$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa File: 37C8FE80B2A211ED9A5C4B53C4F9AE02.roa (raw, json) Hash identifier: 8Y4nrhPY6RsS1NE1gpg04ierg266aCYEgZiZ3ft65yY= Subject key identifier: 43:EF:80:8A:40:BA:D9:AE:25:86:E1:96:5B:C0:8F:4C:44:9F:74:57 Certificate issuer: /CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Certificate serial: 0245 Authority key identifier: FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa Signing time: Fri 13 Mar 2026 02:36:32 +0000 ROA not before: Fri 13 Mar 2026 02:36:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 139901 IP address blocks: 103.93.34.0/23 maxlen: 24 2400:e260::/32 maxlen: 40 2400:e260:93::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAFCE, serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Validity Not Before: Mar 13 02:36:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b37830-ce67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:72:17:92:1c:9a:46:d7:c5:05:91:43:82: 9b:9e:0e:23:9a:07:d5:d5:94:59:81:a1:25:4d:0a: c3:28:fd:e2:0d:0d:ae:ad:a8:16:61:e7:1a:9d:73: 77:a9:39:43:f5:22:7d:6d:03:e9:07:3a:21:43:d1: 15:0c:97:5b:29:5c:c3:4f:65:20:6c:19:3b:d9:d5: 54:a9:ad:27:20:6a:3d:e7:95:10:67:f3:a7:7d:32: 79:95:cf:1e:90:94:76:4c:3c:56:9d:2b:bb:43:5c: 23:1c:1e:43:a3:e3:f8:95:a5:62:e3:4e:fb:44:49: 28:df:2b:bd:a5:3f:98:e2:ad:a6:f5:8b:f5:84:aa: 19:37:54:35:29:ea:6b:d0:05:6a:05:63:88:33:1b: 43:be:39:0d:6b:51:77:21:1c:d1:96:84:d3:9b:3b: 4e:23:57:ab:9e:09:0d:88:f7:ad:b9:1c:09:32:95: 76:7e:31:fb:1c:a9:41:89:c4:c1:c7:de:28:83:cf: ce:35:3c:54:70:07:67:fd:94:cd:c9:07:81:53:38: 27:f5:5b:79:37:6f:f7:21:7a:b1:de:dc:eb:10:3b: ea:c9:d9:cd:40:0f:a4:74:13:09:85:ec:20:19:e9: 89:dd:ee:aa:86:83:41:90:8b:88:74:8b:f6:1d:a3: b0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EF:80:8A:40:BA:D9:AE:25:86:E1:96:5B:C0:8F:4C:44:9F:74:57 X509v3 Authority Key Identifier: keyid:FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.93.34.0/23 IPv6: 2400:e260::/32 Signature Algorithm: sha256WithRSAEncryption b1:87:e6:01:c2:55:f8:e4:01:b7:a1:29:77:30:1b:90:71:2e: 88:b4:9b:21:3a:2b:7c:73:96:6c:66:a3:fa:33:3b:fa:a9:e9: 46:55:88:40:8e:2c:f9:fb:10:83:90:83:cf:b3:d8:30:42:89: 85:03:17:ed:ec:f4:a7:77:03:60:4d:de:ab:a3:4d:a4:9d:85: 18:83:79:da:fb:61:00:73:39:ca:a8:8e:ca:49:da:90:52:b0: 41:42:32:28:ac:f1:83:da:f1:49:28:39:8d:61:db:9a:eb:78: 0b:00:b6:1a:03:f6:5d:90:92:83:38:b2:2c:b9:f8:5e:b1:f8: ce:de:eb:6b:72:20:a6:0c:81:0b:96:46:b4:c2:e8:00:91:bc: 79:a2:d6:8d:bf:73:ed:26:30:02:82:7b:ea:39:b3:ce:d0:3f: 37:af:0a:ed:b2:f0:8a:61:8d:e1:db:00:88:5b:45:23:f9:a8: 88:e2:c4:ed:53:f8:7d:d9:a6:a0:24:10:0d:b5:a3:3b:c6:79: 74:c4:ec:17:e1:db:c6:e7:36:a6:12:27:39:ea:f6:77:9d:99: 84:31:05:a3:4b:ab:4f:2f:21:a8:df:cf:85:9e:08:33:42:a6: 00:d7:1c:56:61:85:72:25:b0:7a:02:91:f0:46:01:fa:17:89: 6e:7a:37:34 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFGQ0UxMTAvBgNVBAUTKEZCRDFBODQ4QTFGODlBOEQyNERCMEI2ODE3QTA4N0ZC MkRGNURGMDgwHhcNMjYwMzEzMDIzNjMyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzNzgzMC1jZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrZyF5IcmkbXxQWRQ4Kbng4jmgfV1ZRZgaElTQrDKP3iDQ2uragWYecanXN3 qTlD9SJ9bQPpBzohQ9EVDJdbKVzDT2UgbBk72dVUqa0nIGo955UQZ/OnfTJ5lc8e kJR2TDxWnSu7Q1wjHB5Do+P4laVi4077REko3yu9pT+Y4q2m9Yv1hKoZN1Q1Kepr 0AVqBWOIMxtDvjkNa1F3IRzRloTTmztOI1erngkNiPetuRwJMpV2fjH7HKlBicTB x94og8/ONTxUcAdn/ZTNyQeBUzgn9Vt5N2/3IXqx3tzrEDvqydnNQA+kdBMJhewg GemJ3e6qhoNBkIuIdIv2HaOwSwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFEPvgIpA utmuJYbhllvAj0xEn3RXMB8GA1UdIwQYMBaAFPvRqEih+JqNJNsLaBegh/st9d8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUZDRS8yRDM0QzM5MkIy OUMxMUVEOThBODMxNEFDNEY5QUUwMi8tOUdvU0tING1vMGsyd3RvRjZDSC15MzEz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy05R29TS0g0bW8wazJ3dG9GNkNILXkzMTN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFGQ0UvMkQzNEMzOTJCMjlDMTFFRDk4QTgzMTRBQzRGOUFFMDIvMzdDOEZFODBC MkEyMTFFRDlBNUM0QjUzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ10iMA0EAgACMAcDBQAkAOJgMA0GCSqGSIb3DQEBCwUAA4IBAQCx h+YBwlX45AG3oSl3MBuQcS6ItJshOit8c5ZsZqP6Mzv6qelGVYhAjiz5+xCDkIPP s9gwQomFAxft7PSndwNgTd6ro02knYUYg3na+2EAcznKqI7KSdqQUrBBQjIorPGD 2vFJKDmNYdua63gLALYaA/ZdkJKDOLIsufhesfjO3utrciCmDIELlka0wugAkbx5 otaNv3PtJjACgnvqObPO0D83rwrtsvCKYY3h2wCIW0Uj+aiI4sTtU/h92aagJBAN taM7xnl0xOwX4dvG5zamEic56vZ3nZmEMQWjS6tPLyGo38+FnggzQqYA1xxWYYVy JbB6ApHwRgH6F4luejc0 -----END CERTIFICATE-----Generated at Thu Mar 26 16:15:04 2026 by rpki-client