$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/BD37307CAAD011F0ACA9F95DC4F9AE02.roa File: BD37307CAAD011F0ACA9F95DC4F9AE02.roa (raw, json) Hash identifier: Pzx4cLp6LQnYJAZ7Og6n8jVJWupopojg1hWD2Hxu8W4= Subject key identifier: 79:9B:32:C3:41:A6:2A:35:A9:87:A5:CB:25:53:6D:5D:A8:F3:DC:4E Certificate issuer: /CN=A91C8DF1/serialNumber=C2C173D7624885BC0BD6FC193EFBCEE9543FA243 Certificate serial: 4B Authority key identifier: C2:C1:73:D7:62:48:85:BC:0B:D6:FC:19:3E:FB:CE:E9:54:3F:A2:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsFz12JIhbwL1vwZPvvO6VQ_okM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/BD37307CAAD011F0ACA9F95DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:13:00 +0000 ROA not before: Sun 19 Oct 2025 11:44:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136976 IP address blocks: 103.122.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/wsFz12JIhbwL1vwZPvvO6VQ_okM.crl rsync://rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/wsFz12JIhbwL1vwZPvvO6VQ_okM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsFz12JIhbwL1vwZPvvO6VQ_okM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DF1, serialNumber=C2C173D7624885BC0BD6FC193EFBCEE9543FA243 Validity Not Before: Oct 19 11:44:45 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d8ec-b285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8e:66:43:62:e7:90:c4:5a:17:12:4c:37:46: 61:c7:af:d5:f7:0e:92:45:48:0a:23:51:a2:49:a4: 8f:7d:e8:28:cd:5d:82:ed:15:2b:84:f0:51:8a:40: 1f:6f:63:ac:77:01:29:8f:83:13:2a:8e:62:7d:1d: f8:9c:eb:da:17:64:70:c8:3d:67:98:6f:a8:f5:06: 11:ed:06:9f:28:b0:3e:58:09:83:1c:fa:fa:e7:e2: 88:16:86:b3:21:b2:85:fb:55:3d:bb:4e:46:77:e0: 95:ab:6a:a3:d9:ff:e1:00:25:ba:14:d3:4e:07:b8: 82:1c:cd:9e:63:f6:ac:6e:97:94:9e:c1:a7:c4:29: 36:8d:ac:84:18:04:e7:eb:1c:59:21:5f:f5:09:6d: fe:3d:7a:54:36:bd:e9:fc:a2:6b:a6:23:5e:63:da: 97:3a:83:0d:c8:fd:5a:34:cb:b3:16:01:c1:ce:c3: 0d:cb:6f:53:da:cd:a7:a3:86:c0:63:3d:bf:97:dc: 81:60:42:b3:14:55:42:13:9f:6e:14:b4:75:1d:89: ac:2f:37:91:42:9c:6d:3d:a2:50:b2:cd:9e:94:e1: 14:d9:50:fb:2f:15:e9:e2:87:84:3b:07:01:bf:6c: 4e:9b:21:08:c1:53:39:92:f2:f2:7a:80:e3:b8:b9: a3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9B:32:C3:41:A6:2A:35:A9:87:A5:CB:25:53:6D:5D:A8:F3:DC:4E X509v3 Authority Key Identifier: keyid:C2:C1:73:D7:62:48:85:BC:0B:D6:FC:19:3E:FB:CE:E9:54:3F:A2:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/wsFz12JIhbwL1vwZPvvO6VQ_okM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsFz12JIhbwL1vwZPvvO6VQ_okM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DF1/E617AD92AACF11F0BB11FB5BC4F9AE02/BD37307CAAD011F0ACA9F95DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.103.