$ rpki-client -vvf rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/4816D7F0327A11EEA132B74CC4F9AE02.roa File: 4816D7F0327A11EEA132B74CC4F9AE02.roa (raw, json) Hash identifier: Z3UgUYXH2NAmhW65oCscM9NBApqLDafkq58mzG7G4CQ= Subject key identifier: DD:C9:39:17:58:EA:7A:53:43:C6:62:AD:2B:50:02:67:54:8D:67:0B Certificate issuer: /CN=A91E473F/serialNumber=9341F9B70F714F131C52E1FE4BE5E5AB8C26EBEA Certificate serial: 06B0 Authority key identifier: 93:41:F9:B7:0F:71:4F:13:1C:52:E1:FE:4B:E5:E5:AB:8C:26:EB:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/4816D7F0327A11EEA132B74CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:50:13 +0000 ROA not before: Sat 08 Nov 2025 21:43:17 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139736 IP address blocks: 103.144.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.crl rsync://rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E473F, serialNumber=9341F9B70F714F131C52E1FE4BE5E5AB8C26EBEA Validity Not Before: Nov 8 21:43:17 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59595-4442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:33:15:c6:2f:40:33:bf:5d:2d:ab:20:a0: 7d:2e:b1:57:8a:20:4d:12:49:72:48:04:2f:b3:4a: 80:ee:ab:7e:dc:24:2d:82:e1:ae:62:b5:56:4e:b9: da:5a:90:3c:6b:34:d9:30:74:53:a7:03:52:7d:d4: 05:bb:7b:ce:9a:b7:de:f2:16:b2:e0:23:27:ae:ae: 1b:86:e7:8e:9a:c2:9b:e7:0a:20:cd:58:87:dd:f5: 41:ef:3c:62:27:25:9a:f8:45:30:de:e1:7e:b3:94: 03:f4:e1:8c:6a:3e:fb:6d:32:70:06:63:44:db:d0: 31:37:00:dc:ee:db:26:a3:a1:12:3f:cd:48:9a:65: 00:3a:56:fe:4b:0d:13:82:ed:0f:23:6a:f1:60:dc: 23:8a:f0:70:1c:c8:85:cd:06:aa:65:fe:f5:2a:af: 5e:4c:bd:73:31:21:59:35:8c:b5:26:10:92:e9:40: a3:41:87:45:ca:92:56:17:e3:8f:01:4b:ed:9c:ff: 1c:4d:4e:56:c7:79:70:08:9f:59:ca:d3:22:f8:03: 31:46:db:17:a5:45:fa:ce:37:fd:5f:a8:b7:7d:3e: a9:2f:eb:3f:78:1a:da:6a:47:a4:f6:b9:d2:f9:35: 9f:1d:8c:70:e4:3c:bc:89:52:8e:0e:ff:99:f4:90: 51:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C9:39:17:58:EA:7A:53:43:C6:62:AD:2B:50:02:67:54:8D:67:0B X509v3 Authority Key Identifier: keyid:93:41:F9:B7:0F:71:4F:13:1C:52:E1:FE:4B:E5:E5:AB:8C:26:EB:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0H5tw9xTxMcUuH-S-Xlq4wm6-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E473F/D6E540389DB311EBB032B04CC4F9AE02/4816D7F0327A11EEA132B74CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.98.0/23 Signature Algorithm: sha256WithRSAEncryption 