$ rpki-client -vvf rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa File: 3EB855ACDE3A11E781926D6DC4F9AE02.roa (raw, json) Hash identifier: 3aOP/rpHrMEj7OG6rQvWrYiltaSfwH+gQCump53DqcM= Subject key identifier: 1C:08:7E:D3:72:9D:06:2E:6D:96:F9:8B:CB:9B:DD:7A:E4:FD:C7:EF Certificate issuer: /CN=A911C075/serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Certificate serial: 17EE Authority key identifier: 16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:44:01 +0000 ROA not before: Wed 08 Oct 2025 16:45:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135607 IP address blocks: 36.255.60.0/22 maxlen: 22 36.255.60.0/24 maxlen: 24 36.255.61.0/24 maxlen: 24 36.255.62.0/24 maxlen: 24 36.255.63.0/24 maxlen: 24 103.236.176.0/24 maxlen: 24 103.236.177.0/24 maxlen: 24 103.236.178.0/24 maxlen: 24 103.236.179.0/24 maxlen: 24 2402:2dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6126 (0x17ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C075, serialNumber=16CE8C1970B86A4AF4F35639104668D095B3D4E8 Validity Not Before: Oct 8 16:45:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a442a1-e416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:fd:a0:57:d3:1c:00:b7:32:6b:23:fc:ab: 36:ff:47:14:5c:54:8d:4b:b3:48:aa:3d:da:2f:89: 0c:7b:e1:8e:51:fa:53:9e:f1:81:4b:99:89:6e:5b: 3e:36:fd:c5:c9:84:67:51:18:f1:e4:bf:05:73:18: f3:8e:5a:0e:46:e2:3e:9f:3c:01:f5:6f:81:0c:6c: 22:14:11:c4:6e:37:78:9e:c0:2a:75:c4:0e:e1:e9: af:06:18:f4:ab:77:f2:59:77:f2:f7:11:13:65:da: b0:04:5e:7a:a8:8b:aa:09:a4:90:5a:60:83:3d:d4: 37:83:b7:c4:de:12:3f:06:99:7a:08:ae:98:e2:20: 84:69:80:7c:db:d5:56:24:0d:ff:5a:0d:70:4a:24: cb:86:dd:f2:e6:da:16:ab:c1:4d:11:05:2f:da:b1: 09:1f:46:91:9a:a6:3f:71:f2:49:df:86:a8:b2:79: 41:e8:69:92:c8:16:eb:37:6c:ee:00:12:18:64:cf: d6:e8:2e:b5:67:86:fa:46:38:a1:31:db:24:ee:15: a2:ea:de:68:1f:58:34:f5:e7:dd:7a:45:12:39:55: 69:36:90:4e:3c:85:25:84:9c:b8:62:bd:ff:e5:b1: 80:ed:8e:f5:7b:36:4c:2a:77:7d:b3:ee:f6:3c:14: 93:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:08:7E:D3:72:9D:06:2E:6D:96:F9:8B:CB:9B:DD:7A:E4:FD:C7:EF X509v3 Authority Key Identifier: keyid:16:CE:8C:19:70:B8:6A:4A:F4:F3:56:39:10:46:68:D0:95:B3:D4:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/Fs6MGXC4akr081Y5EEZo0JWz1Og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fs6MGXC4akr081Y5EEZo0JWz1Og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C075/75A6218ADE3911E783B7CC6CC4F9AE02/3EB855ACDE3A11E781926D6DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.60.0/22 103.236.176.0/22 IPv6: 