$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa File: 1F8D757623B811E9971D8168C4F9AE02.roa (raw, json) Hash identifier: h7HO39Q7zMhgQ+X4Dcbn9QwUY6p9Y6Cv8Yvqueoqv+c= Subject key identifier: 52:BB:9F:0D:3B:88:CC:8F:AE:BE:D5:FF:CA:A8:D5:A6:D7:38:54:55 Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 118D Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa Signing time: Wed 22 Apr 2026 17:22:34 +0000 ROA not before: Wed 22 Apr 2026 17:22:34 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138549 IP address blocks: 103.132.220.0/22 maxlen: 22 103.132.220.0/23 maxlen: 23 103.132.220.0/24 maxlen: 24 103.132.221.0/24 maxlen: 24 103.132.222.0/23 maxlen: 23 103.132.222.0/24 maxlen: 24 103.132.223.0/24 maxlen: 24 2404:40c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4493 (0x118d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Apr 22 17:22:34 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69e903da-d69c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:9e:35:23:a3:ca:81:12:71:c7:3e:11:70: 66:9f:44:ae:2c:dd:2c:ee:7e:6e:ce:eb:1a:36:e9: e7:a5:fb:ba:34:7c:d5:dc:9a:97:50:2e:46:e8:e8: cc:39:c4:e1:d3:bf:1f:4d:27:5f:f7:01:b6:8c:92: 0e:bb:31:1c:dd:f5:29:67:89:1a:02:33:66:6e:fe: 2e:7f:75:8c:aa:45:30:26:21:bb:8d:3c:b0:dd:c7: 54:df:ce:d3:57:a2:cc:0f:8a:9e:3b:bf:8a:4d:49: 67:4e:24:8e:2b:c2:ef:94:23:a2:8b:23:63:fb:4b: ab:73:6d:b9:3d:da:2c:e1:eb:bc:35:a0:ff:4b:a7: 97:0e:64:bc:44:3d:48:3e:a7:e7:e3:62:36:17:85: 08:ba:b6:19:07:0e:df:2d:e2:da:db:c7:62:fe:8f: 28:d7:7c:97:de:9c:30:17:3d:7d:b3:1a:58:b9:8a: 86:0d:9a:36:40:a1:47:0f:be:57:45:57:50:0e:bc: e2:62:2c:a8:0d:e2:56:85:d2:41:89:cd:1b:36:3c: 30:00:f8:b3:c3:51:59:4f:5c:bb:c0:c6:60:61:46: b5:4b:41:47:e1:2e:bc:0e:1a:c8:e6:b6:17:5a:f9: f4:45:65:54:01:00:ca:86:f3:3a:60:dc:ec:01:bd: fc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BB:9F:0D:3B:88:CC:8F:AE:BE:D5:FF:CA:A8:D5:A6:D7:38:54:55 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/1F8D757623B811E9971D8168C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.132.220.0/22 IPv6: 2404:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:c8:46:35:71:23:36:a8:47:56:76:9f:2a:e4:17:84:cd:87: 86:9d:8b:67:d5:68:14:03:75:61:8a:6b:aa:1a:3c:9e:7e:6b: 0e:de:09:76:40:6b:00:80:6d:6c:0e:5f:74:cc:40:5a:3e:4f: 9e:e8:ed:f2:d6:9b:3a:15:8f:75:1d:4e:ad:38:90:52:9b:39: 5d:5a:99:da:45:56:9e:1e:90:93:91:80:f8:43:1e:c5:06:22: 85:96:56:0d:ae:c7:5f:77:ef:05:08:65:33:6d:e5:89:2d:48: 28:2c:0d:e3:56:9d:23:0f:ea:c3:11:40:08:7a:53:c3:e0:64: 31:bf:b6:07:17:b1:22:ef:f7:d3:bf:9b:50:ed:55:17:23:89: d7:44:cb:87:3d:45:72:d2:84:b2:f6:84:5d:24:89:20:b7:3d: a8:42:07:e0:4b:d3:e3:bf:de:8a:e2:5a:f9:9c:73:a4:6c:4e: 07:13:f0:c7:22:d7:c3:f4:2d:31:5c:eb:61:f0:55:3f:bc:45: 06:e4:6f:8d:e6:73:38:22:c7:b8:d4:ce:44:8e:ea:b0:4d:2a: 35:7d:60:42:49:09:7d:d2:76:32:97:38:c7:31:87:b5:ef:68: 17:2e:79:1f:e3:8f:a9:7d:18:7f:9a:cc:cc:9c:e7:b5:38:1f: 62:42:00:a9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICEY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjYwNDIyMTcyMjM0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5MDNkYS1kNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRueNSOjyoESccc+EXBmn0SuLN0s7n5uzusaNunnpfu6NHzV3JqXUC5G6OjM OcTh078fTSdf9wG2jJIOuzEc3fUpZ4kaAjNmbv4uf3WMqkUwJiG7jTyw3cdU387T V6LMD4qeO7+KTUlnTiSOK8LvlCOiiyNj+0urc225Pdos4eu8NaD/S6eXDmS8RD1I Pqfn42I2F4UIurYZBw7fLeLa28di/o8o13yX3pwwFz19sxpYuYqGDZo2QKFHD75X RVdQDrziYiyoDeJWhdJBic0bNjwwAPizw1FZT1y7wMZgYUa1S0FH4S68DhrI5rYX Wvn0RWVUAQDKhvM6YNzsAb38eQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFFK7nw07 iMyPrr7V/8qo1abXOFRVMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFEMzEvNjVFRjI5NkEyMzEzMTFFOUEyOUJCMTc0QzRGOUFFMDIvMUY4RDc1NzYy M0I4MTFFOTk3MUQ4MTY4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ4TcMA0EAgACMAcDBQAkBEDAMA0GCSqGSIb3DQEBCwUAA4IBAQA8 yEY1cSM2qEdWdp8q5BeEzYeGnYtn1WgUA3VhimuqGjyefmsO3gl2QGsAgG1sDl90 zEBaPk+e6O3y1ps6FY91HU6tOJBSmzldWpnaRVaeHpCTkYD4Qx7FBiKFllYNrsdf d+8FCGUzbeWJLUgoLA3jVp0jD+rDEUAIelPD4GQxv7YHF7Ei7/fTv5tQ7VUXI4nX RMuHPUVy0oSy9oRdJIkgtz2oQgfgS9Pjv96K4lr5nHOkbE4HE/DHItfD9C0xXOth 8FU/vEUG5G+N5nM4Ise41M5EjuqwTSo1fWBCSQl90nYylzjHMYe172gXLnkf44+p fRh/mszMnOe1OB9iQgCp -----END CERTIFICATE-----Generated at Wed May 13 14:21:19 2026 by rpki-client