$ rpki-client -vvf rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/DD015FDE639D11EFB9BDBE62C4F9AE02.roa File: DD015FDE639D11EFB9BDBE62C4F9AE02.roa (raw, json) Hash identifier: iQY38hYAmhqJkb6ZCEBZAdClrGW6LNCJUEQ4iP8bQ6k= Subject key identifier: F6:DD:FC:F0:5E:8E:AF:56:75:E9:1B:69:30:9D:49:5C:25:BB:F0:37 Certificate issuer: /CN=A91F372C/serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Certificate serial: 0134 Authority key identifier: 4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/DD015FDE639D11EFB9BDBE62C4F9AE02.roa Signing time: Tue 03 Mar 2026 05:46:50 +0000 ROA not before: Tue 03 Mar 2026 05:46:50 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 38195 IP address blocks: 103.116.195.0/24 maxlen: 24 203.20.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F372C, serialNumber=4C62F1E10B883F5D5784D635740FD23034CEBFE2 Validity Not Before: Mar 3 05:46:50 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a675ca-fc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:58:f9:26:fb:78:90:34:7c:d8:2b:01:da:aa: e0:b5:0d:89:ff:f0:51:8e:28:30:17:09:e5:3b:b9: d7:0d:d4:f6:e2:e4:fd:75:22:07:55:22:22:7c:df: 6c:fc:26:7a:3b:d1:30:5d:5d:52:3e:22:c2:30:43: c5:23:37:c0:e1:91:1b:c2:86:0d:01:3d:08:82:07: ae:d2:ff:8a:9c:c2:cd:60:88:94:9c:b7:84:95:1c: ed:35:de:c1:5c:8c:7c:94:a8:4c:b0:9f:11:99:8c: d8:60:76:aa:e9:bd:54:9b:e9:4d:6a:9d:45:fc:2d: bf:2b:77:7c:3b:00:3c:d5:91:c6:9d:aa:b2:d8:28: 32:a3:ea:d0:a1:ae:8a:8f:b8:46:64:82:ec:0c:5b: a7:ae:60:9e:aa:d3:26:43:82:5b:ad:e5:7d:ab:76: 88:23:65:f2:13:75:cd:9d:91:1a:a9:1d:64:d2:8e: 44:a7:2b:7d:6e:67:00:80:48:31:49:e4:ab:d7:1a: 97:1e:e9:d1:6a:45:31:82:32:bf:af:38:c9:2f:37: 2a:06:20:e3:df:0d:f7:63:df:a2:d1:9b:33:63:d6: 77:0c:a1:ce:3f:ba:54:06:ea:cc:58:7d:54:05:96: 3d:ec:b3:d6:90:91:68:4b:8a:55:ed:ca:4c:80:bf: 4d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DD:FC:F0:5E:8E:AF:56:75:E9:1B:69:30:9D:49:5C:25:BB:F0:37 X509v3 Authority Key Identifier: keyid:4C:62:F1:E1:0B:88:3F:5D:57:84:D6:35:74:0F:D2:30:34:CE:BF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/TGLx4QuIP11XhNY1dA_SMDTOv-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGLx4QuIP11XhNY1dA_SMDTOv-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F372C/6796D8E25ECE11EFA9A8B03EC4F9AE02/DD015FDE639D11EFB9BDBE62C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.116.195.0/24 203.20.125.