$ rpki-client -vvf rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa File: A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa (raw, json) Hash identifier: NQX7JB0+/eWjbVIYCyPV0TJwdeszpx4RpQyQ+f5a0uw= Subject key identifier: B9:02:12:27:FA:25:74:91:82:CC:96:84:D4:58:C2:4D:CF:43:38:2D Certificate issuer: /CN=A911C564/serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Certificate serial: 05E4 Authority key identifier: 14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:53:20 +0000 ROA not before: Sat 31 May 2025 00:25:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136602 IP address blocks: 103.93.208.0/24 maxlen: 24 103.174.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1508 (0x5e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C564, serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Validity Not Before: May 31 00:25:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40c8f-374b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e7:b3:67:21:37:b4:87:a3:4c:42:d0:61:92: d0:70:e7:bf:01:ff:7b:ed:d4:4b:c5:bd:f4:fb:95: 27:8c:05:57:88:d9:37:9a:56:c3:ef:4e:06:08:a1: f0:aa:90:eb:73:33:87:ba:b8:a8:a2:19:df:aa:ac: 5d:55:62:7f:02:2a:34:f6:8e:68:77:82:a3:d9:4d: dc:93:be:c1:84:3d:f3:3f:59:f7:17:80:63:2b:88: 68:5c:3f:74:d2:cf:ed:de:c2:5b:53:02:47:2a:0b: 4e:7a:70:97:59:e5:60:f6:c0:7b:22:88:31:6c:74: 64:80:25:38:d9:b8:09:ed:ae:58:52:1c:28:f2:8b: f6:02:d6:41:2d:e9:5c:8a:c7:43:91:6a:96:8e:f7: b7:be:84:9f:3e:1d:96:18:45:63:e9:fc:86:84:a6: 2c:f2:f6:bd:c2:e9:1c:18:ca:55:77:89:33:6c:8d: ac:94:58:b6:bd:e0:e7:1a:26:be:9d:69:2d:0b:2e: 18:1c:23:b6:f7:40:6d:36:c8:74:ce:9d:65:48:c2: 04:78:23:91:06:99:18:4a:f1:f0:b4:47:9f:68:6d: 82:aa:7e:65:b3:fb:db:47:3f:0a:e5:35:3b:fc:6f: 39:90:1e:6d:47:cc:c5:fc:1c:70:ca:c3:bb:47:24: e2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:02:12:27:FA:25:74:91:82:CC:96:84:D4:58:C2:4D:CF:43:38:2D X509v3 Authority Key Identifier: keyid:14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.93.208.0/24 103.174.239.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:f4:b8:b9:10:7d:2e:28:92:83:f0:ac:50:46:9b:55:7e:c0: 32:d0:0b:8c:83:4d:25:c0:63:d7:f4:f1:3d:b3:bb:b9:77:4d: bb:91:28:42:39:1b:3e:75:01:f9:88:c2:87:10:fa:80:93:7f: 6e:26:80:1b:02:1b:e5:48:98:35:30:1c:06:cb:56:cc:7e:b0: ec:1c:c8:9f:34:4b:a4:19:67:a5:64:fe:ea:37:5c:21:18:e5: 00:04:f6:9d:be:26:3d:b0:d5:44:fb:55:82:42:c3:b2:c5:dd: 1c:93:4f:c2:d3:84:96:9a:3a:dd:ea:a1:b0:11:27:68:8e:e7: 86:3e:73:e5:f5:d3:54:2c:5b:27:28:e7:62:3d:56:fa:b3:67: 8c:fa:92:3f:2c:69:39:a1:12:34:1f:8d:21:01:61:3b:af:b4: ad:b6:d5:2e:67:6e:56:23:b2:3d:3f:fc:7d:aa:b4:1a:99:32: 33:00:07:ba:ee:42:5f:07:50:fd:a6:f0:cb:40:b0:b2:56:14: 08:85:1b:59:da:cf:4d:32:4c:c6:0d:c5:dd:c7:2c:46:61:3c: 70:ef:93:8e:76:ee:4f:27:f6:23:51:d0:83:64:68:81:e6:23: aa:e3:ac:8f:05:7d:ce:6f:38:85:2d:13:42:fc:b0:34:88:e2: 39:77:f4:40 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1NjQxMTAvBgNVBAUTKDE0MDJCNjRGOUFFNzgxNjFEMEQ2NURBNzI1RkREMEJC QzhFMTUyRDgwHhcNMjUwNTMxMDAyNTI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGM4Zi0zNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuezZyE3tIejTELQYZLQcOe/Af977dRLxb30+5UnjAVXiNk3mlbD704GCKHw qpDrczOHurioohnfqqxdVWJ/Aio09o5od4Kj2U3ck77BhD3zP1n3F4BjK4hoXD90 0s/t3sJbUwJHKgtOenCXWeVg9sB7IogxbHRkgCU42bgJ7a5YUhwo8ov2AtZBLelc isdDkWqWjve3voSfPh2WGEVj6fyGhKYs8va9wukcGMpVd4kzbI2slFi2veDnGia+ nWktCy4YHCO290BtNsh0zp1lSMIEeCORBpkYSvHwtEefaG2Cqn5ls/vbRz8K5TU7 /G85kB5tR8zF/BxwysO7RyTiAwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLkCEif6 JXSRgsyWhNRYwk3PQzgtMB8GA1UdIwQYMBaAFBQCtk+a54Fh0NZdpyX90LvI4VLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzU2NC9FODA4QUVENkVF OTQxMUVCQjNEODVBODZDNEY5QUUwMi9GQUsyVDVybmdXSFExbDJuSmYzUXU4amhV dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBSzJUNXJuZ1dIUTFsMm5KZjNRdThqaFV0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1NjQvRTgwOEFFRDZFRTk0MTFFQkIzRDg1QTg2QzRGOUFFMDIvQTNCMkIwQThF RTk3MTFFQjhFRjFBNTBBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ13QAwQAZ67vMA0GCSqGSIb3DQEBCwUAA4IBAQCb9Li5EH0uKJKD 8KxQRptVfsAy0AuMg00lwGPX9PE9s7u5d027kShCORs+dQH5iMKHEPqAk39uJoAb AhvlSJg1MBwGy1bMfrDsHMifNEukGWelZP7qN1whGOUABPadviY9sNVE+1WCQsOy xd0ck0/C04SWmjrd6qGwESdojueGPnPl9dNULFsnKOdiPVb6s2eM+pI/LGk5oRI0 H40hAWE7r7StttUuZ25WI7I9P/x9qrQamTIzAAe67kJfB1D9pvDLQLCyVhQIhRtZ 2s9NMkzGDcXdxyxGYTxw75OOdu5PJ/YjUdCDZGiB5iOq46yPBX3ObziFLRNC/LA0 iOI5d/RA -----END CERTIFICATE-----Generated at Mon Mar 2 06:20:11 2026 by rpki-client