$ rpki-client -vvf rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa File: 436398BA3B7011EAA14F566EC4F9AE02.roa (raw, json) Hash identifier: 9OFSK2ChXxMiDwCW+T5F/rViLCQZW9lND/if0koTJTw= Subject key identifier: 83:BA:62:65:FE:E4:CE:03:84:25:83:D3:CA:4B:DD:A0:E5:13:AA:D0 Certificate issuer: /CN=A91555EA/serialNumber=978DAE2C10A72ED04F94128FFC5E8CB7D102EACA Certificate serial: 0BD8 Authority key identifier: 97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:57:40 +0000 ROA not before: Wed 06 Aug 2025 19:29:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63967 IP address blocks: 103.9.185.0/24 maxlen: 24 103.9.187.0/24 maxlen: 24 103.244.162.0/24 maxlen: 24 117.104.186.0/24 maxlen: 24 117.104.187.0/24 maxlen: 24 2404:b780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.crl rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3032 (0xbd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91555EA, serialNumber=978DAE2C10A72ED04F94128FFC5E8CB7D102EACA Validity Not Before: Aug 6 19:29:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a445d4-437a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5b:19:41:af:46:b6:aa:97:2c:14:03:e2:23: d0:48:ba:2c:0a:41:6f:c7:a5:ea:a9:24:63:8e:cf: e6:7e:eb:3b:3e:95:dc:52:c9:ea:e5:e2:33:d2:56: a3:a9:75:82:3e:3f:7d:94:f4:41:67:ab:c9:2c:76: 35:89:f9:43:79:3b:e1:b1:37:13:3b:a6:55:eb:0f: 2f:45:4d:74:06:c3:ca:63:97:44:ca:97:9b:b5:42: 78:22:23:2d:c0:ee:ac:a1:e5:1a:76:0c:63:6a:6e: cb:8b:c1:1e:18:08:0e:1b:e8:2e:ff:fa:6b:eb:b0: 97:fa:d6:b6:8c:5d:61:4b:50:a3:ee:ba:74:70:3b: 85:f4:6a:45:84:9e:2d:58:99:ac:fd:aa:4f:fe:7a: f8:fc:fc:2e:00:67:12:db:06:a2:81:01:9e:da:2d: f3:7a:62:65:a7:6a:dc:27:2f:86:cb:9c:96:f6:26: 09:f4:6a:b4:fe:08:a7:63:af:18:f7:98:51:80:28: 9a:46:4f:f1:4d:8a:65:d4:3d:44:4d:0b:7d:98:83: c9:e3:ff:a9:60:51:94:cd:f3:d1:db:ea:12:19:2a: aa:7e:ff:8d:72:ec:0f:2c:d8:18:3e:cc:45:87:c4: 13:36:cf:38:de:7a:d6:e9:03:88:0a:b5:f3:d9:28: 92:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BA:62:65:FE:E4:CE:03:84:25:83:D3:CA:4B:DD:A0:E5:13:AA:D0 X509v3 Authority Key Identifier: keyid:97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/436398BA3B7011EAA14F566EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.9.185.0/24 103.9.187.0/24 103.244.162.0/24 117.104.186.0/23 IPv6: 2404:b780::/32 Signature Algorithm: sha256WithRSAEncryption ba:0a:b2:62:65:72:56:a1:7e:a6:a3:20:06:03:7e:2c:68:3e: a0:52:db:ad:d6:7b:68:5f:c0:f5:32:18:17:ad:6c:6a:a4:fb: 