$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa File: 17894A68318411F0BC1DD041C4F9AE02.roa (raw, json) Hash identifier: LAExrJE538PRX43tpAGuI2fnl3to7F90HEFOP88VoQE= Subject key identifier: C2:B6:AD:7A:B3:20:47:30:29:58:F1:81:AF:47:8D:F5:0E:5A:93:B5 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: DA Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:20:06 +0000 ROA not before: Thu 15 May 2025 12:02:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 35876 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 12:02:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5aaa5-3040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:3b:d9:d6:95:c9:be:ff:2f:69:aa:4f:97: e6:61:75:ef:eb:00:13:af:d5:6b:9a:8e:f8:50:de: df:7e:34:8f:7a:a8:1b:1f:4a:eb:93:04:58:49:0b: 34:a9:9e:bb:ba:69:5c:98:82:21:6f:83:0e:f9:7e: ce:52:0c:c6:a2:d1:9e:dd:a8:bc:ef:97:6d:40:e1: 50:71:e2:d7:06:b5:a7:f3:cb:c0:89:94:04:4c:31: f9:94:4d:0d:6b:c3:f9:8c:47:e5:8a:d8:93:38:30: 76:03:eb:ff:47:37:99:52:1d:7a:9d:6f:47:a6:df: ba:52:c4:97:15:95:64:95:32:76:5f:ef:c6:ea:19: 0d:e4:23:b3:03:87:20:c1:f9:66:2b:6e:d0:ae:25: 99:61:1b:53:d2:6a:ee:ce:7a:de:c3:9b:56:f8:bd: 17:33:a6:a2:f8:88:be:79:75:ec:7d:4c:cb:8e:c6: 2c:18:c1:ac:26:88:c6:a2:98:db:b0:e0:29:5a:af: 4e:ae:db:2c:4f:d9:97:9c:89:72:bb:d4:fc:f3:98: ba:7a:80:7e:15:46:7b:c0:61:ab:a6:16:11:c5:82: 9d:72:d2:a8:a3:df:2f:a2:e1:5b:8c:77:8c:e1:2e: a0:36:62:bc:02:97:ce:cd:0b:a1:af:18:51:fb:6d: 8d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B6:AD:7A:B3:20:47:30:29:58:F1:81:AF:47:8D:F5:0E:5A:93:B5 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:6d:8a:6a:13:e3:2c:75:b9:d4:ee:45:04:e1:ff:51:46:8c: ae:fb:95:d7:c0:d8:bb:85:c8:a6:ec:6c:67:9c:60:e9:d6:b1: 25:cc:a3:f2:27:cf:6c:d1:45:5b:df:c7:b5:08:0c:80:8d:b4: 0c:70:bc:21:a4:5c:ce:96:ba:6c:94:c2:0e:6a:6d:64:3c:99: 51:42:20:b3:e7:7c:d0:42:8d:bd:05:ad:87:7e:d8:61:83:fb: fc:93:31:dd:af:e8:83:3d:59:dd:15:97:28:81:88:27:59:1e: d8:d4:f1:e0:81:78:3d:25:ed:e5:5e:05:f5:fe:0b:4e:c8:10: aa:82:17:1e:35:d9:c5:40:68:14:4c:74:2e:da:43:55:de:6d: 8c:1f:46:c2:43:5a:d6:30:ca:be:92:c2:0c:78:81:27:0e:f6: 59:14:84:c6:2e:cd:47:72:ea:68:83:f7:99:83:e9:4e:4d:98: 87:a9:8f:2e:d1:3e:4e:e4:54:b4:ed:4b:c5:2e:6c:b0:29:c7: 99:9b:c2:d6:66:a1:8f:4f:df:3c:f8:1b:95:07:dd:35:68:92: dd:56:ac:e7:80:b8:53:1e:c1:99:88:b9:a7:6e:1a:e2:9c:45: cf:3e:4e:be:76:2c:17:ce:b3:00:30:13:ae:9d:41:c4:25:3e: ef:10:a7:7d -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI0M0YxMTAvBgNVBAUTKDE4OTY3RENEQjcyNEE4NEE3MTcxMUU2NzhBQUIxRDJF NzIyMTVENkMwHhcNMjUwNTE1MTIwMjA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWFhNS0zMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9k72daVyb7/L2mqT5fmYXXv6wATr9Vrmo74UN7ffjSPeqgbH0rrkwRYSQs0 qZ67umlcmIIhb4MO+X7OUgzGotGe3ai875dtQOFQceLXBrWn88vAiZQETDH5lE0N a8P5jEflitiTODB2A+v/RzeZUh16nW9Hpt+6UsSXFZVklTJ2X+/G6hkN5COzA4cg wflmK27QriWZYRtT0mruznrew5tW+L0XM6ai+Ii+eXXsfUzLjsYsGMGsJojGopjb sOApWq9OrtssT9mXnIlyu9T885i6eoB+FUZ7wGGrphYRxYKdctKoo98vouFbjHeM 4S6gNmK8ApfOzQuhrxhR+22N5wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMK2rXqz IEcwKVjxga9HjfUOWpO1MB8GA1UdIwQYMBaAFBiWfc23JKhKcXEeZ4qrHS5yIV1s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjQzRi9ENjg0RkMyRTFB OEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FFcHhjUjVuaXFzZExuSWhY V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI0M0YvRDY4NEZDMkUxQThCMTFGMDlDQzI0NTM1QzRGOUFFMDIvMTc4OTRBNjgz MTg0MTFGMEJDMUREMDQxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ3WIAwQCZ3lcAwQBZ7rWMA0GCSqGSIb3DQEBCwUAA4IBAQBcbYpq E+MsdbnU7kUE4f9RRoyu+5XXwNi7hcim7GxnnGDp1rElzKPyJ89s0UVb38e1CAyA jbQMcLwhpFzOlrpslMIOam1kPJlRQiCz53zQQo29Ba2Hfthhg/v8kzHdr+iDPVnd FZcogYgnWR7Y1PHggXg9Je3lXgX1/gtOyBCqghceNdnFQGgUTHQu2kNV3m2MH0bC Q1rWMMq+ksIMeIEnDvZZFITGLs1Hcupog/eZg+lOTZiHqY8u0T5O5FS07UvFLmyw KceZm8LWZqGPT988+BuVB901aJLdVqzngLhTHsGZiLmnbhrinEXPPk6+diwXzrMA MBOunUHEJT7vEKd9 -----END CERTIFICATE-----Generated at Sat Mar 21 14:43:57 2026 by rpki-client