$ rpki-client -vvf rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa File: D1E8FCF6A87111EF96B74932C4F9AE02.roa (raw, json) Hash identifier: PwimUUzRqIQY326ynkEto6gf0WYZ9xkmqQwJ2FpCrpA= Subject key identifier: B0:63:57:3E:87:BB:A4:8E:E3:5C:F6:0F:9A:23:BA:70:56:F5:66:98 Certificate issuer: /CN=A91F98D7/serialNumber=2628E6A894CDFC9373F3DB9CFCFBC5143FFA2A3E Certificate serial: FC Authority key identifier: 26:28:E6:A8:94:CD:FC:93:73:F3:DB:9C:FC:FB:C5:14:3F:FA:2A:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:34:08 +0000 ROA not before: Tue 25 Mar 2025 06:43:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140097 IP address blocks: 103.148.126.0/24 maxlen: 24 103.164.82.0/24 maxlen: 24 2001:df2:d480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.crl rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F98D7, serialNumber=2628E6A894CDFC9373F3DB9CFCFBC5143FFA2A3E Validity Not Before: Mar 25 06:43:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a591d0-2c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:98:a5:ec:a4:5f:33:c3:7b:6e:c6:8b:27: 4a:bd:2b:86:93:fe:4d:40:06:36:a7:71:99:3a:a8: 02:58:a7:81:bd:6d:2f:0a:32:25:ee:1b:6c:9f:b6: 39:6d:4a:58:be:59:59:be:62:2f:c1:92:9f:bb:fd: fa:dd:d0:a9:b6:e9:20:a4:b8:fc:10:73:32:aa:46: 17:ab:6b:9a:06:fc:58:26:41:1c:e5:9b:5c:d0:f5: a9:39:fa:02:2e:19:82:61:c9:f8:4d:5f:93:53:06: 8a:b0:3c:cc:b5:1d:57:53:6a:2e:e0:98:87:e7:bc: d0:d1:53:bd:2a:52:7a:1f:05:db:c9:d3:ff:ae:7a: 01:66:f7:8a:c1:55:9d:3b:cd:30:e7:56:68:c6:42: 39:76:6a:fc:84:61:11:01:ba:79:f5:d9:6c:c8:e2: 1f:7d:d8:83:95:d8:4a:12:41:a9:e0:bc:64:a1:ae: ed:03:45:7b:1e:58:04:8e:a3:f8:5d:3b:fa:6e:f6: 7d:a7:36:1f:cc:ac:6a:bc:d2:64:26:8c:7e:0d:8e: a9:26:29:1e:1d:1f:d3:65:22:6b:65:66:57:48:5b: 1d:21:10:a1:0f:3c:c3:08:fc:db:d7:41:52:b7:ce: 44:c9:c5:a1:1c:64:db:2f:61:a6:f2:36:96:ca:bd: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:63:57:3E:87:BB:A4:8E:E3:5C:F6:0F:9A:23:BA:70:56:F5:66:98 X509v3 Authority Key Identifier: keyid:26:28:E6:A8:94:CD:FC:93:73:F3:DB:9C:FC:FB:C5:14:3F:FA:2A:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.126.0/24 103.164.82.0/24 IPv6: 2001:df2:d480::/48 Signature Algorithm: sha256WithRSAEncryption 65:17:f4:ec:81:3f:4e:15:45:90:7f:46:5f:77:73:f4:ba:07: b1:34:ac:ae:0a:15:55:75:e8:ca:81:b8:48:ba:76:dd:40:d5: 