$ rpki-client -vvf rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/C435BF20EE8E11ED8FA7F510C4F9AE02.roa File: C435BF20EE8E11ED8FA7F510C4F9AE02.roa (raw, json) Hash identifier: gcmy6fyU9mWxKGjBtaxajLdQNE9T8qXC/2LOVix6NnY= Subject key identifier: 1C:B4:8B:90:E0:8E:9B:FB:37:D3:58:1B:24:5C:3C:BE:AF:0B:37:3A Certificate issuer: /CN=A9134858/serialNumber=7841A0786A7D7846459FB5978BFBBB2D90A1EEE7 Certificate serial: 0227 Authority key identifier: 78:41:A0:78:6A:7D:78:46:45:9F:B5:97:8B:FB:BB:2D:90:A1:EE:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eEGgeGp9eEZFn7WXi_u7LZCh7uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/C435BF20EE8E11ED8FA7F510C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:16:10 +0000 ROA not before: Tue 03 Jun 2025 03:21:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134806 IP address blocks: 103.132.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/eEGgeGp9eEZFn7WXi_u7LZCh7uc.crl rsync://rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/eEGgeGp9eEZFn7WXi_u7LZCh7uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eEGgeGp9eEZFn7WXi_u7LZCh7uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134858, serialNumber=7841A0786A7D7846459FB5978BFBBB2D90A1EEE7 Validity Not Before: Jun 3 03:21:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3f5ca-7afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:23:4f:6f:04:7e:2a:b4:16:5e:1d:08:59:5b: a7:43:8b:99:e5:b8:2f:b6:aa:bc:72:ea:e1:9b:2c: 05:8c:f9:77:08:f7:a3:9c:94:f9:1b:38:7e:13:26: 6e:e9:86:0a:2b:eb:03:22:7e:66:e0:07:f9:a8:cd: a9:84:3d:f2:85:32:12:16:64:f2:eb:b4:b3:c7:98: 84:37:e1:e6:f3:06:89:d8:a9:48:96:64:35:b6:06: ad:29:32:be:d3:d8:54:1f:f2:9d:68:ba:27:d1:e9: 63:38:66:87:a9:3d:34:96:ae:0b:fd:d2:b0:5a:2f: 47:0c:dd:76:97:ba:b4:df:37:f9:d0:6c:cf:91:93: 49:ea:1b:40:91:f5:d3:6f:80:eb:0f:42:39:0c:54: d5:14:c2:3f:e2:2a:65:2c:f4:65:a5:13:e4:45:0b: a1:07:e7:e1:e5:a4:f5:00:1b:95:6e:73:21:b3:c9: a1:4c:be:ee:32:72:52:ab:ac:07:04:4b:10:10:b0: 96:43:f0:61:1f:6d:8e:c5:46:bf:c6:af:4a:27:f2: 43:08:80:0f:1d:23:c0:11:6b:ba:43:44:d5:d4:79: 2e:9b:dd:94:67:db:81:55:ac:17:bd:c8:2b:23:e2: 9c:7f:58:25:df:75:88:7c:2f:fd:3c:fc:10:88:23: 6d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B4:8B:90:E0:8E:9B:FB:37:D3:58:1B:24:5C:3C:BE:AF:0B:37:3A X509v3 Authority Key Identifier: keyid:78:41:A0:78:6A:7D:78:46:45:9F:B5:97:8B:FB:BB:2D:90:A1:EE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/eEGgeGp9eEZFn7WXi_u7LZCh7uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eEGgeGp9eEZFn7WXi_u7LZCh7uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134858/325538B4DDB911ED8887C168C4F9AE02/C435BF20EE8E11ED8FA7F510C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.43.0/24 