$ rpki-client -vvf rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa File: BCD0C756B3D111F09D2C6B5BC4F9AE02.roa (raw, json) Hash identifier: 4o6d3Mckrzy48+xLI8bsyNkRAk7N9AqNPet+OzlxVP4= Subject key identifier: 53:CF:90:EA:3F:39:F7:42:79:27:8B:AA:79:B0:8A:9E:03:26:4D:92 Certificate issuer: /CN=A9131194/serialNumber=66C2DB0D8B690C9536B06AB7CEC65C08D5763F4F Certificate serial: 43 Authority key identifier: 66:C2:DB:0D:8B:69:0C:95:36:B0:6A:B7:CE:C6:5C:08:D5:76:3F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:09:32 +0000 ROA not before: Tue 28 Oct 2025 07:43:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151190 IP address blocks: 103.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.crl rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131194, serialNumber=66C2DB0D8B690C9536B06AB7CEC65C08D5763F4F Validity Not Before: Oct 28 07:43:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3d81c-381f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f2:a4:7d:df:7b:72:fc:f0:c6:f0:94:f2:56: 3b:bb:d7:3e:09:92:91:3c:b7:3a:7a:6d:c0:2d:1e: c6:3e:84:47:ec:bd:90:08:be:f2:db:5f:13:3d:cf: ef:49:04:3f:52:84:27:47:0a:b4:3c:e1:cb:66:39: e5:4e:dd:09:4c:9b:6b:31:2d:c4:61:7e:29:fc:de: 98:f0:4b:83:af:f4:7e:c7:75:05:95:09:5a:e8:fc: 37:5b:ed:6f:64:9c:35:3c:25:29:cc:02:15:9d:f9: d4:a9:6b:3e:9a:95:71:60:dd:8a:41:b1:65:df:09: a0:2d:35:94:41:d9:e3:db:f8:ec:8d:8b:d8:7d:ff: fa:b8:12:5f:15:d3:c6:b1:6f:48:da:b9:fc:ed:94: 7f:ff:9e:90:98:cc:5b:ff:96:b8:74:e4:21:90:05: cc:b6:31:74:34:e6:a2:b9:d6:4f:13:8d:a5:19:01: 7a:20:c7:e5:3e:43:b2:c2:5a:2f:3f:e0:bf:c9:81: d8:4a:ed:96:6c:09:71:37:f8:67:42:13:c7:9e:55: 4e:96:2d:78:33:3e:77:7e:c2:40:1b:60:81:f6:4f: 9a:ed:52:60:9e:df:77:db:eb:8d:1d:7f:98:8d:73: 31:22:02:38:17:39:2f:1c:37:e3:fb:a7:02:ed:a0: 94:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:CF:90:EA:3F:39:F7:42:79:27:8B:AA:79:B0:8A:9E:03:26:4D:92 X509v3 Authority Key Identifier: keyid:66:C2:DB:0D:8B:69:0C:95:36:B0:6A:B7:CE:C6:5C:08:D5:76:3F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption b4:d3:bf:41:93:5d:30:00:3e:2c:1e:88:ec:93:5c:fa:d3:28: 70:9b:8c:69:af:c5:75:ed:66:9e:b3:8f:3e:a1:a6:0b:2d:72: b8:b8:fa:06:fc:f2:99:14:e9:81:7f:21:34:3f:2d:81:b8:4c: af:96:d4:62:9d:2b:de:98:50:bf:62:14:8d:ee:d7:72:1d:10: 76:04:28:96:1f:49:12:d0:b2:3b:ab:8c:38:2d:d2:fd:82:54: 48:92:c0:66:68:4d:07:54:d5:34:2f:6b:58:1f:c3:f9:00:1a: fb:92:3e:6c:cb:2e:20:72:1f:cd:44:66:20:e7:f5:2b:d7:8c: 78:41:8c:60:e7:e3:25:48:45:c5:2e:1e:bd:90:c2:bb:3f:22: 07:6d:de:c9:49:6e:74:b0:9e:50:cc:74:5c:12:17:25:db:01: 85:9c:7e:f2:54:88:f0:47:42:25:90:0c:9c:3f:8b:0f:fa:97: 80:47:1d:2e:4c:64:e6:2a:34:62:d5:e1:16:d8:cb:72:40:f1: bd:ae:94:aa:d5:6a:d6:11:47:da:59:38:55:7e:4c:2a:de:80: 36:85:0c:b1:e6:26:74:77:4d:b3:c4:19:6b:28:c5:8b:92:87: eb:a3:bb:4d:6f:de:3f:ea:fa:07:be:91:c5:92:04:6b:83:eb: e3:15:66:11 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE5NDExMC8GA1UEBRMoNjZDMkRCMEQ4QjY5MEM5NTM2QjA2QUI3Q0VDNjVDMDhE NTc2M0Y0RjAeFw0yNTEwMjgwNzQzMDVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODFjLTM4MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCW8qR933ty/PDG8JTyVju71z4JkpE8tzp6bcAtHsY+hEfsvZAIvvLbXxM9z+9J BD9ShCdHCrQ84ctmOeVO3QlMm2sxLcRhfin83pjwS4Ov9H7HdQWVCVro/Ddb7W9k nDU8JSnMAhWd+dSpaz6alXFg3YpBsWXfCaAtNZRB2ePb+OyNi9h9//q4El8V08ax b0jaufztlH//npCYzFv/lrh05CGQBcy2MXQ05qK51k8TjaUZAXogx+U+Q7LCWi8/ 4L/JgdhK7ZZsCXE3+GdCE8eeVU6WLXgzPnd+wkAbYIH2T5rtUmCe33fb640df5iN czEiAjgXOS8cN+P7pwLtoJQRAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUU8+Q6j85 90J5J4uqebCKngMmTZIwHwYDVR0jBBgwFoAUZsLbDYtpDJU2sGq3zsZcCNV2P08w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTk0LzI5REUxMkNBQjND QTExRjBBNUMwN0I3RUM0RjlBRTAyL1pzTGJEWXRwREpVMnNHcTN6c1pjQ05WMlAw OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNMYkRZdHBESlUyc0dxM3pzWmNDTlYyUDA4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTE5NC8yOURFMTJDQUIzQ0ExMUYwQTVDMDdCN0VDNEY5QUUwMi9CQ0QwQzc1NkIz RDExMUYwOUQyQzZCNUJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnk2wwDQYJKoZIhvcNAQELBQADggEBALTTv0GTXTAAPiweiOyTXPrT KHCbjGmvxXXtZp6zjz6hpgstcri4+gb88pkU6YF/ITQ/LYG4TK+W1GKdK96YUL9i FI3u13IdEHYEKJYfSRLQsjurjDgt0v2CVEiSwGZoTQdU1TQva1gfw/kAGvuSPmzL LiByH81EZiDn9SvXjHhBjGDn4yVIRcUuHr2Qwrs/Igdt3slJbnSwnlDMdFwSFyXb AYWcfvJUiPBHQiWQDJw/iw/6l4BHHS5MZOYqNGLV4RbYy3JA8b2ulKrVatYRR9pZ OFV+TCregDaFDLHmJnR3TbPEGWsoxYuSh+uju01v3j/q+ge+kcWSBGuD6+MVZhE= -----END CERTIFICATE-----Generated at Mon Mar 2 06:20:18 2026 by rpki-client