$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa File: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (raw, json) Hash identifier: qt4s9HBAeJcBPk0Llq0F/Y+xml+HCsgruEcd0L0uDYo= Subject key identifier: 0F:C0:58:D6:30:51:A2:3F:7E:5E:1C:BD:E7:97:14:3F:80:7E:C0:61 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 0507 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:18:53 +0000 ROA not before: Sat 20 Dec 2025 23:20:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140883 IP address blocks: 103.145.114.0/24 maxlen: 24 103.145.115.0/24 maxlen: 24 2405:d1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Dec 20 23:20:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44acd-616b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:45:cc:7a:be:47:c9:f0:f0:02:78:89:af:fe: 28:bc:3e:e4:f0:c4:9a:43:85:0a:76:21:0b:69:be: 44:9f:5e:20:90:30:12:91:2d:cb:dd:e0:76:64:2c: 0c:91:57:41:77:c2:1b:89:ab:f7:7e:0f:aa:43:76: 21:0b:6b:53:fc:7b:8f:10:eb:af:b3:70:1f:a2:c4: 02:7c:5f:1d:04:f9:0b:ff:93:48:97:93:54:31:a5: 7d:82:f1:24:f7:8b:27:3b:78:c0:95:04:f3:15:cf: f3:65:57:4d:83:fe:e6:dd:7f:11:03:2a:95:31:e1: f5:da:b7:1b:4c:30:01:cd:66:59:3c:66:f6:f8:5a: 5d:c4:0d:78:62:59:76:fa:71:15:85:c7:5d:e4:2c: 64:a8:d3:83:06:21:4d:41:d5:0e:fc:1a:5f:70:35: 3a:fb:3a:62:82:91:39:78:d7:9e:60:8f:53:f7:3f: 2b:8b:ac:d3:1a:5f:d6:74:63:14:4a:89:60:ca:18: 27:4a:c6:ff:06:17:37:8c:20:5f:50:21:9d:7b:a1: 62:0a:07:46:2c:08:6e:8e:5a:c1:2d:fb:77:92:1b: 21:fe:e2:d9:78:d2:1c:9d:a8:f2:94:ba:3f:fb:f9: b1:27:14:ed:71:34:db:55:6c:14:b9:e2:3c:24:44: 62:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C0:58:D6:30:51:A2:3F:7E:5E:1C:BD:E7:97:14:3F:80:7E:C0:61 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/5C7731E64B7111EC8E9FCB48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.145.114.0/23 IPv6: 2405:d1c0::/32 Signature Algorithm: sha256WithRSAEncryption b1:ca:b5:af:7e:ba:9c:4e:43:da:3a:d1:74:57:cf:7b:3c:d5: 3b:95:94:71:62:7b:0d:3f:33:34:6d:a4:52:f2:e2:0f:de:64: 34:f4:d7:c1:45:9b:37:18:ac:de:ef:46:a1:52:5d:f1:e7:8d: 0d:40:eb:82:7c:9f:01:20:b0:a6:15:dc:f3:05:0a:b0:ed:6e: 40:c8:1a:c9:07:ca:90:25:37:32:ee:be:0c:b6:c9:65:bc:34: f6:0f:54:ab:24:2b:fb:9e:d2:38:46:04:b4:0c:68:02:bc:2b: 24:98:dd:1b:50:40:d3:5a:80:93:a1:2f:47:23:c0:01:d9:22: c3:7d:06:49:ee:76:e9:05:9f:4b:6a:4b:68:89:3e:71:ac:d3: 6d:85:bd:99:ab:b4:6e:b9:f0:ca:c1:33:43:6a:f5:dd:34:d8: 84:99:17:a6:50:f2:c5:46:91:07:6f:40:73:76:a0:f3:6a:8d: 8f:17:b8:11:fc:71:69:80:2e:22:12:27:8a:57:c8:aa:5c:93: bf:11:39:15:3f:dc:0b:63:49:5f:5c:b4:d9:95:62:6f:64:e8: 17:3a:bc:7a:e4:18:43:36:1a:20:08:cf:e9:b2:e2:7a:fc:5f: 6a:ad:b0:49:49:37:06:9e:5c:f0:3d:4f:1f:d5:76:53:5d:75: dc:9f:0b:cf -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMjIwMjMyMDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGFjZC02MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UXMer5HyfDwAniJr/4ovD7k8MSaQ4UKdiELab5En14gkDASkS3L3eB2ZCwM kVdBd8Ibiav3fg+qQ3YhC2tT/HuPEOuvs3AfosQCfF8dBPkL/5NIl5NUMaV9gvEk 94snO3jAlQTzFc/zZVdNg/7m3X8RAyqVMeH12rcbTDABzWZZPGb2+FpdxA14Yll2 +nEVhcdd5CxkqNODBiFNQdUO/BpfcDU6+zpigpE5eNeeYI9T9z8ri6zTGl/WdGMU SolgyhgnSsb/Bhc3jCBfUCGde6FiCgdGLAhujlrBLft3khsh/uLZeNIcnajylLo/ +/mxJxTtcTTbVWwUueI8JERi7QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFA/AWNYw UaI/fl4cveeXFD+AfsBhMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCNDEvMTZDMEE3MTY0QjZFMTFFQzgxREQ5QjNBQzRGOUFFMDIvNUM3NzMxRTY0 QjcxMTFFQzhFOUZDQjQ4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5FyMA0EAgACMAcDBQAkBdHAMA0GCSqGSIb3DQEBCwUAA4IBAQCx yrWvfrqcTkPaOtF0V897PNU7lZRxYnsNPzM0baRS8uIP3mQ09NfBRZs3GKze70ah Ul3x540NQOuCfJ8BILCmFdzzBQqw7W5AyBrJB8qQJTcy7r4MtsllvDT2D1SrJCv7 ntI4RgS0DGgCvCskmN0bUEDTWoCToS9HI8AB2SLDfQZJ7nbpBZ9LaktoiT5xrNNt hb2Zq7RuufDKwTNDavXdNNiEmRemUPLFRpEHb0BzdqDzao2PF7gR/HFpgC4iEieK V8iqXJO/ETkVP9wLY0lfXLTZlWJvZOgXOrx65BhDNhogCM/psuJ6/F9qrbBJSTcG nlzwPU8f1XZTXXXcnwvP -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:47 2026 by rpki-client