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c6:c9:52:23:36:e4:03:5b:53:1a:62:ea:f5:9a:db:ec:a0: 05:54:0c:95:59:48:8a:01:02:86:0a:49:a1:e3:44:5b:98:b5: 35:21:cf:63:fb:89:5e:e0:27:aa:90:09:ba:30:82:64:ba:4b: 5e:21:fb:26:48:e9:8a:71:96:f3:e7:58:a7:32:83:09:aa:40: 8c:c0:63:32:82:4f:74:2f:e2:cb:28:02:53:02:f9:47:46:44: 65:cf:58:99:bd:2d:5e:01:d9:f1:38:74:16:9c:fb:87:44:eb: dd:f4:80:84:7c:fc:46:ab:26:6f:58:06:fb:25:22:74:69:a1: 9d:c0:29:8a:56:01:b7:f9:cc:4f:ef:c9:d7:64:82:1e:3d:0f: 24:0f:29:77:87:52:6f:9a:47:c6:2b:84:37:be:14:0e:90:d0: 85:cd:92:44:49:03:94:68:4c:94:44:24:2c:2e:b3:31:53:63: 21:78:00:a4:3c:23:f6:bb:1e:2a:f2:5e:fe:1c:1b:3c:da:c4: 6e:85:fa:fb:c0:ef:27:6b:35:98:0f:af:ef:c6:1c:cd:f2:a8: 82:e8:61:b3:9e:6a:9b:cc:57:04:4e:9c:94:17:0c:bf:c5:7d: 61:94:43:ab:02:9a:bc:92:d7:fa:e4:0d:4e:ac:02:7d:42:8f: 68:ab:cc:73 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3MkMxMTAvBgNVBAUTKDRDNjJGMUUxMEI4ODNGNUQ1Nzg0RDYzNTc0MEZEMjMw MzRDRUJGRTIwHhcNMjYwMzAzMDU0NjUwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NzVjYS1mYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fj5Jvt4kDR82CsB2qrgtQ2J//BRjigwFwnlO7nXDdT24uT9dSIHVSIifN9s /CZ6O9EwXV1SPiLCMEPFIzfA4ZEbwoYNAT0Iggeu0v+KnMLNYIiUnLeElRztNd7B XIx8lKhMsJ8RmYzYYHaq6b1Um+lNap1F/C2/K3d8OwA81ZHGnaqy2Cgyo+rQoa6K j7hGZILsDFunrmCeqtMmQ4JbreV9q3aII2XyE3XNnZEaqR1k0o5Epyt9bmcAgEgx SeSr1xqXHunRakUxgjK/rzjJLzcqBiDj3w33Y9+i0ZszY9Z3DKHOP7pUBurMWH1U BZY97LPWkJFoS4pV7cpMgL9NdQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPbd/PBe jq9WdekbaTCdSVwlu/A3MB8GA1UdIwQYMBaAFExi8eELiD9dV4TWNXQP0jA0zr/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzcyQy82Nzk2RDhFMjVF Q0UxMUVGQTlBOEIwM0VDNEY5QUUwMi9UR0x4NFF1SVAxMVhoTlkxZEFfU01EVE92 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RHTHg0UXVJUDExWGhOWTFkQV9TTURUT3YtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM3MkMvNjc5NkQ4RTI1RUNFMTFFRkE5QThCMDNFQzRGOUFFMDIvREQwMTVGREU2 MzlEMTFFRkI5QkRCRTYyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ3TDAwQAyxR9MA0GCSqGSIb3DQEBCwUAA4IBAQCLxslSIzbkA1tT GmLq9Zrb7KAFVAyVWUiKAQKGCkmh40RbmLU1Ic9j+4le4CeqkAm6MIJkukteIfsm SOmKcZbz51inMoMJqkCMwGMygk90L+LLKAJTAvlHRkRlz1iZvS1eAdnxOHQWnPuH ROvd9ICEfPxGqyZvWAb7JSJ0aaGdwCmKVgG3+cxP78nXZIIePQ8kDyl3h1JvmkfG K4Q3vhQOkNCFzZJESQOUaEyURCQsLrMxU2MheACkPCP2ux4q8l7+HBs82sRuhfr7 wO8nazWYD6/vxhzN8qiC6GGznmqbzFcETpyUFwy/xX1hlEOrApq8ktf65A1OrAJ9 Qo9oq8xz -----END CERTIFICATE-----Generated at Thu Mar 26 14:57:42 2026 by rpki-client