$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa File: D9470BFE7DC811ECB84BD174C4F9AE02.roa (raw, json) Hash identifier: lP8svy+8R0RpDQF9QDfdZeWxD+kp7vVZepaLOJWD9LA= Subject key identifier: AB:BC:73:F9:CA:5E:67:67:3C:C7:E3:2E:A7:AA:D2:DF:EA:63:18:FB Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 04A1 Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:30:29 +0000 ROA not before: Fri 03 Apr 2026 00:30:29 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 137040 IP address blocks: 103.102.221.0/24 maxlen: 24 103.133.75.0/24 maxlen: 24 103.133.82.0/23 maxlen: 23 103.133.82.0/24 maxlen: 24 103.133.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265, serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: Apr 3 00:30:29 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf0a25-e003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:89:5d:16:f4:79:02:3d:db:95:42:8e:e7:af: df:b4:50:d2:cd:9f:e9:f6:96:7f:ab:ff:dd:34:a7: 06:97:d5:8e:af:4c:9c:4d:32:a9:60:18:97:e0:1c: 26:b1:26:7c:14:60:00:2b:8b:00:22:0d:f6:3a:f1: f2:40:c4:50:e2:24:04:d5:b0:88:ec:94:b9:c4:9f: 4c:9a:3e:1e:de:cb:81:e5:00:bd:a1:05:d2:4e:e4: 3e:bc:35:65:d5:ff:7f:30:fb:3a:bd:f6:c1:ef:29: 97:54:04:c1:da:50:39:e0:e1:2e:c4:bd:9a:9e:27: 2b:43:d8:db:a8:cd:f1:2f:6f:56:20:55:b3:bf:41: 78:dd:2e:0f:54:e0:49:c9:ef:4b:30:7f:6f:7a:d1: 7b:38:d5:10:56:e0:3d:79:2a:f9:e4:23:c4:b7:a0: cf:eb:34:58:03:d9:6f:e8:df:53:ea:d2:da:ce:10: 03:e9:96:0c:12:62:f1:2b:3a:c8:cc:1a:43:ad:63: 9e:1a:6a:cc:67:bb:f8:a2:a7:82:fc:f0:ba:30:1c: 7c:3a:12:d1:a6:dc:25:fb:33:54:f5:68:9e:10:52: e4:a2:72:04:bd:d7:b3:f0:6a:f8:a7:3b:d2:4e:11: 72:a8:d8:df:bb:0f:e6:63:ac:2f:cf:6b:dc:20:a7: 8a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BC:73:F9:CA:5E:67:67:3C:C7:E3:2E:A7:AA:D2:DF:EA:63:18:FB X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/D9470BFE7DC811ECB84BD174C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.102.221.0/24 103.133.75.0/24 103.133.82.0/23 Signature Algorithm: sha256WithRSAEncryption c0:e2:f7:b2:65:d2:5a:b6:42:c1:03:74:b0:3f:15:dd:f8:d6: 75:4f:17:76:ec:57:47:90:da:d8:0b:c4:49:3a:63:cc:8a:17: c6:87:4c:8b:9b:bc:11:38:5c:ac:cf:33:a5:b9:2d:6a:b0:02: 19:c4:70:f3:fd:4f:fd:90:58:30:23:b6:09:73:fa:3f:c7:03: 33:4d:07:28:c6:aa:68:3d:ad:da:09:5d:56:1a:7d:64:b1:b8: 3b:d0:e7:59:e9:86:66:70:18:c8:70:d2:a7:81:8e:b6:98:0e: 3a:73:1e:22:50:c9:e9:43:81:d2:94:e0:c8:56:82:6f:ea:a6: c7:12:dc:fa:33:6f:47:75:51:24:a5:09:6a:85:57:89:fc:c7: 49:00:91:86:00:99:29:a0:24:79:75:7d:32:65:27:34:d9:95: e5:bb:1f:f2:8d:62:30:e7:42:8e:1d:23:49:0e:86:92:b1:5f: 74:54:4a:e8:6a:0d:1b:3b:26:27:84:f4:22:86:5d:37:d5:91: f3:d7:34:1e:c5:93:ff:47:96:f1:75:15:3d:64:00:94:54:d4: 53:77:81:a6:c5:98:11:90:88:1e:ef:b7:22:60:d2:6b:fd:32: 49:cf:51:78:c3:37:94:3e:81:3b:33:ba:1a:2d:5b:81:d3:f4: a5:ea:d9:91 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjYwNDAzMDAzMDI5WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGEyNS1lMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiYldFvR5Aj3blUKO56/ftFDSzZ/p9pZ/q//dNKcGl9WOr0ycTTKpYBiX4Bwm sSZ8FGAAK4sAIg32OvHyQMRQ4iQE1bCI7JS5xJ9Mmj4e3suB5QC9oQXSTuQ+vDVl 1f9/MPs6vfbB7ymXVATB2lA54OEuxL2anicrQ9jbqM3xL29WIFWzv0F43S4PVOBJ ye9LMH9vetF7ONUQVuA9eSr55CPEt6DP6zRYA9lv6N9T6tLazhAD6ZYMEmLxKzrI zBpDrWOeGmrMZ7v4oqeC/PC6MBx8OhLRptwl+zNU9WieEFLkonIEvdez8Gr4pzvS ThFyqNjfuw/mY6wvz2vcIKeKIwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFKu8c/nK XmdnPMfjLqeq0t/qYxj7MB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgyNjUvNENENUZFMEU3REM0MTFFQ0E5QzQ0MzFEQzRGOUFFMDIvRDk0NzBCRkU3 REM4MTFFQ0I4NEJEMTc0QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ2bdAwQAZ4VLAwQBZ4VSMA0GCSqGSIb3DQEBCwUAA4IBAQDA4vey ZdJatkLBA3SwPxXd+NZ1Txd27FdHkNrYC8RJOmPMihfGh0yLm7wROFyszzOluS1q sAIZxHDz/U/9kFgwI7YJc/o/xwMzTQcoxqpoPa3aCV1WGn1ksbg70OdZ6YZmcBjI cNKngY62mA46cx4iUMnpQ4HSlODIVoJv6qbHEtz6M29HdVEkpQlqhVeJ/MdJAJGG AJkpoCR5dX0yZSc02ZXlux/yjWIw50KOHSNJDoaSsV90VEroag0bOyYnhPQihl03 1ZHz1zQexZP/R5bxdRU9ZACUVNRTd4GmxZgRkIge77ciYNJr/TJJz1F4wzeUPoE7 M7oaLVuB0/Sl6tmR -----END CERTIFICATE-----Generated at Mon Apr 6 15:21:10 2026 by rpki-client