6e:d4:69:73:55:85:9b:e9:e7:2e:b4:69:66:c7:d8:2c:f8:f2: c6:4c:83:79:02:f9:83:f8:e4:06:cb:0e:53:ad:4d:43:48:24: 09:38:69:eb:e7:0c:c2:31:d2:d9:00:9d:4d:7a:0c:46:5f:24: ea:d0:c1:73:21:0b:b0:9d:85:9d:70:92:01:1f:30:ae:ee:33: 1e:40:b6:09:34:70:e3:b2:5e:3b:fa:d9:2e:22:28:c3:28:c5: d8:05:bc:bb:89:cd:40:b7:5f:0d:6c:ac:a1:3b:2b:80:4f:07: 65:00:df:cb:26:7a:cb:d3:41:a6:6a:5c:ea:13:fc:de:c0:2e: 8d:0d:e9:ae:51:5d:a3:f2:e7:17:56:0b:fa:0d:2a:fa:37:50: 90:b0:47:3f:ed:06:7b:44:a3:20:8e:ef:04:2c:da:74:60:88: 97:89:5f:f9:b2:44:63:f8:18:ea:1e:06:5e:79:4b:97:c6:e8: 68:59:da:ef:2c:a6:50:e1:1f:b0:af:ab:88:c2:81:e3:1d:67: 83:64:be:85:3c:69:1e:52:98:e9:5b:9d:fd:9f:35:db:b3:3b: f0:52:3f:19 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk4RDcxMTAvBgNVBAUTKDI2MjhFNkE4OTRDREZDOTM3M0YzREI5Q0ZDRkJDNTE0 M0ZGQTJBM0UwHhcNMjUwMzI1MDY0MzE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFkMC0yYzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2yYpeykXzPDe27GiydKvSuGk/5NQAY2p3GZOqgCWKeBvW0vCjIl7htsn7Y5 bUpYvllZvmIvwZKfu/363dCptukgpLj8EHMyqkYXq2uaBvxYJkEc5Ztc0PWpOfoC LhmCYcn4TV+TUwaKsDzMtR1XU2ou4JiH57zQ0VO9KlJ6HwXbydP/rnoBZveKwVWd O80w51ZoxkI5dmr8hGERAbp59dlsyOIffdiDldhKEkGp4Lxkoa7tA0V7HlgEjqP4 XTv6bvZ9pzYfzKxqvNJkJox+DY6pJikeHR/TZSJrZWZXSFsdIRChDzzDCPzb10FS t85EycWhHGTbL2Gm8jaWyr04xwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFLBjVz6H u6SO41z2D5ojunBW9WaYMB8GA1UdIwQYMBaAFCYo5qiUzfyTc/PbnPz7xRQ/+io+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOThENy84NjIxQUU2MkE4 NzExMUVGQUVBMUM4MzFDNEY5QUUwMi9KaWptcUpUTl9KTno4OXVjX1B2RkZEXzZL ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ppam1xSlROX0pOejg5dWNfUHZGRkRfNktqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk4RDcvODYyMUFFNjJBODcxMTFFRkFFQTFDODMxQzRGOUFFMDIvRDFFOEZDRjZB ODcxMTFFRjk2Qjc0OTMyQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ5R+AwQAZ6RSMA8EAgACMAkDBwAgAQ3y1IAwDQYJKoZIhvcNAQEL BQADggEBAGUX9OyBP04VRZB/Rl93c/S6B7E0rK4KFVV16MqBuEi6dt1A1W7UaXNV hZvp5y60aWbH2Cz48sZMg3kC+YP45AbLDlOtTUNIJAk4aevnDMIx0tkAnU16DEZf JOrQwXMhC7CdhZ1wkgEfMK7uMx5Atgk0cOOyXjv62S4iKMMoxdgFvLuJzUC3Xw1s rKE7K4BPB2UA38smesvTQaZqXOoT/N7ALo0N6a5RXaPy5xdWC/oNKvo3UJCwRz/t BntEoyCO7wQs2nRgiJeJX/myRGP4GOoeBl55S5fG6GhZ2u8splDhH7Cvq4jCgeMd Z4NkvoU8aR5SmOlbnf2fNduzO/BSPxk= -----END CERTIFICATE-----Generated at Fri Mar 27 06:21:08 2026 by rpki-client