:64:4f:b3:13:2e:14:08:69:74: db:b1:06:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZBODMxMTAvBgNVBAUTKEI1MzQ1MDM4MkU0NUY4QTNEN0Q2MjkxMEYzNzlDNzg5 RDE0N0ZGQjAwHhcNMjYwMjA1MTIyMTI0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzcyOC04OWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEsSJaaoBhXOHrv4A2OgAEWk3VG0F8GwiMlda3G/nf6GSImyLIiSlT6+THuM XYJzv4G36ku8KwdPQ/JpjwMHu/aBFA6bZk/CouE7CzcB+WuJmmAOzsp9TiYEbtre J+saQh/8UoZ6E2020wEFiQh72+5R8r3dai48haUpDhUqZTu25QfCyYVWvzUWpl6J eOBWFf5mXRDQAYO3RhKvuaUdr5FJ1vmsBZ3LQ944GsYFRITH6D9WMdhCM3C8DiqW KCAmJxq9zbzwV/Pab64GG3zeksHg5T3tLRGZKFBPpR+eFulPi/iXeE1DYTxib87h xeo1QG+/86nG0DS18DJNUaUq5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLvdP7tc Xa9H/Z32tIlZODOgw0KaMB8GA1UdIwQYMBaAFLU0UDguRfij19YpEPN5x4nRR/+w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkE4My82NEFGODAwMjZC MzIxMUVEQjRFQ0I3NjhDNEY5QUUwMi90VFJRT0M1Ri1LUFgxaWtRODNuSGlkRkhf N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RUUlFPQzVGLUtQWDFpa1E4M25IaWRGSF83QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZBODMvNjRBRjgwMDI2QjMyMTFFREI0RUNCNzY4QzRGOUFFMDIvNjFCNDdEODg2 QjUyMTFFREI5N0EyODM0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ/bMMA0GCSqGSIb3DQEBCwUAA4IBAQCdOtbNmSP8FmHJo3+dfeiX VvUuV5+zNZbYQVgqYbcyv6XL3aeQxCEKmwStiahWytiRIK4/Q+Gy+1koQ3pPoLcV 17UkdMC8/dNMZg81jgeYWDQksnXgleWU2oHlb1vcrURVUaJzi3wnk1u546+4ZVgK Dqoc0qt9TCiTmrFoOZQDa94OJ0BjeMgADO0nb4ZEaYsGRlqXllBoKogr3QxexVft Z57E1leCNUh1k79/jFydESSPhOBvyzKUWDkB0YncyA3xaPGGhTEsJHX58uqppzFU t3UZvuonG0SHVy14n6PuxDN1NVLgPxKJdiLctRudAqGV5CtkT7MTLhQIaXTbsQbl -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:10 2026 by rpki-client