$ rpki-client -vvf rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa File: 18D9E13C5CE611EC80EC7E76C4F9AE02.roa (raw, json) Hash identifier: 2wt6vNqEvH4JW05NYadR9a18IX9V4JqIFvFkbKuppv4= Subject key identifier: DE:FC:A4:98:CD:A4:B1:24:A2:55:9E:57:69:9B:4F:4D:A9:18:C8:66 Certificate issuer: /CN=A91775D8/serialNumber=C439BCD74D64052BB203531C46049AD403588FC7 Certificate serial: 072A Authority key identifier: C4:39:BC:D7:4D:64:05:2B:B2:03:53:1C:46:04:9A:D4:03:58:8F:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:42:10 +0000 ROA not before: Sun 06 Apr 2025 22:03:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138452 IP address blocks: 103.161.152.0/24 maxlen: 24 103.161.152.0/25 maxlen: 25 103.161.152.128/25 maxlen: 25 103.161.153.0/24 maxlen: 24 103.161.153.0/25 maxlen: 25 103.161.153.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.crl rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91775D8, serialNumber=C439BCD74D64052BB203531C46049AD403588FC7 Validity Not Before: Apr 6 22:03:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fbe2-ab26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f3:f2:df:6f:3a:fd:5a:e5:ed:6e:77:0b:bd: 11:eb:e3:4c:36:5c:fc:f5:ca:f7:f7:a5:a2:11:35: 2a:d1:db:19:98:fb:75:52:a2:0a:6f:74:9c:9a:02: 15:44:37:82:bc:1e:18:e9:21:81:75:a3:d2:d3:b1: e7:e5:88:4b:8c:4d:30:a3:46:0a:f6:98:0c:f6:ae: b7:cc:0c:6b:8b:19:21:5c:a0:c1:2d:e9:90:00:f8: 69:53:76:cc:37:97:b6:56:84:6d:cc:71:73:3c:93: 07:86:6f:b6:76:72:e3:d1:35:b1:eb:3e:23:b3:b8: 09:94:38:b1:ee:c3:14:48:41:31:b2:f9:41:dd:a2: be:00:c1:4e:2d:dc:d9:c5:e0:fb:6d:c1:f2:a3:00: 61:8c:27:b4:b4:24:84:5b:11:c7:39:3a:c7:01:c8: 71:8a:c1:d9:36:1a:09:3f:9a:2a:d0:95:f2:74:c2: 87:49:09:74:7c:b4:1f:31:9c:1c:22:67:7c:35:c5: d5:fe:19:fe:75:fc:39:8b:ce:b7:5a:97:bf:40:d4: a4:16:16:81:d2:4c:53:1a:4f:61:ec:f1:94:26:3a: 0f:55:d7:e1:24:24:37:93:7c:e9:c2:78:17:6e:2a: 67:44:91:48:f0:94:98:4d:59:41:90:18:fc:c5:34: 97:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FC:A4:98:CD:A4:B1:24:A2:55:9E:57:69:9B:4F:4D:A9:18:C8:66 X509v3 Authority Key Identifier: keyid:C4:39:BC:D7:4D:64:05:2B:B2:03:53:1C:46:04:9A:D4:03:58:8F:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.161.152.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:5e:33:cb:8a:71:30:e5:8a:34:f2:d4:f2:71:a4:39:f3:15: d6:0d:3e:76:80:c0:8d:fb:0f:31:0d:43:fc:3b:ff:1c:84:36: 78:dd:6c:18:95:a1:29:fd:77:cb:6c:c9:96:32:b7:f4:75:0f: c6:b8:34:17:0d:56:37:83:22:69:3e:f2:f9:03:e0:6f:21:21: b6:4c:3f:ba:cc:da:d2:85:0f:6a:d1:25:82:eb:71:e0:90:4f: 0f:5d:af:94:83:d6:56:d1:89:37:aa:3a:2e:5a:62:d8:cc:2f: 7c:89:9b:bd:7d:30:7a:b3:67:d5:f0:23:77:18:63:50:3f:87: e9:a6:f3:bb:85:e2:ea:21:fa:5c:ee:57:2a:df:45:ea:07:4c: 94:c6:3d:4b:20:f5:fb:e2:8b:a6:48:f7:d5:13:ec:4d:61:ad: 15:29:32:e3:db:25:6a:b8:e3:43:9d:9b:50:1a:a0:8a:0e:32: 81:84:33:20:f3:be:f1:d6:c1:3e:21:69:ba:e8:e0:2d:2f:c6: d4:7f:ae:73:09:f2:17:84:d6:7c:fe:8c:76:7d:ff:ec:74:40: d2:4b:63:3f:e3:55:5b:9f:da:fe:03:d5:32:db:fa:8d:5d:f1: 96:e2:ff:9e:ef:27:ef:4f:b9:4c:c8:f9:94:81:6d:ea:f0:67: db:1a:d7:2d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc1RDgxMTAvBgNVBAUTKEM0MzlCQ0Q3NEQ2NDA1MkJCMjAzNTMxQzQ2MDQ5QUQ0 MDM1ODhGQzcwHhcNMjUwNDA2MjIwMzE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmJlMi1hYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fPy3286/Vrl7W53C70R6+NMNlz89cr396WiETUq0dsZmPt1UqIKb3ScmgIV RDeCvB4Y6SGBdaPS07Hn5YhLjE0wo0YK9pgM9q63zAxrixkhXKDBLemQAPhpU3bM N5e2VoRtzHFzPJMHhm+2dnLj0TWx6z4js7gJlDix7sMUSEExsvlB3aK+AMFOLdzZ xeD7bcHyowBhjCe0tCSEWxHHOTrHAchxisHZNhoJP5oq0JXydMKHSQl0fLQfMZwc Imd8NcXV/hn+dfw5i863Wpe/QNSkFhaB0kxTGk9h7PGUJjoPVdfhJCQ3k3zpwngX bipnRJFI8JSYTVlBkBj8xTSXUwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN78pJjN pLEkolWeV2mbT02pGMhmMB8GA1UdIwQYMBaAFMQ5vNdNZAUrsgNTHEYEmtQDWI/H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzVEOC81MUM5RjZBRTcw NUYxMUVCOTk3QkJCMTZDNEY5QUUwMi94RG04MTAxa0JTdXlBMU1jUmdTYTFBTllq OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEbTgxMDFrQlN1eUExTWNSZ1NhMUFOWWo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc1RDgvNTFDOUY2QUU3MDVGMTFFQjk5N0JCQjE2QzRGOUFFMDIvMThEOUUxM0M1 Q0U2MTFFQzgwRUM3RTc2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6GYMA0GCSqGSIb3DQEBCwUAA4IBAQCOXjPLinEw5Yo08tTycaQ5 8xXWDT52gMCN+w8xDUP8O/8chDZ43WwYlaEp/XfLbMmWMrf0dQ/GuDQXDVY3gyJp PvL5A+BvISG2TD+6zNrShQ9q0SWC63HgkE8PXa+Ug9ZW0Yk3qjouWmLYzC98iZu9 fTB6s2fV8CN3GGNQP4fppvO7heLqIfpc7lcq30XqB0yUxj1LIPX74oumSPfVE+xN Ya0VKTLj2yVquONDnZtQGqCKDjKBhDMg877x1sE+IWm66OAtL8bUf65zCfIXhNZ8 /ox2ff/sdEDSS2M/41Vbn9r+A9Uy2/qNXfGW4v+e7yfvT7lMyPmUgW3q8GfbGtct -----END CERTIFICATE-----Generated at Mon Mar 2 18:07:37 2026 by rpki-client