$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa File: C3E2252E205F11EE8117111CC4F9AE02.roa (raw, json) Hash identifier: jZ6Iauv/dN/4P0hBUVndivCUUgxGO8TMbCYwzqgk7iI= Subject key identifier: 3E:9C:23:9E:C8:E6:0D:DD:98:A0:75:25:AF:8E:B7:35:13:88:03:96 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B64 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:47:31 +0000 ROA not before: Wed 02 Jul 2025 20:29:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 35280 IP address blocks: 203.80.88.0/24 maxlen: 24 203.185.1.0/24 maxlen: 24 203.185.33.0/24 maxlen: 24 203.185.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jul 2 20:29:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47bb3-2495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:85:92:74:20:b0:94:b9:89:11:23:9f:54: da:15:f6:a2:be:9f:17:de:8f:46:d0:08:cb:54:a5: f7:ef:64:f8:7f:dc:a0:af:ec:94:2a:fc:01:ba:94: d8:25:ea:82:30:7e:35:c7:02:d9:52:4c:af:96:7e: d1:e5:97:a3:38:ff:0a:e0:21:5c:47:75:e7:90:e2: 28:c3:a6:7e:9e:89:d1:8a:68:7a:1b:29:07:7d:30: 65:31:38:61:11:73:8c:0c:ef:0f:dd:8a:14:91:ec: df:14:12:42:ca:69:8b:50:a8:36:fb:d7:b7:fa:e7: 09:97:ab:aa:2e:76:f2:cc:99:37:12:aa:c0:2c:c3: 41:0c:ba:55:ae:de:7d:04:36:aa:97:2d:f7:74:cd: 0a:eb:ff:30:e5:9f:78:24:13:d7:ea:8a:22:90:38: 38:55:c5:41:ed:67:a2:b1:ed:a0:75:46:90:6c:23: a1:99:de:74:c8:9f:d5:54:09:83:42:b5:d8:6c:b3: 4b:f9:71:b9:2d:92:00:d2:ac:10:95:a2:4c:86:fe: 9e:8d:ff:7c:ce:62:0d:50:30:9a:64:50:cf:70:ad: 07:0c:e9:87:79:b6:57:8c:cf:4c:bb:f8:08:67:5a: 65:f1:22:ff:e0:17:36:17:21:a1:9a:33:8a:b6:4d: da:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9C:23:9E:C8:E6:0D:DD:98:A0:75:25:AF:8E:B7:35:13:88:03:96 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.80.88.0/24 203.185.1.0/24 203.185.33.0-203.185.35.255 Signature Algorithm: sha256WithRSAEncryption 27:01:a6:6e:ec:7f:3c:af:48:ec:cd:8d:18:73:1a:1d:b9:74: c2:2f:18:30:44:de:45:e3:6e:84:2d:e9:90:93:c8:1c:88:c1: 20:92:30:68:c0:37:b1:5f:b0:36:22:e6:54:5b:27:fb:ec:a1: 63:eb:6c:10:dc:29:40:45:1b:14:86:70:c3:60:39:d3:af:98: f8:71:aa:38:dd:b1:2e:22:02:24:01:fe:d6:9e:d3:48:13:cc: 6c:f1:43:32:ae:59:1f:d0:e1:06:35:18:82:d1:b6:25:38:54: fe:4a:e6:2b:17:b0:19:63:7a:50:32:3c:d0:ff:74:9f:de:82: eb:17:73:1d:9f:59:cd:3f:7b:54:0d:a3:13:cb:ac:c2:a3:6f: 98:aa:bb:9c:93:f3:91:f7:77:0e:c1:e3:ed:bb:4d:80:08:73: 43:3e:8a:f8:28:36:30:2f:bc:8b:44:94:c7:33:57:eb:24:f3: 07:df:ea:80:53:e8:56:b8:a9:08:e1:f0:82:dc:d2:95:69:ae: 13:09:ef:70:2e:78:b0:ce:8f:2b:99:cb:d5:12:a8:e6:84:9d: 1c:1f:fa:3d:a6:47:af:95:e8:f9:4d:6f:6d:ec:05:73:60:54: 10:e7:82:b7:1b:26:5c:46:f4:f0:1a:fa:4e:0b:c5:b7:9a:11: 3e:5a:cf:d4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNzAyMjAyOTQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2JiMy0yNDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6aFknQgsJS5iREjn1TaFfaivp8X3o9G0AjLVKX372T4f9ygr+yUKvwBupTY JeqCMH41xwLZUkyvln7R5ZejOP8K4CFcR3XnkOIow6Z+nonRimh6GykHfTBlMThh EXOMDO8P3YoUkezfFBJCymmLUKg2+9e3+ucJl6uqLnbyzJk3EqrALMNBDLpVrt59 BDaqly33dM0K6/8w5Z94JBPX6ooikDg4VcVB7Weise2gdUaQbCOhmd50yJ/VVAmD QrXYbLNL+XG5LZIA0qwQlaJMhv6ejf98zmINUDCaZFDPcK0HDOmHebZXjM9Mu/gI Z1pl8SL/4Bc2FyGhmjOKtk3aqQIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFD6cI57I 5g3dmKB1Ja+OtzUTiAOWMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvQzNFMjI1MkUy MDVGMTFFRTgxMTcxMTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQAy1BYAwQAy7kBMAwDBADLuSEDBALLuSAwDQYJKoZIhvcNAQELBQAD ggEBACcBpm7sfzyvSOzNjRhzGh25dMIvGDBE3kXjboQt6ZCTyByIwSCSMGjAN7Ff sDYi5lRbJ/vsoWPrbBDcKUBFGxSGcMNgOdOvmPhxqjjdsS4iAiQB/tae00gTzGzx QzKuWR/Q4QY1GILRtiU4VP5K5isXsBljelAyPND/dJ/egusXcx2fWc0/e1QNoxPL rMKjb5iqu5yT85H3dw7B4+27TYAIc0M+ivgoNjAvvItElMczV+sk8wff6oBT6Fa4 qQjh8ILc0pVprhMJ73AueLDOjyuZy9USqOaEnRwf+j2mR6+V6PlNb23sBXNgVBDn grcbJlxG9PAa+k4LxbeaET5az9Q= -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:30 2026 by rpki-client