$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa File: CD57B28C814211EA94DD3E2DC4F9AE02.roa (raw, json) Hash identifier: 434SKTTjwOXz4gdHaKbOEAJjn8UxSxw4vUoNH4RsWqA= Subject key identifier: C1:18:3F:A5:87:A8:78:F3:B8:00:BC:46:41:27:BA:E1:2F:FD:91:FE Certificate issuer: /CN=A9147B3A/serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Certificate serial: 0A5B Authority key identifier: 31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:48:39 +0000 ROA not before: Wed 20 Aug 2025 20:00:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132270 IP address blocks: 103.71.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B3A, serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Validity Not Before: Aug 20 20:00:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a42796-a66a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:e8:e6:27:87:25:ad:a7:d8:01:1f:4d:16: 13:80:df:98:51:f0:87:d3:ca:22:51:21:ba:84:d4: d3:c1:92:6d:62:c8:65:93:52:92:7c:02:a3:f3:7f: 9d:95:10:cf:70:7e:9d:3b:b2:28:5d:25:ba:5d:ad: a0:c4:1e:f3:61:67:71:06:a4:ac:a6:11:dd:e9:0b: c0:ec:7c:7d:49:b5:b5:d2:cb:4e:e5:aa:90:08:44: eb:eb:3a:f2:31:dc:60:2a:ad:a2:d7:f8:37:05:a7: a7:e2:85:30:b8:c9:4d:8b:f5:48:74:90:a0:4a:b7: c0:d6:ad:96:7d:85:06:6c:eb:4b:0d:9f:ac:09:1a: 22:88:aa:81:89:71:26:fa:61:9a:00:d0:5d:40:34: b7:54:b8:f6:63:05:77:e6:21:a5:91:88:1b:22:96: 37:3e:ca:f9:f5:4f:a6:c2:54:7d:93:b4:2a:94:55: 7e:3a:4e:e7:cd:53:33:fc:b9:89:53:67:9a:9c:68: 4e:9f:4a:76:aa:42:7b:65:11:ed:3d:c5:4f:9f:af: c2:4d:96:e6:8b:d6:37:db:b8:96:78:e8:c6:8d:fa: 3e:0b:4c:20:70:9b:79:52:fb:a1:67:61:6b:65:92: d0:ca:81:05:79:74:9f:06:3c:5a:b1:86:c4:31:27: c8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:18:3F:A5:87:A8:78:F3:B8:00:BC:46:41:27:BA:E1:2F:FD:91:FE X509v3 Authority Key Identifier: keyid:31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.71.242.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:ca:39:fe:96:c3:3d:88:22:5c:5f:fd:d7:21:fc:1e:ea:bb: 25:4c:d6:92:81:1a:28:4a:26:1f:40:da:c3:64:08:4c:90:88: d3:e4:d4:de:ad:0a:0b:52:4a:a4:24:5a:60:0e:4f:2c:5c:7b: e9:56:a6:4b:e3:bb:7d:39:07:21:ef:6f:a0:f6:76:02:22:cc: bd:95:1a:23:3e:91:3e:8b:1b:20:4e:e5:f1:2b:91:fc:75:b0: 83:58:8e:ab:f9:ea:84:f0:22:d0:91:ab:84:83:10:62:bb:27: b6:ad:da:48:dc:c2:0d:19:af:90:b2:fa:89:31:b4:70:77:7d: 18:c0:f9:22:9d:16:1c:cd:be:61:d2:d1:15:48:ec:58:2b:72: 35:a5:ef:27:a3:e5:e4:6c:2a:07:27:8c:40:ce:ca:cf:36:fd: c2:bb:37:c6:31:94:6b:54:97:6d:f0:72:88:cb:7f:58:64:f2: 1c:11:0a:01:7a:cb:29:86:44:4b:2b:96:6f:c0:3c:92:50:13: fd:bc:29:f8:e0:f1:c4:bf:f0:ed:e0:bc:c1:29:6a:79:f9:9c: b4:5e:80:f9:ac:21:da:e1:2a:11:17:63:93:75:88:f3:b7:2d: 86:39:36:ea:4c:f3:15:65:b6:44:6a:0a:6c:c3:fd:89:9f:f4: a3:17:0b:cc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCM0ExMTAvBgNVBAUTKDMxMURGRDlERTQwNUUwNzFEODMxMjFGQjkwMjVGQjRG MjAyNDAzMkMwHhcNMjUwODIwMjAwMDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjc5Ni1hNjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/bo5ieHJa2n2AEfTRYTgN+YUfCH08oiUSG6hNTTwZJtYshlk1KSfAKj83+d lRDPcH6dO7IoXSW6Xa2gxB7zYWdxBqSsphHd6QvA7Hx9SbW10stO5aqQCETr6zry MdxgKq2i1/g3Baen4oUwuMlNi/VIdJCgSrfA1q2WfYUGbOtLDZ+sCRoiiKqBiXEm +mGaANBdQDS3VLj2YwV35iGlkYgbIpY3Psr59U+mwlR9k7QqlFV+Ok7nzVMz/LmJ U2eanGhOn0p2qkJ7ZRHtPcVPn6/CTZbmi9Y327iWeOjGjfo+C0wgcJt5UvuhZ2Fr ZZLQyoEFeXSfBjxasYbEMSfITwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMEYP6WH qHjzuAC8RkEnuuEv/ZH+MB8GA1UdIwQYMBaAFDEd/Z3kBeBx2DEh+5Al+08gJAMs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0IzQS81NTFCRjJCQzgx NDAxMUVBQkIwRDcyMjhDNEY5QUUwMi9NUjM5bmVRRjRISFlNU0g3a0NYN1R5QWtB eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SMzluZVFGNEhIWU1TSDdrQ1g3VHlBa0F5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdCM0EvNTUxQkYyQkM4MTQwMTFFQUJCMEQ3MjI4QzRGOUFFMDIvQ0Q1N0IyOEM4 MTQyMTFFQTk0REQzRTJEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ0fyMA0GCSqGSIb3DQEBCwUAA4IBAQCayjn+lsM9iCJcX/3XIfwe 6rslTNaSgRooSiYfQNrDZAhMkIjT5NTerQoLUkqkJFpgDk8sXHvpVqZL47t9OQch 72+g9nYCIsy9lRojPpE+ixsgTuXxK5H8dbCDWI6r+eqE8CLQkauEgxBiuye2rdpI 3MINGa+QsvqJMbRwd30YwPkinRYczb5h0tEVSOxYK3I1pe8no+XkbCoHJ4xAzsrP Nv3CuzfGMZRrVJdt8HKIy39YZPIcEQoBessphkRLK5ZvwDySUBP9vCn44PHEv/Dt 4LzBKWp5+Zy0XoD5rCHa4SoRF2OTdYjzty2GOTbqTPMVZbZEagpsw/2Jn/SjFwvM -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:45 2026 by rpki-client