$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/4A3C802012A711F099020A73C4F9AE02.roa File: 4A3C802012A711F099020A73C4F9AE02.roa (raw, json) Hash identifier: iEuV0+5znqF8f5T5Ps6WIUoKRiKa2jw2dHDVVLuYtWU= Subject key identifier: 4C:72:65:63:1C:CA:F7:BE:7B:AA:7E:12:6C:E9:8F:98:75:EA:17:F1 Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: B1 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/4A3C802012A711F099020A73C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:27:30 +0000 ROA not before: Sun 01 Mar 2026 09:27:30 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140074 IP address blocks: 103.148.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Mar 1 09:27:30 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a40682-1d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:c7:57:dc:9c:28:09:d8:ec:cb:20:6d:90: ec:83:7e:43:13:42:2c:b9:5b:b1:88:4c:87:06:d9: 7a:2f:be:e5:69:21:68:25:cb:84:62:52:ae:e6:ee: 74:7d:73:6a:71:1e:d9:6e:bf:59:ed:cf:f6:72:f9: 11:82:ff:af:45:e8:75:22:9c:67:4e:c4:d6:52:a7: 9b:e7:7d:ce:b6:41:9a:d4:96:d9:e9:f3:5d:0a:de: 4e:a3:ea:86:6f:3e:ca:2e:b7:74:cd:49:c1:3f:1a: 5d:0c:37:6d:8a:de:c3:f8:57:08:95:d6:a3:13:12: a2:44:fb:12:5a:b7:05:5d:d4:6f:3f:b4:00:4a:55: be:af:55:a7:74:85:15:ca:7e:8b:5a:fd:c3:1a:db: 25:a9:45:f8:63:d8:6a:50:d5:85:f9:3c:f9:59:05: df:8a:91:6a:79:69:27:e4:ef:c5:43:57:35:bc:3d: 2f:7f:08:60:fd:dd:ea:97:d4:49:fc:43:b5:51:0a: 47:ab:00:20:1c:28:84:cd:db:b5:91:ed:6a:e5:4e: 7c:bf:51:0b:ae:a4:40:3e:34:a0:d1:14:1c:8f:0e: 2d:b3:87:3e:87:30:ed:e9:89:bb:d6:26:de:f9:b5: c7:dd:59:21:d1:56:b4:9d:f9:3d:53:a2:41:8c:0d: d0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:72:65:63:1C:CA:F7:BE:7B:AA:7E:12:6C:E9:8F:98:75:EA:17:F1 X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/4A3C802012A711F099020A73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.34.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:5a:f5:e6:21:c7:ab:11:e6:ea:a8:2b:d3:4e:37:18:8e:49: ff:1e:f2:46:db:08:d5:32:5e:15:a0:6e:b4:21:a8:d4:a6:1f: 73:7d:9b:40:10:b4:b4:b5:20:81:90:be:c6:a6:d8:85:7c:62: 8a:b1:dd:62:ea:ae:d8:e1:c1:c3:27:1b:ab:54:5f:cf:8d:68: b5:ae:d0:4b:45:87:b6:9d:8d:e4:4d:d8:65:6a:16:83:fa:bf: 58:d4:bc:d7:74:49:d0:63:3a:e0:01:f3:9d:af:97:1b:74:33: 14:f6:4f:f5:c2:b3:fe:e2:06:8f:4a:33:fe:ac:5e:e9:74:ea: eb:81:06:b1:ec:08:29:d8:4b:33:2e:29:4a:44:83:99:83:de: f1:c1:86:37:1b:89:7c:db:20:45:66:f4:6d:e8:c7:7e:0f:8e: de:09:0d:ba:e0:e5:08:1d:cf:a0:80:17:94:6f:a1:5e:e2:0a: b4:39:f4:34:d6:24:ed:82:65:b8:6e:d6:34:66:d7:44:37:32: 4a:8a:a3:d6:d6:c2:07:73:39:4f:63:97:ff:69:9a:bb:b7:63: 9f:76:04:58:2f:7b:d4:0d:6a:2b:ae:8f:8e:14:47:f6:d9:30: 5f:08:28:8e:ca:33:31:d1:17:8f:0d:02:f8:9b:b8:14:ce:a0: e0:60:20:a3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGM0UxMTAvBgNVBAUTKDlDRTkxN0RDM0FFMEM1QkEyRTc3Q0I3NzVBM0FEOTlD Njg1QzQwNkIwHhcNMjYwMzAxMDkyNzMwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDY4Mi0xZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5v/HV9ycKAnY7MsgbZDsg35DE0IsuVuxiEyHBtl6L77laSFoJcuEYlKu5u50 fXNqcR7Zbr9Z7c/2cvkRgv+vReh1IpxnTsTWUqeb533OtkGa1JbZ6fNdCt5Oo+qG bz7KLrd0zUnBPxpdDDdtit7D+FcIldajExKiRPsSWrcFXdRvP7QASlW+r1WndIUV yn6LWv3DGtslqUX4Y9hqUNWF+Tz5WQXfipFqeWkn5O/FQ1c1vD0vfwhg/d3ql9RJ /EO1UQpHqwAgHCiEzdu1ke1q5U58v1ELrqRAPjSg0RQcjw4ts4c+hzDt6Ym71ibe +bXH3Vkh0Va0nfk9U6JBjA3QSQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFExyZWMc yve+e6p+Emzpj5h16hfxMB8GA1UdIwQYMBaAFJzpF9w64MW6LnfLd1o62ZxoXEBr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUYzRS8zMzlFREU2ODEw RTQxMUYwQjc1QjgxNjZDNEY5QUUwMi9uT2tYM0RyZ3hib3VkOHQzV2pyWm5HaGNR R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFGM0UvMzM5RURFNjgxMEU0MTFGMEI3NUI4MTY2QzRGOUFFMDIvNEEzQzgwMjAx MkE3MTFGMDk5MDIwQTczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5QiMA0GCSqGSIb3DQEBCwUAA4IBAQA8WvXmIcerEebqqCvTTjcY jkn/HvJG2wjVMl4VoG60IajUph9zfZtAELS0tSCBkL7GptiFfGKKsd1i6q7Y4cHD JxurVF/PjWi1rtBLRYe2nY3kTdhlahaD+r9Y1LzXdEnQYzrgAfOdr5cbdDMU9k/1 wrP+4gaPSjP+rF7pdOrrgQax7Agp2EszLilKRIOZg97xwYY3G4l82yBFZvRt6Md+ D47eCQ264OUIHc+ggBeUb6Fe4gq0OfQ01iTtgmW4btY0ZtdENzJKiqPW1sIHczlP Y5f/aZq7t2OfdgRYL3vUDWorro+OFEf22TBfCCiOyjMx0RePDQL4m7gUzqDgYCCj -----END CERTIFICATE-----Generated at Sun Mar 1 23:00:06 2026 by rpki-client