$ rpki-client -vvf rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa File: 4B0C31680FA511EFA3249B35C4F9AE02.roa (raw, json) Hash identifier: f0isjIY2FAnWDrTxGi+VIOhbLtTZFv6FgFXv4nSOQKI= Subject key identifier: FB:F6:45:2B:F8:FC:A5:8C:54:68:36:B7:BA:CE:62:73:73:11:80:44 Certificate issuer: /CN=A91311BC/serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Certificate serial: 0159 Authority key identifier: D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:57:28 +0000 ROA not before: Sat 05 Apr 2025 05:40:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 46015 IP address blocks: 103.18.244.0/22 maxlen: 22 103.18.244.0/24 maxlen: 24 137.59.108.0/22 maxlen: 22 137.59.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91311BC, serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Validity Not Before: Apr 5 05:40:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59748-273a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fd:f7:0c:a4:3a:93:69:0e:5f:52:34:e9:1f: b2:09:7f:16:ef:0e:37:3b:78:32:bf:22:ef:58:eb: e9:1e:46:4b:5c:b9:e9:d4:d2:ad:eb:77:f6:6c:49: ca:8d:c5:28:0a:ae:57:ce:09:02:9f:4e:fb:85:dd: fc:97:c3:24:42:5f:54:29:1b:9e:5a:90:b8:7b:e1: 9b:40:69:4d:e4:4d:0f:c3:5a:be:25:37:cf:f0:fa: 7f:03:5f:ca:77:3d:49:80:04:f8:c1:52:20:5f:d9: eb:5f:cc:b4:bb:0a:e9:ca:77:9b:9f:04:cb:61:42: c7:7a:fc:46:1b:92:7d:7d:ac:82:79:71:1c:bd:7d: 69:9e:dc:96:73:7b:7f:79:f7:1f:f7:9c:72:e3:c0: db:64:0e:91:48:ef:0f:01:eb:ad:6a:03:ca:37:e5: a6:ab:00:21:39:0f:d8:d1:35:c5:08:19:ca:09:79: 47:bd:92:20:da:7d:4d:45:cf:6a:b3:bd:00:7c:27: b2:a9:6b:17:8d:8d:9d:34:25:4f:0a:71:95:9d:0c: 69:2e:80:89:7f:60:a0:10:e5:3b:18:a1:4f:55:7c: 49:12:a4:21:19:b3:46:f7:12:59:97:cc:dc:4a:af: c7:bd:8e:e1:38:19:69:29:9a:46:96:9b:1b:9d:92: d7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F6:45:2B:F8:FC:A5:8C:54:68:36:B7:BA:CE:62:73:73:11:80:44 X509v3 Authority Key Identifier: keyid:D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.18.244.0/22 137.59.108.0/22 Signature Algorithm: sha256WithRSAEncryption 82:1f:fb:9c:a5:01:2e:8e:c2:66:eb:4b:1f:fd:b0:77:f8:0c: b7:b5:bf:39:f4:98:90:90:63:24:30:35:14:91:6f:1c:8a:b1: 29:6f:1e:56:4d:2b:c0:e7:06:6c:f0:92:40:d7:8c:3d:49:d9: d9:06:ae:8a:e7:42:7f:8b:23:8b:56:c9:c8:90:a6:15:30:1e: 98:f2:de:a8:50:5f:3d:6c:76:6f:6a:eb:f9:3d:89:e6:b9:b4: ee:3a:af:c6:96:76:97:12:1a:a8:92:39:47:22:f1:0e:ff:80: 6a:ea:ed:e1:40:98:5c:86:3d:a5:ef:aa:67:5a:96:5c:56:df: 12:71:ea:fd:6f:b9:24:0a:24:1e:da:1b:54:8d:ac:b0:f2:fa: e4:9d:02:91:6d:fc:97:b7:be:10:04:8c:cb:ed:27:34:1e:6a: b2:c5:b6:73:5e:dc:e5:66:1b:94:71:05:8a:58:b1:a8:e3:7e: 42:bf:6c:e3:a0:0f:f0:ca:cd:86:77:60:ee:01:ed:54:b8:c5: 40:80:25:20:d8:6b:e7:31:eb:ad:b3:61:57:a4:01:d2:4e:12: 70:28:e5:70:06:25:e4:d3:e6:30:51:78:56:86:36:f2:c3:56: 2f:43:4e:93:c5:5f:44:c0:79:50:94:9b:b5:1c:2d:57:ca:9a: 10:cd:86:45 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzExQkMxMTAvBgNVBAUTKEQ0QjFERDNFQjFBMDZGQTI2MkFCNkM1RUJGNEFGNTM2 NzFBQ0QyRjQwHhcNMjUwNDA1MDU0MDU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTc0OC0yNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf33DKQ6k2kOX1I06R+yCX8W7w43O3gyvyLvWOvpHkZLXLnp1NKt63f2bEnK jcUoCq5XzgkCn077hd38l8MkQl9UKRueWpC4e+GbQGlN5E0Pw1q+JTfP8Pp/A1/K dz1JgAT4wVIgX9nrX8y0uwrpynebnwTLYULHevxGG5J9fayCeXEcvX1pntyWc3t/ efcf95xy48DbZA6RSO8PAeutagPKN+WmqwAhOQ/Y0TXFCBnKCXlHvZIg2n1NRc9q s70AfCeyqWsXjY2dNCVPCnGVnQxpLoCJf2CgEOU7GKFPVXxJEqQhGbNG9xJZl8zc Sq/HvY7hOBlpKZpGlpsbnZLXtQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPv2RSv4 /KWMVGg2t7rOYnNzEYBEMB8GA1UdIwQYMBaAFNSx3T6xoG+iYqtsXr9K9TZxrNL0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTFCQy8wNUVFQUJGQzBG QTQxMUVGQTNBQThEMzNDNEY5QUUwMi8xTEhkUHJHZ2I2SmlxMnhldjByMU5uR3Mw dlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFMSGRQckdnYjZKaXEyeGV2MHIxTm5HczB2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzExQkMvMDVFRUFCRkMwRkE0MTFFRkEzQUE4RDMzQzRGOUFFMDIvNEIwQzMxNjgw RkE1MTFFRkEzMjQ5QjM1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZxL0AwQCiTtsMA0GCSqGSIb3DQEBCwUAA4IBAQCCH/ucpQEujsJm 60sf/bB3+Ay3tb859JiQkGMkMDUUkW8cirEpbx5WTSvA5wZs8JJA14w9SdnZBq6K 50J/iyOLVsnIkKYVMB6Y8t6oUF89bHZvauv5PYnmubTuOq/GlnaXEhqokjlHIvEO /4Bq6u3hQJhchj2l76pnWpZcVt8Scer9b7kkCiQe2htUjayw8vrknQKRbfyXt74Q BIzL7Sc0HmqyxbZzXtzlZhuUcQWKWLGo435Cv2zjoA/wys2Gd2DuAe1UuMVAgCUg 2GvnMeuts2FXpAHSThJwKOVwBiXk0+YwUXhWhjbyw1YvQ06TxV9EwHlQlJu1HC1X ypoQzYZF -----END CERTIFICATE-----Generated at Thu Mar 26 09:06:27 2026 by rpki-client