$ rpki-client -vvf rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/EDD5097ECB7411F0A2C24D4FC4F9AE02.roa File: EDD5097ECB7411F0A2C24D4FC4F9AE02.roa (raw, json) Hash identifier: VI4BpFGbspGtTWlGcHxr2/5wodjUlVSpAm9KmOWTHck= Subject key identifier: E1:8B:60:5D:8B:9B:A3:3A:17:38:D8:9F:EB:B0:F6:76:EC:EE:1B:96 Certificate issuer: /CN=A91547E4/serialNumber=D935ECF799131BEC2438DA9DE82B6858963C705C Certificate serial: 37 Authority key identifier: D9:35:EC:F7:99:13:1B:EC:24:38:DA:9D:E8:2B:68:58:96:3C:70:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TXs95kTG-wkONqd6CtoWJY8cFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/EDD5097ECB7411F0A2C24D4FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:01 +0000 ROA not before: Thu 27 Nov 2025 09:54:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131460 IP address blocks: 103.4.156.0/24 maxlen: 24 103.4.157.0/24 maxlen: 24 103.4.158.0/24 maxlen: 24 103.4.159.0/24 maxlen: 24 123.242.200.0/21 maxlen: 21 123.242.200.0/24 maxlen: 24 123.242.201.0/24 maxlen: 24 123.242.202.0/24 maxlen: 24 123.242.203.0/24 maxlen: 24 123.242.204.0/24 maxlen: 24 123.242.205.0/24 maxlen: 24 123.242.206.0/24 maxlen: 24 123.242.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/2TXs95kTG-wkONqd6CtoWJY8cFw.crl rsync://rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/2TXs95kTG-wkONqd6CtoWJY8cFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TXs95kTG-wkONqd6CtoWJY8cFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91547E4, serialNumber=D935ECF799131BEC2438DA9DE82B6858963C705C Validity Not Before: Nov 27 09:54:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58bb0-bb06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:08:2a:47:46:06:c3:f2:e9:98:68:07:0a:78: 68:59:02:94:7e:09:3a:0b:db:fa:55:0d:98:7c:50: 2c:23:69:57:23:a7:6a:62:b9:e1:33:25:c3:fa:3d: 65:7f:b6:05:59:df:7b:be:3a:ea:19:4c:3c:bf:c7: ca:54:c6:3e:9f:5e:2f:af:3e:9e:22:df:8b:ba:fc: eb:18:40:c2:63:55:bc:ad:27:04:d9:f3:0c:a0:33: d7:98:69:91:7d:6b:f6:3a:d5:70:99:74:e9:0a:5c: d1:81:2a:9c:f9:93:d9:1d:5b:cd:0a:2a:3a:9d:61: 94:78:67:6b:b0:c9:96:4b:ad:97:6e:74:fc:af:63: b9:93:1a:7a:a2:fc:6b:03:6d:aa:f0:c4:23:60:fd: 45:c9:4d:a0:57:37:ec:80:e0:d9:ee:b8:8a:d0:ce: c3:a2:ab:ca:f2:b1:21:13:22:4e:d4:86:fb:31:6e: cc:d5:23:91:c2:10:28:15:eb:64:36:49:c6:69:cd: 14:2c:f7:38:78:c8:af:bf:a8:b5:e4:f3:1c:45:9e: 60:2a:da:81:2d:02:19:91:c4:e5:a8:8a:db:35:77: bb:18:81:a3:b1:de:6e:a3:10:76:a7:77:9e:e2:a6: 9e:0c:63:e0:1d:d0:9f:af:a8:e3:c8:33:02:49:e8: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8B:60:5D:8B:9B:A3:3A:17:38:D8:9F:EB:B0:F6:76:EC:EE:1B:96 X509v3 Authority Key Identifier: