$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa File: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (raw, json) Hash identifier: TSL+MTPK8EgRMcMjr6qrtFpszOvhkzRM0QdAHqJaU40= Subject key identifier: 87:34:69:69:A3:28:89:76:EF:66:D3:DF:7B:0E:8E:82:9D:31:8B:0C Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 03CE Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:06:47 +0000 ROA not before: Sun 31 Aug 2025 02:18:39 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134415 IP address blocks: 103.42.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Aug 31 02:18:39 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47227-b7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:12:e9:d4:e5:03:b9:08:6e:e5:3f:ae:f2: 8d:e4:71:6a:4a:df:eb:50:2e:ac:6b:0c:95:66:ab: b8:e4:f6:78:fd:18:a3:cd:1a:f0:8e:40:20:19:ab: c3:36:76:d3:0d:09:38:6c:21:d4:66:56:8c:11:40: 4f:9d:70:f0:e4:59:f8:34:ef:49:b8:85:6e:c2:8b: 49:b2:27:ee:86:55:2d:a7:01:5a:6d:8f:41:c6:2d: 0b:18:54:24:cf:43:1e:8b:04:2d:1e:92:38:e7:46: 99:72:7b:21:f1:63:6c:49:0f:64:e1:1a:e9:29:3e: 97:d2:5c:1a:52:ee:f6:8d:c5:03:b1:5c:e3:9d:88: d2:28:f5:e3:11:3c:f9:7c:40:85:8d:3c:24:96:48: 08:91:cd:86:59:13:ec:24:47:fc:ac:a8:14:45:24: ab:46:0a:18:c1:2b:e1:44:7e:3c:8e:64:d4:18:dc: e9:17:84:01:1d:d8:e7:35:fa:0b:b6:3f:17:94:5c: 13:5e:48:4c:78:a5:67:99:9c:cc:d7:ce:87:d1:7e: fd:cf:69:e6:10:43:ca:21:c7:23:7a:64:21:44:71: 1d:df:05:17:bc:d7:e8:02:7d:d8:80:0f:31:66:36: ed:56:2c:ae:58:85:42:7e:a3:39:fa:1d:60:70:91: 88:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:34:69:69:A3:28:89:76:EF:66:D3:DF:7B:0E:8E:82:9D:31:8B:0C X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/1BC3E9F8D0F711EC8673072FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.42.96.0/24 Signature Algorithm: sha256WithRSAEncryption a5:d4:69:40:b3:d6:1e:e4:94:d9:68:03:ca:83:25:3b:90:09: 6d:16:65:b1:da:0c:15:c4:16:fe:e7:c4:29:ad:c3:93:2d:44: da:44:8e:8d:c3:1a:5a:61:d9:ea:f9:f2:ce:39:d4:7d:d4:63: 5e:ce:16:77:fe:88:3a:5a:58:73:81:26:5e:68:93:49:96:a9: 67:11:5d:d1:e4:e2:8c:80:4a:5f:24:67:44:d7:b1:72:93:a4: c4:26:a9:26:78:c8:a6:cd:ec:53:f0:c3:b6:c8:cb:99:43:bc: ba:9d:6d:55:b7:21:53:d5:30:95:b6:f9:f1:eb:9d:4a:4c:c8: ce:a7:5c:ca:a3:4a:44:eb:59:55:c8:03:bc:f5:66:f7:52:e2: cf:4e:e0:7e:80:c0:4c:19:5c:46:43:30:42:53:26:83:46:b3: f7:f9:df:65:12:ea:01:7b:1c:42:f0:82:e8:62:e1:a8:fe:9a: 6b:67:4c:69:f3:c7:5c:e1:5e:fd:cf:ef:d2:c6:44:09:85:08: 19:8c:59:f2:62:9c:b7:7e:7c:3c:e3:47:04:97:6e:49:c1:29: 8f:47:06:2f:97:f6:a7:e8:fe:a5:b9:1d:86:4a:23:d7:86:a0: 77:c9:19:3e:6d:c3:0e:e7:f6:32:51:e9:92:6d:98:d7:77:15: c9:ee:a0:6f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjUwODMxMDIxODM5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzIyNy1iN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQAS6dTlA7kIbuU/rvKN5HFqSt/rUC6sawyVZqu45PZ4/RijzRrwjkAgGavD NnbTDQk4bCHUZlaMEUBPnXDw5Fn4NO9JuIVuwotJsifuhlUtpwFabY9Bxi0LGFQk z0MeiwQtHpI450aZcnsh8WNsSQ9k4RrpKT6X0lwaUu72jcUDsVzjnYjSKPXjETz5 fECFjTwklkgIkc2GWRPsJEf8rKgURSSrRgoYwSvhRH48jmTUGNzpF4QBHdjnNfoL tj8XlFwTXkhMeKVnmZzM186H0X79z2nmEEPKIccjemQhRHEd3wUXvNfoAn3YgA8x ZjbtViyuWIVCfqM5+h1gcJGIhwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIc0aWmj KIl272bT33sOjoKdMYsMMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvMUJDM0U5RjhE MEY3MTFFQzg2NzMwNzJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZypgMA0GCSqGSIb3DQEBCwUAA4IBAQCl1GlAs9Ye5JTZaAPKgyU7 kAltFmWx2gwVxBb+58QprcOTLUTaRI6NwxpaYdnq+fLOOdR91GNezhZ3/og6Wlhz gSZeaJNJlqlnEV3R5OKMgEpfJGdE17Fyk6TEJqkmeMimzexT8MO2yMuZQ7y6nW1V tyFT1TCVtvnx651KTMjOp1zKo0pE61lVyAO89Wb3UuLPTuB+gMBMGVxGQzBCUyaD RrP3+d9lEuoBexxC8ILoYuGo/pprZ0xp88dc4V79z+/SxkQJhQgZjFnyYpy3fnw8 40cEl25JwSmPRwYvl/an6P6luR2GSiPXhqB3yRk+bcMO5/YyUemSbZjXdxXJ7qBv -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:46 2026 by rpki-client