$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa File: 9985244A2D1411EEAA9EA45DC4F9AE02.roa (raw, json) Hash identifier: ReWfHLKEKoAywYXZiDMOK9dI287S9BEAejTHxvhLN0A= Subject key identifier: A0:1B:C4:5B:32:DB:A4:E0:49:A2:5C:F3:47:76:F0:0F:D2:A6:E6:AA Certificate issuer: /CN=A91E8AF5/serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Certificate serial: 01E9 Authority key identifier: E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:37:53 +0000 ROA not before: Tue 29 Apr 2025 04:40:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151342 IP address blocks: 103.219.146.0/24 maxlen: 24 2001:df2:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF5, serialNumber=E35F7419D572A86F76D2EBF7829AB6D9D0340905 Validity Not Before: Apr 29 04:40:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3dec1-cb0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8f:3b:dc:92:62:2d:55:7a:b5:be:8b:73:1c: b5:b2:e0:49:d1:88:5c:2e:a7:04:31:26:bb:0d:1d: 20:d8:77:63:87:4c:8f:6c:25:19:e7:51:fa:9e:c2: dc:f0:64:cd:6e:7d:f7:51:55:ae:33:d4:93:a5:c5: fb:a2:81:e6:d3:5e:22:d4:3d:91:62:f8:1e:cf:e4: 16:2c:82:2b:26:4b:24:ee:38:ae:a4:c0:eb:67:d7: 9b:89:b7:42:9c:35:c2:f8:41:67:75:03:ec:1b:46: a7:60:e4:6b:71:09:d7:1b:19:99:22:43:ae:f8:62: 3f:24:79:7e:ae:00:c6:ba:08:9c:30:fb:b6:00:72: 63:c3:32:80:c9:1e:1d:9f:be:14:9d:da:ab:9a:7c: 69:f2:db:33:27:2b:06:04:d8:b7:f0:59:d4:84:88: ee:b0:74:a4:1d:6f:0b:c1:c3:cb:74:b7:73:f6:ea: b9:32:1b:e7:ab:fb:67:9f:fc:c3:f3:92:87:30:17: b1:e3:83:cd:67:17:d9:57:f2:81:f6:4d:33:e3:ee: 74:63:3d:e1:f9:00:33:8c:8d:d1:a1:23:c6:4e:50: 2a:cc:93:78:03:e3:92:66:5c:61:70:df:0e:29:29: d3:29:8b:6b:9e:19:a4:42:47:2e:d2:17:73:64:c1: d9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1B:C4:5B:32:DB:A4:E0:49:A2:5C:F3:47:76:F0:0F:D2:A6:E6:AA X509v3 Authority Key Identifier: keyid:E3:5F:74:19:D5:72:A8:6F:76:D2:EB:F7:82:9A:B6:D9:D0:34:09:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/4190GdVyqG920uv3gpq22dA0CQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4190GdVyqG920uv3gpq22dA0CQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF5/33F725862D1111EE996CC610C4F9AE02/9985244A2D1411EEAA9EA45DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.219.146.0/24 IPv6: 2001:df2:2840::/48 Signature Algorithm: sha256WithRSAEncryption 4f:30:9c:a1:65:84:bb:18:aa:2f:ba:1d:a2:f3:81:d7:ae:0f: 0b:e7:2b:80:fa:5b:4c:db:33:67:c9:90:ee:b6:eb:7d:3e:5d: ff:23:58:14:32:2d:26:bc:d9:ab:1e:fd:8a:fd:f7:e3:ba:21: a3:dc:ec:f2:b8:dc:f0:5e:24:c5:1b:68:a2:7d:a2:a3:cf:14: 66:a9:bb:30:52:38:eb:b2:44:d5:f5:a0:e4:44:ef:10:0e:b6: 7c:bd:83:95:30:ba:0b:90:39:7f:d4:27:a2:a6:77:a8:91:aa: 2f:ef:9e:0f:1b:88:a0:7a:92:18:4b:5c:5d:53:45:2e:ca:71: cd:f0:70:41:c6:9d:a1:c2:ba:5b:5a:12:1c:bd:00:e1:4a:62: a6:ef:ce:0d:67:15:c6:96:30:02:2a:93:0f:7b:47:9f:28:06: 78:11:fd:9f:36:5c:a8:d3:75:67:bc:c3:5e:a4:b3:2c:c9:7e: 8a:6a:f6:58:a5:29:ce:c7:26:68:7e:74:60:56:4f:1a:15:f2: 98:d9:8b:6b:75:b7:ca:ec:a6:d2:d4:50:0d:a2:d7:55:01:de: 9b:3b:b6:f8:02:b8:64:61:90:fc:2d:63:93:4f:0f:19:f1:e2: 79:df:26:0b:b4:04:41:e0:8f:15:3e:42:c3:ae:f0:e0:18:a0: 59:55:c8:b9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjUxMTAvBgNVBAUTKEUzNUY3NDE5RDU3MkE4NkY3NkQyRUJGNzgyOUFCNkQ5 RDAzNDA5MDUwHhcNMjUwNDI5MDQ0MDIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGVjMS1jYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqY873JJiLVV6tb6Lcxy1suBJ0YhcLqcEMSa7DR0g2Hdjh0yPbCUZ51H6nsLc 8GTNbn33UVWuM9STpcX7ooHm014i1D2RYvgez+QWLIIrJksk7jiupMDrZ9ebibdC nDXC+EFndQPsG0anYORrcQnXGxmZIkOu+GI/JHl+rgDGugicMPu2AHJjwzKAyR4d n74Undqrmnxp8tszJysGBNi38FnUhIjusHSkHW8LwcPLdLdz9uq5Mhvnq/tnn/zD 85KHMBex44PNZxfZV/KB9k0z4+50Yz3h+QAzjI3RoSPGTlAqzJN4A+OSZlxhcN8O KSnTKYtrnhmkQkcu0hdzZMHZnwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKAbxFsy 26TgSaJc80d28A/SpuaqMB8GA1UdIwQYMBaAFONfdBnVcqhvdtLr94KattnQNAkF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGNS8zM0Y3MjU4NjJE MTExMUVFOTk2Q0M2MTBDNEY5QUUwMi80MTkwR2RWeXFHOTIwdXYzZ3BxMjJkQTBD UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxOTBHZFZ5cUc5MjB1djNncHEyMmRBMENRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThBRjUvMzNGNzI1ODYyRDExMTFFRTk5NkNDNjEwQzRGOUFFMDIvOTk4NTI0NEEy RDE0MTFFRUFBOUVBNDVEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ9uSMA8EAgACMAkDBwAgAQ3yKEAwDQYJKoZIhvcNAQELBQADggEB AE8wnKFlhLsYqi+6HaLzgdeuDwvnK4D6W0zbM2fJkO62630+Xf8jWBQyLSa82ase /Yr99+O6IaPc7PK43PBeJMUbaKJ9oqPPFGapuzBSOOuyRNX1oORE7xAOtny9g5Uw uguQOX/UJ6Kmd6iRqi/vng8biKB6khhLXF1TRS7Kcc3wcEHGnaHCultaEhy9AOFK Yqbvzg1nFcaWMAIqkw97R58oBngR/Z82XKjTdWe8w16ksyzJfopq9lilKc7HJmh+ dGBWTxoV8pjZi2t1t8rsptLUUA2i11UB3ps7tvgCuGRhkPwtY5NPDxnx4nnfJgu0 BEHgjxU+QsOu8OAYoFlVyLk= -----END CERTIFICATE-----Generated at Sat Mar 28 12:08:19 2026 by rpki-client