keyid:D9:35:EC:F7:99:13:1B:EC:24:38:DA:9D:E8:2B:68:58:96:3C:70:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/2TXs95kTG-wkONqd6CtoWJY8cFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2TXs95kTG-wkONqd6CtoWJY8cFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91547E4/0232E548CB7111F0A5ADED22C4F9AE02/EDD5097ECB7411F0A2C24D4FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.4.156.0/22 123.242.200.0/21 Signature Algorithm: sha256WithRSAEncryption 66:8f:85:a3:7c:4b:b7:ad:3a:3e:f6:1e:1c:2e:41:7f:4f:c0: 90:36:5b:07:d6:c3:fb:22:2e:56:8c:e3:8c:b7:1f:1f:0b:47: 76:be:db:59:30:cc:0f:27:a2:c7:26:1b:c5:ca:03:54:b7:ff: ad:cd:7f:38:19:48:42:5e:e0:51:90:99:4a:b0:c4:9b:9a:fa: 39:cd:09:6d:a4:59:74:20:d0:e5:1b:6d:de:ae:ea:66:81:7f: c1:84:ea:78:42:90:53:d1:f7:ba:16:2b:36:65:56:d0:94:db: d2:81:62:8b:38:02:08:0b:b3:fc:3c:1b:3a:22:b1:3e:7d:bc: 92:77:66:d6:f6:48:3b:ad:9c:03:8b:5e:1b:e9:e2:79:b2:c4: 8f:3c:92:ce:dd:50:be:79:1a:f9:a5:32:a1:03:f4:08:e6:c7: 7b:46:78:96:9c:bf:d9:2a:cb:5f:73:63:82:c5:e9:27:13:31: fb:fe:74:f9:b6:dd:ad:f2:a2:30:a3:17:b9:bd:8d:a3:99:00: 4f:bb:f4:0a:a0:d8:cd:e8:a0:68:42:b0:3f:be:53:0f:32:af: a5:c0:62:bc:c3:0d:ae:ea:71:77:59:a9:30:b4:67:db:41:a0: 49:25:10:d1:e4:e5:b8:f0:87:9b:4c:0c:2a:ed:01:2a:3e:83: 0f:0c:7e:a8 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDdFNDExMC8GA1UEBRMoRDkzNUVDRjc5OTEzMUJFQzI0MzhEQTlERTgyQjY4NTg5 NjNDNzA1QzAeFw0yNTExMjcwOTU0MjdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4YmIwLWJiMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyCCpHRgbD8umYaAcKeGhZApR+CToL2/pVDZh8UCwjaVcjp2piueEzJcP6PWV/ tgVZ33u+OuoZTDy/x8pUxj6fXi+vPp4i34u6/OsYQMJjVbytJwTZ8wygM9eYaZF9 a/Y61XCZdOkKXNGBKpz5k9kdW80KKjqdYZR4Z2uwyZZLrZdudPyvY7mTGnqi/GsD barwxCNg/UXJTaBXN+yA4NnuuIrQzsOiq8rysSETIk7UhvsxbszVI5HCECgV62Q2 ScZpzRQs9zh4yK+/qLXk8xxFnmAq2oEtAhmRxOWoits1d7sYgaOx3m6jEHand57i pp4MY+Ad0J+vqOPIMwJJ6Fj7AgMBAAGjggJmMIICYjAdBgNVHQ4EFgQU4YtgXYub ozoXONif67D2duzuG5YwHwYDVR0jBBgwFoAU2TXs95kTG+wkONqd6CtoWJY8cFww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0N0U0LzAyMzJFNTQ4Q0I3 MTExRjBBNUFERUQyMkM0RjlBRTAyLzJUWHM5NWtURy13a09OcWQ2Q3RvV0pZOGNG dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlRYczk1a1RHLXdrT05xZDZDdG9XSlk4Y0Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDdFNC8wMjMyRTU0OENCNzExMUYwQTVBREVEMjJDNEY5QUUwMi9FREQ1MDk3RUNC NzQxMUYwQTJDMjRENEZDNEY5QUUwMi5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAJnBJwDBAN78sgwDQYJKoZIhvcNAQELBQADggEBAGaPhaN8S7etOj72 HhwuQX9PwJA2WwfWw/siLlaM44y3Hx8LR3a+21kwzA8noscmG8XKA1S3/63NfzgZ SEJe4FGQmUqwxJua+jnNCW2kWXQg0OUbbd6u6maBf8GE6nhCkFPR97oWKzZlVtCU 29KBYos4AggLs/w8GzoisT59vJJ3Ztb2SDutnAOLXhvp4nmyxI88ks7dUL55Gvml MqED9Ajmx3tGeJacv9kqy19zY4LF6ScTMfv+dPm23a3yojCjF7m9jaOZAE+79Aqg 2M3ooGhCsD++Uw8yr6XAYrzDDa7qcXdZqTC0Z9tBoEklENHk5bjwh5tMDCrtASo+ gw8Mfqg= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:08 2026 by rpki-client