$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa File: 349ACBB2450811F09650FF5FC4F9AE02.roa (raw, json) Hash identifier: wVIVQYayEMOatDoFauwoUEJLMsb5B+2FoO+m1LHPbJc= Subject key identifier: 48:D3:9A:4D:D0:0C:51:D5:AD:2D:C5:31:75:F7:88:77:EF:D0:C3:A5 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: DE Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:20:10 +0000 ROA not before: Mon 09 Jun 2025 08:03:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 401701 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 06:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Jun 9 08:03:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5aaaa-ce8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0f:99:47:c9:39:0e:53:6a:87:ca:1e:21:bf: a3:02:8b:f8:f4:38:c7:bb:c5:f1:09:5c:58:cd:af: ad:de:79:8b:7a:32:c1:31:30:a9:4d:16:53:0a:37: bb:88:64:22:9e:0d:86:4d:49:de:68:ac:cd:3b:e9: 94:bc:fb:15:78:5d:cd:bb:db:12:ef:d2:9e:63:e4: 92:1e:dd:ae:c3:80:57:f8:57:0a:f3:dc:08:b9:c9: da:c0:db:2e:ad:7f:4f:d3:63:6b:19:5d:38:33:b1: aa:60:b4:0f:2b:25:a6:ee:e9:4c:b4:3f:02:54:2d: c6:8b:ac:f2:a5:28:d2:a3:53:8d:4b:0c:4b:4b:5f: 85:8d:90:0d:3e:58:8f:93:95:2e:99:d8:e8:6c:0f: d6:76:a3:3b:d9:de:f0:ea:92:f7:c6:05:2a:61:5c: 43:d8:24:34:a6:1c:c5:a1:74:e6:b8:a0:0b:4e:d7: 22:23:fe:ff:cb:c4:ed:c0:e8:b6:99:bc:f8:53:fc: f8:4d:b7:c4:fd:a7:a1:11:44:20:58:7e:9b:ec:a7: f2:31:a4:39:00:45:67:16:57:08:68:22:73:c4:f0: e6:03:3e:b3:7e:69:89:ad:eb:7a:34:67:a3:8e:f8: 59:7d:00:05:1d:b5:4e:a1:b0:df:07:3f:68:f4:f2: b7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D3:9A:4D:D0:0C:51:D5:AD:2D:C5:31:75:F7:88:77:EF:D0:C3:A5 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 41:b4:8b:ef:6f:3e:e2:2c:80:f7:f6:88:d2:13:9e:e9:98:dc: 15:40:17:9d:2a:4d:c8:3f:2d:ec:70:7e:e7:0d:df:4b:65:e8: db:62:8d:0b:60:85:4a:c6:df:29:24:c3:d3:1a:2c:4f:c9:f1: b9:83:dc:5b:d0:b1:c8:06:88:66:d2:48:15:93:d8:75:84:71: 85:da:04:a1:6c:b1:cf:b0:e4:2c:fb:02:8f:dd:e4:48:2d:53: 54:fd:02:5c:63:f9:97:ad:6a:ae:d2:2c:32:59:87:ad:19:fe: 86:21:6b:3a:27:b6:0d:37:0f:71:71:0b:10:71:89:a9:72:35: ca:1a:ee:4e:81:32:30:6d:19:7c:53:16:a5:34:8a:06:55:6e: 13:26:49:28:96:43:5e:da:27:1f:0d:e2:ba:18:ad:b5:9b:d3: fc:a3:b4:2c:50:b5:d6:b2:6a:9e:61:18:12:1a:ce:7f:4f:39: b0:c6:29:15:e3:b2:ed:a2:99:5f:6a:47:33:9b:8d:69:f2:6d: 94:55:30:f1:27:77:78:4b:8e:e5:4a:cb:87:aa:5b:ad:0e:91: d5:54:f0:88:fd:a1:fd:da:58:85:08:a0:5e:84:da:ec:25:30: c9:3b:51:39:e8:fd:7a:19:02:6e:cf:8a:7b:dc:a1:92:ed:62: 29:5f:6b:7c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI0M0YxMTAvBgNVBAUTKDE4OTY3RENEQjcyNEE4NEE3MTcxMUU2NzhBQUIxRDJF NzIyMTVENkMwHhcNMjUwNjA5MDgwMzE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWFhYS1jZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw+ZR8k5DlNqh8oeIb+jAov49DjHu8XxCVxYza+t3nmLejLBMTCpTRZTCje7 iGQing2GTUneaKzNO+mUvPsVeF3Nu9sS79KeY+SSHt2uw4BX+FcK89wIucnawNsu rX9P02NrGV04M7GqYLQPKyWm7ulMtD8CVC3Gi6zypSjSo1ONSwxLS1+FjZANPliP k5UumdjobA/WdqM72d7w6pL3xgUqYVxD2CQ0phzFoXTmuKALTtciI/7/y8TtwOi2 mbz4U/z4TbfE/aehEUQgWH6b7KfyMaQ5AEVnFlcIaCJzxPDmAz6zfmmJret6NGej jvhZfQAFHbVOobDfBz9o9PK37QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFEjTmk3Q DFHVrS3FMXX3iHfv0MOlMB8GA1UdIwQYMBaAFBiWfc23JKhKcXEeZ4qrHS5yIV1s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjQzRi9ENjg0RkMyRTFB OEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FFcHhjUjVuaXFzZExuSWhY V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI0M0YvRDY4NEZDMkUxQThCMTFGMDlDQzI0NTM1QzRGOUFFMDIvMzQ5QUNCQjI0 NTA4MTFGMDk2NTBGRjVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ3WIAwQCZ3lcAwQBZ7rWMA0GCSqGSIb3DQEBCwUAA4IBAQBBtIvv bz7iLID39ojSE57pmNwVQBedKk3IPy3scH7nDd9LZejbYo0LYIVKxt8pJMPTGixP yfG5g9xb0LHIBohm0kgVk9h1hHGF2gShbLHPsOQs+wKP3eRILVNU/QJcY/mXrWqu 0iwyWYetGf6GIWs6J7YNNw9xcQsQcYmpcjXKGu5OgTIwbRl8UxalNIoGVW4TJkko lkNe2icfDeK6GK21m9P8o7QsULXWsmqeYRgSGs5/TzmwxikV47Ltoplfakczm41p 8m2UVTDxJ3d4S47lSsuHqlutDpHVVPCI/aH92liFCKBehNrsJTDJO1E56P16GQJu z4p73KGS7WIpX2t8 -----END CERTIFICATE-----Generated at Sat Mar 21 14:42:14 2026 by rpki-client