$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/003D7FEE15E811F0841B1A7DC4F9AE02.roa File: 003D7FEE15E811F0841B1A7DC4F9AE02.roa (raw, json) Hash identifier: b9DVs3sKMRxCpx6qLE96QA7SsPL0b1qBye22Pru51gY= Subject key identifier: B9:1C:DE:30:54:73:DC:C1:BA:0C:81:B4:4F:46:0F:56:EB:5A:2B:8D Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 0288 Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/003D7FEE15E811F0841B1A7DC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:40:27 +0000 ROA not before: Wed 03 Dec 2025 00:30:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134236 IP address blocks: 103.20.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A, serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Dec 3 00:30:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a46bfb-5ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ed:2a:1b:72:38:f5:72:9f:e8:09:f2:e8:d2: 77:ea:51:dc:3f:6f:2e:9d:7e:27:62:cc:74:f4:aa: 67:13:a6:40:45:42:26:2f:0b:83:a7:0f:72:b8:12: f2:9f:5e:8c:6c:e2:d9:38:99:69:33:83:ee:5e:88: 87:ad:ea:aa:cb:b6:35:ad:18:de:2f:c9:f7:e9:29: 69:63:02:be:12:e5:94:08:d6:c6:e5:f6:f7:10:c4: 09:0d:e7:19:44:d7:0f:2a:d4:7b:ac:1a:cb:c4:59: 42:17:b3:fe:45:11:d7:66:0d:c5:78:0d:29:d6:1d: c6:ec:20:b4:65:af:5c:24:c6:2a:e5:00:9f:77:a3: da:20:30:b7:45:9a:07:f3:85:76:b7:b8:3f:22:25: 08:25:e1:2d:3a:98:f9:6e:57:9a:32:19:be:98:6e: 16:e6:c9:d4:e6:bc:68:de:b9:1d:73:f6:f5:72:bb: 89:77:fb:21:ba:d9:1c:ea:44:4b:31:3e:1c:32:40: 1c:55:ef:0c:9c:7d:a3:f6:33:3a:b7:19:30:9c:c6: 39:06:26:85:ad:4e:b3:e6:81:73:bf:91:ab:cb:52: 9f:d7:f6:7e:a0:d8:09:00:2b:04:d1:31:72:5f:54: 26:2c:79:38:e3:b1:60:59:5c:5e:51:69:5e:b3:97: fb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1C:DE:30:54:73:DC:C1:BA:0C:81:B4:4F:46:0F:56:EB:5A:2B:8D X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/003D7FEE15E811F0841B1A7DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.20.111.0/24 Signature Algorithm: sha256WithRSAEncryption a3:87:ab:40:f2:47:a7:03:e4:dd:1c:99:dd:a0:f5:35:80:6f: 73:69:88:86:02:7e:03:e0:e9:66:07:05:66:42:ab:86:a0:97: 88:7e:ca:8b:fe:1a:b6:ef:96:1e:87:0d:b5:a2:69:76:7d:ee: 72:0d:fe:e3:13:79:ba:ac:74:9b:78:0c:76:7f:17:13:b7:18: 0d:aa:57:ef:84:c7:2b:a8:75:e6:d2:ae:15:5a:7c:e3:16:e3: 52:11:1b:3b:e1:b9:cd:78:1f:cd:c8:a3:7a:93:cb:8f:e2:dd: c2:c3:e9:0a:4a:51:9e:22:d8:64:1f:33:ee:11:78:e4:eb:87: ec:38:fc:fe:7e:e5:2f:5e:75:7a:74:58:f0:f2:cb:14:f1:4a: 42:10:ef:1d:09:84:45:a9:9e:81:0c:8a:9d:a3:1d:f2:d7:49: d9:ad:8b:66:01:f0:a5:67:93:e0:76:af:c5:17:d7:bf:8e:eb: ad:a4:50:16:ec:42:a7:db:35:a0:fc:a1:8f:85:85:0d:69:83: 88:1d:db:d7:57:3f:21:7a:d5:c3:c1:df:df:9b:7c:4b:88:0d: 55:62:5d:1a:a8:2f:2a:af:c4:29:7d:2f:0a:3b:56:1e:86:e4: 99:d5:cf:a3:b7:c7:42:f3:13:3c:39:44:6d:f4:ed:d4:bd:10: a1:41:84:13 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUxMjAzMDAzMDM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmJmYi01ZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse0qG3I49XKf6Any6NJ36lHcP28unX4nYsx09KpnE6ZARUImLwuDpw9yuBLy n16MbOLZOJlpM4PuXoiHreqqy7Y1rRjeL8n36SlpYwK+EuWUCNbG5fb3EMQJDecZ RNcPKtR7rBrLxFlCF7P+RRHXZg3FeA0p1h3G7CC0Za9cJMYq5QCfd6PaIDC3RZoH 84V2t7g/IiUIJeEtOpj5bleaMhm+mG4W5snU5rxo3rkdc/b1cruJd/shutkc6kRL MT4cMkAcVe8MnH2j9jM6txkwnMY5BiaFrU6z5oFzv5Gry1Kf1/Z+oNgJACsE0TFy X1QmLHk447FgWVxeUWles5f7GQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLkc3jBU c9zBugyBtE9GD1brWiuNMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjgwNEEvOTVBODEwMTQ1MDc3MTFFRDlGNzI1OTI4QzRGOUFFMDIvMDAzRDdGRUUx NUU4MTFGMDg0MUIxQTdEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxRvMA0GCSqGSIb3DQEBCwUAA4IBAQCjh6tA8kenA+TdHJndoPU1 gG9zaYiGAn4D4OlmBwVmQquGoJeIfsqL/hq275Yehw21oml2fe5yDf7jE3m6rHSb eAx2fxcTtxgNqlfvhMcrqHXm0q4VWnzjFuNSERs74bnNeB/NyKN6k8uP4t3Cw+kK SlGeIthkHzPuEXjk64fsOPz+fuUvXnV6dFjw8ssU8UpCEO8dCYRFqZ6BDIqdox3y 10nZrYtmAfClZ5Pgdq/FF9e/juutpFAW7EKn2zWg/KGPhYUNaYOIHdvXVz8hetXD wd/fm3xLiA1VYl0aqC8qr8QpfS8KO1YehuSZ1c+jt8dC8xM8OURt9O3UvRChQYQT -----END CERTIFICATE-----Generated at Mon Mar 2 14:03:53 2026 by rpki-client