$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa File: 4AE6CFF8B25211EBA977EE09C4F9AE02.roa (raw, json) Hash identifier: x14FGM59KBAJVApiuTvfAAn5zOSyd0j7HZF03bpVJMs= Subject key identifier: 6C:22:FF:BE:D6:38:74:0B:4B:B3:18:F4:AD:52:F2:19:22:BD:D5:F4 Certificate issuer: /CN=A91F8336/serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Certificate serial: 125A Authority key identifier: D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa Signing time: Tue 31 Mar 2026 17:21:37 +0000 ROA not before: Tue 31 Mar 2026 17:21:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138495 IP address blocks: 103.126.244.0/22 maxlen: 24 2404:1540::/32 maxlen: 32 2404:1540:1000::/36 maxlen: 36 2404:1540:1000::/48 maxlen: 48 2404:1540:1001::/48 maxlen: 48 2404:1540:1002::/48 maxlen: 48 2404:1540:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4698 (0x125a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8336, serialNumber=D77F37975235ABDE5F4989FBF3FE938D527C1948 Validity Not Before: Mar 31 17:21:37 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69cc02a1-7667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ca:60:a1:6e:59:2e:a9:c8:30:27:22:06:f9: 6c:7e:d0:c5:a1:93:04:66:51:74:70:f1:5e:29:2d: b4:83:e0:6c:b2:d5:de:bd:bc:7d:c1:5e:d5:1b:a2: 39:eb:96:03:9c:15:86:09:39:e6:82:60:01:2d:10: 1c:05:2b:a0:1c:9d:c1:e6:78:ac:9a:73:6f:37:95: f5:49:db:cd:55:b3:65:a6:0e:6c:fe:88:6b:49:7b: 75:21:a5:01:e7:15:53:27:49:d3:41:4d:9f:b5:de: 4d:21:b8:e0:3c:eb:47:37:54:61:67:20:2f:33:53: dc:4d:59:9c:99:f7:e9:72:cc:50:d6:73:e5:18:e3: b7:29:46:36:de:49:23:3f:6c:4f:35:e5:cd:a9:2f: 8b:51:78:ad:4c:99:a7:ae:15:5e:c2:0d:ad:69:09: 3a:c3:fd:da:f4:e4:f6:b8:e9:27:e4:17:7d:13:bf: e0:44:53:7c:73:50:83:c2:1d:d3:39:65:46:35:09: 30:f3:4a:69:90:03:a8:10:ba:a1:79:72:8f:51:a5: c6:9f:10:25:29:e0:13:1e:a6:62:ba:38:82:1b:22: 30:74:81:2f:26:f3:74:76:d1:94:71:bc:6e:2e:93: 6e:dc:ec:3c:5c:b9:2b:c8:49:ce:a0:81:a9:a3:67: a4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:22:FF:BE:D6:38:74:0B:4B:B3:18:F4:AD:52:F2:19:22:BD:D5:F4 X509v3 Authority Key Identifier: keyid:D7:7F:37:97:52:35:AB:DE:5F:49:89:FB:F3:FE:93:8D:52:7C:19:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/1383l1I1q95fSYn78_6TjVJ8GUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1383l1I1q95fSYn78_6TjVJ8GUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8336/37E1673EFD1D11E8B3E36E57C4F9AE02/4AE6CFF8B25211EBA977EE09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.244.0/22 IPv6: 2404:1540::/32 Signature