$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa File: 8E20940E32AE11EFAE6AE719C4F9AE02.roa (raw, json) Hash identifier: +Z9Gp5ek99wZ8UJ7rfRgE2CK3T6NZIN91FLtJX4m4zg= Subject key identifier: 4F:41:25:74:D8:62:71:69:34:5E:5D:81:70:46:40:4D:C0:7E:2B:3E Certificate issuer: /CN=A91DC324/serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Certificate serial: 0147 Authority key identifier: 4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:52:37 +0000 ROA not before: Mon 31 Mar 2025 05:31:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152707 IP address blocks: 103.37.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC324, serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Validity Not Before: Mar 31 05:31:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5a435-78fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:48:74:6e:ac:37:17:db:66:6b:d5:27:7d:dc: fd:30:ea:d0:6f:73:06:cb:05:4f:b0:9f:26:82:8f: 04:ff:69:da:8d:47:54:e0:7e:1f:1a:1a:af:3d:2b: 4f:d9:2a:f2:54:a4:f1:f9:47:a4:b5:4b:8a:0a:fb: f1:24:2e:79:fa:0f:26:36:b2:b1:58:5c:15:fc:b0: 9d:d4:88:8b:be:0b:7b:b1:ad:0c:46:19:51:77:8a: 10:b1:b4:e4:12:d0:b9:36:3b:9b:14:ba:59:89:e8: a5:59:0a:71:6b:4a:2d:6f:9e:42:58:11:ed:59:a8: 2b:69:da:9f:5b:d9:8c:86:0a:a5:e5:6e:ac:1b:30: e2:15:09:20:6d:51:9e:b7:b1:4b:00:db:af:4f:13: 56:8c:f4:85:32:9f:1c:81:6a:c1:33:4c:a4:9e:b5: 4d:7e:5c:2f:65:ba:db:f4:a0:57:fc:f9:38:97:ad: 02:45:b7:51:f8:29:d0:3f:bc:e5:94:5b:7a:a3:d6: b4:a4:be:c4:0b:55:dd:62:c4:34:08:44:95:9f:58: db:97:f1:ef:11:e6:6b:0d:f1:b4:e9:47:1e:27:d4: 89:43:a5:50:3e:6e:ba:22:5d:0e:6f:4c:32:ff:c9: 63:9e:10:fc:e4:f0:80:00:ca:8d:17:a3:9e:29:cb: c7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:41:25:74:D8:62:71:69:34:5E:5D:81:70:46:40:4D:C0:7E:2B:3E X509v3 Authority Key Identifier: keyid:4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.37.202.0/23 Signature Algorithm: sha256WithRSAEncryption b8:d3:76:96:8d:6d:a7:35:8f:86:58:a7:ab:ac:3d:f0:67:38: a8:c1:79:e1:9b:a0:4c:23:71:d4:8e:8d:6f:f5:4f:5b:f7:83: ae:48:e4:8e:8a:04:2f:ce:3e:96:94:40:59:33:a0:24:8f:23: dc:10:44:cd:56:23:10:ad:ea:10:3d:c7:ad:4c:5a:08:8b:cb: c6:ef:2c:de:48:f5:d9:e3:55:a6:ee:51:53:d8:47:55:f9:63: 1f:19:68:3c:30:5f:65:f5:0c:c1:ce:ca:d3:d7:bc:9a:c7:d0: a9:3e:58:25:e0:27:e1:6b:ed:23:03:f8:72:4d:1e:16:0d:2b: d0:53:f5:a3:12:49:82:aa:f5:f5:35:ec:16:bc:28:1a:c6:9b: 49:4b:31:a7:85:4b:f0:b7:e2:30:a2:5b:cc:b0:2f:ee:a5:4f: ca:0f:fc:84:27:03:ad:6a:04:a9:ac:44:35:fb:3d:c7:e0:58: b5:4b:d3:be:8a:18:ed:0d:be:20:75:82:fe:97:65:16:64:02: 29:6d:45:01:df:7e:06:b6:0e:83:7e:1a:f2:e2:24:65:60:41: 7c:5e:90:b8:70:6b:52:bd:c2:6f:b1:62:b5:42:71:c7:18:62: 66:4d:f3:10:1f:ce:44:13:c7:29:83:c0:3f:55:92:4a:9b:ca: 9a:54:61:24 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMjQxMTAvBgNVBAUTKDRCMjhGNUYzQTlCRTZDOTU1RkYxQkUwRjdCNTA4MDNB QjE3RUI0NjAwHhcNMjUwMzMxMDUzMTEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQzNS03OGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kh0bqw3F9tma9Unfdz9MOrQb3MGywVPsJ8mgo8E/2najUdU4H4fGhqvPStP 2SryVKTx+UektUuKCvvxJC55+g8mNrKxWFwV/LCd1IiLvgt7sa0MRhlRd4oQsbTk EtC5NjubFLpZieilWQpxa0otb55CWBHtWagradqfW9mMhgql5W6sGzDiFQkgbVGe t7FLANuvTxNWjPSFMp8cgWrBM0yknrVNflwvZbrb9KBX/Pk4l60CRbdR+CnQP7zl lFt6o9a0pL7EC1XdYsQ0CESVn1jbl/HvEeZrDfG06UceJ9SJQ6VQPm66Il0Ob0wy /8ljnhD85PCAAMqNF6OeKcvHfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE9BJXTY YnFpNF5dgXBGQE3Afis+MB8GA1UdIwQYMBaAFEso9fOpvmyVX/G+D3tQgDqxfrRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMyNC85ODJDNzYxMjMx RTAxMUVGOTk5NTNEMjJDNEY5QUUwMi9TeWoxODZtLWJKVmY4YjRQZTFDQU9yRi10 R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5ajE4Nm0tYkpWZjhiNFBlMUNBT3JGLXRHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMjQvOTgyQzc2MTIzMUUwMTFFRjk5OTUzRDIyQzRGOUFFMDIvOEUyMDk0MEUz MkFFMTFFRkFFNkFFNzE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZyXKMA0GCSqGSIb3DQEBCwUAA4IBAQC403aWjW2nNY+GWKerrD3w ZziowXnhm6BMI3HUjo1v9U9b94OuSOSOigQvzj6WlEBZM6AkjyPcEETNViMQreoQ PcetTFoIi8vG7yzeSPXZ41Wm7lFT2EdV+WMfGWg8MF9l9QzBzsrT17yax9CpPlgl 4Cfha+0jA/hyTR4WDSvQU/WjEkmCqvX1NewWvCgaxptJSzGnhUvwt+IwolvMsC/u pU/KD/yEJwOtagSprEQ1+z3H4Fi1S9O+ihjtDb4gdYL+l2UWZAIpbUUB334Gtg6D fhry4iRlYEF8XpC4cGtSvcJvsWK1QnHHGGJmTfMQH85EE8cpg8A/VZJKm8qaVGEk -----END CERTIFICATE-----Generated at Thu Mar 26 15:41:45 2026 by rpki-client