$ rpki-client -vvf rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa File: 5F436F7E39A011EE923F683AC4F9AE02.roa (raw, json) Hash identifier: d1VOETNhFOccLSwqdQXH2GNl8fCdfHMVZ6K7EwkYRNQ= Subject key identifier: 25:0C:04:1F:06:C2:0C:0D:13:FB:72:64:E7:D5:18:C9:7E:5D:14:00 Certificate issuer: /CN=A911D834/serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Certificate serial: 3578 Authority key identifier: FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:58 +0000 ROA not before: Fri 10 Oct 2025 04:47:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136762 IP address blocks: 103.232.152.0/22 maxlen: 24 103.235.196.0/22 maxlen: 24 110.34.0.0/19 maxlen: 24 116.66.192.0/21 maxlen: 24 163.47.148.0/22 maxlen: 22 163.47.148.0/24 maxlen: 24 163.47.149.0/24 maxlen: 24 163.47.150.0/24 maxlen: 24 163.47.151.0/24 maxlen: 24 163.53.24.0/23 maxlen: 24 182.93.64.0/19 maxlen: 24 202.63.240.0/21 maxlen: 24 2403:3800::/32 maxlen: 36 2403:3800:1200::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13688 (0x3578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D834, serialNumber=FDB2754D950630EB11DF84E2855CAAB7D1626F80 Validity Not Before: Oct 10 04:47:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4816e-df24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fe:a1:70:67:0f:73:2e:e4:04:3d:ff:90:21: 58:72:80:90:7c:de:fc:5e:12:01:e2:71:e7:dc:37: c8:c9:98:10:59:7e:ab:28:9a:00:cd:52:48:e9:ee: f6:8c:86:1e:aa:d7:47:d3:16:fb:6d:ac:fa:cc:d4: a9:c6:6c:04:3e:91:a6:57:4a:26:e5:a2:d7:bd:36: cd:54:65:b5:7b:d7:f5:14:63:74:1e:b0:03:42:1c: cb:97:b5:0c:69:01:64:ab:e0:6f:ab:ca:40:77:86: 00:43:d1:4b:35:c3:8c:47:4b:f0:c2:4f:be:ee:18: 41:b3:9c:08:70:32:99:38:ba:30:f5:b0:62:d5:72: c5:bc:ca:45:7b:1d:6f:ea:ef:9f:7e:79:2e:14:00: a5:5b:72:a7:94:5a:82:cf:be:cd:91:f2:1a:6a:dd: 43:7d:e7:3b:07:39:72:59:ed:a6:a3:f1:f0:4d:c3: cb:06:4f:1a:b0:67:9e:9c:c6:65:b2:ab:2c:65:aa: 16:70:91:a3:b5:ce:8b:50:01:d9:2e:55:67:dd:85: 6c:1b:2e:e8:1b:5f:01:dc:37:dc:68:60:74:78:7c: a4:a1:73:d0:ad:fb:62:2e:9f:cc:08:18:5e:ca:0a: aa:ca:36:e2:89:79:0b:e4:8b:5b:e2:a1:5b:a0:70: 92:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0C:04:1F:06:C2:0C:0D:13:FB:72:64:E7:D5:18:C9:7E:5D:14:00 X509v3 Authority Key Identifier: keyid:FD:B2:75:4D:95:06:30:EB:11:DF:84:E2:85:5C:AA:B7:D1:62:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/_bJ1TZUGMOsR34TihVyqt9Fib4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_bJ1TZUGMOsR34TihVyqt9Fib4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D834/DFBA50B81D8D11E2824DEDEB08B02CD2/5F436F7E39A011EE923F683AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.232.152.0/22 103.235.196.0/22 110.34.0.0/19 