2402:2dc0::/32 Signature Algorithm: sha256WithRSAEncryption 89:36:8f:40:9b:66:e6:14:30:5a:81:a6:d3:2d:d5:51:2a:de: c0:a7:b7:81:d0:a2:1b:34:e1:c9:d7:d4:8e:b2:c1:7a:f9:19: 8f:6c:a6:47:e4:7b:a9:02:02:68:8a:91:83:50:a5:61:3f:9c: 4b:d0:04:a1:c9:6b:ad:0f:4d:67:54:68:c9:4d:0e:b3:cc:02: 87:f1:92:40:b9:03:7e:7b:4a:34:8e:00:dc:e0:87:48:ed:01: 1a:9d:0b:39:68:77:70:eb:b9:9e:48:9a:29:52:cf:4b:0d:d2: 64:4f:15:15:b9:10:0f:36:9e:ff:66:ef:89:0d:f4:7c:55:bf: 5a:6b:24:02:17:ba:ec:54:4c:fd:a2:60:19:36:ec:55:85:fd: 43:82:35:0e:c7:96:00:ad:04:c6:61:2c:f4:f2:2e:fc:77:2a: c7:84:a7:e5:30:2f:50:a2:d5:bd:c3:d9:93:9d:90:81:24:25: a3:38:11:b8:f2:2e:60:8d:99:e1:7c:83:66:f9:bf:0e:7b:d6: 34:36:93:d2:45:a0:27:8e:20:ca:cd:de:c1:6b:6a:b7:56:e1: e9:7a:ea:2d:16:be:2f:a9:e5:9c:9f:09:00:a9:d2:2b:ef:e6: ad:ef:a0:2e:28:53:56:2c:aa:ec:6a:30:16:05:2a:40:99:e7: 29:93:91:12 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICF+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMwNzUxMTAvBgNVBAUTKDE2Q0U4QzE5NzBCODZBNEFGNEYzNTYzOTEwNDY2OEQw OTVCM0Q0RTgwHhcNMjUxMDA4MTY0NTQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDJhMS1lNDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdf9oFfTHAC3Mmsj/Ks2/0cUXFSNS7NIqj3aL4kMe+GOUfpTnvGBS5mJbls+ Nv3FyYRnURjx5L8FcxjzjloORuI+nzwB9W+BDGwiFBHEbjd4nsAqdcQO4emvBhj0 q3fyWXfy9xETZdqwBF56qIuqCaSQWmCDPdQ3g7fE3hI/Bpl6CK6Y4iCEaYB829VW JA3/Wg1wSiTLht3y5toWq8FNEQUv2rEJH0aRmqY/cfJJ34aosnlB6GmSyBbrN2zu ABIYZM/W6C61Z4b6RjihMdsk7hWi6t5oH1g09efdekUSOVVpNpBOPIUlhJy4Yr3/ 5bGA7Y71ezZMKnd9s+72PBSTEQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFBwIftNy nQYubZb5i8ub3Xrk/cfvMB8GA1UdIwQYMBaAFBbOjBlwuGpK9PNWORBGaNCVs9To MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzA3NS83NUE2MjE4QURF MzkxMUU3ODNCN0NDNkNDNEY5QUUwMi9GczZNR1hDNGFrcjA4MVk1RUVabzBKV3ox T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZzNk1HWEM0YWtyMDgxWTVFRVpvMEpXejFPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMwNzUvNzVBNjIxOEFERTM5MTFFNzgzQjdDQzZDQzRGOUFFMDIvM0VCODU1QUNE RTNBMTFFNzgxOTI2RDZEQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCJP88AwQCZ+ywMA0EAgACMAcDBQAkAi3AMA0GCSqGSIb3DQEBCwUA A4IBAQCJNo9Am2bmFDBagabTLdVRKt7Ap7eB0KIbNOHJ19SOssF6+RmPbKZH5Hup AgJoipGDUKVhP5xL0AShyWutD01nVGjJTQ6zzAKH8ZJAuQN+e0o0jgDc4IdI7QEa nQs5aHdw67meSJopUs9LDdJkTxUVuRAPNp7/Zu+JDfR8Vb9aayQCF7rsVEz9omAZ NuxVhf1DgjUOx5YArQTGYSz08i78dyrHhKflMC9QotW9w9mTnZCBJCWjOBG48i5g jZnhfINm+b8Oe9Y0NpPSRaAnjiDKzd7Ba2q3VuHpeuotFr4vqeWcnwkAqdIr7+at 76AuKFNWLKrsajAWBSpAmecpk5ES -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:41 2026 by rpki-client