$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa File: 1F8D757623B811E9971D8168C4F9AE02.roa (raw, json) Hash identifier: Ud/JKk6QlCxXI4KwNPCTKP9LkloyMw6VvS32jmp6Krw= Subject key identifier: D1:B1:4C:54:E7:EC:BD:D9:D2:98:06:4E:F9:66:9B:FD:E8:AB:94:46 Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 117D Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa Signing time: Tue 31 Mar 2026 17:21:54 +0000 ROA not before: Tue 31 Mar 2026 17:21:53 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 138549 IP address blocks: 103.132.220.0/22 maxlen: 22 103.132.220.0/23 maxlen: 23 103.132.220.0/24 maxlen: 24 103.132.221.0/24 maxlen: 24 103.132.222.0/23 maxlen: 23 103.132.222.0/24 maxlen: 24 103.132.223.0/24 maxlen: 24 2404:40c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4477 (0x117d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Mar 31 17:21:53 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cc02b1-626f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:09:76:4c:72:32:00:26:a4:c6:3e:98:1d: 6d:a6:69:6e:db:f8:f6:9e:42:af:fc:fb:51:2c:e0: 04:c2:55:d7:85:72:ff:d4:c0:80:0a:f1:8e:1c:55: a2:8a:f7:8f:1c:ef:80:fe:e6:40:ea:fb:d4:11:c9: 8c:84:e6:04:0b:74:4c:55:fc:ca:ee:ca:fb:e8:3d: 01:38:5f:6b:4f:80:96:e0:ca:8f:1c:03:41:b7:01: 5b:3f:12:7c:33:a7:e7:27:56:12:7c:64:8b:c4:6e: 52:18:57:93:1a:d7:00:f2:2b:69:f2:75:57:e3:44: f4:c6:a7:d7:52:49:ad:31:b8:ad:79:98:df:98:5c: 2d:d3:a3:d1:21:e1:cc:f5:07:c8:01:97:c9:9c:92: 19:04:6b:d9:81:b2:a9:7b:9a:df:ca:bc:77:54:cf: 3f:59:88:a4:f5:58:e0:a6:12:51:b0:4a:39:08:8e: 76:5b:5d:e6:71:ed:49:a8:c4:33:95:40:57:e1:ba: eb:23:bc:51:b8:d6:4a:b1:05:99:1b:ce:46:4d:60: 23:e3:83:f9:5c:24:20:3b:58:94:69:8f:d2:27:6d: 64:60:a1:ef:63:64:bc:d6:0d:a5:d3:97:40:f6:9d: c5:b9:72:e7:85:5b:f8:f3:9c:b8:65:c1:0e:26:78: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B1:4C:54:E7:EC:BD:D9:D2:98:06:4E:F9:66:9B:FD:E8:AB:94:46 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/22 IPv6: 2404:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:fa:2a:0c:c3:e8:a0:0d:0e:f5:36:e4:91:94:7f:9e:83:c7: aa:be:6b:63:0f:34:7f:b5:bc:b3:51:f9:6e:ec:0e:ef:0e:78: 70:34:73:60:34:6e:d6:55:e4:bf:9a:66:0c:b4:e7:b3:5c:01: 3c:e1:f8:f3:0b:52:54:95:af:57:93:df:da:e5:5e:b2:89:af: 34:e8:27:23:09:8c:37:00:b6:68:72:60:65:83:94:0b:c0:57: 8a:29:60:10:21:32:6e:b2:9d:e9:62:08:5f:cd:c6:1f:00:bc: f8:c0:04:c2:ad:58:35:14:b0:e4:29:7c:ec:a9:1b:f2:16:fc: 49:1a:cd:23:97:ea:6a:03:cf:36:b6:13:79:b0:1e:d9:60:d8: 4b:50:78:be:8a:65:45:e2:2c:f2:81:66:c1:0b:3c:c3:00:15: f5:2c:a5:dd:99:8b:b6:68:91:99:c6:37:54:03:ff:9b:72:e4: 5e:f6:96:58:1e:59:dc:63:66:45:53:b2:c3:df:d1:b8:a1:f1: 70:d7:1d:2d:5b:2d:12:46:7c:31:85:b5:e5:c7:f2:70:cf:6f: a5:c1:ea:46:9f:64:c7:a9:24:e1:82:1d:cb:61:91:f7:b6:e6: f8:bb:cd:d8:44:be:57:e0:33:ce:0f:8c:f4:3d:dc:1b:f3:b2: 16:67:81:86 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjYwMzMxMTcyMTUzWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMDJiMS02MjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N4JdkxyMgAmpMY+mB1tpmlu2/j2nkKv/PtRLOAEwlXXhXL/1MCACvGOHFWi ivePHO+A/uZA6vvUEcmMhOYEC3RMVfzK7sr76D0BOF9rT4CW4MqPHANBtwFbPxJ8 M6fnJ1YSfGSLxG5SGFeTGtcA8itp8nVX40T0xqfXUkmtMbiteZjfmFwt06PRIeHM 9QfIAZfJnJIZBGvZgbKpe5rfyrx3VM8/WYik9VjgphJRsEo5CI52W13mce1JqMQz lUBX4brrI7xRuNZKsQWZG85GTWAj44P5XCQgO1iUaY/SJ21kYKHvY2S81g2l05dA 9p3FuXLnhVv485y4ZcEOJngH6wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFNGxTFTn 7L3Z0pgGTvlmm/3oq5RGMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvMUY4RDc1NzYy M0I4MTFFOTk3MUQ4MTY4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4TcMA0EAgACMAcDBQAkBEDAMA0GCSqGSIb3DQEBCwUAA4IBAQBu +ioMw+igDQ71NuSRlH+eg8eqvmtjDzR/tbyzUflu7A7vDnhwNHNgNG7WVeS/mmYM tOezXAE84fjzC1JUla9Xk9/a5V6yia806CcjCYw3ALZocmBlg5QLwFeKKWAQITJu sp3pYghfzcYfALz4wATCrVg1FLDkKXzsqRvyFvxJGs0jl+pqA882thN5sB7ZYNhL UHi+imVF4izygWbBCzzDABX1LKXdmYu2aJGZxjdUA/+bcuRe9pZYHlncY2ZFU7LD 39G4ofFw1x0tWy0SRnwxhbXlx/Jwz2+lwepGn2THqSThgh3LYZH3tub4u83YRL5X 4DPOD4z0Pdwb87IWZ4GG -----END CERTIFICATE-----Generated at Fri Apr 17 21:31:26 2026 by rpki-client