$ rpki-client -vvf rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa File: A23207FEB14111E5A3B46B15C4F9AE02.roa (raw, json) Hash identifier: NdTxn+HasKfGOEbIN5yYPJ4JBQuKbqVM6GqJLCJsrzc= Subject key identifier: 32:97:D1:30:65:11:7C:54:39:3F:2F:4E:39:A7:1A:16:6B:A7:F8:58 Certificate issuer: /CN=A9151C9D/serialNumber=FC655A21543ECF57BFA3EBDF7946A99561EC52F5 Certificate serial: 2785 Authority key identifier: FC:65:5A:21:54:3E:CF:57:BF:A3:EB:DF:79:46:A9:95:61:EC:52:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa Signing time: Wed 18 Mar 2026 16:18:47 +0000 ROA not before: Wed 18 Mar 2026 16:18:47 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 133498 IP address blocks: 103.231.240.0/22 maxlen: 22 103.231.240.0/24 maxlen: 24 103.231.241.0/24 maxlen: 24 103.231.242.0/24 maxlen: 24 103.231.243.0/24 maxlen: 24 2001:df5:e800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.crl rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10117 (0x2785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151C9D, serialNumber=FC655A21543ECF57BFA3EBDF7946A99561EC52F5 Validity Not Before: Mar 18 16:18:47 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bad067-34c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:63:06:42:eb:24:7d:76:93:c6:c3:79:46:26: e7:c8:42:bb:aa:8f:3d:27:7d:41:6c:20:2c:20:01: eb:20:3c:e7:69:da:a6:ff:d9:4a:6b:a3:da:fa:77: a5:d0:b4:8f:ae:d5:2a:62:59:18:20:df:d5:28:dc: 94:01:35:66:ad:e4:e9:22:74:19:65:1b:2c:0a:4e: 05:23:d4:bb:4c:a4:1a:3e:31:6f:f0:38:5f:6f:26: 84:13:99:d1:2f:66:4f:82:6f:ef:0d:96:16:0e:7d: 08:2d:fa:50:79:58:79:98:68:23:f5:de:a1:aa:99: 04:f2:02:46:e4:ea:f3:c6:e1:78:fa:c7:3a:37:93: 23:3a:3a:6e:16:16:98:9f:57:77:f5:86:39:1c:19: 03:ff:83:d6:3c:06:3d:e4:f7:db:ea:7e:40:f1:69: 14:80:11:eb:d4:e4:29:b6:0b:f6:eb:59:fc:e7:58: b0:51:2a:ea:7e:f1:0f:e8:b1:50:67:ed:9d:a0:ba: 8e:d7:47:7c:df:a5:8a:40:32:9f:d0:40:ed:2e:b9: 1f:66:11:b4:ec:a7:85:61:0f:60:b9:6e:59:9f:de: 42:f9:55:10:cf:fa:ae:f3:a0:8f:7f:65:b3:09:87: 9c:27:24:ff:5e:af:f1:c8:a2:5e:6b:b7:fe:a7:66: e6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:97:D1:30:65:11:7C:54:39:3F:2F:4E:39:A7:1A:16:6B:A7:F8:58 X509v3 Authority Key Identifier: keyid:FC:65:5A:21:54:3E:CF:57:BF:A3:EB:DF:79:46:A9:95:61:EC:52:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/_GVaIVQ-z1e_o-vfeUaplWHsUvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GVaIVQ-z1e_o-vfeUaplWHsUvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151C9D/73ACA5E4CF4511E4B6B7A211C4F9AE02/A23207FEB14111E5A3B46B15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.231.240.0/22 