$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa File: 3A851EE273E411EA9572F76EC4F9AE02.roa (raw, json) Hash identifier: B7PIpT06o5yz5X0ICfGhNE1RjQ8ofk6sdiEjNK1EArU= Subject key identifier: 93:CE:B4:96:55:23:71:EE:A0:24:CF:87:31:2B:52:A1:3F:8B:81:E4 Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AAF Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:31:23 +0000 ROA not before: Wed 12 Nov 2025 19:09:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137969 IP address blocks: 103.144.40.0/23 maxlen: 23 103.144.40.0/24 maxlen: 24 103.144.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2735 (0xaaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 12 19:09:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a469db-8c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:46:7c:a2:17:14:64:ec:56:0b:93:59:6d:76: 27:b2:1e:5c:0d:c7:aa:be:ce:61:7c:e0:8c:42:14: 39:85:ef:61:88:02:6c:6f:a3:92:36:fe:0f:e4:b3: 89:22:50:58:5f:e5:76:10:1e:d5:e9:5f:ce:53:aa: 6f:9d:7d:00:75:2e:80:d5:1a:31:ad:ee:8d:6f:fd: e1:ab:92:35:f5:63:47:bb:66:13:7f:1b:5a:e1:a1: 1a:2e:2c:7a:3f:a2:5d:0c:37:5e:03:87:a8:3c:2f: a1:5c:c5:20:dc:07:ca:d0:64:6a:a2:59:aa:d8:4f: b0:fc:8a:97:39:62:ca:c6:9e:bc:c4:13:c8:de:7c: 50:f5:69:9c:2f:d6:a7:31:29:e2:ed:bc:ab:c5:32: 71:14:4f:55:62:eb:40:20:e9:dc:b5:fd:24:28:12: 6c:64:19:b4:d7:01:73:63:95:89:16:10:d0:af:c5: 88:32:27:c9:4d:18:24:8a:83:11:9b:21:6e:56:4d: ee:71:5c:3f:77:54:23:52:eb:fe:09:9b:c5:b7:64: fa:d3:0d:d6:95:c4:72:65:40:6c:3c:eb:2d:33:e0: 47:ed:ec:31:a6:9b:b6:e5:b4:f9:77:fb:9b:3e:e8: e0:4c:83:9a:a7:bb:fd:bc:3b:1a:43:50:a3:56:37: e3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CE:B4:96:55:23:71:EE:A0:24:CF:87:31:2B:52:A1:3F:8B:81:E4 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.40.0/23 Signature Algorithm: sha256WithRSAEncryption 29:9b:fd:53:95:5f:88:12:ab:b7:50:8f:39:1a:23:26:b6:6e: ba:f1:39:48:92:1c:83:ec:b5:08:9c:bc:28:fe:a4:c9:5d:b0: 74:52:01:b1:26:d7:88:d0:0c:cb:a3:cb:8a:0b:34:72:ff:7f: f8:20:3e:06:8c:8e:16:cb:48:e6:c5:50:a4:fd:88:24:ad:10: 36:20:fb:1b:46:47:d6:5c:ea:cf:16:c7:b4:26:43:8e:45:a8: 4e:21:3c:f1:6b:3b:fd:cb:63:d9:9f:66:58:10:06:2f:f3:71: de:a6:69:c5:e1:5c:c8:9b:ed:6e:e1:25:2c:d3:2b:3f:45:08: 79:f7:29:14:6d:4f:53:90:00:5f:2e:4a:3a:8d:0d:4f:48:cd: 75:7c:33:1b:f2:00:33:2c:42:f9:09:4d:79:8b:14:9a:55:01: 47:52:71:47:13:36:89:9c:95:65:cd:90:4e:fb:ae:8a:04:ae: 19:f7:dd:4c:a6:52:15:69:43:73:fd:a6:b2:de:a8:33:a9:2c: 5a:ee:ee:0e:54:b8:2b:49:ee:3b:e4:fa:dd:64:65:6c:d3:71: e0:c3:43:8c:7b:ae:bf:d0:0d:bb:f5:9a:cb:5a:38:89:7c:6f: cc:d7:2a:ab:aa:81:af:43:b0:a3:c6:f1:29:fc:db:83:f0:aa: 3a:0a:2c:04 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMTEyMTkwOTIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjlkYi04YzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUZ8ohcUZOxWC5NZbXYnsh5cDceqvs5hfOCMQhQ5he9hiAJsb6OSNv4P5LOJ IlBYX+V2EB7V6V/OU6pvnX0AdS6A1Roxre6Nb/3hq5I19WNHu2YTfxta4aEaLix6 P6JdDDdeA4eoPC+hXMUg3AfK0GRqolmq2E+w/IqXOWLKxp68xBPI3nxQ9WmcL9an MSni7byrxTJxFE9VYutAIOnctf0kKBJsZBm01wFzY5WJFhDQr8WIMifJTRgkioMR myFuVk3ucVw/d1QjUuv+CZvFt2T60w3WlcRyZUBsPOstM+BH7ewxppu25bT5d/ub PujgTIOap7v9vDsaQ1CjVjfjIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJPOtJZV I3HuoCTPhzErUqE/i4HkMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBQ0YvNUFDNjJCMkE3M0UzMTFFQTlCNTk0MzZFQzRGOUFFMDIvM0E4NTFFRTI3 M0U0MTFFQTk1NzJGNzZFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5AoMA0GCSqGSIb3DQEBCwUAA4IBAQApm/1TlV+IEqu3UI85GiMm tm668TlIkhyD7LUInLwo/qTJXbB0UgGxJteI0AzLo8uKCzRy/3/4ID4GjI4Wy0jm xVCk/YgkrRA2IPsbRkfWXOrPFse0JkOORahOITzxazv9y2PZn2ZYEAYv83HepmnF 4VzIm+1u4SUs0ys/RQh59ykUbU9TkABfLko6jQ1PSM11fDMb8gAzLEL5CU15ixSa VQFHUnFHEzaJnJVlzZBO+66KBK4Z991MplIVaUNz/aay3qgzqSxa7u4OVLgrSe47 5PrdZGVs03Hgw0OMe66/0A279ZrLWjiJfG/M1yqrqoGvQ7CjxvEp/NuD8Ko6CiwE -----END CERTIFICATE-----Generated at Thu Mar 12 16:51:25 2026 by rpki-client