$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa File: 1F8D757623B811E9971D8168C4F9AE02.roa (raw, json) Hash identifier: tg6gwL9xi3e5wANWh21zlYrfNKQR0XlwSAlXOjgZ0kc= Subject key identifier: CF:EF:D0:1E:75:0E:4A:0A:5E:7E:68:26:92:9C:AD:F3:98:05:98:4F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 1168 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:16:11 +0000 ROA not before: Wed 30 Apr 2025 17:26:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138549 IP address blocks: 103.132.220.0/22 maxlen: 22 103.132.220.0/23 maxlen: 23 103.132.220.0/24 maxlen: 24 103.132.221.0/24 maxlen: 24 103.132.222.0/23 maxlen: 23 103.132.222.0/24 maxlen: 24 103.132.223.0/24 maxlen: 24 2404:40c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4456 (0x1168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Apr 30 17:26:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42e0a-f2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:bf:bd:81:bc:2d:59:b6:0b:ac:d9:50:f4: 1a:2b:66:36:02:c9:e5:b6:1e:c3:91:d6:73:30:03: 87:88:88:58:e7:84:93:bf:90:57:43:f1:58:b0:ae: 84:5b:11:6e:3e:44:6f:1c:bf:91:47:55:6a:cd:a8: 72:e4:2d:c1:22:fd:40:37:38:a6:b8:65:43:e4:46: e8:9e:13:b4:6a:c7:22:6a:b6:11:c6:85:03:46:07: 38:36:8f:aa:d1:ec:3b:14:be:77:b2:e2:24:9d:46: f8:75:c5:e4:20:97:59:06:c7:7e:a7:bd:90:f7:65: 3a:b4:b8:21:e7:20:c4:5d:3e:16:b9:50:69:30:23: d6:0a:15:d0:99:9c:29:7f:36:f7:90:cd:16:eb:3f: 14:95:09:ac:13:da:6c:4c:48:f3:13:f8:cd:33:67: 41:c1:10:17:17:7b:8a:0d:62:a0:53:28:cf:7f:64: 7d:e2:16:9f:0d:74:6d:ad:45:5c:0d:b7:c8:7f:1d: c3:80:b0:5f:6d:00:a1:29:93:dd:6b:13:33:bb:9b: bb:25:38:75:a4:03:ae:81:7e:c7:57:f0:e7:ca:2c: 5d:44:44:33:61:8f:1b:fc:76:df:f6:1b:9e:49:d2: 04:ce:e9:28:32:82:31:d2:ff:b1:37:d7:af:d5:05: ee:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:EF:D0:1E:75:0E:4A:0A:5E:7E:68:26:92:9C:AD:F3:98:05:98:4F X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/22 IPv6: 2404:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 80:fb:2e:57:26:3d:3c:ff:08:3e:89:d5:60:a8:36:9d:01:cd: ee:c9:7c:36:68:db:bf:59:0a:92:24:82:c3:47:02:e6:02:3c: 1d:cb:c1:7d:ea:21:bf:8d:e4:a1:fa:77:ce:21:67:19:65:ef: 03:12:f3:af:8f:86:3c:d7:0e:f4:a1:06:06:a6:7c:fc:d7:32: 12:39:b7:cc:a1:6c:b3:f0:a7:d0:98:d2:70:94:a7:9f:a9:4c: de:b8:d4:29:5b:e3:a8:aa:b3:96:0b:d0:c0:db:74:33:ab:6b: 08:72:dd:a8:48:02:d9:65:7b:62:31:d0:01:26:58:17:e0:38: 21:34:ff:16:3e:2e:b1:a3:85:ce:15:75:39:a4:57:97:4d:35: b6:26:04:f2:00:5a:5f:7f:8d:cc:cf:c9:88:e6:56:37:0d:72: dc:eb:07:cc:10:63:dd:3c:a8:29:63:6d:03:77:c2:8a:21:fb: 83:a0:f0:3a:a3:a6:3a:4b:04:6c:8e:31:90:80:78:f8:b5:8e: d3:92:8b:aa:16:d1:40:20:26:40:f7:6e:be:cc:cd:8d:73:ec: 6b:05:ec:f7:f3:48:e0:14:b2:d0:ef:8d:4a:86:7d:2a:16:9e: c4:fe:10:42:0c:64:0d:c7:71:90:83:4c:9e:94:f6:80:e0:82: d5:fe:28:da -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUwNDMwMTcyNjMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmUwYS1mMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9y/vYG8LVm2C6zZUPQaK2Y2Asnlth7DkdZzMAOHiIhY54STv5BXQ/FYsK6E WxFuPkRvHL+RR1Vqzahy5C3BIv1ANzimuGVD5EbonhO0asciarYRxoUDRgc4No+q 0ew7FL53suIknUb4dcXkIJdZBsd+p72Q92U6tLgh5yDEXT4WuVBpMCPWChXQmZwp fzb3kM0W6z8UlQmsE9psTEjzE/jNM2dBwRAXF3uKDWKgUyjPf2R94hafDXRtrUVc DbfIfx3DgLBfbQChKZPdaxMzu5u7JTh1pAOugX7HV/DnyixdREQzYY8b/Hbf9hue SdIEzukoMoIx0v+xN9ev1QXuLQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFM/v0B51 DkoKXn5oJpKcrfOYBZhPMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvMUY4RDc1NzYy M0I4MTFFOTk3MUQ4MTY4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4TcMA0EAgACMAcDBQAkBEDAMA0GCSqGSIb3DQEBCwUAA4IBAQCA +y5XJj08/wg+idVgqDadAc3uyXw2aNu/WQqSJILDRwLmAjwdy8F96iG/jeSh+nfO IWcZZe8DEvOvj4Y81w70oQYGpnz81zISObfMoWyz8KfQmNJwlKefqUzeuNQpW+Oo qrOWC9DA23Qzq2sIct2oSALZZXtiMdABJlgX4DghNP8WPi6xo4XOFXU5pFeXTTW2 JgTyAFpff43Mz8mI5lY3DXLc6wfMEGPdPKgpY20Dd8KKIfuDoPA6o6Y6SwRsjjGQ gHj4tY7TkouqFtFAICZA926+zM2Nc+xrBez380jgFLLQ741Khn0qFp7E/hBCDGQN x3GQg0yelPaA4ILV/ija -----END CERTIFICATE-----Generated at Mon Mar 2 17:25:49 2026 by rpki-client