IPv6: 2001:df5:e800::/48 Signature Algorithm: sha256WithRSAEncryption 54:f7:d8:79:da:06:0c:57:97:98:ae:80:9c:50:98:dd:2b:74: ca:59:25:23:d5:0b:74:0f:28:f7:63:0c:d2:19:cd:37:cb:ca: b8:47:92:04:3d:4c:b1:01:94:0c:be:3c:9e:3c:ec:63:6c:fe: da:f0:a5:85:d2:f4:5e:31:f6:ba:9e:1e:3e:4c:eb:34:5b:80: d5:fb:be:20:67:6f:9a:15:06:af:5a:c3:af:46:a1:a4:1b:ac: f4:fb:aa:19:aa:05:00:1f:a5:b6:79:da:1f:c9:62:3f:56:a7: 89:e2:c6:3a:35:da:25:26:bc:96:d9:f5:da:c8:4e:05:d0:0e: 46:33:45:a8:84:eb:1c:a6:59:7f:e8:30:0b:bb:bf:cf:7a:23: 5a:f3:a5:26:bc:dc:95:02:3e:cc:91:22:aa:42:17:97:19:cf: 7c:e5:33:71:df:00:5d:dd:ba:c2:51:78:04:07:51:99:e7:27: 07:0f:a1:6c:78:4f:3d:9b:9e:6e:ff:74:cc:61:65:b3:7a:7f: 6b:33:5a:f7:58:1c:cf:84:ce:ba:b4:69:00:2b:c7:18:5d:9d: ba:c7:d9:c5:da:8e:60:a9:2a:e6:a9:74:fd:4a:09:e3:0e:2a: dd:34:2a:06:c5:42:8b:b8:fc:ef:dd:f1:a6:42:37:2d:7d:2c: 70:a1:72:ef -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICJ4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFDOUQxMTAvBgNVBAUTKEZDNjU1QTIxNTQzRUNGNTdCRkEzRUJERjc5NDZBOTk1 NjFFQzUyRjUwHhcNMjYwMzE4MTYxODQ3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhZDA2Ny0zNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWMGQuskfXaTxsN5RibnyEK7qo89J31BbCAsIAHrIDznadqm/9lKa6Pa+nel 0LSPrtUqYlkYIN/VKNyUATVmreTpInQZZRssCk4FI9S7TKQaPjFv8DhfbyaEE5nR L2ZPgm/vDZYWDn0ILfpQeVh5mGgj9d6hqpkE8gJG5OrzxuF4+sc6N5MjOjpuFhaY n1d39YY5HBkD/4PWPAY95Pfb6n5A8WkUgBHr1OQptgv261n851iwUSrqfvEP6LFQ Z+2doLqO10d836WKQDKf0EDtLrkfZhG07KeFYQ9guW5Zn95C+VUQz/qu86CPf2Wz CYecJyT/Xq/xyKJea7f+p2bmSQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDKX0TBl EXxUOT8vTjmnGhZrp/hYMB8GA1UdIwQYMBaAFPxlWiFUPs9Xv6Pr33lGqZVh7FL1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUM5RC83M0FDQTVFNENG NDUxMUU0QjZCN0EyMTFDNEY5QUUwMi9fR1ZhSVZRLXoxZV9vLXZmZVVhcGxXSHNV dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HVmFJVlEtejFlX28tdmZlVWFwbFdIc1V2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFDOUQvNzNBQ0E1RTRDRjQ1MTFFNEI2QjdBMjExQzRGOUFFMDIvQTIzMjA3RkVC MTQxMTFFNUEzQjQ2QjE1QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ+fwMA8EAgACMAkDBwAgAQ316AAwDQYJKoZIhvcNAQELBQADggEB AFT32HnaBgxXl5iugJxQmN0rdMpZJSPVC3QPKPdjDNIZzTfLyrhHkgQ9TLEBlAy+ PJ487GNs/trwpYXS9F4x9rqeHj5M6zRbgNX7viBnb5oVBq9aw69GoaQbrPT7qhmq BQAfpbZ52h/JYj9Wp4nixjo12iUmvJbZ9drITgXQDkYzRaiE6xymWX/oMAu7v896 I1rzpSa83JUCPsyRIqpCF5cZz3zlM3HfAF3dusJReAQHUZnnJwcPoWx4Tz2bnm7/ dMxhZbN6f2szWvdYHM+Ezrq0aQArxxhdnbrH2cXajmCpKuapdP1KCeMOKt00KgbF Qou4/O/d8aZCNy19LHChcu8= -----END CERTIFICATE-----Generated at Thu Mar 26 11:34:08 2026 by rpki-client