$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa File: C3AD861C82C211EBBB08B280C4F9AE02.roa (raw, json) Hash identifier: vazK+z30CpSr830kRcPsvjFKdfSriewkWyt+Vy/hHRc= Subject key identifier: 9A:A5:F9:CC:CA:CB:B5:79:30:D6:DF:D1:BD:12:DC:45:29:EA:5D:BB Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 0712 Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:47:55 +0000 ROA not before: Sun 02 Nov 2025 22:41:58 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137549 IP address blocks: 103.143.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1810 (0x712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3, serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Nov 2 22:41:58 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46dbb-8a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ef:cc:b7:16:72:f2:b9:28:d9:fc:59:af:2d: 17:81:7a:8c:7f:f2:8d:0c:bf:ce:38:5c:9d:df:d0: 68:b2:f7:89:4f:4b:39:f7:92:89:bd:70:d7:f2:41: e8:00:24:1a:fa:31:f8:65:06:18:dd:3a:90:39:bc: aa:f7:86:45:02:ca:60:e0:69:66:98:0e:66:37:62: 47:ae:02:54:ef:4c:a2:dd:bd:24:28:1d:2b:7a:74: 79:6c:bd:7d:7a:5c:33:f6:eb:a8:24:5a:d2:56:b4: 9c:b4:64:bf:1d:5c:1b:44:f6:4b:49:8f:15:a8:a0: 44:6f:29:9c:bf:6a:04:c5:1c:e1:12:52:70:ef:f5: 04:6b:6d:52:2c:34:b8:a3:e8:8a:ec:a9:26:d2:2a: 37:e1:5b:88:58:c4:02:d1:40:8a:e0:c5:4f:32:07: 15:3e:74:78:91:14:df:c7:b7:25:58:4e:7c:b4:8b: 6d:72:ff:a0:2d:f9:14:3d:60:d0:65:44:9c:fe:50: 62:0b:0d:60:2b:a0:c7:64:26:18:df:6c:e6:49:f3: 46:f1:a7:07:f7:f2:24:c9:26:bb:1b:c9:cb:9a:d2: 23:2f:60:ea:5e:a4:d0:f9:7b:c2:12:82:a4:91:38: 59:fd:40:4f:31:c8:a2:01:4e:d2:75:64:e5:3e:e9: 36:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A5:F9:CC:CA:CB:B5:79:30:D6:DF:D1:BD:12:DC:45:29:EA:5D:BB X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 Signature Algorithm: sha256WithRSAEncryption 53:7f:fd:f3:64:53:ae:7c:3b:7e:ce:8e:f8:b9:ec:24:be:61: ad:a6:fb:0d:2f:c9:7b:99:30:fe:31:3e:7a:9d:99:9a:c5:f3: 5f:1f:bb:5a:f4:13:82:d9:76:6e:ef:db:fc:84:c0:1c:0c:01: b1:cd:67:bf:d8:a0:14:c2:27:41:ea:6f:8d:a6:bf:0a:5a:79: 98:ac:b6:5d:6a:48:86:58:93:7d:f8:59:63:e5:0b:6c:d8:55: 50:be:0d:48:e7:70:10:a6:49:e1:6e:0e:87:4c:43:b6:03:dd: 1d:32:48:6b:ec:13:61:48:18:e9:40:15:26:27:8b:ef:26:f8: bb:41:60:93:85:57:a8:2d:e4:33:67:69:28:a6:f2:37:84:02: e5:f7:2f:b1:f5:6a:a1:d6:51:23:5a:58:c7:09:16:7f:14:2d: ba:82:c9:a6:af:36:79:5f:97:e8:3d:6c:60:f9:d3:98:a7:68: bd:08:c3:19:ac:0d:9c:31:1e:e7:7d:4f:f8:7e:cb:37:dd:3c: 82:51:65:77:9e:7f:00:2c:5b:67:ed:a2:7d:8a:c5:df:43:b1: f1:9e:a0:0c:a0:42:34:94:41:a4:81:fe:a0:04:da:86:45:32: a9:26:29:ad:cb:25:6e:25:93:01:cc:7f:8e:fa:2c:35:a6:3c: 5b:d6:0a:f0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjUxMTAyMjI0MTU4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmRiYi04YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6e/MtxZy8rko2fxZry0XgXqMf/KNDL/OOFyd39BosveJT0s595KJvXDX8kHo ACQa+jH4ZQYY3TqQObyq94ZFAspg4GlmmA5mN2JHrgJU70yi3b0kKB0renR5bL19 elwz9uuoJFrSVrSctGS/HVwbRPZLSY8VqKBEbymcv2oExRzhElJw7/UEa21SLDS4 o+iK7Kkm0io34VuIWMQC0UCK4MVPMgcVPnR4kRTfx7clWE58tIttcv+gLfkUPWDQ ZUSc/lBiCw1gK6DHZCYY32zmSfNG8acH9/IkySa7G8nLmtIjL2DqXqTQ+XvCEoKk kThZ/UBPMciiAU7SdWTlPuk2SQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJql+czK y7V5MNbf0b0S3EUp6l27MB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvQzNBRDg2MUM4 MkMyMTFFQkJCMDhCMjgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4+5MA0GCSqGSIb3DQEBCwUAA4IBAQBTf/3zZFOufDt+zo74uewk vmGtpvsNL8l7mTD+MT56nZmaxfNfH7ta9BOC2XZu79v8hMAcDAGxzWe/2KAUwidB 6m+Npr8KWnmYrLZdakiGWJN9+Flj5Qts2FVQvg1I53AQpknhbg6HTEO2A90dMkhr 7BNhSBjpQBUmJ4vvJvi7QWCThVeoLeQzZ2kopvI3hALl9y+x9Wqh1lEjWljHCRZ/ FC26gsmmrzZ5X5foPWxg+dOYp2i9CMMZrA2cMR7nfU/4fss33TyCUWV3nn8ALFtn 7aJ9isXfQ7HxnqAMoEI0lEGkgf6gBNqGRTKpJimtyyVuJZMBzH+O+iw1pjxb1grw -----END CERTIFICATE-----Generated at Mon Mar 2 07:42:09 2026 by rpki-client