$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa File: 5431D022524211ECA52D990FC4F9AE02.roa (raw, json) Hash identifier: CvQeByP/Y9cBycVPuFNU+VPc3uTvLUIz8Q1uaLGBd9s= Subject key identifier: 2C:60:B4:38:04:4D:1D:C9:14:25:03:C3:3E:1B:98:55:41:B9:AF:59 Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 04E9 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:52:55 +0000 ROA not before: Sat 01 Mar 2025 02:33:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133934 IP address blocks: 103.48.208.0/24 maxlen: 24 103.48.209.0/24 maxlen: 24 103.48.210.0/24 maxlen: 24 103.48.211.0/24 maxlen: 24 2402:b280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Mar 1 02:33:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fe67-3eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:e7:31:cd:fc:06:06:0d:73:ca:4c:9a:77: a6:bb:58:e4:ff:ca:6a:7e:dd:0a:fe:6f:ab:b7:2d: e6:30:9d:8f:0f:65:53:fe:6b:4a:38:4f:3b:1d:10: 89:9f:da:b6:81:3f:c0:93:86:eb:75:7c:da:c0:e8: b2:9f:df:37:0a:c2:bb:73:09:93:2d:f6:91:2e:cd: 01:ee:e0:66:3d:81:d3:0b:73:44:a2:fe:4b:34:c5: 39:65:b9:d3:66:92:c7:a9:cf:dc:8d:e7:0b:87:a8: 02:3e:1d:67:6b:85:d6:aa:cd:3f:72:dd:c9:5e:61: 16:e3:dc:bb:de:0e:7d:84:d1:0b:81:3a:58:e3:7c: 9f:9f:db:d5:a3:d6:21:f5:f2:79:e6:14:41:fb:44: f8:25:e9:d3:11:1a:07:2c:f5:1e:43:77:7a:bd:e9: dd:60:56:77:98:6f:25:27:64:ce:3a:eb:2a:67:c4: 9b:b7:10:f0:a5:20:ef:97:e8:ee:32:97:70:9a:2b: 3f:98:cd:e9:67:a8:d3:4f:05:a8:9d:40:4d:b8:e1: e9:71:34:c2:e3:0b:0b:8a:9c:8c:2e:1f:da:80:bb: cf:18:8a:53:64:4c:1c:f9:fc:68:ea:8b:21:9b:26: 88:a5:eb:55:40:a1:33:44:47:e6:d8:e0:60:4b:d9: c0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:60:B4:38:04:4D:1D:C9:14:25:03:C3:3E:1B:98:55:41:B9:AF:59 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.48.208.0/22 IPv6: 2402:b280::/32 Signature Algorithm: sha256WithRSAEncryption c5:c6:58:25:0b:23:6e:ea:7d:42:f4:38:57:78:4c:f2:0d:33: 9e:dd:5a:ce:7f:63:0d:49:af:8b:b9:ec:35:4b:a1:a5:94:c2: 43:2f:91:d3:18:3b:65:f9:59:2e:03:25:24:5e:7e:e2:d3:30: 28:09:56:eb:a3:db:16:04:e5:1b:06:36:a5:01:9b:a1:6d:b7: 89:41:7e:39:0e:4b:dc:5a:62:c4:0a:8c:27:0f:d7:22:90:2d: e4:4e:9b:1c:3b:78:ca:0b:65:d7:ae:af:2b:b3:bc:09:34:0b: 69:07:36:5f:cf:18:ed:c8:e3:d7:47:b7:e0:45:95:f2:51:28: 40:28:6e:43:33:cf:77:fd:79:0c:f3:1e:3d:16:49:d6:42:b6: f3:a2:a8:3e:94:e5:44:c5:51:8d:4b:6a:73:db:74:90:83:34: 25:0f:ad:80:80:73:fd:5e:80:02:c5:a6:eb:81:d1:be:7f:f0: f5:85:79:b5:1a:b0:1a:11:d2:17:76:38:72:f8:38:dc:de:0d: c2:9c:f4:ac:33:bd:e3:7c:64:2c:83:32:3d:4a:92:20:80:4a: 55:8a:bd:e7:66:d3:ca:04:f8:6f:89:89:ff:10:6f:d0:cf:a4: b1:b7:96:f9:f3:9b:a3:ec:8a:bc:27:b3:72:88:41:89:98:32: 51:fa:25:1f -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwMzAxMDIzMzMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmU2Ny0zZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYbnMc38BgYNc8pMmnemu1jk/8pqft0K/m+rty3mMJ2PD2VT/mtKOE87HRCJ n9q2gT/Ak4brdXzawOiyn983CsK7cwmTLfaRLs0B7uBmPYHTC3NEov5LNMU5ZbnT ZpLHqc/cjecLh6gCPh1na4XWqs0/ct3JXmEW49y73g59hNELgTpY43yfn9vVo9Yh 9fJ55hRB+0T4JenTERoHLPUeQ3d6vendYFZ3mG8lJ2TOOusqZ8SbtxDwpSDvl+ju Mpdwmis/mM3pZ6jTTwWonUBNuOHpcTTC4wsLipyMLh/agLvPGIpTZEwc+fxo6osh myaIpetVQKEzREfm2OBgS9nAHQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFCxgtDgE TR3JFCUDwz4bmFVBua9ZMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3MUEvMDVCRDBGMzA1MjQwMTFFQzg2NTgwNjBFQzRGOUFFMDIvNTQzMUQwMjI1 MjQyMTFFQ0E1MkQ5OTBGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZzDQMA0EAgACMAcDBQAkArKAMA0GCSqGSIb3DQEBCwUAA4IBAQDF xlglCyNu6n1C9DhXeEzyDTOe3VrOf2MNSa+Luew1S6GllMJDL5HTGDtl+VkuAyUk Xn7i0zAoCVbro9sWBOUbBjalAZuhbbeJQX45DkvcWmLECownD9cikC3kTpscO3jK C2XXrq8rs7wJNAtpBzZfzxjtyOPXR7fgRZXyUShAKG5DM893/XkM8x49FknWQrbz oqg+lOVExVGNS2pz23SQgzQlD62AgHP9XoACxabrgdG+f/D1hXm1GrAaEdIXdjhy +Djc3g3CnPSsM73jfGQsgzI9SpIggEpVir3nZtPKBPhviYn/EG/Qz6Sxt5b585uj 7Iq8J7NyiEGJmDJR+iUf -----END CERTIFICATE-----Generated at Mon Mar 2 08:32:50 2026 by rpki-client