$ rpki-client -vvf rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa File: 71CE3962337511EDAE4C4121C4F9AE02.roa (raw, json) Hash identifier: qH4NxxqpOA2c5T+RIxBIM6trIh5aFuyiHzxc/Np3eOs= Subject key identifier: 58:B2:52:EC:F1:83:53:1F:2E:2D:F6:F0:D5:1F:31:36:64:07:C9:C7 Certificate issuer: /CN=A912672E/serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Certificate serial: 02AD Authority key identifier: CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:08:35 +0000 ROA not before: Sun 17 Aug 2025 02:09:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150306 IP address blocks: 103.234.118.0/23 maxlen: 23 103.234.118.0/24 maxlen: 24 103.234.119.0/24 maxlen: 24 2001:df1:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:44:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912672E, serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Validity Not Before: Aug 17 02:09:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a40213-59d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:e6:1b:a8:2d:b9:43:7f:24:f9:78:3f:cf: a0:56:b8:f4:f6:24:3a:2b:b4:24:d2:83:3f:35:b8: 02:1e:16:71:87:83:00:e4:1b:c0:91:c0:96:ac:a5: 95:71:32:1b:29:e2:bf:34:6d:fd:0d:b8:d9:86:2f: 4a:ae:24:a1:c1:45:8a:69:b8:ab:67:8a:05:cb:30: e9:77:ed:ae:79:10:2a:0e:9c:03:4e:33:bf:78:bb: 18:dc:39:f1:e7:9e:a8:12:83:08:97:53:19:60:21: 82:0b:31:e9:93:85:e0:25:1e:02:2e:b5:0c:17:c5: ac:78:df:bb:22:c8:44:11:9a:98:5e:b9:33:f1:a5: 00:41:70:29:29:2a:61:4b:d5:e7:46:54:ba:e4:fd: 3a:26:fd:e8:01:ee:fa:9d:ac:17:80:42:83:fd:6d: 0d:1e:79:58:76:3d:1c:8e:22:8b:da:05:b0:a8:d5: 23:e1:25:f4:34:8a:c1:a7:de:ef:7b:9a:f9:da:f5: 8d:14:98:d3:8a:e7:6b:94:e9:31:4c:ab:d1:57:23: 22:16:16:06:b8:ab:0a:6e:6a:9e:e9:34:42:5c:45: b0:7a:50:a3:ab:0b:72:59:94:16:a9:76:fe:7b:76: 67:dc:6c:eb:c4:dc:bd:54:9f:8b:87:55:62:39:49: 87:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B2:52:EC:F1:83:53:1F:2E:2D:F6:F0:D5:1F:31:36:64:07:C9:C7 X509v3 Authority Key Identifier: keyid:CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.234.118.0/23 IPv6: 2001:df1:42c0::/48 Signature Algorithm: sha256WithRSAEncryption 0b:68:9b:88:13:75:24:72:1a:98:de:ac:da:98:ba:1f:57:4d: 5a:05:34:56:93:4d:69:eb:be:e0:23:47:69:24:f7:03:06:c3: 2b:66:92:80:1f:8e:62:be:07:32:9d:10:09:e3:7d:9f:1f:9d: 8a:a0:72:05:4b:0d:43:16:53:66:84:47:9c:60:85:7c:c5:4c: 3b:9e:79:3f:64:97:a6:70:13:3c:4b:1f:5d:45:94:bb:c3:f2: 01:cc:f0:94:ae:ef:14:8a:fb:30:e9:83:5a:fc:19:53:59:50: 23:21:75:57:67:99:4e:78:ae:d5:d5:ef:f8:fa:3b:e5:d8:d9: f8:e0:78:90:30:e2:2c:58:e1:c1:19:93:cf:af:41:b4:dd:25: c4:c5:77:fb:2b:b4:f7:fc:6b:57:25:64:aa:cd:f3:97:05:e1: 9b:27:16:9a:f1:15:48:7c:f2:b5:9e:45:b0:0c:dd:6f:2f:47: 50:b9:1a:a4:33:5d:37:b4:98:0a:bf:2a:d6:8b:67:d7:da:ea: c7:f4:d2:e1:79:df:5e:a6:ba:23:de:dd:1b:b7:4a:b5:5a:98: 14:97:11:c4:c5:fd:fa:5e:04:20:4a:fa:f5:6c:78:66:67:e8: 12:26:2e:08:72:92:d0:a9:93:ca:8a:c9:1d:87:e5:99:a8:70: a1:b7:c4:6d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY3MkUxMTAvBgNVBAUTKENEQzE4N0E2NDJCNEQ3RUM1MERDQUU1OUEwMDY2RjE0 OEQ1MTA4MDEwHhcNMjUwODE3MDIwOTA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDIxMy01OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLDmG6gtuUN/JPl4P8+gVrj09iQ6K7Qk0oM/NbgCHhZxh4MA5BvAkcCWrKWV cTIbKeK/NG39DbjZhi9KriShwUWKabirZ4oFyzDpd+2ueRAqDpwDTjO/eLsY3Dnx 556oEoMIl1MZYCGCCzHpk4XgJR4CLrUMF8WseN+7IshEEZqYXrkz8aUAQXApKSph S9XnRlS65P06Jv3oAe76nawXgEKD/W0NHnlYdj0cjiKL2gWwqNUj4SX0NIrBp97v e5r52vWNFJjTiudrlOkxTKvRVyMiFhYGuKsKbmqe6TRCXEWwelCjqwtyWZQWqXb+ e3Zn3GzrxNy9VJ+Lh1ViOUmHZwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFiyUuzx g1MfLi328NUfMTZkB8nHMB8GA1UdIwQYMBaAFM3Bh6ZCtNfsUNyuWaAGbxSNUQgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjcyRS9BRjQ2NjU3NDMz NzIxMUVEOEVFQUQ2MUVDNEY5QUUwMi96Y0dIcGtLMDEteFEzSzVab0FadkZJMVJD QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pjR0hwa0swMS14UTNLNVpvQVp2RkkxUkNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY3MkUvQUY0NjY1NzQzMzcyMTFFRDhFRUFENjFFQzRGOUFFMDIvNzFDRTM5NjIz Mzc1MTFFREFFNEM0MTIxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ+p2MA8EAgACMAkDBwAgAQ3xQsAwDQYJKoZIhvcNAQELBQADggEB AAtom4gTdSRyGpjerNqYuh9XTVoFNFaTTWnrvuAjR2kk9wMGwytmkoAfjmK+BzKd EAnjfZ8fnYqgcgVLDUMWU2aER5xghXzFTDueeT9kl6ZwEzxLH11FlLvD8gHM8JSu 7xSK+zDpg1r8GVNZUCMhdVdnmU54rtXV7/j6O+XY2fjgeJAw4ixY4cEZk8+vQbTd JcTFd/srtPf8a1clZKrN85cF4ZsnFprxFUh88rWeRbAM3W8vR1C5GqQzXTe0mAq/ KtaLZ9fa6sf00uF5316muiPe3Ru3SrVamBSXEcTF/fpeBCBK+vVseGZn6BImLghy ktCpk8qKyR2H5ZmocKG3xG0= -----END CERTIFICATE-----Generated at Mon Mar 2 08:02:32 2026 by rpki-client