$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa File: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (raw, json) Hash identifier: Z1lkPboS7Do5JVczgOK46BmhKy5Eyozp7p6CLVvAhpo= Subject key identifier: 48:A4:72:66:DD:42:75:32:26:F7:0E:55:54:BD:67:7C:19:CB:98:11 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 018D Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:58:45 +0000 ROA not before: Fri 03 Oct 2025 01:28:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132686 IP address blocks: 103.73.236.0/22 maxlen: 22 103.73.236.0/24 maxlen: 24 103.73.237.0/24 maxlen: 24 103.73.238.0/24 maxlen: 24 103.73.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Oct 3 01:28:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48c65-a0a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:49:e1:53:46:c4:ca:25:26:41:4e:4d:f8:c1: e6:a8:ab:a1:9b:db:ef:45:f7:63:23:f0:b6:94:c9: 62:db:6b:d2:bc:45:6c:a7:1b:fb:1e:42:7c:94:7d: d3:90:84:35:2a:f2:b4:13:39:98:90:3a:95:82:dd: c5:37:24:5c:f2:19:b7:04:d1:2e:f4:af:5e:53:b7: eb:50:fb:2f:28:77:f6:4b:1a:82:fa:2e:c6:23:c7: 3a:59:3d:35:91:bc:24:dc:0a:55:f4:e1:de:4c:bd: aa:35:49:3f:29:d2:18:39:89:bc:70:ff:15:d0:50: 33:80:f5:97:04:a0:2c:d0:94:0c:72:ea:ac:b9:33: e4:aa:83:54:3f:4d:54:89:ce:f9:84:d6:9b:55:0f: cd:0f:28:65:cc:a1:4c:bc:de:c5:28:92:b4:2b:65: 06:ff:93:9e:c4:7d:8d:14:b5:bf:dc:11:56:f1:65: e3:86:cf:03:4e:9d:89:8e:44:bc:f1:fc:e9:e2:2e: 41:e1:49:a7:ef:ec:38:19:20:c0:9c:9e:4a:04:f5: e1:e0:d8:21:8d:9f:1b:15:4a:70:2a:9d:bd:24:4e: fe:79:d1:27:65:4c:d9:c3:70:4b:86:b3:ca:ff:d4: 3e:13:99:3f:15:d6:28:10:f5:04:1f:b4:c7:fe:1a: 5e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A4:72:66:DD:42:75:32:26:F7:0E:55:54:BD:67:7C:19:CB:98:11 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.73.236.0/22 Signature Algorithm: sha256WithRSAEncryption 33:20:45:a2:dd:f0:4d:22:07:ed:fe:0c:08:62:b5:18:a6:9b: 98:7e:d9:77:83:35:48:b2:0d:42:1e:e5:64:e5:a9:ef:5e:66: b0:fd:ca:f2:45:8a:8d:b9:45:5c:51:ee:7e:a5:f7:3b:1d:3d: 8b:e4:8f:4d:e6:2d:ef:94:5f:9c:25:9d:e1:3c:fd:fc:75:2a: 86:f0:ea:26:6f:eb:5b:fd:39:b1:2b:e1:20:64:7a:59:00:fa: 9b:30:66:0d:be:c4:64:cf:81:bd:7b:2d:3f:e8:e2:96:53:9a: 69:fb:35:06:e4:c0:35:b3:a8:a3:03:26:f7:cf:25:08:a0:30: a4:0c:10:7e:50:cb:f1:7d:7e:23:b7:3e:77:0b:b5:53:25:b6: 90:db:60:cd:25:49:a6:9c:1b:a6:ef:ca:db:e9:07:4e:a5:d6: aa:7c:d8:c3:5a:9d:33:c4:61:12:ed:bd:97:85:92:24:28:7e: 3e:93:ba:0c:dc:0f:93:6f:27:c5:be:68:7b:90:b3:af:89:08: 8c:60:cf:7c:9a:22:c7:d3:d7:e0:93:7d:18:01:cd:94:43:b8: b1:a7:12:5b:c8:f5:11:55:01:b3:f4:ee:83:29:78:c7:d4:c2: 8a:b0:7a:d1:a8:c2:13:d5:e6:5e:f3:25:ed:0f:ac:cb:9a:b3: 5f:06:7d:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUxMDAzMDEyODE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGM2NS1hMGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnknhU0bEyiUmQU5N+MHmqKuhm9vvRfdjI/C2lMli22vSvEVspxv7HkJ8lH3T kIQ1KvK0EzmYkDqVgt3FNyRc8hm3BNEu9K9eU7frUPsvKHf2SxqC+i7GI8c6WT01 kbwk3ApV9OHeTL2qNUk/KdIYOYm8cP8V0FAzgPWXBKAs0JQMcuqsuTPkqoNUP01U ic75hNabVQ/NDyhlzKFMvN7FKJK0K2UG/5OexH2NFLW/3BFW8WXjhs8DTp2JjkS8 8fzp4i5B4Umn7+w4GSDAnJ5KBPXh4NghjZ8bFUpwKp29JE7+edEnZUzZw3BLhrPK /9Q+E5k/FdYoEPUEH7TH/hpewQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEikcmbd QnUyJvcOVVS9Z3wZy5gRMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyRDcvNUI5RjcxRDJFRDMwMTFFQ0JGMDdGMDEyQzRGOUFFMDIvQ0U1Rjc0RTJC RTU4MTFFRUE4QzAyRTJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ0nsMA0GCSqGSIb3DQEBCwUAA4IBAQAzIEWi3fBNIgft/gwIYrUY ppuYftl3gzVIsg1CHuVk5anvXmaw/cryRYqNuUVcUe5+pfc7HT2L5I9N5i3vlF+c JZ3hPP38dSqG8Oomb+tb/TmxK+EgZHpZAPqbMGYNvsRkz4G9ey0/6OKWU5pp+zUG 5MA1s6ijAyb3zyUIoDCkDBB+UMvxfX4jtz53C7VTJbaQ22DNJUmmnBum78rb6QdO pdaqfNjDWp0zxGES7b2XhZIkKH4+k7oM3A+TbyfFvmh7kLOviQiMYM98miLH09fg k30YAc2UQ7ixpxJbyPURVQGz9O6DKXjH1MKKsHrRqMIT1eZe8yXtD6zLmrNfBn0c -----END CERTIFICATE-----Generated at Mon Mar 2 12:35:07 2026 by rpki-client