$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa File: 31A71E34407111EFAC14A640C4F9AE02.roa (raw, json) Hash identifier: Luwtev83Zs6KUCyFMF7rPFNFdO+XLcijtYlkHDR9isU= Subject key identifier: 11:8A:1B:72:1C:45:63:8C:AE:F1:F5:4A:CE:E0:CF:9F:27:9C:F6:78 Certificate issuer: /CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Certificate serial: 013E Authority key identifier: B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:16:32 +0000 ROA not before: Mon 01 Sep 2025 05:54:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45441 IP address blocks: 103.2.112.0/22 maxlen: 22 115.178.60.0/24 maxlen: 24 115.178.61.0/24 maxlen: 24 115.178.62.0/24 maxlen: 24 115.178.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1A9C, serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Validity Not Before: Sep 1 05:54:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a9d0-4a9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:04:c7:cf:95:94:39:de:00:4a:69:d2:89: 32:07:74:0f:2b:c2:93:10:3f:9d:17:4c:86:08:c8: a7:88:88:b0:40:6f:c4:34:6b:4f:a5:4f:d6:2b:2a: 7e:b8:d2:d2:92:e2:9a:c1:ed:46:98:ae:e2:f4:8c: 64:36:fd:96:68:e6:d8:9e:f1:bb:ed:ae:59:5d:34: d4:67:8c:2b:1e:f3:9b:a8:63:8d:fe:07:e6:c6:52: fa:e6:4b:51:67:52:07:a1:df:30:b7:b9:c2:4a:1c: 1a:5f:d7:2a:e7:2d:d5:c0:2e:ec:b8:0e:61:5c:19: 78:61:83:92:a0:16:ee:df:85:c9:96:58:cf:fd:1b: 61:17:e4:7c:cb:78:11:dd:73:58:84:8d:df:a5:ca: 1c:e6:1a:97:e3:da:22:bb:7b:6a:66:03:13:a7:6a: f6:11:c8:69:63:a6:77:b6:ab:06:3e:60:2c:12:3f: 25:09:d1:af:1b:6e:51:1d:cd:73:1e:a9:82:a8:81: 29:38:de:44:38:95:79:33:fa:d2:0b:59:c9:fc:9a: 86:f3:25:8b:de:d5:4a:39:27:51:46:e4:13:bc:9c: 81:3c:c7:7f:a6:c9:21:00:c9:af:db:c7:57:0d:ee: dd:b6:8c:52:8c:7e:45:4e:29:d5:82:34:bb:42:c2: 69:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:8A:1B:72:1C:45:63:8C:AE:F1:F5:4A:CE:E0:CF:9F:27:9C:F6:78 X509v3 Authority Key Identifier: keyid:B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.2.112.0/22 115.178.60.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:59:d1:dd:39:47:07:f1:35:c6:ee:15:0f:f6:0a:16:61:1b: 7a:45:53:60:68:50:b7:cc:a0:0a:1a:f2:e3:e5:3e:b9:d3:07: a8:23:4b:4e:d2:5f:f9:aa:5f:90:44:d9:44:eb:bb:f6:d0:22: a8:dc:85:7e:91:15:71:9d:6c:cc:7a:97:29:c7:bd:6d:7e:b5: df:b5:1f:26:12:fd:d2:6d:55:26:db:73:f6:54:04:d7:95:22: 5c:a3:2e:71:44:d7:d2:0a:13:20:1d:66:cd:9e:a7:2a:3c:2e: 09:c4:bb:df:d5:3d:00:b5:33:2e:62:8f:54:f2:bf:2d:dc:d3: 4b:64:47:29:7a:13:1b:16:34:de:bc:5d:26:dd:5f:e2:c3:14: fc:38:5d:59:41:fd:2d:2d:45:e1:88:bd:4c:16:fc:f1:51:ab: af:b4:6e:83:b4:8b:f6:b8:f1:06:f9:11:5c:23:a3:07:9b:d2: 66:29:67:bf:c0:af:70:66:04:fb:81:37:51:10:61:fd:04:08: a7:41:3a:36:a0:46:2c:3a:59:08:d7:d6:2b:c3:55:b4:30:c1: 8b:d3:90:37:c6:a6:28:94:70:0a:1d:55:15:ce:17:35:bc:ca: 90:58:5a:05:51:40:2c:33:39:b6:a9:8c:1f:e6:63:50:12:63: f9:21:34:8b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBOUMxMTAvBgNVBAUTKEI1OURGREI1MDhBOUJBQkRDRjhEQUFBRkUzRjNERTY5 NTlGQjEzQUEwHhcNMjUwOTAxMDU1NDQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTlkMC00YTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNAEx8+VlDneAEpp0okyB3QPK8KTED+dF0yGCMiniIiwQG/ENGtPpU/WKyp+ uNLSkuKawe1GmK7i9IxkNv2WaObYnvG77a5ZXTTUZ4wrHvObqGON/gfmxlL65ktR Z1IHod8wt7nCShwaX9cq5y3VwC7suA5hXBl4YYOSoBbu34XJlljP/RthF+R8y3gR 3XNYhI3fpcoc5hqX49oiu3tqZgMTp2r2EchpY6Z3tqsGPmAsEj8lCdGvG25RHc1z HqmCqIEpON5EOJV5M/rSC1nJ/JqG8yWL3tVKOSdRRuQTvJyBPMd/pskhAMmv28dX De7dtoxSjH5FTinVgjS7QsJpzQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBGKG3Ic RWOMrvH1Ss7gz58nnPZ4MB8GA1UdIwQYMBaAFLWd/bUIqbq9z42qr+Pz3mlZ+xOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUE5Qy84RThCM0U3RTQw NzAxMUVGQjRBMTgwMEFDNEY5QUUwMi90WjM5dFFpcHVyM1BqYXF2NF9QZWFWbjdF Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RaMzl0UWlwdXIzUGphcXY0X1BlYVZuN0U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFBOUMvOEU4QjNFN0U0MDcwMTFFRkI0QTE4MDBBQzRGOUFFMDIvMzFBNzFFMzQ0 MDcxMTFFRkFDMTRBNjQwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZwJwAwQCc7I8MA0GCSqGSIb3DQEBCwUAA4IBAQAcWdHdOUcH8TXG 7hUP9goWYRt6RVNgaFC3zKAKGvLj5T650weoI0tO0l/5ql+QRNlE67v20CKo3IV+ kRVxnWzMepcpx71tfrXftR8mEv3SbVUm23P2VATXlSJcoy5xRNfSChMgHWbNnqcq PC4JxLvf1T0AtTMuYo9U8r8t3NNLZEcpehMbFjTevF0m3V/iwxT8OF1ZQf0tLUXh iL1MFvzxUauvtG6DtIv2uPEG+RFcI6MHm9JmKWe/wK9wZgT7gTdREGH9BAinQTo2 oEYsOlkI19Yrw1W0MMGL05A3xqYolHAKHVUVzhc1vMqQWFoFUUAsMzm2qYwf5mNQ EmP5ITSL -----END CERTIFICATE-----Generated at Thu Mar 26 21:02:22 2026 by rpki-client