$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/4643A5E4703011EFA1A7CB20C4F9AE02.roa File: 4643A5E4703011EFA1A7CB20C4F9AE02.roa (raw, json) Hash identifier: CNCgjqoVzyqxh93n0ZBsBcg25yxnaYEUJ+jXTOgpvUo= Subject key identifier: A0:B2:4B:6C:7B:F3:D6:17:DE:C2:1C:4E:A3:16:E1:A7:50:3C:CA:A9 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 047E Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/4643A5E4703011EFA1A7CB20C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:00 +0000 ROA not before: Wed 07 Jan 2026 00:19:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 141159 IP address blocks: 103.178.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 23:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1150 (0x47e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1, serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Jan 7 00:19:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a486d4-234f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:41:7d:3b:59:cf:34:ba:7c:ed:2e:59:88:0d: 82:64:a5:43:6f:8d:26:64:6b:04:8d:b0:85:c6:ff: f2:31:2f:8c:29:fb:63:8c:1c:30:d3:0a:72:d4:5a: f5:78:09:e8:e5:0d:e5:e2:43:7d:b4:81:cd:81:6a: 66:1f:16:bd:18:23:60:a8:99:e9:3c:15:4e:dc:62: a8:50:a9:09:81:33:25:b3:09:b7:9b:c1:01:ea:80: 04:40:72:66:4c:03:e4:6e:e6:4f:71:6b:e1:e8:50: ad:5d:2a:35:27:24:7d:9f:e5:34:e3:d6:2e:9e:9f: e8:30:26:ef:81:1d:16:22:ba:8e:28:9f:85:4f:84: 08:4e:ce:0a:1d:9d:fd:d0:b6:ec:99:b9:c3:1d:8c: 4b:1b:87:5c:6a:6f:12:da:d2:2d:6d:4a:93:85:79: ca:f9:97:5d:43:a0:5c:16:2a:0f:eb:59:92:3d:0b: 15:50:e6:e1:39:31:58:e8:40:f3:1d:e0:d0:60:62: d6:49:0d:21:68:0c:52:17:2d:77:b2:43:5e:a5:d4: db:b0:07:91:02:78:6c:fc:69:88:42:76:3a:e7:1d: 23:0a:ec:c2:ff:4a:89:37:79:30:ef:78:65:cb:96: 15:4a:ea:3a:a1:85:e7:38:a7:d3:1d:67:e1:54:1f: e0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B2:4B:6C:7B:F3:D6:17:DE:C2:1C:4E:A3:16:E1:A7:50:3C:CA:A9 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/4643A5E4703011EFA1A7CB20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.178.57.0/24 Signature Algorithm: sha256WithRSAEncryption 55:ab:56:a9:f8:69:ba:c7:51:e5:fc:db:b0:46:01:a8:4b:b5: 5e:aa:1a:ca:3e:8a:94:30:5a:bc:f9:8e:d9:c4:62:62:d0:1e: 77:e9:64:78:bf:37:1d:1b:1b:73:44:95:0c:6d:d4:45:0d:8b: 9d:09:ae:9a:ad:55:45:61:93:30:70:8a:eb:c0:f5:84:00:86: 62:4f:2a:57:6a:02:5e:a1:6f:2e:58:b6:00:fe:5a:34:30:f5: ee:4e:6e:a2:7e:e8:ba:b2:ab:e8:01:22:09:d8:b8:63:91:3f: 0f:c0:fa:fa:95:f8:f9:f2:32:4c:35:1e:e6:2a:a7:78:8e:5c: 39:77:47:1d:52:8e:95:38:b0:27:da:fc:f4:94:b5:99:71:74: 96:41:f1:93:08:a7:55:ac:63:7b:e1:4c:3b:f8:61:90:6e:1c: ab:18:b6:8d:0b:99:47:d9:2a:81:f1:f8:33:2a:d5:77:f0:d9: f9:eb:97:c0:b6:c3:59:ee:b9:b3:07:97:1b:f6:c2:f9:ed:30: 68:98:51:dc:bc:a2:ed:a0:18:d7:f4:3f:0e:f4:ac:ea:b8:c6: b1:86:38:db:60:0e:22:34:4b:2b:82:52:25:a3:d4:78:24:2e: 38:ff:b3:43:38:4e:eb:47:ce:78:3f:6b:b5:36:b8:50:5b:66: fe:6a:01:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjYwMTA3MDAxOTU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZkNC0yMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kF9O1nPNLp87S5ZiA2CZKVDb40mZGsEjbCFxv/yMS+MKftjjBww0wpy1Fr1 eAno5Q3l4kN9tIHNgWpmHxa9GCNgqJnpPBVO3GKoUKkJgTMlswm3m8EB6oAEQHJm TAPkbuZPcWvh6FCtXSo1JyR9n+U049Yunp/oMCbvgR0WIrqOKJ+FT4QITs4KHZ39 0LbsmbnDHYxLG4dcam8S2tItbUqThXnK+ZddQ6BcFioP61mSPQsVUObhOTFY6EDz HeDQYGLWSQ0haAxSFy13skNepdTbsAeRAnhs/GmIQnY65x0jCuzC/0qJN3kw73hl y5YVSuo6oYXnOKfTHWfhVB/gjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKCyS2x7 89YX3sIcTqMW4adQPMqpMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvNDY0M0E1RTQ3 MDMwMTFFRkExQTdDQjIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ7I5MA0GCSqGSIb3DQEBCwUAA4IBAQBVq1ap+Gm6x1Hl/NuwRgGo S7VeqhrKPoqUMFq8+Y7ZxGJi0B536WR4vzcdGxtzRJUMbdRFDYudCa6arVVFYZMw cIrrwPWEAIZiTypXagJeoW8uWLYA/lo0MPXuTm6ifui6sqvoASIJ2LhjkT8PwPr6 lfj58jJMNR7mKqd4jlw5d0cdUo6VOLAn2vz0lLWZcXSWQfGTCKdVrGN74Uw7+GGQ bhyrGLaNC5lH2SqB8fgzKtV38Nn565fAtsNZ7rmzB5cb9sL57TBomFHcvKLtoBjX 9D8O9KzquMaxhjjbYA4iNEsrglIlo9R4JC44/7NDOE7rR854P2u1NrhQW2b+agGu -----END CERTIFICATE-----Generated at Sat Mar 21 14:32:38 2026 by rpki-client