$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa File: 97F31854777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: YkCRNqQCS8jVIHV+a7IJFYqulDisT+tl/2C+71L8pZ0= Subject key identifier: B9:D4:96:95:6E:59:A8:6F:DA:21:98:6A:79:3A:04:C0:85:11:39:D6 Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 1A51 Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:12:19 +0000 ROA not before: Sat 02 Aug 2025 16:55:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58419 IP address blocks: 103.10.252.0/24 maxlen: 24 103.23.214.0/24 maxlen: 24 103.95.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6737 (0x1a51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313, serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 2 16:55:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a51c33-2112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:de:96:56:47:d9:76:b4:7f:e7:a6:45:fe: db:71:1b:bf:be:d7:24:c1:6c:92:24:bf:46:23:12: d3:77:69:02:95:db:47:fe:8d:bf:10:fe:87:a1:aa: e2:65:9b:f4:1a:04:b5:93:00:16:e9:3c:e4:4a:9c: 2b:52:4e:a8:3d:bc:63:84:e1:b9:74:8b:cc:61:0c: 3f:2a:56:5f:e3:44:9a:d1:eb:f5:25:db:7b:59:a0: 65:f8:5c:ff:35:ee:1d:95:d6:d5:6e:12:d6:30:2d: c7:9d:a0:a0:ff:3f:ef:87:3d:59:81:30:bc:ec:19: 7d:74:6e:6c:ce:f8:37:40:0e:48:5a:97:10:8f:92: 54:a4:0d:eb:c7:05:dd:30:6c:90:8d:82:e8:38:47: 55:46:a1:47:d4:e7:4d:d8:91:3e:39:c3:9a:b6:23: d4:67:c1:19:e1:3c:62:d2:5a:ad:ce:5f:31:e0:23: 62:1d:bc:fa:79:db:0c:3d:1c:7b:d7:6d:7d:9c:1e: 52:ba:5d:78:2a:2a:44:45:96:66:4d:2b:fc:0d:02: f1:5a:a6:02:e1:7f:20:99:ff:f8:22:c4:bc:a1:e4: 5e:c2:b9:03:9d:51:ea:be:65:53:da:4f:1f:ab:29: d0:d8:33:f3:7a:97:f1:68:bc:d6:7f:9c:19:09:f4: 75:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D4:96:95:6E:59:A8:6F:DA:21:98:6A:79:3A:04:C0:85:11:39:D6 X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.10.252.0/24 103.23.214.0/24 103.95.193.0/24 Signature Algorithm: sha256WithRSAEncryption 52:9d:7c:17:a8:9b:05:d1:1a:71:60:fb:66:df:4a:a1:ed:f1: 2b:63:d8:d4:1e:c8:7e:29:1c:8d:2b:11:c1:82:a7:b4:eb:53: 96:a9:c4:9c:e7:01:5e:9b:0f:cf:dc:73:ee:01:6e:f6:05:6d: 40:67:08:b9:c2:19:b2:7f:12:b6:34:e8:d1:66:aa:f7:0e:94: b1:5a:69:b7:fe:be:f9:45:09:56:af:99:b1:c3:41:07:6d:10: 72:bf:ef:93:45:00:64:ee:d4:16:bd:ba:38:bf:6d:e6:ce:70: b9:ee:61:a9:53:c6:dd:2e:dd:19:f4:b6:80:52:cf:57:fe:52: 3b:49:63:f1:71:fe:da:de:96:a6:d4:4c:66:1d:e7:ef:3b:27: a2:40:1d:a5:57:a7:80:22:2e:f5:bf:4f:64:f6:d1:b7:fa:0d: 34:1a:89:06:76:55:7c:ff:72:fa:01:d1:c0:48:f1:fd:d7:ab: ab:2a:1f:da:46:38:6f:ff:6a:54:9f:fd:66:87:db:68:68:eb: eb:9d:dc:ad:d9:4b:ad:2b:27:93:76:61:40:c1:cd:4b:a6:00: 94:bd:92:d5:ed:73:77:a0:8e:08:fd:65:44:9f:0f:0b:a8:29: 59:00:16:bb:ea:97:78:7f:75:8f:13:5b:85:21:17:ba:4f:97: 2b:03:ff:c9 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICGlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjUwODAyMTY1NTIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWMzMy0yMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg7ellZH2Xa0f+emRf7bcRu/vtckwWySJL9GIxLTd2kCldtH/o2/EP6Hoari ZZv0GgS1kwAW6TzkSpwrUk6oPbxjhOG5dIvMYQw/KlZf40Sa0ev1Jdt7WaBl+Fz/ Ne4dldbVbhLWMC3HnaCg/z/vhz1ZgTC87Bl9dG5szvg3QA5IWpcQj5JUpA3rxwXd MGyQjYLoOEdVRqFH1OdN2JE+OcOatiPUZ8EZ4Txi0lqtzl8x4CNiHbz6edsMPRx7 1219nB5Sul14KipERZZmTSv8DQLxWqYC4X8gmf/4IsS8oeRewrkDnVHqvmVT2k8f qynQ2DPzepfxaLzWf5wZCfR1lwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFLnUlpVu Wahv2iGYank6BMCFETnWMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOTdGMzE4NTQ3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZwr8AwQAZxfWAwQAZ1/BMA0GCSqGSIb3DQEBCwUAA4IBAQBSnXwX qJsF0RpxYPtm30qh7fErY9jUHsh+KRyNKxHBgqe061OWqcSc5wFemw/P3HPuAW72 BW1AZwi5whmyfxK2NOjRZqr3DpSxWmm3/r75RQlWr5mxw0EHbRByv++TRQBk7tQW vbo4v23mznC57mGpU8bdLt0Z9LaAUs9X/lI7SWPxcf7a3pam1ExmHefvOyeiQB2l V6eAIi71v09k9tG3+g00GokGdlV8/3L6AdHASPH916urKh/aRjhv/2pUn/1mh9to aOvrndyt2UutKyeTdmFAwc1LpgCUvZLV7XN3oI4I/WVEnw8LqClZABa76pd4f3WP E1uFIRe6T5crA//J -----END CERTIFICATE-----Generated at Thu Mar 26 07:00:10 2026 by rpki-client