$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa File: C145485EAE9A11E9B17AC77EC4F9AE02.roa (raw, json) Hash identifier: XHrlt6xoD1A14UELLtFlgRu6lNHev3zfVPKKrggxdO4= Subject key identifier: 1A:E4:99:47:3F:49:B1:0D:AE:88:01:97:C7:DB:53:79:73:EA:46:39 Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Certificate serial: 0EA9 Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:33:23 +0000 ROA not before: Wed 06 Aug 2025 18:27:41 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137932 IP address blocks: 103.117.128.0/24 maxlen: 24 103.117.129.0/24 maxlen: 24 103.117.130.0/24 maxlen: 24 103.117.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3753 (0xea9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA7B2, serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Validity Not Before: Aug 6 18:27:41 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a45c43-8e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ba:3e:ec:34:c0:44:21:ad:56:5b:b0:fe:67: 52:0d:2a:13:f4:e6:72:77:66:0c:a9:e2:8a:f9:37: 7b:d0:be:60:d9:e0:b7:04:ff:d2:d9:1a:97:fa:de: 36:fe:26:f4:f7:44:51:ad:a5:59:95:89:fb:40:b6: 16:ad:28:49:86:df:3e:ed:44:57:81:a1:b6:fe:f9: 25:e4:28:16:eb:36:b1:63:16:44:6d:6f:5f:43:db: dd:69:50:12:18:1b:8d:20:af:fe:3d:6b:a6:e7:60: cb:07:70:9b:ac:0a:f2:4b:e1:93:16:74:54:30:85: 46:c9:fb:d3:88:4c:14:24:98:2f:4d:39:20:86:50: f2:d0:15:07:c5:5f:d9:77:1d:5a:93:ee:e5:28:b7: ab:72:15:25:ca:47:dc:a7:9b:b4:f4:df:1a:10:1a: c9:a3:d5:ea:fb:13:02:8d:55:e8:6f:ef:c4:40:29: 40:5e:fb:86:9b:9b:f8:1f:4f:f1:e3:d0:b8:78:b4: f5:1d:ab:6c:2c:51:dd:1e:8a:ae:de:16:a1:f9:95: e8:8e:e5:f6:70:cd:89:86:81:7b:b0:45:d7:76:af: c1:c1:4e:9a:3c:d3:73:13:7a:72:03:e4:b3:5b:e7: 67:71:0c:d3:ac:da:8c:65:33:e7:8d:98:76:8b:3c: 7c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E4:99:47:3F:49:B1:0D:AE:88:01:97:C7:DB:53:79:73:EA:46:39 X509v3 Authority Key Identifier: keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/C145485EAE9A11E9B17AC77EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.128.0/22 Signature Algorithm: sha256WithRSAEncryption a1:cd:88:88:59:43:05:be:a2:5b:7b:33:16:d8:61:ac:b8:1e: 88:31:d2:e4:f7:9f:11:a0:c9:90:51:5c:81:5f:5c:26:8c:9c: 28:86:32:2e:4e:a6:b7:28:80:d4:6f:b9:b8:9f:f1:84:0c:e5: d9:d2:2c:83:4a:46:cc:68:e4:d3:1b:91:4d:7c:d8:23:24:cb: 4c:1e:e7:e9:02:4e:ae:10:c7:4d:16:29:86:97:73:ea:7b:74: ea:e9:6c:c9:a0:89:7b:09:a9:73:ed:c5:6e:ac:e4:9d:cc:bc: 65:8b:d3:5a:37:27:77:c5:34:dc:95:9d:7d:21:fc:7f:5d:62: 59:b1:c8:f5:2c:d5:c1:10:20:c4:de:52:85:2a:6d:f6:c7:60: 10:c8:ac:b4:24:21:9c:c7:8c:cc:bf:82:0d:b7:7d:13:05:07: cf:1e:68:7d:f1:78:8c:b8:eb:d8:38:5f:a5:f5:af:e3:41:70: 19:f4:3d:24:ee:ca:89:a9:57:f1:d7:ae:27:49:d4:1a:86:6b: cb:b9:b9:b9:99:e0:b2:ed:6d:1c:d1:df:0c:8b:fa:45:54:2b: 85:51:ee:2b:4a:37:6e:ac:0f:3c:c9:85:16:b6:8c:cb:23:ea: 50:1c:51:4f:a2:ee:c3:5e:fa:20:fc:d0:ac:59:30:97:9a:79: 47:a8:e9:05 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3QjIxMTAvBgNVBAUTKDExNTYyMDVFQzczODBBMDBGMTBGMzQxMDExNEQwNDAz NTdGMDBGRjEwHhcNMjUwODA2MTgyNzQxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWM0My04ZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmro+7DTARCGtVluw/mdSDSoT9OZyd2YMqeKK+Td70L5g2eC3BP/S2RqX+t42 /ib090RRraVZlYn7QLYWrShJht8+7URXgaG2/vkl5CgW6zaxYxZEbW9fQ9vdaVAS GBuNIK/+PWum52DLB3CbrAryS+GTFnRUMIVGyfvTiEwUJJgvTTkghlDy0BUHxV/Z dx1ak+7lKLerchUlykfcp5u09N8aEBrJo9Xq+xMCjVXob+/EQClAXvuGm5v4H0/x 49C4eLT1HatsLFHdHoqu3hah+ZXojuX2cM2JhoF7sEXXdq/BwU6aPNNzE3pyA+Sz W+dncQzTrNqMZTPnjZh2izx8IQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBrkmUc/ SbENrogBl8fbU3lz6kY5MB8GA1UdIwQYMBaAFBFWIF7HOAoA8Q80EBFNBANX8A/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTdCMi8zRUUzMjM1QUFF OTkxMUU5QUM1MEUxN0JDNEY5QUUwMi9FVllnWHNjNENnRHhEelFRRVUwRUExZndE X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VWWWdYc2M0Q2dEeER6UVFFVTBFQTFmd0RfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3QjIvM0VFMzIzNUFBRTk5MTFFOUFDNTBFMTdCQzRGOUFFMDIvQzE0NTQ4NUVB RTlBMTFFOUIxN0FDNzdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3WAMA0GCSqGSIb3DQEBCwUAA4IBAQChzYiIWUMFvqJbezMW2GGs uB6IMdLk958RoMmQUVyBX1wmjJwohjIuTqa3KIDUb7m4n/GEDOXZ0iyDSkbMaOTT G5FNfNgjJMtMHufpAk6uEMdNFimGl3Pqe3Tq6WzJoIl7Calz7cVurOSdzLxli9Na Nyd3xTTclZ19Ifx/XWJZscj1LNXBECDE3lKFKm32x2AQyKy0JCGcx4zMv4INt30T BQfPHmh98XiMuOvYOF+l9a/jQXAZ9D0k7sqJqVfx164nSdQahmvLubm5meCy7W0c 0d8Mi/pFVCuFUe4rSjdurA88yYUWtozLI+pQHFFPou7DXvog/NCsWTCXmnlHqOkF -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:22 2026 by rpki-client