$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa File: BC148566D22B11EE9443A443C4F9AE02.roa (raw, json) Hash identifier: cfcf5ZIlJUYMjr0+qHEumL0rToA0BJQdmmF24Iwecxg= Subject key identifier: 8F:18:EE:2B:00:19:8A:43:E3:1A:54:E3:FF:54:EA:9F:74:AF:B6:87 Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Certificate serial: 04DE Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:50:06 +0000 ROA not before: Sat 07 Feb 2026 00:19:55 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 14618 IP address blocks: 103.179.36.0/24 maxlen: 24 2001:df0:45c4::/46 maxlen: 47 2001:df0:45c4::/47 maxlen: 48 2001:df0:45c6::/48 maxlen: 48 2001:df0:45c8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 23:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAAF5, serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Validity Not Before: Feb 7 00:19:55 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5958e-22c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f0:1d:1e:9e:36:89:23:89:7c:ce:10:36:a8: 0a:95:b2:01:d5:43:41:25:23:13:ab:b6:83:b3:38: af:fd:5a:27:9d:ca:86:0d:1d:67:11:ec:2e:88:a9: 51:3c:3b:7d:b9:b1:7e:08:2d:49:92:40:90:db:cd: 37:f4:0e:31:9d:27:8a:2e:19:3e:20:1a:61:73:49: de:76:18:d9:8c:e5:a0:59:56:70:4c:bd:87:38:9a: 1e:89:72:73:0c:29:6d:82:e7:79:62:8c:a7:16:2f: c8:0e:48:8e:71:d6:9f:42:d7:ef:72:74:b3:66:77: af:f4:17:87:79:1c:c2:6a:8a:05:8a:9c:b9:e8:58: 7d:2f:1f:5b:52:b5:34:87:cf:31:66:51:69:60:89: 3c:71:37:96:b2:58:f7:25:bb:ec:b0:07:7c:93:ad: 68:81:79:90:37:99:b0:08:86:c8:b2:37:a4:3b:cc: 7c:29:f4:2b:cf:89:cb:2e:2e:b4:21:6d:ed:74:06: d4:8a:68:f4:a4:34:e0:f0:5b:6e:da:d1:d7:6f:50: 14:af:b1:5b:b5:cb:54:02:d3:85:45:95:c2:07:c7: e0:b5:53:05:cd:5c:91:64:f6:ad:0e:66:5e:46:22: bb:e2:eb:79:c0:da:4b:41:b0:49:68:62:77:21:da: 34:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:18:EE:2B:00:19:8A:43:E3:1A:54:E3:FF:54:EA:9F:74:AF:B6:87 X509v3 Authority Key Identifier: keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.179.36.0/24 IPv6: 2001:df0:45c4::-2001:df0:45cf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption af:2a:54:a6:fe:e5:15:2b:7d:b0:a9:99:a7:c0:d2:fd:38:f3: b2:cc:19:39:e1:aa:13:21:3a:32:2d:ad:4d:d3:08:b1:4b:2a: bb:d7:ba:21:94:de:dd:4b:10:27:e2:17:d1:ec:da:d3:9c:a0: 3b:8b:24:07:14:c2:ee:dd:25:ee:58:d2:e2:f2:22:37:ae:98: 10:ec:9a:44:06:83:6a:8f:fa:b7:c0:cc:78:17:7b:0e:dc:16: 55:1b:fd:36:a8:00:06:70:9e:fb:f7:48:3b:11:62:10:ba:0b: 94:b7:e8:a4:47:4b:cf:9a:f3:73:29:dd:88:75:96:55:a3:08: 5e:00:75:c4:d2:81:82:27:a3:02:17:a0:bc:86:27:2d:d2:75: e0:50:b0:fe:13:f7:22:0a:a5:dd:c3:6f:1c:54:45:62:97:b3: 2a:b3:64:f3:6a:ef:a0:07:6b:91:46:de:be:3c:09:f1:61:09: a9:f9:c5:53:51:8b:b9:41:a0:92:d8:47:8e:7a:40:de:79:dd: f4:78:3f:22:a6:83:73:bc:25:b3:80:8e:38:ac:5e:5d:e6:cf: 11:42:8b:63:0b:ff:c3:9f:2a:f3:ee:aa:35:10:9b:64:88:58: 01:25:63:67:14:af:70:9b:93:a1:09:fe:b3:3b:49:5a:c3:34: 92:08:5a:01 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFBRjUxMTAvBgNVBAUTKDQ1ODRBRUEyMzk0QzQ2RDY5MzRFNjNFRDY4ODdENDcy NkZERjdBMTMwHhcNMjYwMjA3MDAxOTU1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTU4ZS0yMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/AdHp42iSOJfM4QNqgKlbIB1UNBJSMTq7aDsziv/VonncqGDR1nEewuiKlR PDt9ubF+CC1JkkCQ28039A4xnSeKLhk+IBphc0nedhjZjOWgWVZwTL2HOJoeiXJz DCltgud5YoynFi/IDkiOcdafQtfvcnSzZnev9BeHeRzCaooFipy56Fh9Lx9bUrU0 h88xZlFpYIk8cTeWslj3JbvssAd8k61ogXmQN5mwCIbIsjekO8x8KfQrz4nLLi60 IW3tdAbUimj0pDTg8Ftu2tHXb1AUr7FbtctUAtOFRZXCB8fgtVMFzVyRZPatDmZe RiK74ut5wNpLQbBJaGJ3Ido0bwIDAQABo4ICfDCCAngwHQYDVR0OBBYEFI8Y7isA GYpD4xpU4/9U6p90r7aHMB8GA1UdIwQYMBaAFEWErqI5TEbWk05j7WiH1HJv33oT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUFGNS9FOTlGNTIzQTZF QzQxMUVDQUZEMjczMzFDNEY5QUUwMi9SWVN1b2psTVJ0YVRUbVB0YUlmVWNtX2Zl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZU3VvamxNUnRhVFRtUHRhSWZVY21fZmVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFBRjUvRTk5RjUyM0E2RUM0MTFFQ0FGRDI3MzMxQzRGOUFFMDIvQkMxNDg1NjZE MjJCMTFFRTk0NDNBNDQzQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAM BAIAATAGAwQAZ7MkMBoEAgACMBQwEgMHAiABDfBFxAMHBCABDfBFwDANBgkqhkiG 9w0BAQsFAAOCAQEArypUpv7lFSt9sKmZp8DS/TjzsswZOeGqEyE6Mi2tTdMIsUsq u9e6IZTe3UsQJ+IX0eza05ygO4skBxTC7t0l7ljS4vIiN66YEOyaRAaDao/6t8DM eBd7DtwWVRv9NqgABnCe+/dIOxFiELoLlLfopEdLz5rzcyndiHWWVaMIXgB1xNKB giejAhegvIYnLdJ14FCw/hP3Igql3cNvHFRFYpezKrNk82rvoAdrkUbevjwJ8WEJ qfnFU1GLuUGgkthHjnpA3nnd9Hg/IqaDc7wls4COOKxeXebPEUKLYwv/w58q8+6q NRCbZIhYASVjZxSvcJuToQn+sztJWsM0kghaAQ== -----END CERTIFICATE-----Generated at Thu Mar 19 15:30:39 2026 by rpki-client