44:4c:e1:a7:19:42:94:92:19:8b:6c:74:4a:1d:14:dc:33:f1: 05:bb:3c:63:92:f3:b2:e7:af:80:a7:d9:49:e8:41:2c:34:78: a0:32:09:b4:83:c9:e4:28:76:01:f7:01:dd:30:b6:7f:b7:bd: c1:24:af:ee:36:37:7e:66:89:ed:7d:48:1d:4c:35:6a:44:20: da:79:72:77:5b:87:8b:64:a1:a7:04:09:81:40:46:5f:53:f1: ae:61:82:7e:10:85:ab:0d:72:db:06:37:d0:ff:4e:38:a2:82: 14:da:2d:ae:30:fe:0e:88:91:6c:b4:fa:6e:f4:39:11:81:15: d6:06:de:fb:59:a3:0d:ad:86:b0:66:94:02:5a:89:aa:4e:6b: b9:e0:38:65:36:a7:ed:70:d9:05:1c:3e:b7:78:46:3a:73:09: e7:0c:71:c2:b5:27:8b:10:18:46:3c:ee:7d:5a:ec:1e:95:ce: 69:c0:f9:66:76:4c:8e:08:dd:6b:31:e1:67:69:f9:79:c7:fc: ad:cc:99:64:aa:a8:cb:5d:98:6d:0b:00:0a:98:a0:7a:d1:59: 23:32:e7:94 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICC9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1RUExMTAvBgNVBAUTKDk3OERBRTJDMTBBNzJFRDA0Rjk0MTI4RkZDNUU4Q0I3 RDEwMkVBQ0EwHhcNMjUwODA2MTkyOTU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDVkNC00MzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVsZQa9GtqqXLBQD4iPQSLosCkFvx6XqqSRjjs/mfus7PpXcUsnq5eIz0laj qXWCPj99lPRBZ6vJLHY1iflDeTvhsTcTO6ZV6w8vRU10BsPKY5dEypebtUJ4IiMt wO6soeUadgxjam7Li8EeGAgOG+gu//pr67CX+ta2jF1hS1Cj7rp0cDuF9GpFhJ4t WJms/apP/nr4/PwuAGcS2waigQGe2i3zemJlp2rcJy+Gy5yW9iYJ9Gq0/ginY68Y 95hRgCiaRk/xTYpl1D1ETQt9mIPJ4/+pYFGUzfPR2+oSGSqqfv+NcuwPLNgYPsxF h8QTNs843nrW6QOICrXz2SiSnwIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFIO6YmX+ 5M4DhCWD08pL3aDlE6rQMB8GA1UdIwQYMBaAFJeNriwQpy7QT5QSj/xejLfRAurK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTVFQS83QzYwQjlGNjNC NkUxMUVBQUU1RjE2NkJDNEY5QUUwMi9sNDJ1TEJDbkx0QlBsQktQX0Y2TXQ5RUM2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w0MnVMQkNuTHRCUGxCS1BfRjZNdDlFQzZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU1RUEvN0M2MEI5RjYzQjZFMTFFQUFFNUYxNjZCQzRGOUFFMDIvNDM2Mzk4QkEz QjcwMTFFQUExNEY1NjZFQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQAZwm5AwQAZwm7AwQAZ/SiAwQBdWi6MA0EAgACMAcDBQAkBLeAMA0G CSqGSIb3DQEBCwUAA4IBAQC6CrJiZXJWoX6moyAGA34saD6gUtut1ntoX8D1MhgX rWxqpPtETOGnGUKUkhmLbHRKHRTcM/EFuzxjkvOy56+Ap9lJ6EEsNHigMgm0g8nk KHYB9wHdMLZ/t73BJK/uNjd+ZontfUgdTDVqRCDaeXJ3W4eLZKGnBAmBQEZfU/Gu YYJ+EIWrDXLbBjfQ/044ooIU2i2uMP4OiJFstPpu9DkRgRXWBt77WaMNrYawZpQC WomqTmu54DhlNqftcNkFHD63eEY6cwnnDHHCtSeLEBhGPO59Wuwelc5pwPlmdkyO CN1rMeFnafl5x/ytzJlkqqjLXZhtCwAKmKB60VkjMueU -----END CERTIFICATE-----Generated at Mon Mar 2 15:30:30 2026 by rpki-client