$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa File: 3A470C9EB6DF11F0B03DBB46C4F9AE02.roa (raw, json) Hash identifier: pF3/tjmry1XpJzcHoShKtZfgFi3n+AMBmAvGf30trzA= Subject key identifier: 35:51:06:0A:4D:40:A6:24:C2:7F:D2:2E:47:5A:C8:16:16:6A:3B:5B Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 01E3 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa Signing time: Sun 31 May 2026 18:05:36 +0000 ROA not before: Sun 31 May 2026 18:05:36 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 137542 IP address blocks: 103.112.128.0/22 maxlen: 22 103.112.128.0/24 maxlen: 24 103.112.129.0/24 maxlen: 24 103.112.130.0/24 maxlen: 24 103.112.131.0/24 maxlen: 24 2402:a940::/32 maxlen: 32 2402:a940::/40 maxlen: 48 2402:a940:100::/40 maxlen: 48 2402:a940:200::/40 maxlen: 48 2402:a940:300::/40 maxlen: 48 2402:a940:400::/40 maxlen: 48 2402:a940:500::/40 maxlen: 48 2402:a940:600::/40 maxlen: 48 2402:a940:700::/40 maxlen: 48 2402:a940:800::/40 maxlen: 48 2402:a940:900::/40 maxlen: 48 2402:a940:a00::/40 maxlen: 48 2402:a940:b00::/40 maxlen: 48 2402:a940:c00::/40 maxlen: 48 2402:a940:d00::/40 maxlen: 48 2402:a940:e00::/40 maxlen: 48 2402:a940:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: May 31 18:05:36 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c7870-622c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:90:b8:bd:f9:16:ef:e5:9d:c5:ff:84:c9:9d: 8d:e4:ab:bd:85:0f:2c:6e:fe:7c:d5:0b:0e:cf:de: 39:72:99:99:6f:d3:84:cd:f8:ff:77:55:f4:5a:68: 36:54:57:2f:95:0a:8d:05:4e:0d:2e:eb:38:01:29: f7:3f:48:c1:50:da:a7:45:d7:11:e4:ac:fb:cb:57: 28:e7:60:14:b4:e6:c5:00:20:70:9f:f6:47:45:9f: dc:4d:2d:de:21:3c:19:8a:5f:e6:3b:29:64:2e:8d: fb:cd:e7:3c:21:e8:40:a2:08:96:2d:77:a1:dc:3c: b6:ea:bb:08:d8:83:c4:f3:ef:86:60:fb:ad:ae:20: 0f:2b:66:95:46:f5:e9:46:e3:01:b5:ff:8f:be:bc: ec:35:05:34:71:4f:5d:bf:75:fe:40:f9:3c:f1:6a: 2c:a4:50:46:2e:8f:19:f9:49:50:78:9b:9f:31:4c: 1b:a0:2d:9b:26:aa:4f:2c:ce:cf:4a:b6:91:e4:01: a7:ea:76:9d:a4:4b:d1:e8:c7:e5:e8:b8:b7:a9:94: 0d:a4:d5:9d:d1:83:7e:e9:5a:d6:72:43:00:28:7d: e3:3d:c4:df:d9:c6:17:9e:ea:ac:ac:93:64:34:21: c1:65:5f:a2:8c:04:73:bf:40:45:3a:9a:75:8e:76: ea:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:51:06:0A:4D:40:A6:24:C2:7F:D2:2E:47:5A:C8:16:16:6A:3B:5B X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.112.128.0/22 IPv6: 2402:a940::/32 Signature Algorithm: sha256WithRSAEncryption 46:29:46:0b:d5:60:7e:33:94:97:f3:67:ff:57:29:34:cd:93: a8:e3:b0:4d:96:57:f2:21:8c:9a:da:3b:15:3b:df:fb:fa:eb: a3:24:cc:a3:e2:e8:f2:1a:97:ee:ce:d4:d4:b2:e5:ce:ad:c6: 32:20:4e:3d:a1:df:6f:05:b6:70:98:e5:07:c9:3a:68:1c:bb: 36:ef:8d:90:0c:ee:ac:31:df:82:44:82:e3:d6:30:75:22:01: 95:33:d6:b9:fd:b0:36:f6:a8:27:a7:3d:4d:e4:b6:ea:f1:89: 28:f9:b1:ea:0b:5b:2d:6b:d5:66:7e:74:49:65:43:8d:f3:50: a3:cb:26:6c:b7:69:d5:c5:34:5e:2a:be:1d:3e:f4:b8:e9:29: 3f:e7:80:97:03:5b:1e:4b:36:a8:d1:4d:9c:4e:0a:31:10:ca: 39:72:eb:7c:49:7d:39:be:eb:0a:a5:ab:4f:9d:98:7d:60:95: c1:16:e1:af:52:70:62:60:11:f5:96:58:9a:09:5d:6f:8c:31: e7:e4:c0:13:1d:c7:4c:8f:01:dc:68:af:b2:41:11:89:c0:ed: 95:47:18:87:1d:8b:cf:10:b8:0f:71:08:0b:66:0e:c1:f6:73: cd:77:ba:5e:fe:af:fb:dc:bf:4c:c4:0a:12:80:a7:31:13:49: b9:db:89:3c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjYwNTMxMTgwNTM2WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNzg3MC02MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopC4vfkW7+Wdxf+EyZ2N5Ku9hQ8sbv581QsOz945cpmZb9OEzfj/d1X0Wmg2 VFcvlQqNBU4NLus4ASn3P0jBUNqnRdcR5Kz7y1co52AUtObFACBwn/ZHRZ/cTS3e ITwZil/mOylkLo37zec8IehAogiWLXeh3Dy26rsI2IPE8++GYPutriAPK2aVRvXp RuMBtf+PvrzsNQU0cU9dv3X+QPk88WospFBGLo8Z+UlQeJufMUwboC2bJqpPLM7P SraR5AGn6nadpEvR6Mfl6Li3qZQNpNWd0YN+6VrWckMAKH3jPcTf2cYXnuqsrJNk NCHBZV+ijARzv0BFOpp1jnbq2wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDVRBgpN QKYkwn/SLkdayBYWajtbMB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCRjQvRUE4NzE4NUM3MjFCMTFFOUJCNzQ4MTUwQzRGOUFFMDIvM0E0NzBDOUVC NkRGMTFGMEIwM0RCQjQ2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3CAMA0EAgACMAcDBQAkAqlAMA0GCSqGSIb3DQEBCwUAA4IBAQBG KUYL1WB+M5SX82f/Vyk0zZOo47BNllfyIYya2jsVO9/7+uujJMyj4ujyGpfuztTU suXOrcYyIE49od9vBbZwmOUHyTpoHLs2742QDO6sMd+CRILj1jB1IgGVM9a5/bA2 9qgnpz1N5Lbq8Yko+bHqC1sta9VmfnRJZUON81CjyyZst2nVxTReKr4dPvS46Sk/ 54CXA1seSzao0U2cTgoxEMo5cut8SX05vusKpatPnZh9YJXBFuGvUnBiYBH1llia CV1vjDHn5MATHcdMjwHcaK+yQRGJwO2VRxiHHYvPELgPcQgLZg7B9nPNd7pe/q/7 3L9MxAoSgKcxE0m524k8 -----END CERTIFICATE-----Generated at Sat Jun 13 21:25:39 2026 by rpki-client