$ rpki-client -vvf rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa File: B0B70006B19211EC9EAAD44EC4F9AE02.roa (raw, json) Hash identifier: pM/wYVZoWKaTJJScYphZbwJ5Nkt7/U8DgGnMWTJmOkU= Subject key identifier: A0:41:54:78:BA:4C:57:21:52:D8:26:9D:2E:05:64:A8:12:14:09:41 Certificate issuer: /CN=A91642A0/serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Certificate serial: 0D64 Authority key identifier: 02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:18:19 +0000 ROA not before: Mon 28 Apr 2025 18:57:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138612 IP address blocks: 103.134.124.0/24 maxlen: 24 103.134.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91642A0, serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Validity Not Before: Apr 28 18:57:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42e8b-8652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:55:63:3e:15:b2:03:8b:ce:3c:8c:46:57:2b: 03:ed:41:5d:fd:76:72:a7:d1:ac:62:3a:44:12:ed: 25:31:b6:65:a2:e1:28:0e:5c:a4:4d:00:22:b5:c2: ce:26:e0:2e:66:99:20:03:e2:48:be:43:f3:5d:7f: ba:6e:ff:a4:b1:41:77:e9:55:51:e8:c0:25:fb:e7: 7a:a2:7b:26:48:db:c7:73:ee:33:ee:25:e1:38:31: 01:95:0e:24:26:55:ae:0f:72:e6:b7:53:3b:89:fa: 5e:d2:50:86:df:b1:2b:07:67:89:03:dc:20:7e:f1: 28:dd:89:3d:7e:9e:00:a1:47:c6:3f:e7:1c:14:1d: 9d:20:a2:d0:02:a9:4c:32:3f:23:f6:0a:52:ef:3c: 25:53:71:7d:c4:09:83:43:1d:5d:1b:00:4d:05:f6: 41:0b:52:4f:45:7c:f5:d9:56:67:26:dd:21:05:be: 8a:ad:16:26:e8:86:1e:0c:a3:ab:bb:9e:79:f1:57: 09:d1:5c:01:68:43:24:ea:04:51:84:2d:4c:32:46: f2:b1:e5:2c:f0:dd:25:83:7b:20:4b:6d:66:c3:ac: 60:96:c5:90:c4:14:21:ec:1e:6a:08:ac:20:64:a9: 69:e0:71:1e:f0:27:bb:98:08:47:7f:2b:a3:6a:1f: 2b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:41:54:78:BA:4C:57:21:52:D8:26:9D:2E:05:64:A8:12:14:09:41 X509v3 Authority Key Identifier: keyid:02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/B0B70006B19211EC9EAAD44EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.124.0/23 Signature Algorithm: sha256WithRSAEncryption 28:c2:1c:4c:3c:44:e2:c2:18:34:8c:52:3e:5e:e3:d6:c3:20: 86:45:b7:35:24:6d:87:2a:ed:f3:a4:c3:2d:53:a3:1a:d6:8c: 00:d6:cf:73:83:4a:c9:09:59:cb:89:6f:58:86:a2:4c:ea:54: 9a:c5:ad:a2:54:d1:84:5e:22:e7:d6:bd:4a:9c:26:2c:e1:b3: e2:35:1b:e9:72:37:eb:7d:03:59:4b:26:05:50:60:e6:28:52: 18:14:a9:d1:0d:af:9b:a4:65:d4:8b:99:8c:23:8e:30:99:75: 48:6a:e3:fc:39:cd:21:41:80:56:11:7a:ba:6d:e3:9c:3c:37: eb:d4:8f:ab:e5:77:81:10:1c:92:aa:18:fc:c1:8d:e9:a0:eb: 50:73:d6:04:e9:b4:81:24:cb:e5:13:4e:c5:a6:43:f6:e9:31: 5d:9f:1d:1b:3a:5d:db:38:2e:62:36:1b:d1:31:45:d2:fb:72: c0:2a:04:ce:28:f2:ea:f6:43:f6:26:55:a5:b1:b6:12:81:11: 43:34:e6:e2:8f:43:ec:03:bd:e1:1c:ab:01:b7:f8:16:1e:7e: 05:ef:a6:1b:3a:fa:f2:85:09:f1:69:44:55:be:ed:b8:02:0c: 99:52:47:5f:b2:14:da:5d:05:5f:3b:fc:91:af:73:f4:2c:d3: 7f:58:91:53 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyQTAxMTAvBgNVBAUTKDAyQUU4NEY2MTFCN0U4MkZEN0Q2RkY4RjQ1MkQ4NzI1 RUY0ODkwODgwHhcNMjUwNDI4MTg1NzQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmU4Yi04NjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41VjPhWyA4vOPIxGVysD7UFd/XZyp9GsYjpEEu0lMbZlouEoDlykTQAitcLO JuAuZpkgA+JIvkPzXX+6bv+ksUF36VVR6MAl++d6onsmSNvHc+4z7iXhODEBlQ4k JlWuD3Lmt1M7ifpe0lCG37ErB2eJA9wgfvEo3Yk9fp4AoUfGP+ccFB2dIKLQAqlM Mj8j9gpS7zwlU3F9xAmDQx1dGwBNBfZBC1JPRXz12VZnJt0hBb6KrRYm6IYeDKOr u5558VcJ0VwBaEMk6gRRhC1MMkbyseUs8N0lg3sgS21mw6xglsWQxBQh7B5qCKwg ZKlp4HEe8Ce7mAhHfyujah8rTwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKBBVHi6 TFchUtgmnS4FZKgSFAlBMB8GA1UdIwQYMBaAFAKuhPYRt+gv19b/j0UthyXvSJCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDJBMC9DQTdEMTE2MkY2 NzYxMUU5OTBCQUEyMjJDNEY5QUUwMi9BcTZFOWhHMzZDX1gxdi1QUlMySEplOUlr SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxNkU5aEczNkNfWDF2LVBSUzJISmU5SWtJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQyQTAvQ0E3RDExNjJGNjc2MTFFOTkwQkFBMjIyQzRGOUFFMDIvQjBCNzAwMDZC MTkyMTFFQzlFQUFENDRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4Z8MA0GCSqGSIb3DQEBCwUAA4IBAQAowhxMPETiwhg0jFI+XuPW wyCGRbc1JG2HKu3zpMMtU6Ma1owA1s9zg0rJCVnLiW9YhqJM6lSaxa2iVNGEXiLn 1r1KnCYs4bPiNRvpcjfrfQNZSyYFUGDmKFIYFKnRDa+bpGXUi5mMI44wmXVIauP8 Oc0hQYBWEXq6beOcPDfr1I+r5XeBEBySqhj8wY3poOtQc9YE6bSBJMvlE07FpkP2 6TFdnx0bOl3bOC5iNhvRMUXS+3LAKgTOKPLq9kP2JlWlsbYSgRFDNObij0PsA73h HKsBt/gWHn4F76YbOvryhQnxaURVvu24AgyZUkdfshTaXQVfO/yRr3P0LNN/WJFT -----END CERTIFICATE-----Generated at Mon Mar 2 15:30:42 2026 by rpki-client