$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa File: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (raw, json) Hash identifier: HwypahBFkKbW/pB8Pd+gaE4/P/VRHrxmO2AZ+Ty59Ss= Subject key identifier: 36:12:C1:A8:81:68:19:8F:9E:50:2F:AB:FC:74:8E:91:6E:DC:E5:DB Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 221C Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:57:46 +0000 ROA not before: Thu 04 Dec 2025 15:44:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 13335 IP address blocks: 103.31.4.0/23 maxlen: 23 103.31.4.0/24 maxlen: 24 2405:b500::/32 maxlen: 32 2405:b500::/34 maxlen: 34 2405:b500:4000::/34 maxlen: 34 2405:b500:8000::/34 maxlen: 34 2405:b500:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8732 (0x221c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: Dec 4 15:44:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a445da-da5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0a:43:34:b5:0f:9f:0d:aa:cf:4e:77:f4:83: dd:0a:85:76:c5:23:d0:15:ad:fc:f2:1f:2c:63:b4: 39:7b:30:ca:25:17:40:68:c7:2d:18:ab:fe:34:b6: 01:39:db:57:fd:79:e8:31:e2:ec:e1:33:56:a9:79: 7f:d0:c6:f1:99:05:f8:38:b1:71:64:17:3f:38:31: e1:22:14:d4:ae:5f:9d:15:42:b7:35:2d:5e:0e:d4: 60:f6:50:61:2f:9c:46:b6:81:8f:0d:c1:c0:9e:19: 38:24:14:88:13:6a:d3:0e:ad:5e:c5:90:4a:e3:7a: 05:76:dd:c8:61:6c:63:9d:5a:20:45:82:9c:66:1b: 06:20:45:d3:df:b9:51:ca:59:93:8d:6a:08:cb:20: 41:e4:ef:1a:b3:94:51:02:fc:0f:08:13:64:b2:ed: 6c:6d:f0:54:38:25:ed:95:3f:24:63:be:f8:15:ca: 99:08:c9:a0:1c:60:98:c9:ff:84:66:c4:05:b0:3e: e1:c8:c6:83:14:7e:ff:9b:e4:a3:0e:ab:92:32:bd: 70:ce:6c:25:99:28:5a:73:1a:62:fe:8a:d0:71:98: f6:d6:17:93:8c:b7:c4:e7:cf:1b:68:58:5a:81:c3: d1:26:36:8b:47:43:33:08:d2:05:8b:58:ed:60:72: 4f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:12:C1:A8:81:68:19:8F:9E:50:2F:AB:FC:74:8E:91:6E:DC:E5:DB X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.31.4.0/23 IPv6: 2405:b500::/32 Signature Algorithm: sha256WithRSAEncryption 29:89:23:eb:c6:32:ab:d7:69:56:80:c9:24:ad:f1:78:45:08: f8:57:0d:14:70:8a:10:43:42:33:d1:aa:75:28:81:8e:33:5b: 62:c7:cd:7a:b8:67:03:40:91:04:fa:b1:56:2b:a3:c7:bc:05: 86:d5:8b:29:3a:41:57:ab:9e:9f:ee:4f:74:8a:00:d7:81:75: 3a:2e:ce:cc:dd:c7:01:24:53:49:8a:c7:56:bf:16:98:39:5d: 1d:f7:38:87:33:80:42:23:c6:87:d8:fc:5f:e0:14:83:d0:76: fd:d2:37:a2:81:28:9f:6c:47:78:51:ce:79:77:e7:b4:0c:35: 15:d1:53:64:22:d2:2f:70:36:74:ae:cd:0d:8e:fd:2b:b1:65: 9e:81:52:3e:44:5a:78:ef:07:8d:eb:42:a1:2d:d3:44:a5:de: 37:96:38:ad:a1:6c:52:92:29:e9:6c:3d:ee:4d:a8:de:bf:3e: 02:d6:bd:34:8c:b9:40:96:87:a8:3c:4d:ed:cd:8b:43:86:7a: fc:ae:96:ba:34:ee:fb:bc:ae:6e:72:54:a7:5a:b3:44:a4:da: cf:93:7e:39:cf:cd:3b:6c:d8:7e:d6:4f:dd:31:b8:5f:03:33: de:f6:80:51:c0:87:db:e1:e1:dd:82:d1:54:95:58:d7:1c:4f: 3b:11:52:3b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICIhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjUxMjA0MTU0NDEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDVkYS1kYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxApDNLUPnw2qz0539IPdCoV2xSPQFa388h8sY7Q5ezDKJRdAaMctGKv+NLYB OdtX/XnoMeLs4TNWqXl/0MbxmQX4OLFxZBc/ODHhIhTUrl+dFUK3NS1eDtRg9lBh L5xGtoGPDcHAnhk4JBSIE2rTDq1exZBK43oFdt3IYWxjnVogRYKcZhsGIEXT37lR ylmTjWoIyyBB5O8as5RRAvwPCBNksu1sbfBUOCXtlT8kY774FcqZCMmgHGCYyf+E ZsQFsD7hyMaDFH7/m+SjDquSMr1wzmwlmShacxpi/orQcZj21heTjLfE588baFha gcPRJjaLR0MzCNIFi1jtYHJPvwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDYSwaiB aBmPnlAvq/x0jpFu3OXbMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAzREMvRkFEM0Q2RkNEQzQ5MTFFNUEwNjI1RjgyQzRGOUFFMDIvMUQ5REM4MkE2 NTIzMTFFQkE4Q0YzQzRDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZx8EMA0EAgACMAcDBQAkBbUAMA0GCSqGSIb3DQEBCwUAA4IBAQAp iSPrxjKr12lWgMkkrfF4RQj4Vw0UcIoQQ0Iz0ap1KIGOM1tix816uGcDQJEE+rFW K6PHvAWG1YspOkFXq56f7k90igDXgXU6Ls7M3ccBJFNJisdWvxaYOV0d9ziHM4BC I8aH2Pxf4BSD0Hb90jeigSifbEd4Uc55d+e0DDUV0VNkItIvcDZ0rs0Njv0rsWWe gVI+RFp47weN60KhLdNEpd43ljitoWxSkinpbD3uTajevz4C1r00jLlAloeoPE3t zYtDhnr8rpa6NO77vK5uclSnWrNEpNrPk345z807bNh+1k/dMbhfAzPe9oBRwIfb 4eHdgtFUlVjXHE87EVI7 -----END CERTIFICATE-----Generated at Wed Mar 4 14:26:15 2026 by rpki-client