$ rpki-client -vvf rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/3F4ECBD2744D11EDB5D08682C4F9AE02.roa File: 3F4ECBD2744D11EDB5D08682C4F9AE02.roa (raw, json) Hash identifier: Zjs8v8eEam0F6LCtNxLMi1GtL/fRrcWv4ZNVPQXnHkU= Subject key identifier: 8C:B4:D9:B2:B0:D6:8A:24:57:79:21:5F:27:D8:31:E2:13:03:E2:87 Certificate issuer: /CN=A91E268B/serialNumber=462B16D327972EA771226A01588B5205EFEA4496 Certificate serial: 0707 Authority key identifier: 46:2B:16:D3:27:97:2E:A7:71:22:6A:01:58:8B:52:05:EF:EA:44:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RisW0yeXLqdxImoBWItSBe_qRJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/3F4ECBD2744D11EDB5D08682C4F9AE02.roa Signing time: Thu 02 Apr 2026 22:28:19 +0000 ROA not before: Thu 02 Apr 2026 22:28:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38215 IP address blocks: 103.164.236.0/23 maxlen: 24 103.164.236.0/30 maxlen: 30 2001:df6:5180::/48 maxlen: 48 2400:bf60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/RisW0yeXLqdxImoBWItSBe_qRJY.crl rsync://rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/RisW0yeXLqdxImoBWItSBe_qRJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RisW0yeXLqdxImoBWItSBe_qRJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1799 (0x707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E268B, serialNumber=462B16D327972EA771226A01588B5205EFEA4496 Validity Not Before: Apr 2 22:28:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ceed83-5e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:6e:e4:b8:5d:48:66:05:bd:46:c7:c1:87: 46:21:41:9a:c6:ef:8f:70:9d:7e:3e:50:a7:23:91: 06:18:4a:09:f0:81:f8:a5:a8:42:d3:e0:ac:31:ac: e1:65:dc:f6:be:0f:8e:1c:0d:11:aa:71:fb:54:4e: d4:08:81:14:d5:84:33:3c:32:6d:c2:6d:d6:b6:58: 32:c3:3c:b9:3a:38:5e:77:ee:f6:22:ac:ed:80:18: 85:9e:b2:78:dc:56:3b:a0:d8:cf:8c:67:f7:08:21: d3:5b:a5:ce:29:00:17:1d:e2:99:f2:59:e6:6d:54: f6:dc:87:ad:fd:8b:c5:e6:c3:09:81:08:92:a9:fa: 4d:b2:b5:e0:7c:e4:b4:da:82:95:2e:76:5b:36:ee: d9:3d:25:a7:0c:76:f6:fd:be:dc:16:b2:91:51:7d: 02:d0:3e:ee:c0:cc:d3:fd:b3:48:1a:8d:b4:8b:c3: 61:1e:98:3c:ef:25:7b:45:20:59:0a:f3:b7:f5:fd: b4:c0:e3:c5:05:06:7c:88:90:dd:ea:00:09:9e:80: 35:93:ee:d0:be:f7:57:90:83:cc:56:70:27:c8:79: 9b:79:05:ce:ef:09:b9:e7:47:77:c5:f7:0f:99:1b: 2e:aa:8c:fe:3e:fe:6d:99:98:1b:31:b4:f4:f1:40: b2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B4:D9:B2:B0:D6:8A:24:57:79:21:5F:27:D8:31:E2:13:03:E2:87 X509v3 Authority Key Identifier: keyid:46:2B:16:D3:27:97:2E:A7:71:22:6A:01:58:8B:52:05:EF:EA:44:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/RisW0yeXLqdxImoBWItSBe_qRJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RisW0yeXLqdxImoBWItSBe_qRJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E268B/426F57C08D3911EBB9F4CB17C4F9AE02/3F4ECBD2744D11EDB5D08682C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.236.0/23 