$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa File: 3AFE6DA8F72911EDB956BA86C4F9AE02.roa (raw, json) Hash identifier: 06JDuEw0u9UTrCmVjHn/IvdBcebyeZXlu9hwRmQETbc= Subject key identifier: BA:71:B6:E4:DA:72:18:35:65:C6:57:7D:D9:C7:D4:F3:8D:F3:3A:D1 Certificate issuer: /CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Certificate serial: 0B3C Authority key identifier: AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa Signing time: Sat 16 May 2026 19:23:36 +0000 ROA not before: Sat 16 May 2026 19:23:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142647 IP address blocks: 103.149.32.0/24 maxlen: 24 103.149.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2876 (0xb3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6BFA, serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Validity Not Before: May 16 19:23:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6a08c437-64ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b9:75:7e:0b:39:a2:7a:72:0f:4f:97:57:ca: 44:86:1d:ff:42:0d:6d:e7:eb:c0:3f:1c:e2:24:c2: 1a:7a:19:30:3f:31:0a:2f:8e:f7:46:4f:bf:0a:e2: 36:11:9d:45:1f:e8:0f:2d:b7:1a:64:de:e8:24:76: 23:d5:3f:2d:f3:2d:2f:5a:fb:23:bc:d9:43:21:55: 66:29:80:0b:32:3a:e9:73:ee:78:87:04:7a:f7:b5: 03:38:87:36:70:47:db:58:13:36:24:34:48:15:cb: 0f:bb:f6:82:64:0d:f5:e7:c6:ad:a1:f9:0d:1b:e0: 9e:5c:97:1e:55:ca:4c:94:72:c8:ec:e6:8e:13:5b: 24:27:9d:62:9a:49:11:c4:bd:16:63:e0:55:0a:e2: ae:0c:99:9f:85:7f:b7:92:09:86:cd:c9:26:3a:d3: 8b:92:b1:5f:23:d7:35:2d:63:93:e7:67:7f:c9:77: c8:cf:98:ea:bb:75:d3:29:58:a9:14:12:c3:e4:5d: 67:ad:b8:af:66:be:93:82:0b:40:c6:04:70:8f:7f: 2c:e6:88:94:54:b0:71:0c:a7:ce:92:70:be:e4:43: 93:2c:a2:c2:ca:a1:60:41:e0:72:84:84:c4:03:53: dc:25:ab:dd:e3:a6:c7:14:29:4f:47:70:44:97:8a: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:71:B6:E4:DA:72:18:35:65:C6:57:7D:D9:C7:D4:F3:8D:F3:3A:D1 X509v3 Authority Key Identifier: keyid:AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.32.0/23 Signature Algorithm: sha256WithRSAEncryption 81:36:39:6d:45:07:9d:1c:bd:a7:21:24:70:ad:80:8d:f4:b6: cf:09:2a:44:95:ba:44:23:21:a8:bf:b5:c9:10:a8:8b:d3:d0: 0c:4a:0b:b0:90:15:3e:68:ad:d8:70:f0:7c:b5:20:01:1b:7c: ea:b4:b8:23:84:10:4a:da:ac:1b:26:21:20:69:14:d6:0a:d1: f5:74:32:1c:f7:9d:7e:37:55:5f:36:f0:43:cb:be:43:12:e7: 94:b0:63:e6:f9:b8:db:fa:be:71:b7:b1:a6:91:de:96:46:d7: 2d:eb:2c:a8:74:3c:32:c1:df:09:bb:82:f0:f8:6c:4d:a0:9c: 4f:18:30:23:74:e5:48:3c:4a:c3:b8:32:54:53:6d:ff:27:49: e7:80:69:68:f4:cd:33:08:ba:57:67:39:08:0b:31:f2:fa:5d: 88:b9:2c:73:21:ac:cc:a2:1d:2a:37:3e:e3:fb:1f:af:12:be: 91:43:5c:6c:b6:93:45:57:19:c0:02:9e:4d:4d:e3:ff:5c:25: 62:98:59:a7:2b:f0:03:49:9b:7d:8e:a1:f1:a6:a0:b1:af:54: 71:69:9c:68:cf:19:37:77:1e:79:48:27:1e:f5:5c:29:df:90: 45:6b:e8:3e:1c:b2:d8:f7:f1:1f:f3:64:41:a4:59:94:5c:17: 15:99:e0:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZCRkExMTAvBgNVBAUTKEFBNjJDNzlGRTE4NDM5NDEyQzVCMDJDRjRCRUI1NEFC MkVCQkUxODgwHhcNMjYwNTE2MTkyMzM2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA4YzQzNy02NGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLl1fgs5onpyD0+XV8pEhh3/Qg1t5+vAPxziJMIaehkwPzEKL473Rk+/CuI2 EZ1FH+gPLbcaZN7oJHYj1T8t8y0vWvsjvNlDIVVmKYALMjrpc+54hwR697UDOIc2 cEfbWBM2JDRIFcsPu/aCZA3158atofkNG+CeXJceVcpMlHLI7OaOE1skJ51imkkR xL0WY+BVCuKuDJmfhX+3kgmGzckmOtOLkrFfI9c1LWOT52d/yXfIz5jqu3XTKVip FBLD5F1nrbivZr6TggtAxgRwj38s5oiUVLBxDKfOknC+5EOTLKLCyqFgQeByhITE A1PcJavd46bHFClPR3BEl4rAJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLpxtuTa chg1ZcZXfdnH1PON8zrRMB8GA1UdIwQYMBaAFKpix5/hhDlBLFsCz0vrVKsuu+GI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkJGQS80MEQ0QjdFQzY2 MDMxMUVBOTlBRDRGNDZDNEY5QUUwMi9xbUxIbi1HRU9VRXNXd0xQUy10VXF5Njc0 WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FtTEhuLUdFT1VFc1d3TFBTLXRVcXk2NzRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZCRkEvNDBENEI3RUM2NjAzMTFFQTk5QUQ0RjQ2QzRGOUFFMDIvM0FGRTZEQThG NzI5MTFFREI5NTZCQTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5UgMA0GCSqGSIb3DQEBCwUAA4IBAQCBNjltRQedHL2nISRwrYCN 9LbPCSpElbpEIyGov7XJEKiL09AMSguwkBU+aK3YcPB8tSABG3zqtLgjhBBK2qwb JiEgaRTWCtH1dDIc951+N1VfNvBDy75DEueUsGPm+bjb+r5xt7Gmkd6WRtct6yyo dDwywd8Ju4Lw+GxNoJxPGDAjdOVIPErDuDJUU23/J0nngGlo9M0zCLpXZzkICzHy +l2IuSxzIazMoh0qNz7j+x+vEr6RQ1xstpNFVxnAAp5NTeP/XCVimFmnK/ADSZt9 jqHxpqCxr1RxaZxozxk3dx55SCce9Vwp35BFa+g+HLLY9/Ef82RBpFmUXBcVmeCS -----END CERTIFICATE-----Generated at Thu May 21 11:38:25 2026 by rpki-client