$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa File: 503E43126E5E11EEB39D9E48C4F9AE02.roa (raw, json) Hash identifier: lsTiOYIvl5q/45HfvO5c8kDWtOhRAg023DHFHosHetI= Subject key identifier: 0C:09:55:FC:9F:F4:F2:AF:DD:CA:EE:B8:31:6A:E9:48:8D:F6:49:06 Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 01C4 Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa Signing time: Sun 01 Mar 2026 05:23:31 +0000 ROA not before: Sun 01 Mar 2026 05:23:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132529 IP address blocks: 43.248.52.0/22 maxlen: 22 103.244.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0, serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Mar 1 05:23:31 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3cd52-239f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4f:65:41:92:b4:b7:44:f9:a7:4b:1e:5e:ac: 4a:ed:74:c5:d3:dd:3e:63:7d:c6:ef:63:53:6c:fa: 0f:26:9f:5f:92:74:e6:d5:4f:b1:aa:03:76:8e:dc: 9c:9f:38:3b:aa:0f:01:e1:02:68:8b:90:0b:05:79: 1d:87:05:84:de:5a:44:33:2f:51:92:ea:5c:f5:7e: 65:95:0b:c4:67:19:94:d0:22:eb:aa:fc:72:2c:3b: 4f:c0:fc:1f:05:18:32:4d:57:f4:b6:13:27:a4:bd: 4e:3b:c5:4c:48:54:e0:b9:f7:04:c9:d1:11:37:95: 8b:30:ea:ce:82:ab:7e:c5:0e:e8:ed:c5:3b:26:4a: 67:1f:77:54:b9:94:a2:71:56:8a:45:43:bf:1f:09: 7e:84:3e:7d:93:96:f9:c9:df:ea:e2:56:ed:18:ec: 3f:d5:b0:7e:a7:af:81:63:d5:0d:10:b7:e2:3e:10: 5b:35:fc:41:4f:f9:75:c3:c4:ec:ae:67:f1:09:5a: ae:be:ec:3c:2e:d9:35:5d:7d:05:2f:df:ae:fe:0b: 0d:89:6b:8b:6e:2c:df:e0:11:aa:94:92:85:71:b2: 3d:d5:fe:fb:2d:7c:67:37:b1:fc:af:ee:7f:4c:1b: d7:c9:7f:c1:eb:b2:da:2a:e6:ed:38:f4:73:6c:04: 2e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:09:55:FC:9F:F4:F2:AF:DD:CA:EE:B8:31:6A:E9:48:8D:F6:49:06 X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.52.0/22 103.244.128.0/22 Signature Algorithm: sha256WithRSAEncryption 15:a1:c9:db:e6:7c:98:71:5a:fe:4b:cd:13:ca:34:f6:24:87: 26:97:bd:15:49:30:d3:1b:17:20:0c:8e:b7:d0:e1:de:f1:9b: 95:af:68:cb:d2:94:0e:96:06:63:44:50:4c:6e:8f:b0:5a:63: 21:14:d8:a0:f7:70:a7:01:6c:48:20:8b:20:2f:a2:49:53:15: bd:c3:4e:7d:f5:07:90:9a:cb:bc:76:48:ba:6c:75:9a:9a:25: 14:2f:c5:de:09:50:37:31:02:68:ae:06:69:20:df:d2:e5:4d: 70:1c:d3:5d:e0:4e:48:d3:17:c4:ee:78:84:84:74:fe:37:66: 67:16:74:bf:08:d4:74:b9:62:59:bc:6c:13:89:7b:c8:78:be: ab:57:99:30:c1:db:63:41:e0:27:24:d6:6a:44:f5:b3:c9:e3: 71:74:51:92:5d:73:17:10:9e:64:46:e6:03:3a:32:31:07:b0: ac:13:02:70:80:81:fe:3f:5f:b5:fe:f9:ee:20:36:95:9b:16: 85:5f:f3:0c:6f:e2:db:0c:3f:c6:fe:c3:4d:a7:d6:32:e4:eb: 52:60:85:1a:af:d3:3b:6c:c0:52:48:be:7d:87:fc:4f:b7:5a: 07:43:9c:96:cc:5e:9e:6f:6e:c2:cb:4c:13:94:7a:5b:17:9c: d1:00:0b:e1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjYwMzAxMDUyMzMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzY2Q1Mi0yMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5E9lQZK0t0T5p0seXqxK7XTF090+Y33G72NTbPoPJp9fknTm1U+xqgN2jtyc nzg7qg8B4QJoi5ALBXkdhwWE3lpEMy9Rkupc9X5llQvEZxmU0CLrqvxyLDtPwPwf BRgyTVf0thMnpL1OO8VMSFTgufcEydERN5WLMOrOgqt+xQ7o7cU7JkpnH3dUuZSi cVaKRUO/Hwl+hD59k5b5yd/q4lbtGOw/1bB+p6+BY9UNELfiPhBbNfxBT/l1w8Ts rmfxCVquvuw8Ltk1XX0FL9+u/gsNiWuLbizf4BGqlJKFcbI91f77LXxnN7H8r+5/ TBvXyX/B67LaKubtOPRzbAQupQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFAwJVfyf 9PKv3cruuDFq6UiN9kkGMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjEwRTAvM0VCMTBDOUE2RDk4MTFFRUFBMkFBMzZBQzRGOUFFMDIvNTAzRTQzMTI2 RTVFMTFFRUIzOUQ5RTQ4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCK/g0AwQCZ/SAMA0GCSqGSIb3DQEBCwUAA4IBAQAVocnb5nyYcVr+ S80TyjT2JIcml70VSTDTGxcgDI630OHe8ZuVr2jL0pQOlgZjRFBMbo+wWmMhFNig 93CnAWxIIIsgL6JJUxW9w0599QeQmsu8dki6bHWamiUUL8XeCVA3MQJorgZpIN/S 5U1wHNNd4E5I0xfE7niEhHT+N2ZnFnS/CNR0uWJZvGwTiXvIeL6rV5kwwdtjQeAn JNZqRPWzyeNxdFGSXXMXEJ5kRuYDOjIxB7CsEwJwgIH+P1+1/vnuIDaVmxaFX/MM b+LbDD/G/sNNp9Yy5OtSYIUar9M7bMBSSL59h/xPt1oHQ5yWzF6eb27Cy0wTlHpb F5zRAAvh -----END CERTIFICATE-----Generated at Mon Mar 2 12:42:59 2026 by rpki-client