$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa File: 0A3DB3DCD0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: yY4/5b0QP88xiZ2SzwSlE7CkRENscw4fnbANaNxdMWU= Subject key identifier: E4:20:10:E3:A9:86:50:35:1B:41:3D:33:7E:77:AC:0E:C9:1D:7C:E5 Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 08CB Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:20 +0000 ROA not before: Tue 18 Feb 2025 22:09:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198381 IP address blocks: 103.255.128.0/24 maxlen: 24 103.255.129.0/24 maxlen: 24 103.255.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2251 (0x8cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C, serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Validity Not Before: Feb 18 22:09:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a42f40-2d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:4b:d4:af:79:f9:1a:7c:6b:e2:96:43:33: 5f:5f:66:4d:d0:d9:fb:50:f0:ba:93:3e:40:46:a8: 86:5a:ac:32:d1:9d:b1:39:b6:94:ec:e8:02:0d:30: 34:fc:23:8b:d9:c3:60:b5:ca:fa:31:9a:d0:f9:4f: dc:0a:c5:ec:5c:aa:60:63:0f:22:77:28:66:17:38: 09:75:f2:99:86:70:cc:72:e9:2b:4a:c8:60:6c:2a: 86:68:e5:7e:f2:34:c7:45:68:bc:c6:f6:25:8f:8b: 8a:76:7e:82:06:bc:2a:2f:68:19:20:30:86:33:77: cb:12:a0:91:c2:4a:d9:db:f5:7c:c0:cb:6f:04:ce: a1:87:48:8b:7c:db:b4:e9:b2:a1:d9:a5:c9:82:38: 7b:e9:ae:7d:43:fe:41:fd:c9:c5:a8:13:25:a4:d8: c7:67:23:cd:d9:16:56:f1:b9:dd:4d:d3:ad:7c:95: ed:e2:a5:7c:fe:c4:6d:8d:5b:d6:3f:d3:c3:55:74: c4:fc:20:35:24:dc:53:1f:7f:b6:85:f3:e9:a2:e0: 3a:32:a8:96:5b:8f:7f:4a:84:7c:b6:8f:3b:a9:a3: c8:ed:39:6b:42:8a:89:91:ce:c8:6f:d6:a2:27:7d: f5:d0:d1:84:21:35:75:e8:01:40:22:2d:93:c8:86: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:20:10:E3:A9:86:50:35:1B:41:3D:33:7E:77:AC:0E:C9:1D:7C:E5 X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.128.0-103.255.130.255 Signature Algorithm: sha256WithRSAEncryption 97:7b:68:a2:8e:e1:f5:ee:50:ca:41:28:6b:da:9e:72:73:68: ae:10:be:d4:24:af:1a:60:62:f1:6d:ca:27:77:b3:47:27:3b: 5d:f7:84:38:39:58:f7:41:bd:eb:e3:2c:5b:7b:4d:e4:6f:3f: a9:46:28:0b:d3:f4:fc:60:ab:0c:c0:a7:35:97:13:61:a6:18: 2f:34:0b:a7:a7:4a:2f:42:bf:01:f0:fa:65:dc:00:16:1e:79: b9:e5:74:31:ae:98:12:c4:79:f8:af:a2:6f:c2:1d:90:ea:91: c1:c5:a0:f6:da:dc:45:b5:3b:c9:5c:b4:42:bc:4f:99:16:5f: 0e:ec:4e:b2:58:d8:4d:df:32:1e:e5:db:3c:14:52:df:c2:43: 04:2b:90:e2:7a:f0:52:19:cb:fb:d5:b2:ef:d2:2c:3b:16:8d: d8:ae:76:d5:03:53:45:fd:e2:30:cd:9d:eb:50:1e:10:6d:a3: 05:a2:3d:a2:2a:9a:f8:27:07:84:53:67:26:0e:49:91:b4:ed: 6c:01:43:ff:b4:ee:95:d2:5e:de:55:f3:2d:8c:b4:d2:37:5c: cc:8d:79:6b:3f:9c:e9:77:b2:73:ce:e9:e7:ac:93:8b:cb:72: 27:aa:1f:71:08:ab:cf:b4:6d:7c:42:a5:31:94:94:ad:fa:7d: c0:81:08:37 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICCMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjUwMjE4MjIwOTU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY0MC0yZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2hL1K95+Rp8a+KWQzNfX2ZN0Nn7UPC6kz5ARqiGWqwy0Z2xObaU7OgCDTA0 /COL2cNgtcr6MZrQ+U/cCsXsXKpgYw8idyhmFzgJdfKZhnDMcukrSshgbCqGaOV+ 8jTHRWi8xvYlj4uKdn6CBrwqL2gZIDCGM3fLEqCRwkrZ2/V8wMtvBM6hh0iLfNu0 6bKh2aXJgjh76a59Q/5B/cnFqBMlpNjHZyPN2RZW8bndTdOtfJXt4qV8/sRtjVvW P9PDVXTE/CA1JNxTH3+2hfPpouA6MqiWW49/SoR8to87qaPI7TlrQoqJkc7Ib9ai J3310NGEITV16AFAIi2TyIZ0BwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFOQgEOOp hlA1G0E9M353rA7JHXzlMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEEzREIzRENE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAdn/4ADBABn/4IwDQYJKoZIhvcNAQELBQADggEBAJd7aKKO4fXu UMpBKGvannJzaK4QvtQkrxpgYvFtyid3s0cnO133hDg5WPdBvevjLFt7TeRvP6lG KAvT9PxgqwzApzWXE2GmGC80C6enSi9CvwHw+mXcABYeebnldDGumBLEefivom/C HZDqkcHFoPba3EW1O8lctEK8T5kWXw7sTrJY2E3fMh7l2zwUUt/CQwQrkOJ68FIZ y/vVsu/SLDsWjdiudtUDU0X94jDNnetQHhBtowWiPaIqmvgnB4RTZyYOSZG07WwB Q/+07pXSXt5V8y2MtNI3XMyNeWs/nOl3snPO6eesk4vLcieqH3EIq8+0bXxCpTGU lK36fcCBCDc= -----END CERTIFICATE-----Generated at Mon Mar 2 14:02:05 2026 by rpki-client