$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa File: C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa (raw, json) Hash identifier: 0xacdRxIlt6XlMYC4ytgm5Wnpkb/XtvJrzfDYrQNkow= Subject key identifier: 97:55:5F:43:75:EA:E4:E9:CC:9B:C5:98:2B:11:A0:2E:72:79:79:0E Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11F2 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:17:01 +0000 ROA not before: Tue 02 Dec 2025 12:45:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 395886 IP address blocks: 103.140.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4594 (0x11f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Dec 2 12:45:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4829d-e9b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:33:55:02:79:c1:c3:dc:20:2a:cc:c3:75: 96:7a:06:1a:a2:25:2b:ce:e7:17:77:09:04:f5:b1: ca:27:a4:0a:4d:39:2a:3d:23:2a:02:ca:80:8f:d9: 71:d9:05:7e:29:99:6d:c4:3b:c5:86:3c:dc:10:b2: 18:9f:06:a1:2d:7e:8f:60:b0:f1:df:c8:d5:e2:80: b6:95:d7:9d:06:87:99:4b:20:4d:f5:7e:78:7b:2a: 53:42:0c:5a:d2:88:27:8d:88:63:f9:a3:a0:47:e1: b9:52:37:5d:11:3e:d4:08:c2:f4:b0:c1:0e:37:8b: 68:fd:e9:50:58:30:95:01:ae:f7:21:fa:f4:57:38: 8b:c4:09:9c:f5:e7:c8:b6:47:b6:82:0f:d3:44:92: cd:0f:22:06:59:59:f3:3d:ab:0b:20:5b:22:cc:ef: f4:eb:40:4d:0a:ea:f1:03:0a:0d:19:68:43:81:c0: 60:17:3f:64:de:cd:fb:26:ea:e8:37:c4:9e:4d:c3: 1d:08:0a:03:13:dd:05:65:4f:f9:d9:e7:15:a6:55: 8c:3f:61:a7:09:34:48:98:7e:97:10:9e:8f:76:c3: a9:c2:35:31:3f:05:0d:55:2b:82:4b:89:74:23:de: 0f:70:1a:91:92:4d:65:4c:5b:7d:b6:98:ec:f8:ab: 16:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:55:5F:43:75:EA:E4:E9:CC:9B:C5:98:2B:11:A0:2E:72:79:79:0E X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.140.9.0/24 Signature Algorithm: sha256WithRSAEncryption 79:d3:74:6f:c4:02:c2:9f:72:f8:f5:61:41:e3:5b:7d:a8:bb: 76:00:30:9e:15:b0:c1:23:b8:62:a7:cd:8b:1a:b1:ae:69:6b: 32:51:bb:ba:b2:08:48:f8:a8:e3:49:f8:07:c5:29:db:36:2d: ed:5f:7e:ba:d0:7b:03:e1:e3:d3:c7:81:16:ef:82:b9:88:44: dc:a5:1f:59:d0:87:31:51:38:99:a4:52:fc:50:0d:3d:c0:88: 0d:4e:f8:17:2d:ef:24:c5:02:d5:93:76:78:df:28:bc:bd:9d: fa:67:c8:68:42:ca:c9:5a:95:0e:fe:33:f1:f1:a8:4e:9a:ce: 6c:9f:12:f1:ee:4a:b6:94:29:b6:d4:5f:6d:a0:70:62:46:37: fe:59:63:f6:ed:9b:74:5c:5c:bb:10:01:2d:65:0d:40:ed:11: 37:74:4c:8c:2c:83:3f:ce:a0:db:66:96:45:32:04:89:4a:77: bd:d7:37:df:6c:db:b5:1c:aa:c4:e8:15:b4:4b:47:54:82:94: 25:fb:07:a2:fb:4a:e1:ff:f3:35:b3:d2:d8:0e:48:c0:73:bf: 86:ad:5e:61:c3:73:45:a0:59:5e:f4:f2:de:fa:8b:80:d8:d1: a4:15:66:35:b5:04:1c:29:e4:bc:dc:12:ae:1c:5e:81:10:f1: 06:91:c2:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUxMjAyMTI0NTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI5ZC1lOWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6wzVQJ5wcPcICrMw3WWegYaoiUrzucXdwkE9bHKJ6QKTTkqPSMqAsqAj9lx 2QV+KZltxDvFhjzcELIYnwahLX6PYLDx38jV4oC2ldedBoeZSyBN9X54eypTQgxa 0ognjYhj+aOgR+G5UjddET7UCML0sMEON4to/elQWDCVAa73Ifr0VziLxAmc9efI tke2gg/TRJLNDyIGWVnzPasLIFsizO/060BNCurxAwoNGWhDgcBgFz9k3s37Juro N8SeTcMdCAoDE90FZU/52ecVplWMP2GnCTRImH6XEJ6PdsOpwjUxPwUNVSuCS4l0 I94PcBqRkk1lTFt9tpjs+KsWNwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJdVX0N1 6uTpzJvFmCsRoC5yeXkOMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzNCRUFDMzhD RjdDMTFGMEIwRUI0NjQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4wJMA0GCSqGSIb3DQEBCwUAA4IBAQB503RvxALCn3L49WFB41t9 qLt2ADCeFbDBI7hip82LGrGuaWsyUbu6sghI+KjjSfgHxSnbNi3tX3660HsD4ePT x4EW74K5iETcpR9Z0IcxUTiZpFL8UA09wIgNTvgXLe8kxQLVk3Z43yi8vZ36Z8ho QsrJWpUO/jPx8ahOms5snxLx7kq2lCm21F9toHBiRjf+WWP27Zt0XFy7EAEtZQ1A 7RE3dEyMLIM/zqDbZpZFMgSJSne91zffbNu1HKrE6BW0S0dUgpQl+wei+0rh//M1 s9LYDkjAc7+GrV5hw3NFoFle9PLe+ouA2NGkFWY1tQQcKeS83BKuHF6BEPEGkcJV -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:32 2026 by rpki-client