Signature Algorithm: sha256WithRSAEncryption af:3a:63:92:80:aa:8b:a2:2b:ad:61:49:b6:e1:04:04:93:fd: c1:76:e1:a9:48:b2:4f:90:3a:e0:77:03:cf:8e:a0:63:2e:53: db:ca:38:7e:fd:1b:86:e4:86:34:1f:7f:fb:46:dd:50:dd:0e: 26:11:17:01:7a:f5:b2:51:3c:9e:4e:77:20:d0:f2:b3:c7:bc: c0:7d:b4:c7:ea:36:54:f0:09:0b:99:46:3f:0d:7e:e7:8f:f9: 50:02:24:84:d1:c2:20:bb:c0:71:db:5c:79:b6:26:5a:64:e9: 2f:9e:d7:69:bc:9d:e9:93:46:56:58:6a:f5:8a:64:d5:0f:57: 74:47:7c:fa:6d:90:07:d0:82:9c:de:4e:9d:f5:bf:b5:81:1b: 6f:10:41:89:99:e1:38:44:a0:f8:c5:be:d0:d1:01:d2:6d:55: 1d:d8:56:cc:e0:ad:cd:14:ab:2c:28:05:3c:34:5c:9f:35:15: 7a:fc:0e:9a:cc:34:5a:ce:83:fb:32:1d:7a:1c:56:1a:f4:7c: da:8d:3b:ea:0e:36:c5:8a:4b:e5:78:cd:c6:ef:4a:86:cc:02: b1:a7:8c:c1:15:7f:12:26:ca:6b:5b:ac:f5:57:ef:c2:09:83: a5:83:13:67:76:2f:fd:19:38:c9:4e:22:8f:65:ec:63:93:a9: 59:f9:aa:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4NTgxMTAvBgNVBAUTKDc4NDFBMDc4NkE3RDc4NDY0NTlGQjU5NzhCRkJCQjJE OTBBMUVFRTcwHhcNMjUwNjAzMDMyMTQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjVjYS03YWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCNPbwR+KrQWXh0IWVunQ4uZ5bgvtqq8curhmywFjPl3CPejnJT5Gzh+EyZu 6YYKK+sDIn5m4Af5qM2phD3yhTISFmTy67Szx5iEN+Hm8waJ2KlIlmQ1tgatKTK+ 09hUH/KdaLon0eljOGaHqT00lq4L/dKwWi9HDN12l7q03zf50GzPkZNJ6htAkfXT b4DrD0I5DFTVFMI/4iplLPRlpRPkRQuhB+fh5aT1ABuVbnMhs8mhTL7uMnJSq6wH BEsQELCWQ/BhH22OxUa/xq9KJ/JDCIAPHSPAEWu6Q0TV1Hkum92UZ9uBVawXvcgr I+Kcf1gl33WIfC/9PPwQiCNtEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBy0i5Dg jpv7N9NYGyRcPL6vCzc6MB8GA1UdIwQYMBaAFHhBoHhqfXhGRZ+1l4v7uy2Qoe7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDg1OC8zMjU1MzhCNERE QjkxMUVEODg4N0MxNjhDNEY5QUUwMi9lRUdnZUdwOWVFWkZuN1dYaV91N0xaQ2g3 dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VFR2dlR3A5ZUVaRm43V1hpX3U3TFpDaDd1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ4NTgvMzI1NTM4QjREREI5MTFFRDg4ODdDMTY4QzRGOUFFMDIvQzQzNUJGMjBF RThFMTFFRDhGQTdGNTEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4QrMA0GCSqGSIb3DQEBCwUAA4IBAQCvOmOSgKqLoiutYUm24QQE k/3BduGpSLJPkDrgdwPPjqBjLlPbyjh+/RuG5IY0H3/7Rt1Q3Q4mERcBevWyUTye Tncg0PKzx7zAfbTH6jZU8AkLmUY/DX7nj/lQAiSE0cIgu8Bx21x5tiZaZOkvntdp vJ3pk0ZWWGr1imTVD1d0R3z6bZAH0IKc3k6d9b+1gRtvEEGJmeE4RKD4xb7Q0QHS bVUd2FbM4K3NFKssKAU8NFyfNRV6/A6azDRazoP7Mh16HFYa9HzajTvqDjbFikvl eM3G70qGzAKxp4zBFX8SJsprW6z1V+/CCYOlgxNndi/9GTjJTiKPZexjk6lZ+aqS -----END CERTIFICATE-----Generated at Mon Mar 2 09:10:28 2026 by rpki-client