$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa File: A3E3640816B711ECBD752D47C4F9AE02.roa (raw, json) Hash identifier: xmxOOOmRoSh+TiszmT8uvDU9UG3tb8C8zUPGk1dc3Yo= Subject key identifier: 2C:AE:BA:52:E6:76:F7:9C:12:2D:20:5A:5F:E9:6F:4D:8F:5B:1B:6D Certificate issuer: /CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Certificate serial: 059D Authority key identifier: 41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:02:20 +0000 ROA not before: Sat 26 Jul 2025 22:01:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63916 IP address blocks: 103.113.156.0/22 maxlen: 22 103.113.156.0/24 maxlen: 24 103.113.157.0/24 maxlen: 24 103.113.158.0/24 maxlen: 24 103.113.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D, serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Validity Not Before: Jul 26 22:01:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48d3c-d66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:49:ea:84:ca:bc:67:fc:08:7d:0b:a8:b6:a0: eb:7c:63:9f:02:5a:05:82:fb:74:98:4f:85:a7:58: e7:21:4b:d3:3a:00:19:13:4b:14:7e:ce:99:83:99: 64:cd:02:72:1c:da:ae:6f:bc:6a:9b:ce:dd:fc:e8: fc:9c:df:a8:cb:01:f1:8a:76:7f:af:35:d6:da:58: 6d:b0:58:31:23:a3:7c:37:21:c1:df:6a:c9:63:a2: 80:d3:ab:48:2b:06:9a:71:75:e4:48:2e:34:ca:bf: 09:25:e1:fb:70:ab:b2:87:9e:4c:d4:01:24:4c:8e: 47:31:92:9b:1e:2f:a1:e8:6f:ee:14:d4:57:bc:13: 74:4d:7a:e3:bf:e8:d9:5a:4d:dc:b2:56:48:60:4a: b9:32:f9:73:db:be:9e:df:6a:73:ce:03:e8:d1:ba: 8b:98:61:e1:5d:1e:50:33:76:b1:bc:c7:b8:7a:54: 1d:3d:18:f3:7f:50:ee:ce:c3:78:7d:5a:cd:b5:ff: ae:86:14:74:53:28:52:ff:d3:e9:ff:d4:51:d9:c9: 6e:00:9f:9f:a9:f1:85:86:f0:4d:0f:8f:a3:3e:dd: 60:5f:53:15:25:6b:35:a1:4c:c2:6b:4d:d1:e7:e3: 8f:17:6e:ab:ef:73:82:55:01:2b:5b:c2:9b:c7:ae: 9e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AE:BA:52:E6:76:F7:9C:12:2D:20:5A:5F:E9:6F:4D:8F:5B:1B:6D X509v3 Authority Key Identifier: keyid:41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3E3640816B711ECBD752D47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.113.156.0/22 Signature Algorithm: sha256WithRSAEncryption d3:52:ee:79:f7:12:5e:3c:fc:a7:32:8e:c9:2a:85:c1:66:47: ee:1e:21:3d:27:6c:18:d8:12:f5:0b:e8:b9:65:62:3c:76:3c: e4:d9:fd:fe:26:e3:73:27:b9:f7:29:48:fe:b1:00:0f:6c:c1: d4:00:66:1a:e6:78:71:5a:cb:c1:8a:b6:b6:64:48:04:54:1c: 08:1b:cc:1f:90:f2:cb:d4:7d:0b:3a:9e:0a:c3:e1:47:09:3f: 41:a8:2c:3f:1a:23:68:a1:70:27:7e:8c:af:17:27:42:83:4e: 4f:c1:9f:ff:bd:8b:22:f8:fb:61:de:e7:0f:c6:3e:e0:a2:a5: 15:58:47:2f:65:e9:7e:3b:c8:bf:80:9e:1c:1d:c4:5a:bc:45: 7f:c2:e4:1c:15:f2:b7:f5:90:4d:ff:07:5d:e5:88:25:f3:00: 25:5e:07:e5:47:b4:09:9b:be:c5:8f:20:a0:ec:0d:4d:b5:04: 64:3a:38:c8:3c:c0:29:9e:18:3b:64:1c:b4:0d:62:7f:f6:22: fb:af:33:f0:e5:38:26:1d:8f:93:47:9c:a9:28:01:07:40:33: 1f:d7:82:67:2d:00:b9:67:1e:e4:fc:da:c8:67:5b:d5:2f:9d: 58:7f:e3:6f:74:1e:31:7b:11:a5:39:6b:29:9e:18:3e:5a:ea: 04:72:95:d7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKDQxRDI2OEM1MTEzRUYzRUQ3QjE3M0I3ODBFMDE3RUQz RkU4NTU1RjcwHhcNMjUwNzI2MjIwMTQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQzYy1kNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEnqhMq8Z/wIfQuotqDrfGOfAloFgvt0mE+Fp1jnIUvTOgAZE0sUfs6Zg5lk zQJyHNqub7xqm87d/Oj8nN+oywHxinZ/rzXW2lhtsFgxI6N8NyHB32rJY6KA06tI KwaacXXkSC40yr8JJeH7cKuyh55M1AEkTI5HMZKbHi+h6G/uFNRXvBN0TXrjv+jZ Wk3cslZIYEq5Mvlz276e32pzzgPo0bqLmGHhXR5QM3axvMe4elQdPRjzf1DuzsN4 fVrNtf+uhhR0UyhS/9Pp/9RR2cluAJ+fqfGFhvBND4+jPt1gX1MVJWs1oUzCa03R 5+OPF26r73OCVQErW8Kbx66eQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCyuulLm dvecEi0gWl/pb02PWxttMB8GA1UdIwQYMBaAFEHSaMURPvPtexc7eA4BftP+hVX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9RZEpveFJFLTgtMTdGenQ0RGdGLTBfNkZW ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FkSm94UkUtOC0xN0Z6dDREZ0YtMF82RlZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MUQvMzgxQThGMkExQ0MyMTFFQjgyQjU3MTc4QzRGOUFFMDIvQTNFMzY0MDgx NkI3MTFFQ0JENzUyRDQ3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3GcMA0GCSqGSIb3DQEBCwUAA4IBAQDTUu559xJePPynMo7JKoXB ZkfuHiE9J2wY2BL1C+i5ZWI8djzk2f3+JuNzJ7n3KUj+sQAPbMHUAGYa5nhxWsvB ira2ZEgEVBwIG8wfkPLL1H0LOp4Kw+FHCT9BqCw/GiNooXAnfoyvFydCg05PwZ// vYsi+Pth3ucPxj7goqUVWEcvZel+O8i/gJ4cHcRavEV/wuQcFfK39ZBN/wdd5Ygl 8wAlXgflR7QJm77FjyCg7A1NtQRkOjjIPMApnhg7ZBy0DWJ/9iL7rzPw5TgmHY+T R5ypKAEHQDMf14JnLQC5Zx7k/NrIZ1vVL51Yf+NvdB4xexGlOWspnhg+WuoEcpXX -----END CERTIFICATE-----Generated at Mon Mar 2 14:26:06 2026 by rpki-client