$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa File: 67FF0960076911EF8569F157C4F9AE02.roa (raw, json) Hash identifier: OgjXzdyKLb9e3ER0qSH5PPgDrGrIXmxcmLjxocZP9q0= Subject key identifier: 29:11:37:1C:21:E5:6A:14:2D:02:71:89:B3:00:7B:DD:1C:5D:CE:26 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 08AE Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:34:09 +0000 ROA not before: Mon 26 May 2025 21:19:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 18254 IP address blocks: 103.213.244.0/23 maxlen: 23 103.213.245.0/24 maxlen: 24 103.213.246.0/23 maxlen: 23 103.213.246.0/24 maxlen: 24 103.213.247.0/24 maxlen: 24 144.48.4.0/23 maxlen: 24 144.48.6.0/23 maxlen: 23 144.48.6.0/24 maxlen: 24 144.48.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 20:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2222 (0x8ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 26 21:19:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46a81-297b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:08:72:93:b7:7a:37:93:97:3d:0d:6e:ed:33: 18:74:a6:08:9d:8c:d3:e2:9b:c2:05:8e:b7:bf:c0: 5d:24:7a:6b:86:ad:c5:a2:0d:57:7a:7d:9d:9e:4b: 23:42:6f:fa:34:4f:73:2c:24:79:5b:d2:7e:03:84: 6f:6b:c8:67:fa:65:67:58:f0:66:85:ca:4e:9c:9c: c9:bd:61:56:49:3d:2c:6e:98:67:f0:1e:04:2d:15: 6b:99:79:82:0f:25:99:73:00:d1:58:13:96:4b:33: 51:09:a0:c2:ae:6f:6c:0f:e0:c3:68:ab:34:d0:de: f8:51:86:7a:70:77:6c:3e:94:d4:18:38:6a:2c:cc: 48:a7:3b:b9:94:98:22:42:6f:91:fc:d8:0d:c3:95: 65:00:db:f4:03:7f:42:5e:31:1e:79:6f:bf:4c:79: 5c:c1:12:2d:c6:57:d4:11:30:a8:2b:7f:6c:da:8b: fd:1e:ce:8e:b3:5c:ba:d3:57:f8:11:08:49:05:87: 95:a8:22:9a:44:31:66:44:2c:20:4e:16:40:f2:b5: bf:27:49:69:db:4a:84:0e:ca:e3:4f:6a:df:fa:0f: c3:99:d5:d5:55:27:93:ad:ca:8d:85:ed:36:ee:dc: 80:94:43:3b:19:dd:3b:5f:68:48:b7:f3:b2:a1:d6: fb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:11:37:1C:21:E5:6A:14:2D:02:71:89:B3:00:7B:DD:1C:5D:CE:26 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 Signature Algorithm: sha256WithRSAEncryption 96:f3:0d:87:71:be:5a:de:e4:dd:69:14:0e:b0:0a:d4:f4:ff: 7b:53:26:b3:b6:58:1e:cc:d5:2c:f2:63:21:c3:5d:73:62:1d: d5:2c:97:08:0e:8e:f5:eb:f5:81:97:b8:32:f3:52:cd:19:dd: 0e:6e:4c:57:ab:7c:ab:07:db:ca:29:ef:ad:4b:95:30:93:65: 8b:ba:e7:9d:11:db:da:20:ab:c9:e4:51:0d:7c:f7:42:f3:42: e2:12:82:88:9e:eb:08:0a:0c:77:e7:22:41:bc:39:8c:c3:a6: 64:fe:92:33:0d:35:bb:78:3a:40:86:19:44:b4:0a:8b:59:20: 9d:d5:49:79:1e:3f:bc:93:4a:87:d1:e6:f8:4e:39:36:cc:46: 93:4c:e5:f9:d9:de:5c:fa:c7:98:c5:91:77:1e:c3:43:2d:f6: 09:e2:1d:a7:6d:7d:29:1b:7a:8b:c5:22:e9:eb:97:b2:64:e8: 83:43:77:4c:50:75:8f:ea:f9:fa:b2:25:51:e3:62:3b:73:10: 10:36:1d:54:33:d4:21:5e:dd:ff:f6:73:be:6d:15:6c:d0:01: 7a:27:35:a0:d3:eb:19:53:66:68:e0:38:22:13:01:d7:3f:f6: 02:02:1e:a4:71:16:99:2d:41:0a:05:cf:92:b6:81:21:e5:2c: 2e:ec:1c:66 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwNTI2MjExOTE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmE4MS0yOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoghyk7d6N5OXPQ1u7TMYdKYInYzT4pvCBY63v8BdJHprhq3Fog1Xen2dnksj Qm/6NE9zLCR5W9J+A4Rva8hn+mVnWPBmhcpOnJzJvWFWST0sbphn8B4ELRVrmXmC DyWZcwDRWBOWSzNRCaDCrm9sD+DDaKs00N74UYZ6cHdsPpTUGDhqLMxIpzu5lJgi Qm+R/NgNw5VlANv0A39CXjEeeW+/THlcwRItxlfUETCoK39s2ov9Hs6Os1y601f4 EQhJBYeVqCKaRDFmRCwgThZA8rW/J0lp20qEDsrjT2rf+g/DmdXVVSeTrcqNhe02 7tyAlEM7Gd07X2hIt/Oyodb7hwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCkRNxwh 5WoULQJxibMAe90cXc4mMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvNjdGRjA5NjAw NzY5MTFFRjg1NjlGMTU3QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ9X0AwQCkDAEMA0GCSqGSIb3DQEBCwUAA4IBAQCW8w2Hcb5a3uTd aRQOsArU9P97UyaztlgezNUs8mMhw11zYh3VLJcIDo716/WBl7gy81LNGd0ObkxX q3yrB9vKKe+tS5Uwk2WLuuedEdvaIKvJ5FENfPdC80LiEoKInusICgx35yJBvDmM w6Zk/pIzDTW7eDpAhhlEtAqLWSCd1Ul5Hj+8k0qH0eb4Tjk2zEaTTOX52d5c+seY xZF3HsNDLfYJ4h2nbX0pG3qLxSLp65eyZOiDQ3dMUHWP6vn6siVR42I7cxAQNh1U M9QhXt3/9nO+bRVs0AF6JzWg0+sZU2Zo4DgiEwHXP/YCAh6kcRaZLUEKBc+StoEh 5Swu7Bxm -----END CERTIFICATE-----Generated at Thu Mar 12 12:26:04 2026 by rpki-client