$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa File: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (raw, json) Hash identifier: 9jHgiW6B1sqLvSJnd17xl6prg5mUxXRdfL0P2w6JRHY= Subject key identifier: B1:63:56:02:10:A8:4D:9A:87:B8:20:95:21:E1:12:2F:B2:FA:FD:2E Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0AB0 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:31:24 +0000 ROA not before: Wed 12 Nov 2025 19:09:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141768 IP address blocks: 103.144.40.0/23 maxlen: 23 103.144.40.0/24 maxlen: 24 103.144.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 12 19:09:25 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a469db-83a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0d:db:38:c2:37:eb:39:ac:f8:28:b8:67:4c: d8:53:2f:4d:57:4b:12:d3:84:b5:f2:3f:4d:a4:90: 75:62:0c:e6:0d:87:b0:5d:5c:fe:f7:b9:3f:50:43: ea:7a:06:fd:41:a4:e1:23:fa:54:1a:6f:42:c4:e6: 00:f6:ba:44:1a:86:f1:2e:fc:58:2c:31:aa:e0:dd: eb:7f:fc:1b:5c:8b:cc:5f:48:f1:ec:de:60:85:f0: 05:86:59:ab:9d:10:11:ae:be:6d:24:5a:54:5e:91: 2e:81:45:62:f2:09:5f:31:1a:9d:8c:5e:43:74:40: 8c:bd:12:16:32:cf:94:c3:ee:8d:4a:83:79:99:28: 87:1d:eb:e6:1e:cb:b3:a8:cd:a6:b3:bd:07:fa:8c: 79:e1:a8:dd:51:05:8d:ab:a5:7c:a2:60:2e:94:ae: 37:08:c5:f5:c1:c6:00:63:f7:d3:fd:ea:ca:03:69: af:99:39:3a:10:b1:1f:3c:9a:b8:e4:8d:ce:a9:ca: e0:48:38:70:be:91:91:0b:5b:fd:df:91:55:33:de: c3:ef:c2:ae:ee:fd:d5:8a:2f:56:32:7a:3a:ef:fd: bc:f6:62:0d:b8:a2:cf:57:17:b5:77:3e:c7:c1:a6: c2:45:01:a0:bb:7f:fb:01:cd:c7:1f:36:4e:0d:04: 66:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:63:56:02:10:A8:4D:9A:87:B8:20:95:21:E1:12:2F:B2:FA:FD:2E X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/F22D283A9B3B11EBA5C76B80C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.40.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:06:8d:e1:80:b0:4b:18:13:76:82:d6:a3:e3:61:33:ad:b4: a0:a0:7f:35:87:07:fa:42:b4:17:ae:3b:a3:cf:77:91:db:46: cb:5d:1b:b3:16:6d:18:d2:89:23:33:d3:49:d5:c1:07:86:45: 1b:73:b0:df:84:49:1a:23:0c:9a:6b:55:23:a0:cc:15:b5:ce: 74:2b:ee:56:12:ce:95:7b:50:dc:60:19:0d:ad:fc:14:b6:62: ab:3e:ce:ce:97:9d:9f:3f:ee:84:5d:8a:db:3f:d9:f4:7a:52: 06:90:91:51:3c:f6:8b:49:c6:01:0e:94:36:6a:51:83:40:86: a3:60:d6:b3:5f:80:d3:b2:c5:ef:78:db:b6:fa:7f:ac:02:06: 44:b8:92:5a:ed:8b:90:2c:3b:fe:63:04:1f:0a:41:0a:25:5d: 37:d6:5c:f9:fa:d3:03:76:20:53:8f:2c:93:5a:a3:ad:71:c4: fc:dc:44:51:75:79:13:6d:2a:0d:af:fe:d6:06:38:35:0b:cc: 5c:18:01:93:0c:c1:66:9a:04:f3:bc:e5:fc:45:45:31:17:b0: 29:b3:f6:ea:d4:3b:cc:7a:d4:5d:e3:20:5b:0b:75:11:de:37: f7:0a:c9:3c:5f:9c:03:35:97:92:e1:15:1d:bd:ea:85:c5:52: 72:d2:fc:d1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMTEyMTkwOTI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjlkYi04M2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQ3bOMI36zms+Ci4Z0zYUy9NV0sS04S18j9NpJB1YgzmDYewXVz+97k/UEPq egb9QaThI/pUGm9CxOYA9rpEGobxLvxYLDGq4N3rf/wbXIvMX0jx7N5ghfAFhlmr nRARrr5tJFpUXpEugUVi8glfMRqdjF5DdECMvRIWMs+Uw+6NSoN5mSiHHevmHsuz qM2ms70H+ox54ajdUQWNq6V8omAulK43CMX1wcYAY/fT/erKA2mvmTk6ELEfPJq4 5I3OqcrgSDhwvpGRC1v935FVM97D78Ku7v3Vii9WMno67/289mINuKLPVxe1dz7H wabCRQGgu3/7Ac3HHzZODQRmJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLFjVgIQ qE2ah7gglSHhEi+y+v0uMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBQ0YvNUFDNjJCMkE3M0UzMTFFQTlCNTk0MzZFQzRGOUFFMDIvRjIyRDI4M0E5 QjNCMTFFQkE1Qzc2QjgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5AoMA0GCSqGSIb3DQEBCwUAA4IBAQBfBo3hgLBLGBN2gtaj42Ez rbSgoH81hwf6QrQXrjujz3eR20bLXRuzFm0Y0okjM9NJ1cEHhkUbc7DfhEkaIwya a1UjoMwVtc50K+5WEs6Ve1DcYBkNrfwUtmKrPs7Ol52fP+6EXYrbP9n0elIGkJFR PPaLScYBDpQ2alGDQIajYNazX4DTssXveNu2+n+sAgZEuJJa7YuQLDv+YwQfCkEK JV031lz5+tMDdiBTjyyTWqOtccT83ERRdXkTbSoNr/7WBjg1C8xcGAGTDMFmmgTz vOX8RUUxF7Aps/bq1DvMetRd4yBbC3UR3jf3Csk8X5wDNZeS4RUdveqFxVJy0vzR -----END CERTIFICATE-----Generated at Thu Mar 12 16:50:04 2026 by rpki-client