116.66.192.0/21 163.47.148.0/22 163.53.24.0/23 182.93.64.0/19 202.63.240.0/21 IPv6: 2403:3800::/32 Signature Algorithm: sha256WithRSAEncryption 18:80:05:b0:c0:5b:32:d2:b3:ed:85:45:64:c3:2c:50:30:dc: f5:8c:fd:11:1d:d6:38:1f:b7:f4:5f:90:98:08:16:67:75:e8: 39:2d:13:f9:50:ce:8a:ac:06:d6:4d:83:c0:9f:46:a2:e6:63: ca:69:93:6d:c1:67:4b:32:df:d9:85:2d:08:96:aa:4a:34:c2: 7b:5b:1b:bb:13:14:bc:13:f0:03:c7:7c:55:c9:3e:03:96:55: f4:12:b8:ff:2b:5e:93:03:a7:3f:32:b2:03:73:79:da:e5:de: 84:bf:e8:68:bb:c1:24:48:62:97:27:29:35:bb:83:2d:65:87: 58:f7:fb:1f:50:ac:e9:ca:3d:b1:2f:d7:3f:c9:f5:e3:1d:88: 53:55:6f:ad:c1:a0:2f:ca:a7:d0:53:d4:69:da:44:bb:22:34: 8d:be:a3:0d:25:b3:af:32:21:d5:9a:f3:e6:de:65:7c:18:36: 2d:a3:ff:5d:f4:27:67:fc:64:06:44:50:d8:27:46:73:02:2a: 85:01:3f:f0:ce:0d:14:09:de:47:ac:e9:74:06:67:c1:0c:61: 9c:bd:7d:2e:d3:08:74:0a:d2:95:a5:d1:3f:19:85:cb:94:7a: 92:0f:79:0a:01:a9:42:2d:3a:84:a1:ae:18:7e:76:28:ae:3a: b1:47:83:58 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICNXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ4MzQxMTAvBgNVBAUTKEZEQjI3NTREOTUwNjMwRUIxMURGODRFMjg1NUNBQUI3 RDE2MjZGODAwHhcNMjUxMDEwMDQ0NzEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE2ZS1kZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvv6hcGcPcy7kBD3/kCFYcoCQfN78XhIB4nHn3DfIyZgQWX6rKJoAzVJI6e72 jIYeqtdH0xb7baz6zNSpxmwEPpGmV0om5aLXvTbNVGW1e9f1FGN0HrADQhzLl7UM aQFkq+Bvq8pAd4YAQ9FLNcOMR0vwwk++7hhBs5wIcDKZOLow9bBi1XLFvMpFex1v 6u+ffnkuFAClW3KnlFqCz77NkfIaat1Dfec7BzlyWe2mo/HwTcPLBk8asGeenMZl sqssZaoWcJGjtc6LUAHZLlVn3YVsGy7oG18B3DfcaGB0eHykoXPQrftiLp/MCBhe ygqqyjbiiXkL5Itb4qFboHCS/QIDAQABo4ICmTCCApUwHQYDVR0OBBYEFCUMBB8G wgwNE/tyZOfVGMl+XRQAMB8GA1UdIwQYMBaAFP2ydU2VBjDrEd+E4oVcqrfRYm+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDgzNC9ERkJBNTBCODFE OEQxMUUyODI0REVERUIwOEIwMkNEMi9fYkoxVFpVR01Pc1IzNFRpaFZ5cXQ5Rmli NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19iSjFUWlVHTU9zUjM0VGloVnlxdDlGaWI0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ4MzQvREZCQTUwQjgxRDhEMTFFMjgyNERFREVCMDhCMDJDRDIvNUY0MzZGN0Uz OUEwMTFFRTkyM0Y2ODNBQzRGOUFFMDIucm9hMFgGCCsGAQUFBwEHAQH/BEkwRzA2 BAIAATAwAwQCZ+iYAwQCZ+vEAwQFbiIAAwQDdELAAwQCoy+UAwQBozUYAwQFtl1A AwQDyj/wMA0EAgACMAcDBQAkAzgAMA0GCSqGSIb3DQEBCwUAA4IBAQAYgAWwwFsy 0rPthUVkwyxQMNz1jP0RHdY4H7f0X5CYCBZndeg5LRP5UM6KrAbWTYPAn0ai5mPK aZNtwWdLMt/ZhS0IlqpKNMJ7Wxu7ExS8E/ADx3xVyT4DllX0Erj/K16TA6c/MrID c3na5d6Ev+hou8EkSGKXJyk1u4MtZYdY9/sfUKzpyj2xL9c/yfXjHYhTVW+twaAv yqfQU9Rp2kS7IjSNvqMNJbOvMiHVmvPm3mV8GDYto/9d9Cdn/GQGRFDYJ0ZzAiqF AT/wzg0UCd5HrOl0BmfBDGGcvX0u0wh0CtKVpdE/GYXLlHqSD3kKAalCLTqEoa4Y fnYorjqxR4NY -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:15 2026 by rpki-client