$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa File: 3A470C9EB6DF11F0B03DBB46C4F9AE02.roa (raw, json) Hash identifier: JU1nmvDSwBDUJRvbHX+1iDZpWPz4w1uVP5HZYw279f0= Subject key identifier: F9:10:59:8E:38:6F:44:AD:15:8A:D9:E4:67:15:08:C2:C4:76:EB:A7 Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 01B0 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:24:14 +0000 ROA not before: Sat 01 Nov 2025 05:27:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137542 IP address blocks: 103.112.128.0/22 maxlen: 22 103.112.128.0/24 maxlen: 24 103.112.129.0/24 maxlen: 24 103.112.130.0/24 maxlen: 24 103.112.131.0/24 maxlen: 24 2402:a940::/32 maxlen: 32 2402:a940::/40 maxlen: 48 2402:a940:100::/40 maxlen: 48 2402:a940:200::/40 maxlen: 48 2402:a940:300::/40 maxlen: 48 2402:a940:400::/40 maxlen: 48 2402:a940:500::/40 maxlen: 48 2402:a940:600::/40 maxlen: 48 2402:a940:700::/40 maxlen: 48 2402:a940:800::/40 maxlen: 48 2402:a940:900::/40 maxlen: 48 2402:a940:a00::/40 maxlen: 48 2402:a940:b00::/40 maxlen: 48 2402:a940:c00::/40 maxlen: 48 2402:a940:d00::/40 maxlen: 48 2402:a940:e00::/40 maxlen: 48 2402:a940:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Nov 1 05:27:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4925d-a9b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2f:c1:49:d5:fa:f7:9c:96:23:fe:66:7c:1f: 44:f4:8b:44:b7:39:13:71:db:98:1a:66:14:e0:cf: 66:3f:e4:52:24:be:e3:41:ba:a1:ba:45:98:85:91: 1b:51:22:de:05:bc:ef:a1:65:e6:d1:ef:d4:f1:ac: eb:a9:b1:1f:ef:4f:73:50:c2:5e:0c:38:21:16:17: 66:3a:0d:da:0f:31:9d:91:81:de:0d:2d:57:b6:2d: 0f:0e:5d:98:20:d1:33:28:7e:2e:56:56:7d:b2:8e: c4:79:0e:8b:c7:4d:cc:21:8d:3a:dd:a0:d2:59:bb: 1b:28:bf:69:9e:44:75:13:0f:39:e6:f4:0d:de:02: 84:61:3e:c6:45:b2:b4:0f:8c:ed:a6:5e:36:4f:3c: 16:d6:bb:a5:64:19:5c:c4:e0:95:79:b8:4e:10:e4: 80:e2:18:52:bd:34:9c:43:71:a0:3c:af:41:b9:2e: 2b:36:67:e1:ab:08:d2:9e:fe:29:e9:46:f7:cb:7e: f3:10:72:90:37:b3:48:cc:8b:e8:e4:30:f0:1b:b4: dc:0b:75:ca:99:1b:09:31:4e:a5:b5:24:43:e9:4f: e7:31:fe:43:c8:a9:b7:e2:d8:22:96:71:85:c2:42: 3d:e8:bf:01:c5:64:48:74:7f:b2:0e:9a:32:62:e2: 11:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:10:59:8E:38:6F:44:AD:15:8A:D9:E4:67:15:08:C2:C4:76:EB:A7 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/3A470C9EB6DF11F0B03DBB46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.112.128.0/22 IPv6: 2402:a940::/32 Signature Algorithm: sha256WithRSAEncryption 2e:01:66:6c:1a:3e:85:48:17:8f:ce:ba:20:a0:4e:ae:ff:d0: 1b:08:c3:a5:fe:36:dc:05:bc:ee:af:7d:b4:2e:af:0d:4c:cd: 1a:c9:85:0c:ce:da:2f:eb:22:84:7d:66:21:52:d0:97:e5:79: 7a:29:33:e2:b3:5e:1f:fa:33:e9:3f:aa:45:b7:a8:31:59:9a: f5:9c:0f:8a:62:0e:ef:fd:a6:48:cb:89:e9:f1:fe:52:53:19: c3:ed:3b:9e:d1:7b:2d:32:9d:2d:30:58:6a:0d:b9:14:03:dd: 39:f5:01:1b:0e:67:73:a9:5e:38:0f:65:1f:a8:28:36:f9:c1: 46:50:b8:8c:c3:70:9a:52:4b:2f:26:9c:f0:19:f2:74:68:4d: c8:88:fa:b1:58:26:c7:c2:54:85:63:0d:d4:36:87:c9:ac:62: 6d:df:44:ec:1d:e4:11:a6:e7:ca:71:dc:c4:e4:29:68:5f:96: 28:5d:a8:0d:db:73:8b:ca:c6:76:3e:fc:e7:d3:36:be:83:f0: 34:18:13:29:e6:89:59:f6:74:ad:f6:a4:ae:28:f0:1c:3d:e6: 80:f8:bd:cd:9c:dd:82:9a:10:e7:9f:22:97:cd:58:0e:c4:41: 07:88:93:e0:08:bf:92:64:b7:a8:7d:c4:a3:c2:23:a2:7e:4e: b5:6b:f6:4d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjUxMTAxMDUyNzQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTI1ZC1hOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi/BSdX695yWI/5mfB9E9ItEtzkTcduYGmYU4M9mP+RSJL7jQbqhukWYhZEb USLeBbzvoWXm0e/U8azrqbEf709zUMJeDDghFhdmOg3aDzGdkYHeDS1Xti0PDl2Y INEzKH4uVlZ9so7EeQ6Lx03MIY063aDSWbsbKL9pnkR1Ew855vQN3gKEYT7GRbK0 D4ztpl42TzwW1rulZBlcxOCVebhOEOSA4hhSvTScQ3GgPK9BuS4rNmfhqwjSnv4p 6Ub3y37zEHKQN7NIzIvo5DDwG7TcC3XKmRsJMU6ltSRD6U/nMf5DyKm34tgilnGF wkI96L8BxWRIdH+yDpoyYuIRKwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPkQWY44 b0StFYrZ5GcVCMLEduunMB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCRjQvRUE4NzE4NUM3MjFCMTFFOUJCNzQ4MTUwQzRGOUFFMDIvM0E0NzBDOUVC NkRGMTFGMEIwM0RCQjQ2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3CAMA0EAgACMAcDBQAkAqlAMA0GCSqGSIb3DQEBCwUAA4IBAQAu AWZsGj6FSBePzrogoE6u/9AbCMOl/jbcBbzur320Lq8NTM0ayYUMztov6yKEfWYh UtCX5Xl6KTPis14f+jPpP6pFt6gxWZr1nA+KYg7v/aZIy4np8f5SUxnD7Tue0Xst Mp0tMFhqDbkUA9059QEbDmdzqV44D2UfqCg2+cFGULiMw3CaUksvJpzwGfJ0aE3I iPqxWCbHwlSFYw3UNofJrGJt30TsHeQRpufKcdzE5CloX5YoXagN23OLysZ2Pvzn 0za+g/A0GBMp5olZ9nSt9qSuKPAcPeaA+L3NnN2CmhDnnyKXzVgOxEEHiJPgCL+S ZLeofcSjwiOifk61a/ZN -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:10 2026 by rpki-client