$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa File: 429AFADCF25E11EE9E1B8A09C4F9AE02.roa (raw, json) Hash identifier: Av4mHmkvx3iYn7v4H7bW4jhBpHBzklQ4N3gttmKh3/U= Subject key identifier: BF:A4:3E:BA:AD:E4:B7:F1:3A:13:EA:DC:17:45:74:09:D4:34:08:4A Certificate issuer: /CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Certificate serial: 0294 Authority key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:00:15 +0000 ROA not before: Mon 03 Nov 2025 02:16:43 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134562 IP address blocks: 103.31.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE9CC, serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Validity Not Before: Nov 3 02:16:43 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5195e-8df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ea:8a:61:5e:c9:8e:7c:38:6a:c7:c8:55:0e: cc:ea:e9:47:5b:c8:d1:25:a0:ff:17:96:69:92:9d: a2:13:a1:5c:d9:72:fc:f5:56:e4:eb:a5:47:27:1d: 96:99:69:9c:5f:22:52:65:c5:3f:3e:82:54:c1:49: e3:82:9a:96:db:45:44:3e:76:36:0c:0c:40:9a:d2: 26:30:56:34:80:02:b0:82:33:18:e9:16:8d:1b:b6: 3b:e4:00:92:96:bf:f1:5b:68:b0:97:6f:ab:ed:2d: d3:28:cb:3a:b0:6c:a3:0b:7f:8c:36:a9:04:2e:b9: a8:89:e6:ee:1a:75:b8:38:a9:a9:d1:35:8c:0e:13: 4a:bc:65:81:42:d8:b9:43:8d:2f:03:ed:7f:bb:14: e3:63:50:1c:d7:cb:35:5f:be:2c:e5:b8:4c:65:27: 12:b8:69:ad:9f:00:fa:33:60:d7:51:d1:ce:91:b7: 80:79:9d:7f:ba:16:71:ef:62:21:1d:cc:d6:ad:e2: bd:d7:7f:d3:a8:58:3d:28:06:49:37:c6:b3:ed:aa: 00:96:8d:23:de:9d:07:91:f3:26:77:6d:e0:cd:bb: 50:d7:0c:be:5c:74:f4:cd:5c:8b:bf:f9:c9:fd:33: da:64:a9:1f:27:09:15:9f:76:86:c6:7c:d4:65:2e: d3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A4:3E:BA:AD:E4:B7:F1:3A:13:EA:DC:17:45:74:09:D4:34:08:4A X509v3 Authority Key Identifier: keyid:82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.31.11.0/24 Signature Algorithm: sha256WithRSAEncryption 60:6e:d7:53:c2:35:d1:c8:69:52:52:04:00:ae:23:5a:53:f6: 98:e1:39:d9:52:f7:ab:aa:26:65:6d:5b:20:1e:12:35:48:8c: 34:77:b9:48:8b:3e:50:ce:98:3d:55:8e:99:bd:61:1c:9c:1b: f4:e8:ab:e9:5c:4e:c2:97:49:f4:b8:fc:79:21:a8:13:27:aa: bc:f3:9a:b4:00:25:21:8b:6b:fb:e4:94:92:3f:e3:43:1f:48: a2:79:74:b4:11:80:0d:4d:68:ba:6e:b7:ed:0a:5d:ee:c8:ac: ec:be:50:95:bc:ce:94:a8:9a:29:1f:2d:26:2f:d7:30:13:c5: 0c:a5:62:23:4c:99:7f:54:6b:d6:14:e4:2c:29:41:3b:66:6f: f1:dd:61:ca:17:63:08:fe:6d:cb:82:93:54:e1:f2:f9:01:1f: ec:ab:6c:7c:ef:65:42:09:53:7e:a7:e0:b6:1f:7e:cc:73:41: 9c:08:00:e0:12:75:07:85:16:b8:f0:99:f2:d5:ed:27:85:50: 05:1a:9f:44:03:c6:8b:86:e4:50:28:c8:3b:f9:6d:06:ed:72: d2:58:cb:7f:71:26:ba:f0:38:98:2b:31:f3:58:88:39:65:ad: 58:f0:da:44:6c:41:54:75:0b:e5:0e:27:a1:fa:c5:96:75:18: 35:19:e3:e2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU5Q0MxMTAvBgNVBAUTKDgyOTQ0RTZBQTU3MUMwRUIzNUUyNzkxQkMxNTk2Rjc3 Mjc3QTczMjQwHhcNMjUxMTAzMDIxNjQzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTk1ZS04ZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9+qKYV7Jjnw4asfIVQ7M6ulHW8jRJaD/F5Zpkp2iE6Fc2XL89Vbk66VHJx2W mWmcXyJSZcU/PoJUwUnjgpqW20VEPnY2DAxAmtImMFY0gAKwgjMY6RaNG7Y75ACS lr/xW2iwl2+r7S3TKMs6sGyjC3+MNqkELrmoiebuGnW4OKmp0TWMDhNKvGWBQti5 Q40vA+1/uxTjY1Ac18s1X74s5bhMZScSuGmtnwD6M2DXUdHOkbeAeZ1/uhZx72Ih HczWreK913/TqFg9KAZJN8az7aoAlo0j3p0HkfMmd23gzbtQ1wy+XHT0zVyLv/nJ /TPaZKkfJwkVn3aGxnzUZS7T3wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL+kPrqt 5LfxOhPq3BdFdAnUNAhKMB8GA1UdIwQYMBaAFIKUTmqlccDrNeJ5G8FZb3cnenMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTlDQy82MEI0NDdCQTVG NEExMUVEQUQ2ODY1N0VDNEY5QUUwMi9ncFJPYXFWeHdPczE0bmtid1ZsdmR5ZDZj eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwUk9hcVZ4d09zMTRua2J3Vmx2ZHlkNmN5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU5Q0MvNjBCNDQ3QkE1RjRBMTFFREFENjg2NTdFQzRGOUFFMDIvNDI5QUZBRENG MjVFMTFFRTlFMUI4QTA5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZx8LMA0GCSqGSIb3DQEBCwUAA4IBAQBgbtdTwjXRyGlSUgQAriNa U/aY4TnZUverqiZlbVsgHhI1SIw0d7lIiz5Qzpg9VY6ZvWEcnBv06KvpXE7Cl0n0 uPx5IagTJ6q885q0ACUhi2v75JSSP+NDH0iieXS0EYANTWi6brftCl3uyKzsvlCV vM6UqJopHy0mL9cwE8UMpWIjTJl/VGvWFOQsKUE7Zm/x3WHKF2MI/m3LgpNU4fL5 AR/sq2x872VCCVN+p+C2H37Mc0GcCADgEnUHhRa48Jny1e0nhVAFGp9EA8aLhuRQ KMg7+W0G7XLSWMt/cSa68DiYKzHzWIg5Za1Y8NpEbEFUdQvlDieh+sWWdRg1GePi -----END CERTIFICATE-----Generated at Thu Mar 26 08:51:13 2026 by rpki-client