$ rpki-client -vvf rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa File: AC8124909A4911E7857CA62FC4F9AE02.roa (raw, json) Hash identifier: Kodnm0+rS9iUqWFMV9owslM69gEEqhhUDC5QqGUYClg= Subject key identifier: E6:3A:6A:A8:8A:6B:D4:7A:8F:F3:D6:CE:31:F2:E1:27:7D:37:94:EE Certificate issuer: /CN=A91970E2/serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Certificate serial: 1C96 Authority key identifier: D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa Signing time: Mon 30 Mar 2026 16:19:59 +0000 ROA not before: Mon 30 Mar 2026 16:19:59 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58689 IP address blocks: 103.205.132.0/24 maxlen: 24 103.205.134.0/23 maxlen: 24 144.48.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7318 (0x1c96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91970E2, serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Validity Not Before: Mar 30 16:19:59 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69caa2ae-983a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9f:12:1f:4d:f3:b0:6b:34:84:10:8d:73:af: ff:f6:3b:43:96:7b:26:61:8c:8f:56:d3:10:df:6c: a1:cb:61:54:7d:a1:49:fe:f8:84:47:33:5e:32:45: 65:62:14:9a:f7:18:a3:d0:dc:7e:8d:71:5e:9c:b6: 1a:76:83:05:3e:da:9b:63:36:6c:68:48:fe:0a:dc: 6d:07:68:15:f0:3a:af:e9:b6:95:01:26:bc:cf:4c: 74:4b:87:0b:1e:9d:45:fb:04:16:cb:ef:22:f2:05: 5b:89:78:59:4f:74:29:5f:ed:0f:d3:7e:ff:ae:cb: 9c:58:1f:5d:4a:d1:5e:61:71:be:9d:f3:cd:c8:81: b4:87:7f:4d:da:e2:75:7f:42:36:8a:5a:20:ba:09: 00:30:a9:2e:ba:59:3c:10:c6:69:1e:3e:61:34:09: 46:af:37:70:7a:77:88:81:4f:be:76:cc:97:d7:4d: 92:2a:f6:19:63:02:f2:c7:02:b1:85:e2:0b:c5:a0: 44:7e:c6:f7:e1:09:48:ad:46:43:94:7e:64:ce:85: 4b:38:39:f2:b2:f5:13:eb:96:87:8e:1d:bf:78:aa: 98:4e:25:8d:34:97:f8:0a:79:e3:b4:08:86:1c:9e: 0f:6c:bc:8b:0f:81:bf:59:91:d2:7f:3a:1f:b2:24: ba:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3A:6A:A8:8A:6B:D4:7A:8F:F3:D6:CE:31:F2:E1:27:7D:37:94:EE X509v3 Authority Key Identifier: keyid:D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/AC8124909A4911E7857CA62FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.205.132.0/24 103.205.134.0/23 144.48.108.0/22 Signature Algorithm: sha256WithRSAEncryption a3:e5:9d:2d:e0:e4:d5:aa:51:b7:86:3a:18:84:39:bd:00:aa: 75:0a:27:8a:a7:93:1a:8e:07:f3:58:27:14:ba:bc:b2:57:5a: 78:da:d6:22:59:69:c1:bb:36:63:31:80:43:42:e6:fb:b5:00: f8:e1:1a:82:f3:06:de:4c:a6:80:6a:09:41:30:32:45:48:b3: f1:01:3e:70:9f:a5:48:20:93:93:c1:6b:ee:6e:0c:41:a9:df: a5:4e:10:e9:b5:d9:cf:d5:29:3f:3f:ed:0c:68:44:b8:27:a2: c7:69:52:2c:29:4b:34:7b:d8:d5:c8:8c:64:4e:3e:45:8d:53: fe:24:ee:fd:30:fa:1a:66:fc:d2:9d:ae:c7:7c:51:09:8a:bd: 8e:14:10:1f:d8:9b:65:d5:f5:f6:e2:8a:89:c2:59:da:9f:8c: d0:0e:1c:98:86:0a:53:37:11:c7:41:e3:4a:41:82:f9:3e:db: 96:f2:d5:21:6e:42:fe:d3:d1:05:91:6b:77:37:64:86:a5:f2: b5:f1:ca:08:f9:27:e1:cb:5a:b6:78:a7:3f:c2:92:13:88:0c: 34:61:2c:5f:a5:92:c4:ff:1c:62:04:9f:b5:ce:e4:87:0f:12: 7c:11:a7:20:98:a4:b6:7f:8b:11:b3:80:15:da:12:b3:17:b3: 7e:02:e9:24 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICHJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcwRTIxMTAvBgNVBAUTKEQ0RDE3Nzk5RUFDOUM5OTYyQjMyNUZFRDg3RjkzMEMy RUFDODJDQUYwHhcNMjYwMzMwMTYxOTU5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYTJhZS05ODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo58SH03zsGs0hBCNc6//9jtDlnsmYYyPVtMQ32yhy2FUfaFJ/viERzNeMkVl YhSa9xij0Nx+jXFenLYadoMFPtqbYzZsaEj+CtxtB2gV8Dqv6baVASa8z0x0S4cL Hp1F+wQWy+8i8gVbiXhZT3QpX+0P037/rsucWB9dStFeYXG+nfPNyIG0h39N2uJ1 f0I2ilogugkAMKkuulk8EMZpHj5hNAlGrzdweneIgU++dsyX102SKvYZYwLyxwKx heILxaBEfsb34QlIrUZDlH5kzoVLODnysvUT65aHjh2/eKqYTiWNNJf4CnnjtAiG HJ4PbLyLD4G/WZHSfzofsiS6xQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOY6aqiK a9R6j/PWzjHy4Sd9N5TuMB8GA1UdIwQYMBaAFNTRd5nqycmWKzJf7Yf5MMLqyCyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzBFMi84MTAxMjU4Q0Y5 QTgxMUU2QTRFRkUwMkVDNEY5QUUwMi8xTkYzbWVySnlaWXJNbF90aF9rd3d1cklM SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFORjNtZXJKeVpZck1sX3RoX2t3d3VySUxLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcwRTIvODEwMTI1OENGOUE4MTFFNkE0RUZFMDJFQzRGOUFFMDIvQUM4MTI0OTA5 QTQ5MTFFNzg1N0NBNjJGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ82EAwQBZ82GAwQCkDBsMA0GCSqGSIb3DQEBCwUAA4IBAQCj5Z0t 4OTVqlG3hjoYhDm9AKp1CieKp5MajgfzWCcUuryyV1p42tYiWWnBuzZjMYBDQub7 tQD44RqC8wbeTKaAaglBMDJFSLPxAT5wn6VIIJOTwWvubgxBqd+lThDptdnP1Sk/ P+0MaES4J6LHaVIsKUs0e9jVyIxkTj5FjVP+JO79MPoaZvzSna7HfFEJir2OFBAf 2Jtl1fX24oqJwlnan4zQDhyYhgpTNxHHQeNKQYL5PtuW8tUhbkL+09EFkWt3N2SG pfK18coI+Sfhy1q2eKc/wpITiAw0YSxfpZLE/xxiBJ+1zuSHDxJ8EacgmKS2f4sR s4AV2hKzF7N+Aukk -----END CERTIFICATE-----Generated at Mon Apr 6 12:27:05 2026 by rpki-client