$ rpki-client -vvf rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa File: 3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa (raw, json) Hash identifier: BHSpV+Gq6Gws2/o0c53RF67bnt9NJJ0SuvXjhdlyU8E= Subject key identifier: 91:94:DC:92:C1:45:9D:D0:47:A3:8C:32:3B:24:DE:15:64:FD:68:38 Certificate issuer: /CN=A915087F/serialNumber=3A6DD4B70C4560EAC37E81E622CC43809F523B4B Certificate serial: 02E7 Authority key identifier: 3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:18:21 +0000 ROA not before: Fri 03 Oct 2025 02:27:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.1.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915087F, serialNumber=3A6DD4B70C4560EAC37E81E622CC43809F523B4B Validity Not Before: Oct 3 02:27:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a482ec-924f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:15:64:51:81:97:03:6c:4b:c7:cb:e5:be:04: 87:cc:b8:e2:57:5a:b5:08:d1:b3:e4:4d:73:47:9f: 16:1f:1a:13:50:54:fe:cc:f9:f8:fc:70:58:57:f2: 2c:e9:e2:4b:f1:5f:e0:28:c9:c7:86:1e:e7:cb:28: 78:cb:45:66:77:f4:07:c0:34:93:4c:66:88:47:e5: 52:96:56:f1:8a:ef:4c:4c:df:da:ef:75:df:c0:cf: 8c:93:fa:8d:74:a6:b9:66:6e:f6:0d:8f:be:dc:35: 12:f4:1f:67:24:5e:c9:6c:24:9a:ee:af:0e:22:35: d4:bc:49:ab:d8:0b:6e:cf:91:bd:6c:2d:ce:27:84: d4:f2:65:3a:5e:fc:eb:ef:4b:6f:8b:4a:30:87:d8: e6:d2:76:f8:77:76:d0:34:21:18:ee:ba:fe:e7:6c: 4e:93:d9:bb:d9:4b:78:ef:20:64:4f:1f:86:76:d0: 0e:08:1c:a8:47:e2:f4:99:a8:9d:97:98:4f:c6:da: dd:22:4a:d0:60:b5:dd:b3:ee:30:93:7e:0a:65:67: e9:8f:f1:71:22:1d:54:31:8b:e7:a7:dc:bb:92:09: 75:ae:f2:ca:b5:29:4d:6a:ed:78:c1:f6:a9:36:87: 84:e2:9c:0d:7b:6a:7b:d6:a5:3d:9c:4d:74:69:ae: 01:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:94:DC:92:C1:45:9D:D0:47:A3:8C:32:3B:24:DE:15:64:FD:68:38 X509v3 Authority Key Identifier: keyid:3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/3DD9ED2C4AE811EF9BCF4B47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.1.158.0/24 Signature Algorithm: sha256WithRSAEncryption af:05:73:53:45:97:5b:fb:66:36:24:cc:d4:56:00:81:df:3e: 99:f1:f3:95:3a:6d:d4:d8:99:c5:b9:16:95:fc:88:de:33:38: f9:d0:55:fc:39:de:25:b8:54:20:95:7d:da:6d:d0:04:57:94: 6e:3a:42:8c:df:fe:f6:67:e7:84:43:c8:e4:6d:c5:69:b6:48: 0d:a6:d7:86:ca:8f:13:bf:46:ee:6f:5a:64:4e:a8:7d:39:e7: 77:c8:84:95:cf:5e:ea:4d:4c:1f:fa:70:96:c0:7f:f8:03:b5: 77:22:57:e1:31:af:18:0f:b9:ca:fb:63:c6:fc:87:32:1c:ed: 86:61:37:46:22:01:29:86:b7:97:af:aa:bc:da:d1:0b:7c:68: aa:5a:77:d1:28:20:db:c8:69:f0:f2:15:be:70:b3:18:16:40: 6e:76:4e:06:43:fc:82:f5:aa:61:37:63:91:de:8f:b1:46:07: 84:9a:dc:04:a1:db:5d:5f:ec:7e:2e:46:16:a3:c6:67:70:37: 34:49:a5:07:10:e0:6b:80:5b:f9:68:5f:64:07:82:ea:5e:3a: 9a:33:9d:9f:f2:36:d7:d6:98:5f:41:a2:b1:67:86:b6:71:20: 5b:b5:5e:aa:26:86:34:50:0c:03:13:e7:fe:31:eb:bb:54:76: 52:bc:67:18 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4N0YxMTAvBgNVBAUTKDNBNkRENEI3MEM0NTYwRUFDMzdFODFFNjIyQ0M0Mzgw OUY1MjNCNEIwHhcNMjUxMDAzMDIyNzMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODJlYy05MjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRVkUYGXA2xLx8vlvgSHzLjiV1q1CNGz5E1zR58WHxoTUFT+zPn4/HBYV/Is 6eJL8V/gKMnHhh7nyyh4y0Vmd/QHwDSTTGaIR+VSllbxiu9MTN/a73XfwM+Mk/qN dKa5Zm72DY++3DUS9B9nJF7JbCSa7q8OIjXUvEmr2Atuz5G9bC3OJ4TU8mU6Xvzr 70tvi0owh9jm0nb4d3bQNCEY7rr+52xOk9m72Ut47yBkTx+GdtAOCByoR+L0maid l5hPxtrdIkrQYLXds+4wk34KZWfpj/FxIh1UMYvnp9y7kgl1rvLKtSlNau14wfap NoeE4pwNe2p71qU9nE10aa4BEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJGU3JLB RZ3QR6OMMjsk3hVk/Wg4MB8GA1UdIwQYMBaAFDpt1LcMRWDqw36B5iLMQ4CfUjtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDg3Ri9GNzMxOTZBQTMz RTExMUVEQjNBMEVBNThDNEY5QUUwMi9PbTNVdHd4RllPckRmb0htSXN4RGdKOVNP MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09tM1V0d3hGWU9yRGZvSG1Jc3hEZ0o5U08wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA4N0YvRjczMTk2QUEzM0UxMTFFREIzQTBFQTU4QzRGOUFFMDIvM0REOUVEMkM0 QUU4MTFFRjlCQ0Y0QjQ3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwGeMA0GCSqGSIb3DQEBCwUAA4IBAQCvBXNTRZdb+2Y2JMzUVgCB 3z6Z8fOVOm3U2JnFuRaV/IjeMzj50FX8Od4luFQglX3abdAEV5RuOkKM3/72Z+eE Q8jkbcVptkgNpteGyo8Tv0bub1pkTqh9Oed3yISVz17qTUwf+nCWwH/4A7V3Ilfh Ma8YD7nK+2PG/IcyHO2GYTdGIgEphreXr6q82tELfGiqWnfRKCDbyGnw8hW+cLMY FkBudk4GQ/yC9aphN2OR3o+xRgeEmtwEodtdX+x+LkYWo8ZncDc0SaUHEOBrgFv5 aF9kB4LqXjqaM52f8jbX1phfQaKxZ4a2cSBbtV6qJoY0UAwDE+f+Meu7VHZSvGcY -----END CERTIFICATE-----Generated at Wed Mar 4 14:21:53 2026 by rpki-client