$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa File: 2F220BBA95AA11ED84962E13C4F9AE02.roa (raw, json) Hash identifier: C/gCcxezA3MWUMIZZfARocJWxFwgULaiK11HqUVAJI8= Subject key identifier: C5:9B:94:87:E9:64:28:E2:76:86:A6:5F:80:0D:B6:60:61:EB:3D:1E Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 08B0 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:34:11 +0000 ROA not before: Mon 26 May 2025 21:19:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 61414 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 20:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 26 21:19:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46a83-d287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:7f:69:66:78:24:23:32:ba:f3:4b:55:68: 95:8c:a9:2a:82:77:f6:a6:d5:88:bf:06:c3:5b:82: 2e:0b:9b:15:7a:d0:02:ed:ce:29:25:0e:d1:60:db: 0a:87:99:b9:93:48:a8:f3:af:04:9e:84:2d:2e:33: 4e:57:b8:75:b2:dd:a3:e1:12:d1:bd:d0:88:c5:ca: 41:4d:38:10:84:62:50:fa:d7:2b:56:92:4e:1d:0e: 48:97:eb:6a:b1:35:b8:18:69:7f:2c:94:55:b9:61: 9a:76:31:34:4e:65:5d:6d:b8:da:16:18:68:ee:ba: 0d:db:9c:62:3c:77:03:23:c1:9f:30:f7:c4:89:90: 76:7d:8c:9e:27:dc:16:64:52:de:62:06:82:b3:c9: 93:3f:6b:17:0e:27:d3:9e:45:f3:ef:28:88:47:4f: 74:76:ec:42:88:cb:b6:2b:46:a7:d0:97:a7:4a:2b: d6:3f:32:d6:0a:02:ad:af:58:30:b5:1f:5e:72:44: b6:c3:27:2b:58:7b:72:55:13:10:44:ed:da:2c:f5: 64:a4:84:67:b0:a2:c6:e0:ca:5a:bd:05:ac:6b:16: 27:cc:16:66:47:5b:97:72:f0:ce:3f:4f:18:7b:1e: ec:86:de:a0:16:e9:59:12:45:b2:84:1f:a2:53:1e: d3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9B:94:87:E9:64:28:E2:76:86:A6:5F:80:0D:B6:60:61:EB:3D:1E X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 2f:a9:4d:1d:5b:c3:e5:bc:26:af:2a:c5:33:a7:03:f9:4b:58: ee:b8:1b:71:d5:60:13:76:df:27:74:22:c3:72:dd:69:9c:51: a2:b4:90:e9:3e:5e:54:83:56:50:29:6c:69:ed:1f:73:1d:e5: 23:5f:be:5a:2f:34:69:5a:d7:31:29:1f:53:ca:01:0f:0b:2b: 3c:0a:33:58:6e:7a:f5:6c:ec:ad:c6:dd:6c:55:75:4b:e1:a2: 3c:69:18:d5:79:32:07:43:e5:d9:a5:b7:32:5b:d7:03:ff:c4: f1:5f:55:79:4d:ec:f9:aa:3f:3f:13:c9:ea:e5:ea:1d:93:13: 65:bd:fd:ce:16:1c:e7:2a:db:d4:41:ab:86:19:ee:26:97:95: f0:b5:81:79:8c:8e:e4:51:4b:36:1b:4c:b0:ab:78:f6:00:e7: 64:6d:83:49:b5:33:e2:72:34:e5:3b:32:cc:94:0f:81:59:c2: 73:2f:9c:db:0d:b8:e7:1e:8e:18:5e:a9:5b:4a:4f:ed:3e:1b: fe:4d:20:f1:11:c5:c2:12:b7:2d:a8:fa:00:07:74:ad:b0:c5: 77:b2:b3:3d:61:93:90:ea:32:50:82:07:89:bc:38:38:9a:d5: 4d:33:0f:c5:0f:fb:f4:91:43:c3:a2:4e:70:4e:d4:36:a5:65: d1:a3:ee:31 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwNTI2MjExOTE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE4My1kMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBN/aWZ4JCMyuvNLVWiVjKkqgnf2ptWIvwbDW4IuC5sVetAC7c4pJQ7RYNsK h5m5k0io868EnoQtLjNOV7h1st2j4RLRvdCIxcpBTTgQhGJQ+tcrVpJOHQ5Il+tq sTW4GGl/LJRVuWGadjE0TmVdbbjaFhho7roN25xiPHcDI8GfMPfEiZB2fYyeJ9wW ZFLeYgaCs8mTP2sXDifTnkXz7yiIR090duxCiMu2K0an0JenSivWPzLWCgKtr1gw tR9eckS2wycrWHtyVRMQRO3aLPVkpIRnsKLG4MpavQWsaxYnzBZmR1uXcvDOP08Y ex7sht6gFulZEkWyhB+iUx7TFQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMWblIfp ZCjidoamX4ANtmBh6z0eMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvMkYyMjBCQkE5 NUFBMTFFRDg0OTYyRTEzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9X0AwQCkDAEMA0EAgACMAcDBQAkARZAMA0GCSqGSIb3DQEBCwUA A4IBAQAvqU0dW8PlvCavKsUzpwP5S1juuBtx1WATdt8ndCLDct1pnFGitJDpPl5U g1ZQKWxp7R9zHeUjX75aLzRpWtcxKR9TygEPCys8CjNYbnr1bOytxt1sVXVL4aI8 aRjVeTIHQ+XZpbcyW9cD/8TxX1V5Tez5qj8/E8nq5eodkxNlvf3OFhznKtvUQauG Ge4ml5XwtYF5jI7kUUs2G0ywq3j2AOdkbYNJtTPicjTlOzLMlA+BWcJzL5zbDbjn Ho4YXqlbSk/tPhv+TSDxEcXCErctqPoAB3StsMV3srM9YZOQ6jJQggeJvDg4mtVN Mw/FD/v0kUPDok5wTtQ2pWXRo+4x -----END CERTIFICATE-----Generated at Thu Mar 12 09:33:28 2026 by rpki-client