Algorithm: sha256WithRSAEncryption 74:c2:9a:d8:4d:fd:1c:51:97:b0:8c:07:37:a0:1e:e2:5e:cb: 95:b5:30:1c:3d:2d:7f:3a:d4:c2:7f:1c:a1:a0:c3:87:a2:5a: 6e:a9:59:21:ff:ac:22:67:90:2c:84:c0:1e:79:3b:15:20:80: cf:53:aa:20:4a:5c:04:bb:4d:1c:05:60:42:12:88:9f:db:b6: 23:7f:79:8d:7c:43:43:59:d3:6a:81:a9:5a:f6:ab:39:a5:e7: cb:72:19:07:0a:ee:a8:79:34:c1:65:07:3e:95:4c:5a:d9:1b: e7:50:d4:e4:9f:bc:31:49:f7:2c:be:09:bf:b3:73:10:a2:e1: 7f:1d:e3:4e:00:eb:4d:c4:d1:95:4b:00:ec:65:d2:9d:f8:09: 84:9f:88:25:3a:2a:47:8f:61:26:7a:6d:1f:91:5e:d8:92:b4: e0:a2:0a:bd:19:c9:59:34:8a:38:0d:62:ef:67:dd:25:75:63: 5b:91:c3:c6:4b:6f:f8:e3:04:6d:71:1b:3d:94:f3:d0:e9:b6: 65:eb:80:7e:fe:24:2c:f8:07:2e:66:63:36:41:30:08:bc:a0: fe:d0:5e:83:62:42:0f:b4:d9:e2:43:73:42:cb:5c:26:b0:73: 45:6a:20:34:93:7f:a2:a1:4a:73:14:50:13:eb:cc:30:0f:19: 2f:7b:fa:19 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICElowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgzMzYxMTAvBgNVBAUTKEQ3N0YzNzk3NTIzNUFCREU1RjQ5ODlGQkYzRkU5MzhE NTI3QzE5NDgwHhcNMjYwMzMxMTcyMTM3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMDJhMS03NjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMpgoW5ZLqnIMCciBvlsftDFoZMEZlF0cPFeKS20g+BsstXevbx9wV7VG6I5 65YDnBWGCTnmgmABLRAcBSugHJ3B5nismnNvN5X1SdvNVbNlpg5s/ohrSXt1IaUB 5xVTJ0nTQU2ftd5NIbjgPOtHN1RhZyAvM1PcTVmcmffpcsxQ1nPlGOO3KUY23kkj P2xPNeXNqS+LUXitTJmnrhVewg2taQk6w/3a9OT2uOkn5Bd9E7/gRFN8c1CDwh3T OWVGNQkw80ppkAOoELqheXKPUaXGnxAlKeATHqZiujiCGyIwdIEvJvN0dtGUcbxu LpNu3Ow8XLkryEnOoIGpo2ekkQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGwi/77W OHQLS7MY9K1S8hkivdX0MB8GA1UdIwQYMBaAFNd/N5dSNaveX0mJ+/P+k41SfBlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODMzNi8zN0UxNjczRUZE MUQxMUU4QjNFMzZFNTdDNEY5QUUwMi8xMzgzbDFJMXE5NWZTWW43OF82VGpWSjhH VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzODNsMUkxcTk1ZlNZbjc4XzZUalZKOEdVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgzMzYvMzdFMTY3M0VGRDFEMTFFOEIzRTM2RTU3QzRGOUFFMDIvNEFFNkNGRjhC MjUyMTFFQkE5NzdFRTA5QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ370MA0EAgACMAcDBQAkBBVAMA0GCSqGSIb3DQEBCwUAA4IBAQB0 wprYTf0cUZewjAc3oB7iXsuVtTAcPS1/OtTCfxyhoMOHolpuqVkh/6wiZ5AshMAe eTsVIIDPU6ogSlwEu00cBWBCEoif27Yjf3mNfENDWdNqgala9qs5pefLchkHCu6o eTTBZQc+lUxa2RvnUNTkn7wxSfcsvgm/s3MQouF/HeNOAOtNxNGVSwDsZdKd+AmE n4glOipHj2Emem0fkV7YkrTgogq9GclZNIo4DWLvZ90ldWNbkcPGS2/44wRtcRs9 lPPQ6bZl64B+/iQs+AcuZmM2QTAIvKD+0F6DYkIPtNniQ3NCy1wmsHNFaiA0k3+i oUpzFFAT68wwDxkve/oZ -----END CERTIFICATE-----Generated at Mon Apr 6 10:09:52 2026 by rpki-client