IPv6: 2001:df6:5180::/48 2400:bf60::/32 Signature Algorithm: sha256WithRSAEncryption 94:7e:ce:78:6e:af:40:74:82:c2:e6:0a:c6:57:29:97:5c:f1: 92:c7:26:bc:68:4f:d6:eb:d6:9a:d8:3d:71:8d:4a:fb:49:97: 46:c3:7f:5b:77:90:76:fb:fb:ad:47:b7:d6:e7:13:cc:95:6d: 11:1f:62:11:b9:7c:64:8e:ab:0b:74:52:48:fe:2b:d6:cf:80: 7a:c8:e4:8b:39:cb:b7:09:39:e3:d7:8d:e1:5c:85:53:aa:ba: dc:36:8f:07:ad:49:83:ec:46:2d:c7:b5:44:a4:33:75:35:af: 3b:13:e1:69:89:75:96:29:b5:5a:fb:76:8e:dc:87:b5:a8:6f: da:e0:90:da:cf:bc:e8:23:9a:e6:bf:9f:f8:5d:26:c2:79:63: 32:71:85:c6:a7:ff:88:35:87:e8:6d:a2:93:93:02:a0:b3:e8: fc:59:dd:71:c9:52:ac:ef:47:ae:06:98:e6:9f:19:3b:dc:6c: 38:19:4d:00:34:6e:69:cf:68:7c:d4:7a:8f:a2:d0:40:de:77: 09:7d:c1:8a:3f:7f:1e:af:41:de:34:bb:b9:8d:b5:17:ec:43: da:eb:7e:6e:e3:54:f4:18:1a:07:e1:5a:c0:4a:1d:f7:7e:09: 59:c4:d0:be:fd:c5:eb:96:e1:63:cb:39:4a:28:33:80:8a:93: 4f:8b:ab:9f -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICBwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI2OEIxMTAvBgNVBAUTKDQ2MkIxNkQzMjc5NzJFQTc3MTIyNkEwMTU4OEI1MjA1 RUZFQTQ0OTYwHhcNMjYwNDAyMjIyODE5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlZWQ4My01ZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuapu5LhdSGYFvUbHwYdGIUGaxu+PcJ1+PlCnI5EGGEoJ8IH4pahC0+CsMazh Zdz2vg+OHA0RqnH7VE7UCIEU1YQzPDJtwm3Wtlgywzy5Ojhed+72IqztgBiFnrJ4 3FY7oNjPjGf3CCHTW6XOKQAXHeKZ8lnmbVT23Iet/YvF5sMJgQiSqfpNsrXgfOS0 2oKVLnZbNu7ZPSWnDHb2/b7cFrKRUX0C0D7uwMzT/bNIGo20i8NhHpg87yV7RSBZ CvO39f20wOPFBQZ8iJDd6gAJnoA1k+7QvvdXkIPMVnAnyHmbeQXO7wm550d3xfcP mRsuqoz+Pv5tmZgbMbT08UCydwIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFIy02bKw 1ookV3khXyfYMeITA+KHMB8GA1UdIwQYMBaAFEYrFtMnly6ncSJqAViLUgXv6kSW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjY4Qi80MjZGNTdDMDhE MzkxMUVCQjlGNENCMTdDNEY5QUUwMi9SaXNXMHllWExxZHhJbW9CV0l0U0JlX3FS SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jpc1cweWVYTHFkeEltb0JXSXRTQmVfcVJKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI2OEIvNDI2RjU3QzA4RDM5MTFFQkI5RjRDQjE3QzRGOUFFMDIvM0Y0RUNCRDI3 NDREMTFFREI1RDA4NjgyQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAM BAIAATAGAwQBZ6TsMBYEAgACMBADBwAgAQ32UYADBQAkAL9gMA0GCSqGSIb3DQEB CwUAA4IBAQCUfs54bq9AdILC5grGVymXXPGSxya8aE/W69aa2D1xjUr7SZdGw39b d5B2+/utR7fW5xPMlW0RH2IRuXxkjqsLdFJI/ivWz4B6yOSLOcu3CTnj143hXIVT qrrcNo8HrUmD7EYtx7VEpDN1Na87E+FpiXWWKbVa+3aO3Ie1qG/a4JDaz7zoI5rm v5/4XSbCeWMycYXGp/+INYfobaKTkwKgs+j8Wd1xyVKs70euBpjmnxk73Gw4GU0A NG5pz2h81HqPotBA3ncJfcGKP38er0HeNLu5jbUX7EPa635u41T0GBoH4VrASh33 fglZxNC+/cXrluFjyzlKKDOAipNPi6uf -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:04 2026 by rpki-client