$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/337DA192C3FC11EF8C3B0B5DC4F9AE02.roa File: 337DA192C3FC11EF8C3B0B5DC4F9AE02.roa (raw, json) Hash identifier: gDwp6KKgBGoLeRcHe+lBeS3zF2+f120cEyNPP+dhw54= Subject key identifier: 96:1E:C2:14:8C:3C:79:1F:ED:D2:2A:35:79:AF:4F:06:D7:EC:EA:A7 Certificate issuer: /CN=A91F8A41/serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Certificate serial: 07AD Authority key identifier: CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/337DA192C3FC11EF8C3B0B5DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:56:19 +0000 ROA not before: Sat 10 May 2025 22:22:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131467 IP address blocks: 103.4.188.0/22 maxlen: 22 103.4.188.0/24 maxlen: 24 103.4.189.0/24 maxlen: 24 103.4.190.0/24 maxlen: 24 103.4.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A41, serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Validity Not Before: May 10 22:22:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45393-f16c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fc:72:f2:5d:68:3d:69:b2:2b:b2:23:e2:fd: 8c:e0:e5:3a:5f:94:81:ae:e5:28:11:b1:81:69:65: 11:d2:fa:d0:32:f2:98:da:8a:39:28:5c:65:7e:68: cc:3d:b5:44:d0:9e:c6:dc:02:d1:65:22:17:13:01: 31:d2:20:cf:42:a3:97:3b:7c:c9:4f:a8:7a:29:b8: 8c:6c:f5:36:14:15:73:15:16:7e:c7:a8:5a:9c:f3: a8:da:cd:1d:ce:df:28:19:40:50:7b:80:33:75:68: 91:5c:ed:ed:b8:94:88:c1:15:4a:70:da:41:67:a2: 84:a4:7e:a6:ef:4f:d6:7b:9d:91:54:80:d0:cc:b2: 24:fb:96:13:65:f9:22:c9:f9:e2:e8:70:59:7e:23: 67:b2:1b:67:2c:54:63:52:6f:32:18:04:21:6a:f1: ab:7b:b3:ee:83:81:f0:8d:dc:af:e6:3c:b8:6a:c8: 1c:8e:9c:a5:77:27:ab:9c:82:3f:45:35:bd:86:1f: 42:e3:19:58:9c:41:69:1c:b0:2d:eb:ec:85:28:d8: 84:9f:f2:65:d6:b6:da:63:b7:20:3a:e4:55:f6:ec: 2d:d0:6b:a5:89:83:5d:91:7e:0d:18:ab:b5:c8:f5: 65:73:51:12:cd:45:d3:2b:00:0d:97:ff:ba:32:33: dd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:1E:C2:14:8C:3C:79:1F:ED:D2:2A:35:79:AF:4F:06:D7:EC:EA:A7 X509v3 Authority Key Identifier: keyid:CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/337DA192C3FC11EF8C3B0B5DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.4.188.0/22 Signature Algorithm: sha256WithRSAEncryption 56:b3:8d:4a:11:df:40:a6:99:37:c1:f1:d7:0b:16:a2:db:13: 45:20:01:36:c6:0e:7a:8e:70:64:fc:f5:43:91:a0:d9:1f:f3: df:f4:9a:32:30:78:9d:4c:fc:3a:ec:97:65:e0:0f:20:da:d4: 61:e1:1e:48:0c:8f:03:e4:61:58:4d:7a:9e:d5:4a:f2:fe:55: 56:79:6b:0a:8e:82:7c:f7:ad:85:b9:e8:7e:57:78:c6:18:87: 2e:96:b2:44:b0:c4:e5:c1:04:09:74:2a:d6:51:6c:59:88:08: 7c:82:eb:c0:36:1d:38:42:37:9e:eb:ae:65:4b:8a:b8:6a:a8: 42:3b:d2:9e:0a:f8:eb:a6:9d:0d:63:fa:aa:2a:62:61:b2:00: 93:a8:8c:d0:9a:a3:d3:57:9e:99:7a:a3:73:bd:24:b9:0d:51: 23:ce:3e:af:2a:a4:c5:f7:18:c8:94:98:11:56:fc:92:67:ca: eb:f0:80:90:8d:30:4c:43:44:ee:76:e3:74:60:3b:82:3f:6e: e9:91:91:d9:87:b1:cf:09:eb:70:8f:df:bc:3d:87:3c:ec:33: 34:db:cf:e3:d7:8d:c4:94:7c:c8:0f:bf:f6:76:e1:0e:72:d8: 6b:2d:a2:aa:5b:c4:a0:6c:d1:31:1e:3b:f9:70:df:6b:ec:70: 99:54:e6:ed -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDExMTAvBgNVBAUTKENERkVERjJENDExQzg0QzM2REMzQkI2QTAyRkRGMUFD NTBCNUJBMTQwHhcNMjUwNTEwMjIyMjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTM5My1mMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlvxy8l1oPWmyK7Ij4v2M4OU6X5SBruUoEbGBaWUR0vrQMvKY2oo5KFxlfmjM PbVE0J7G3ALRZSIXEwEx0iDPQqOXO3zJT6h6KbiMbPU2FBVzFRZ+x6hanPOo2s0d zt8oGUBQe4AzdWiRXO3tuJSIwRVKcNpBZ6KEpH6m70/We52RVIDQzLIk+5YTZfki yfni6HBZfiNnshtnLFRjUm8yGAQhavGre7Pug4Hwjdyv5jy4asgcjpyldyernII/ RTW9hh9C4xlYnEFpHLAt6+yFKNiEn/Jl1rbaY7cgOuRV9uwt0GuliYNdkX4NGKu1 yPVlc1ESzUXTKwANl/+6MjPd8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJYewhSM PHkf7dIqNXmvTwbX7OqnMB8GA1UdIwQYMBaAFM3+3y1BHITDbcO7agL98axQtboU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0MS81NTQxNDBERTg3 QkMxMUVCQjNDMDgyNzJDNEY5QUUwMi96ZjdmTFVFY2hNTnR3N3RxQXYzeHJGQzF1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmN2ZMVUVjaE1OdHc3dHFBdjN4ckZDMXVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBNDEvNTU0MTQwREU4N0JDMTFFQkIzQzA4MjcyQzRGOUFFMDIvMzM3REExOTJD M0ZDMTFFRjhDM0IwQjVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZwS8MA0GCSqGSIb3DQEBCwUAA4IBAQBWs41KEd9Appk3wfHXCxai 2xNFIAE2xg56jnBk/PVDkaDZH/Pf9JoyMHidTPw67Jdl4A8g2tRh4R5IDI8D5GFY TXqe1Ury/lVWeWsKjoJ8962Fueh+V3jGGIculrJEsMTlwQQJdCrWUWxZiAh8guvA Nh04Qjee665lS4q4aqhCO9KeCvjrpp0NY/qqKmJhsgCTqIzQmqPTV56ZeqNzvSS5 DVEjzj6vKqTF9xjIlJgRVvySZ8rr8ICQjTBMQ0TuduN0YDuCP27pkZHZh7HPCetw j9+8PYc87DM028/j143ElHzID7/2duEOcthrLaKqW8SgbNExHjv5cN9r7HCZVObt -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:20 2026 by rpki-client