$ rpki-client -vvf rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa File: 437E6F641A2A11ED8E5B3178C4F9AE02.roa (raw, json) Hash identifier: rYqx35lsIFICuX9KuzfaD1pKBi3ls1Ig+KpAVd5GMMM= Subject key identifier: 78:03:A3:48:37:37:11:D5:11:D7:94:7F:CB:A3:60:FD:6F:70:6D:CD Certificate issuer: /CN=A91C862F/serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Certificate serial: 0455 Authority key identifier: 9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa Signing time: Tue 31 Mar 2026 00:31:22 +0000 ROA not before: Tue 31 Mar 2026 00:31:22 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140889 IP address blocks: 103.182.170.0/24 maxlen: 24 103.182.171.0/24 maxlen: 24 2001:df0:7f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C862F, serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Validity Not Before: Mar 31 00:31:22 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb15da-53bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:59:68:7b:0b:95:d3:61:14:5b:76:fe:50: ab:08:b2:9d:50:52:df:ae:f2:80:f9:60:f0:8f:71: cc:18:6e:15:e1:1b:8b:67:ec:f1:6f:3a:4d:a4:cd: 3d:eb:c7:e5:bc:db:cf:e4:d4:16:10:01:a9:8b:95: 9c:27:b0:df:1e:44:86:74:51:35:eb:19:31:a6:04: 36:72:6b:1d:3b:4a:2e:e3:80:8c:65:87:c0:0a:b9: cc:5a:b9:b1:c4:a8:fd:9e:be:e7:6f:fd:3f:9a:12: ad:1a:e2:82:72:79:e1:e6:47:dc:9e:78:b0:c3:48: 30:80:00:d5:40:31:e9:6f:9e:01:c9:2b:80:9c:66: 34:14:e4:77:4f:da:53:7a:20:f5:0b:c8:af:7a:bd: 7e:1e:6a:b4:fa:c0:2f:99:37:ba:b1:ab:e0:2b:7a: d1:a8:64:d7:61:4d:9c:07:7d:71:d2:9b:a9:f7:cf: cd:23:5a:db:87:a0:db:80:bf:bf:8a:a4:a0:b3:f7: 28:4b:7c:dc:23:5f:d2:8f:73:5b:0f:22:5e:7a:f7: a6:0e:7d:0c:de:d5:b5:dd:55:95:52:d7:80:1b:ec: 7c:79:17:5a:d1:35:06:46:03:87:e6:cb:c9:2b:52: be:14:79:79:1e:c1:e6:eb:94:bf:7b:ea:e2:b7:e0: a2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:03:A3:48:37:37:11:D5:11:D7:94:7F:CB:A3:60:FD:6F:70:6D:CD X509v3 Authority Key Identifier: keyid:9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.182.170.0/23 IPv6: 2001:df0:7f40::/48 Signature Algorithm: sha256WithRSAEncryption 95:c0:18:83:9e:25:b5:ff:52:c8:c8:d4:53:4e:dc:b0:c2:d9: 9e:e6:3f:6c:4c:81:08:8d:a4:b8:b9:d7:ec:00:f8:c9:dc:3c: 20:ea:0a:7e:82:af:3f:99:0f:b5:41:94:a1:da:28:83:5f:e4: 09:a9:2f:bf:72:9b:88:b1:4d:8a:5c:cd:19:79:6f:3d:6b:c9: 39:e5:b5:51:68:9f:1c:b7:b8:a4:de:af:02:46:e2:29:a0:94: fe:33:87:2e:18:b1:a7:9a:33:8e:5b:18:82:59:e9:9a:13:7c: 3d:79:d8:ae:1a:de:72:d5:c9:35:35:05:39:77:ad:9c:fe:81: 86:db:ab:2c:0e:d8:af:5c:8d:5c:ef:6b:6d:a4:c6:75:cd:7d: 1d:5f:d0:12:fa:94:65:79:2d:5b:96:32:a7:4d:06:62:a5:df: a8:b1:89:8a:8d:73:4d:6c:9c:e4:8f:b2:4f:69:b1:2c:76:61: c1:ee:d8:83:5c:8c:fc:d9:f0:ee:13:0c:3b:08:b4:41:1e:26: d5:6c:47:b1:11:57:e4:d1:0c:df:3d:9a:c3:2c:6b:d1:b8:db: 23:a3:47:92:6d:56:e3:62:d4:65:ef:97:0f:3b:1a:bb:bb:17: 6e:ac:cb:1e:94:13:9d:6e:a2:0e:23:e3:4b:56:16:58:5c:1d: 54:df:4a:8f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg2MkYxMTAvBgNVBAUTKDlDQjIxOTVFQkFBMjA5NjBEQUY4ODJGQjVGNDdFQjU1 QTE5RDIyRUMwHhcNMjYwMzMxMDAzMTIyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMTVkYS01M2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpNZaHsLldNhFFt2/lCrCLKdUFLfrvKA+WDwj3HMGG4V4RuLZ+zxbzpNpM09 68flvNvP5NQWEAGpi5WcJ7DfHkSGdFE16xkxpgQ2cmsdO0ou44CMZYfACrnMWrmx xKj9nr7nb/0/mhKtGuKCcnnh5kfcnniww0gwgADVQDHpb54BySuAnGY0FOR3T9pT eiD1C8iver1+Hmq0+sAvmTe6savgK3rRqGTXYU2cB31x0pup98/NI1rbh6DbgL+/ iqSgs/coS3zcI1/Sj3NbDyJeevemDn0M3tW13VWVUteAG+x8eRda0TUGRgOH5svJ K1K+FHl5HsHm65S/e+rit+CiEQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHgDo0g3 NxHVEdeUf8ujYP1vcG3NMB8GA1UdIwQYMBaAFJyyGV66oglg2viC+19H61WhnSLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODYyRi9ENUUxRERFQTk2 NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNXRGEtSUw3WDBmclZhR2RJ dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MSVpYcnFpQ1dEYS1JTDdYMGZyVmFHZEl1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg2MkYvRDVFMURERUE5NjVGMTFFQ0FEMjE3Mzc2QzRGOUFFMDIvNDM3RTZGNjQx QTJBMTFFRDhFNUIzMTc4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7aqMA8EAgACMAkDBwAgAQ3wf0AwDQYJKoZIhvcNAQELBQADggEB AJXAGIOeJbX/UsjI1FNO3LDC2Z7mP2xMgQiNpLi51+wA+MncPCDqCn6Crz+ZD7VB lKHaKINf5AmpL79ym4ixTYpczRl5bz1ryTnltVFonxy3uKTerwJG4imglP4zhy4Y saeaM45bGIJZ6ZoTfD152K4a3nLVyTU1BTl3rZz+gYbbqywO2K9cjVzva22kxnXN fR1f0BL6lGV5LVuWMqdNBmKl36ixiYqNc01snOSPsk9psSx2YcHu2INcjPzZ8O4T DDsItEEeJtVsR7ERV+TRDN89msMsa9G42yOjR5JtVuNi1GXvlw87Gru7F26syx6U E51uog4j40tWFlhcHVTfSo8= -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:06 2026 by rpki-client