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:36:1b:24:92:3d:fd:cd:fe:1f:aa:7e:a4:5f:eb:82:9f:1a: ff:86:d1:2f:10:bf:52:59:08:eb:17:da:cb:75:5a:a1:32:36: e5:75:eb:19:70:42:24:dc:98:e4:a1:98:dc:6d:54:25:80:7b: 4f:90:dc:d5:64:29:17:6b:9a:e0:54:e2:5a:15:40:bb:53:71: 06:c1:1b:e1:5d:3b:43:2b:be:60:ee:e5:33:4d:66:57:1f:af: 79:60:c3:77:f2:a4:a1:6f:20:85:05:27:8d:a2:02:23:04:aa: 22:84:e6:8c:58:dd:f3:9e:21:b2:6f:2c:b8:6d:76:e1:c9:74: 65:f9:6a:62:f6:c9:c4:a1:93:f6:77:98:b3:ff:0d:b1:42:57: f1:fe:ad:d6:a6:a4:30:98:ed:8b:42:1a:f9:59:38:4c:1d:35: 69:e1:25:b6:32:d3:6f:a7:0a:0a:39:d2:80:59:08:a9:47:74: 38:e0:33:d7:1c:34:8f:6e:5b:6b:c6:30:6b:2e:48:de:ef:40: e8:06:43:42:df:23:66:21:70:44:74:cd:28:87:ae:37:ed:79: 04:67:df:9f:4d:cf:d6:6e:df:fb:7f:fe:fc:64:f9:ef:98:d2: fa:a0:8b:08:5b:f1:e9:4f:7f:76:84:96:e0:f0:8f:ea:60:ca: 4b:89:d3:08 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OERGMTExMC8GA1UEBRMoQzJDMTczRDc2MjQ4ODVCQzBCRDZGQzE5M0VGQkNFRTk1 NDNGQTI0MzAeFw0yNTEwMTkxMTQ0NDVaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOGVjLWIyODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzjmZDYueQxFoXEkw3RmHHr9X3DpJFSAojUaJJpI996CjNXYLtFSuE8FGKQB9v Y6x3ASmPgxMqjmJ9Hfic69oXZHDIPWeYb6j1BhHtBp8osD5YCYMc+vrn4ogWhrMh soX7VT27TkZ34JWraqPZ/+EAJboU004HuIIczZ5j9qxul5SewafEKTaNrIQYBOfr HFkhX/UJbf49elQ2ven8omumI15j2pc6gw3I/Vo0y7MWAcHOww3Lb1PazaejhsBj Pb+X3IFgQrMUVUITn24UtHUdiawvN5FCnG09olCyzZ6U4RTZUPsvFenih4Q7BwG/ bE6bIQjBUzmS8vJ6gOO4uaN/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUeZsyw0Gm KjWph6XLJVNtXajz3E4wHwYDVR0jBBgwFoAUwsFz12JIhbwL1vwZPvvO6VQ/okMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4REYxL0U2MTdBRDkyQUFD RjExRjBCQjExRkI1QkM0RjlBRTAyL3dzRnoxMkpJaGJ3TDF2d1pQdnZPNlZRX29r TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd3NGejEySkloYndMMXZ3WlB2dk82VlFfb2tNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERGMS9FNjE3QUQ5MkFBQ0YxMUYwQkIxMUZCNUJDNEY5QUUwMi9CRDM3MzA3Q0FB RDAxMUYwQUNBOUY5NURDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnemcwDQYJKoZIhvcNAQELBQADggEBAGo2GySSPf3N/h+qfqRf64Kf Gv+G0S8Qv1JZCOsX2st1WqEyNuV16xlwQiTcmOShmNxtVCWAe0+Q3NVkKRdrmuBU 4loVQLtTcQbBG+FdO0MrvmDu5TNNZlcfr3lgw3fypKFvIIUFJ42iAiMEqiKE5oxY 3fOeIbJvLLhtduHJdGX5amL2ycShk/Z3mLP/DbFCV/H+rdampDCY7YtCGvlZOEwd NWnhJbYy02+nCgo50oBZCKlHdDjgM9ccNI9uW2vGMGsuSN7vQOgGQ0LfI2YhcER0 zSiHrjfteQRn359Nz9Zu3/t//vxk+e+Y0vqgiwhb8elPf3aEluDwj+pgykuJ0wg= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:42 2026 by rpki-client