46:44:e0:ae:83:11:a7:3c:12:85:09:64:68:6b:c6:e6:65:17: 97:36:7d:6b:7a:8c:08:b9:60:98:a2:4a:4f:54:a8:49:48:c1: 24:7a:ef:0b:4d:4e:db:ce:2c:2c:a6:37:eb:94:f5:d2:00:35: 37:0e:67:2e:ed:ba:dc:fd:d1:01:46:c5:8a:54:c3:4c:5e:ee: fb:3a:1a:1f:1c:7a:b1:ba:83:56:ff:ec:29:f4:bc:b6:7a:cc: 07:5f:93:3a:39:87:90:ad:fc:43:0a:f2:11:65:99:6e:fc:46: 7a:29:ac:51:bc:81:11:48:72:a2:82:cf:96:08:9c:2c:c6:2a: 4b:42:b7:8e:89:bf:c6:fe:47:c6:ee:f2:ae:bb:56:dd:54:6a: ea:0c:c4:14:0a:35:d2:04:70:90:80:d2:cf:09:45:8b:76:88: b0:6d:75:70:dd:e5:7f:dd:e4:4e:62:2c:a2:b5:5e:01:14:2d: 9d:ab:9c:41:5f:24:94:f5:54:9f:65:57:c8:41:7d:43:1d:68: 7e:01:ca:4c:8e:fb:bc:1f:24:50:11:90:f0:02:da:5f:36:b7: 99:05:0c:2f:bb:1a:10:ba:3c:47:73:32:48:c1:0f:d0:dd:14: 79:fc:62:f7:7b:5d:0b:4e:da:0c:74:90:c5:d2:c3:5b:a6:2f: f6:87:6d:d4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3M0YxMTAvBgNVBAUTKDkzNDFGOUI3MEY3MTRGMTMxQzUyRTFGRTRCRTVFNUFC OEMyNkVCRUEwHhcNMjUxMTA4MjE0MzE3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTU5NS00NDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRwzFcYvQDO/XS2rIKB9LrFXiiBNEklySAQvs0qA7qt+3CQtguGuYrVWTrna WpA8azTZMHRTpwNSfdQFu3vOmrfe8hay4CMnrq4bhueOmsKb5wogzViH3fVB7zxi JyWa+EUw3uF+s5QD9OGMaj77bTJwBmNE29AxNwDc7tsmo6ESP81ImmUAOlb+Sw0T gu0PI2rxYNwjivBwHMiFzQaqZf71Kq9eTL1zMSFZNYy1JhCS6UCjQYdFypJWF+OP AUvtnP8cTU5Wx3lwCJ9ZytMi+AMxRtsXpUX6zjf9X6i3fT6pL+s/eBraakek9rnS +TWfHYxw5Dy8iVKODv+Z9JBR9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN3JORdY 6npTQ8ZirStQAmdUjWcLMB8GA1UdIwQYMBaAFJNB+bcPcU8THFLh/kvl5auMJuvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDczRi9ENkU1NDAzODlE QjMxMUVCQjAzMkIwNENDNEY5QUUwMi9rMEg1dHc5eFR4TWNVdUgtUy1YbHE0d202 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swSDV0dzl4VHhNY1V1SC1TLVhscTR3bTYtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ3M0YvRDZFNTQwMzg5REIzMTFFQkIwMzJCMDRDQzRGOUFFMDIvNDgxNkQ3RjAz MjdBMTFFRUExMzJCNzRDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5BiMA0GCSqGSIb3DQEBCwUAA4IBAQBGROCugxGnPBKFCWRoa8bm ZReXNn1reowIuWCYokpPVKhJSMEkeu8LTU7bziwspjfrlPXSADU3Dmcu7brc/dEB RsWKVMNMXu77OhofHHqxuoNW/+wp9Ly2eswHX5M6OYeQrfxDCvIRZZlu/EZ6KaxR vIERSHKigs+WCJwsxipLQreOib/G/kfG7vKuu1bdVGrqDMQUCjXSBHCQgNLPCUWL doiwbXVw3eV/3eROYiyitV4BFC2dq5xBXySU9VSfZVfIQX1DHWh+AcpMjvu8HyRQ EZDwAtpfNreZBQwvuxoQujxHczJIwQ/Q3RR5/GL3e10LTtoMdJDF0sNbpi/2h23U -----END CERTIFICATE-----Generated at Fri Mar 27 07:09:12 2026 by rpki-client