$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa File: C52B4E0A3FE011EF88794913C4F9AE02.roa (raw, json) Hash identifier: ly19W/Muv8BDmpRPmS2Fe3o0q7TToeFH9ObD8f2QW9g= Subject key identifier: A1:CD:8B:F1:8E:85:8B:7F:E5:42:AA:AE:09:EE:38:36:3E:58:04:38 Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 0553 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:07:14 +0000 ROA not before: Sat 20 Dec 2025 23:20:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 147307 IP address blocks: 103.174.188.0/24 maxlen: 24 2001:df7:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1363 (0x553) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Dec 20 23:20:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46432-3381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8b:e1:c1:1c:be:a8:23:f6:2e:65:f1:5d:58: 2b:f2:42:e4:3c:fb:88:21:55:a1:10:24:28:9b:35: 80:53:d0:e5:d5:11:e3:3b:5b:64:88:59:27:9a:82: da:19:1d:2d:e8:59:46:90:c6:6e:65:e8:7c:dd:81: 58:71:7c:82:54:32:01:b8:98:0e:05:7a:92:b5:d0: 90:6f:27:f5:bf:ef:9a:7c:f9:a4:96:5f:4b:9d:ec: f0:db:c5:49:5b:f9:13:2d:9a:95:e3:aa:07:07:58: 97:7d:b5:6e:e4:23:7f:d0:88:15:31:6d:13:0f:18: 11:f0:88:ec:49:c6:79:95:fa:c4:80:87:e1:1c:06: 62:f8:2f:86:7e:b4:1c:5c:f1:14:df:b7:88:df:d5: b3:83:c9:c2:de:bb:1a:58:e8:02:c9:8e:c2:6a:62: ab:f3:be:3e:fd:41:df:c8:c0:63:03:37:9d:cf:c1: 54:8c:b3:83:23:34:7d:a8:67:be:10:f9:5c:4e:d7: 96:69:57:bd:db:55:67:9d:1e:cc:e0:f3:44:9f:18: f5:8a:64:45:3d:bf:65:c8:ec:50:3e:b8:34:6f:1f: 6c:26:34:ff:61:a0:d6:3b:ac:98:d2:e5:0d:cb:21: 34:1c:ff:be:bb:08:aa:66:7a:5f:9f:0d:35:6a:bf: ba:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CD:8B:F1:8E:85:8B:7F:E5:42:AA:AE:09:EE:38:36:3E:58:04:38 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.174.188.0/24 IPv6: 2001:df7:d180::/48 Signature Algorithm: sha256WithRSAEncryption 44:d8:77:60:1c:af:37:78:57:e9:cf:09:d3:92:ab:0c:bb:dd: 96:99:b8:1c:e8:21:f7:a9:8a:d6:b4:fe:f3:5a:00:ea:c4:1c: 95:32:50:6d:72:6b:c4:4a:ff:b3:bf:16:e1:6c:9c:ec:8f:98: d1:86:9d:36:14:a9:08:b7:dc:ed:e7:f1:07:39:4f:a8:65:5e: aa:25:4d:ba:12:19:92:38:60:30:38:98:78:7f:c5:eb:eb:b0: a2:c2:20:73:61:e3:7d:60:b9:09:2f:92:9f:b5:2c:51:ec:06: 92:5c:f4:a7:c7:04:ec:6e:82:5e:1c:d4:fa:d4:6b:f9:17:ed: 56:18:b5:92:40:47:ba:16:9e:e0:66:c7:42:3d:05:ba:50:a3: f9:53:3b:9f:11:ca:57:4c:40:07:97:15:58:d9:63:f7:a2:5a: 25:56:5d:bf:13:9a:cd:f8:41:ce:dc:30:cd:ad:66:cc:28:85: fe:eb:89:ec:e4:20:81:64:5a:54:8d:ae:8b:c7:c5:af:48:5d: c1:59:a1:be:ca:ab:bc:76:d8:1f:f6:38:b7:64:bd:36:26:cb: 03:fc:c1:86:47:69:e0:ce:bd:b7:bd:04:f1:77:80:14:02:e3: ce:3f:32:9a:46:22:75:66:86:f3:21:21:4c:ba:51:a4:45:63: 1e:4a:57:f9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUxMjIwMjMyMDE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQzMi0zMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YvhwRy+qCP2LmXxXVgr8kLkPPuIIVWhECQomzWAU9Dl1RHjO1tkiFknmoLa GR0t6FlGkMZuZeh83YFYcXyCVDIBuJgOBXqStdCQbyf1v++afPmkll9Lnezw28VJ W/kTLZqV46oHB1iXfbVu5CN/0IgVMW0TDxgR8IjsScZ5lfrEgIfhHAZi+C+GfrQc XPEU37eI39Wzg8nC3rsaWOgCyY7CamKr874+/UHfyMBjAzedz8FUjLODIzR9qGe+ EPlcTteWaVe921VnnR7M4PNEnxj1imRFPb9lyOxQPrg0bx9sJjT/YaDWO6yY0uUN yyE0HP++uwiqZnpfnw01ar+6/QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFKHNi/GO hYt/5UKqrgnuODY+WAQ4MB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFDQUMvQjNCREE1NjQzMUQzMTFFQzhEM0JCRjMwQzRGOUFFMDIvQzUyQjRFMEEz RkUwMTFFRjg4Nzk0OTEzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ668MA8EAgACMAkDBwAgAQ330YAwDQYJKoZIhvcNAQELBQADggEB AETYd2Acrzd4V+nPCdOSqwy73ZaZuBzoIfepita0/vNaAOrEHJUyUG1ya8RK/7O/ FuFsnOyPmNGGnTYUqQi33O3n8Qc5T6hlXqolTboSGZI4YDA4mHh/xevrsKLCIHNh 431guQkvkp+1LFHsBpJc9KfHBOxugl4c1PrUa/kX7VYYtZJAR7oWnuBmx0I9BbpQ o/lTO58RyldMQAeXFVjZY/eiWiVWXb8Tms34Qc7cMM2tZswohf7riezkIIFkWlSN rovHxa9IXcFZob7Kq7x22B/2OLdkvTYmywP8wYZHaeDOvbe9BPF3gBQC484/MppG InVmhvMhIUy6UaRFYx5KV/k= -----END CERTIFICATE-----Generated at Mon Mar 2 06:06:48 2026 by rpki-client