$ rpki-client -vvf rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa File: 4B0C31680FA511EFA3249B35C4F9AE02.roa (raw, json) Hash identifier: xOf3XH1rq9iRonlFI2ztK10R9vzTctiHTjijcLXsCA4= Subject key identifier: D7:37:06:7E:98:01:7D:34:E7:EC:D5:83:0D:1C:DC:AE:E5:87:38:13 Certificate issuer: /CN=A91311BC/serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Certificate serial: 016D Authority key identifier: D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa Signing time: Fri 03 Apr 2026 04:40:09 +0000 ROA not before: Fri 03 Apr 2026 04:40:08 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 46015 IP address blocks: 103.18.244.0/22 maxlen: 22 103.18.244.0/24 maxlen: 24 137.59.108.0/22 maxlen: 22 137.59.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91311BC, serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Validity Not Before: Apr 3 04:40:08 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf44a8-018f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:f4:d1:82:b3:c9:96:fa:36:91:5d:ad:27: 62:c8:b3:6b:6b:63:e1:38:98:9f:f9:e2:9b:6b:89: 12:6c:b1:e3:8b:4d:d1:32:f8:2a:35:06:df:b0:ba: 74:94:55:42:fd:60:25:5b:2f:08:00:68:c3:e6:37: e3:07:34:d4:af:81:e2:8a:42:78:e9:20:68:99:09: 08:cb:42:95:06:2b:21:66:8c:1b:de:23:dc:81:0b: a6:b0:68:73:c0:dc:0e:05:e7:ce:ff:80:94:05:8d: 16:50:b8:c0:58:1a:8a:ee:a0:e9:d2:9f:ad:2e:c4: 85:8a:53:cc:f4:43:e8:ac:02:dd:87:a0:41:b2:ba: f4:06:dd:35:a6:31:d3:14:ab:bf:47:c5:ed:ac:25: 27:8f:4f:2a:0f:3f:39:5c:fa:78:02:6a:bd:bc:c3: 1a:56:d2:da:4e:c6:95:37:e0:88:c2:52:3d:d7:07: bc:26:a4:32:be:9e:3d:93:25:94:c9:50:27:60:d5: a6:95:2c:ed:91:62:34:f6:71:0d:7c:6c:e8:76:bf: cf:ad:92:f6:e5:e8:a0:50:f3:d4:09:93:59:c8:c5: 0a:a3:f8:86:46:81:7e:43:21:a8:de:1f:02:c9:bf: 56:a1:b0:78:37:58:fb:cd:0f:cd:2c:4a:e5:05:e7: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:37:06:7E:98:01:7D:34:E7:EC:D5:83:0D:1C:DC:AE:E5:87:38:13 X509v3 Authority Key Identifier: keyid:D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.18.244.0/22 137.59.108.0/22 Signature Algorithm: sha256WithRSAEncryption 33:4a:f8:c8:8f:ab:7d:3a:c3:68:1d:14:d0:b2:a3:b7:3a:4f: df:1c:62:d2:9f:18:a8:f1:f1:ae:3d:6f:84:d2:22:8f:e1:53: f0:96:b9:fd:d1:0c:19:b7:ab:90:56:ea:b8:74:43:6c:b8:e9: f5:56:2a:4b:1b:8e:8a:90:45:4b:f9:67:96:02:12:54:d6:aa: b5:79:33:71:58:33:92:41:69:96:71:55:33:22:0a:ef:2e:e5: 9c:9e:18:64:39:6e:a2:97:e7:9b:bc:88:86:9c:61:ac:94:e3: b8:a2:78:2f:3a:9b:f3:26:76:e2:66:4c:5c:47:04:ad:04:16: 96:13:f1:be:b2:6e:c7:18:4d:99:88:c7:c4:d6:8c:b0:66:58: e4:e9:5b:a7:9d:4b:ea:a2:7d:c7:99:91:9a:8f:a9:3f:04:39: 60:d4:6c:01:dd:7e:44:f1:21:44:85:51:1d:e5:82:46:58:0a: 11:5d:21:65:04:15:e7:48:69:fb:74:ef:d1:26:c1:74:b7:d8: 3b:23:cb:ed:c7:11:cc:da:91:2c:ec:96:71:9b:c4:4e:9b:6f: bb:92:f0:68:bc:41:d4:a5:a1:b6:48:e7:73:7b:25:9b:98:c2: 4b:f1:0b:76:ef:a4:77:23:a7:ba:84:90:84:ea:55:44:6d:1a: e5:14:ab:f1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzExQkMxMTAvBgNVBAUTKEQ0QjFERDNFQjFBMDZGQTI2MkFCNkM1RUJGNEFGNTM2 NzFBQ0QyRjQwHhcNMjYwNDAzMDQ0MDA4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNDRhOC0wMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKf00YKzyZb6NpFdrSdiyLNra2PhOJif+eKba4kSbLHji03RMvgqNQbfsLp0 lFVC/WAlWy8IAGjD5jfjBzTUr4HiikJ46SBomQkIy0KVBishZowb3iPcgQumsGhz wNwOBefO/4CUBY0WULjAWBqK7qDp0p+tLsSFilPM9EPorALdh6BBsrr0Bt01pjHT FKu/R8XtrCUnj08qDz85XPp4Amq9vMMaVtLaTsaVN+CIwlI91we8JqQyvp49kyWU yVAnYNWmlSztkWI09nENfGzodr/PrZL25eigUPPUCZNZyMUKo/iGRoF+QyGo3h8C yb9WobB4N1j7zQ/NLErlBedujwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNc3Bn6Y AX005+zVgw0c3K7lhzgTMB8GA1UdIwQYMBaAFNSx3T6xoG+iYqtsXr9K9TZxrNL0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTFCQy8wNUVFQUJGQzBG QTQxMUVGQTNBQThEMzNDNEY5QUUwMi8xTEhkUHJHZ2I2SmlxMnhldjByMU5uR3Mw dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFMSGRQckdnYjZKaXEyeGV2MHIxTm5HczB2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzExQkMvMDVFRUFCRkMwRkE0MTFFRkEzQUE4RDMzQzRGOUFFMDIvNEIwQzMxNjgw RkE1MTFFRkEzMjQ5QjM1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZxL0AwQCiTtsMA0GCSqGSIb3DQEBCwUAA4IBAQAzSvjIj6t9OsNo HRTQsqO3Ok/fHGLSnxio8fGuPW+E0iKP4VPwlrn90QwZt6uQVuq4dENsuOn1VipL G46KkEVL+WeWAhJU1qq1eTNxWDOSQWmWcVUzIgrvLuWcnhhkOW6il+ebvIiGnGGs lOO4ongvOpvzJnbiZkxcRwStBBaWE/G+sm7HGE2ZiMfE1oywZljk6VunnUvqon3H mZGaj6k/BDlg1GwB3X5E8SFEhVEd5YJGWAoRXSFlBBXnSGn7dO/RJsF0t9g7I8vt xxHM2pEs7JZxm8ROm2+7kvBovEHUpaG2SOdzeyWbmMJL8Qt276R3I6e6hJCE6lVE bRrlFKvx -----END CERTIFICATE-----Generated at Mon Apr 6 12:44:42 2026 by rpki-client