$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa File: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (raw, json) Hash identifier: FhhQyHeWyKOZmuPQHPKmrZdEe/8rcAsfsUV6nBHHPzE= Subject key identifier: D5:3A:51:A2:12:17:4C:90:EE:2B:41:02:FF:B0:CE:53:ED:EB:2F:CD Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 05B6 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:54:47 +0000 ROA not before: Mon 08 Sep 2025 23:35:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136428 IP address blocks: 103.172.14.0/23 maxlen: 23 103.172.14.0/24 maxlen: 24 103.172.15.0/24 maxlen: 24 2001:df7:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1462 (0x5b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Sep 8 23:35:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a40ce7-a076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:e2:19:3f:89:66:f4:20:8f:5a:0a:55:36: da:89:b5:91:df:00:49:b4:25:cf:8d:5d:6d:50:a3: 39:06:23:59:b7:82:e4:dd:f6:63:72:7e:17:3e:7f: eb:6d:4c:76:b9:c8:41:e5:81:3f:db:3d:06:a4:69: de:ff:6c:a1:c7:97:5f:ce:37:a9:e1:fa:f9:d8:e8: 56:ee:55:7a:8e:0a:67:ec:12:f8:59:86:34:cf:78: fc:6d:80:8e:fa:e2:72:de:12:03:78:43:d1:14:9d: f9:13:19:4f:96:69:22:e3:91:f0:d4:c8:4f:df:ee: a8:2f:5b:fd:57:30:41:b9:90:37:4e:02:0d:79:9d: d3:04:61:49:ca:25:54:58:b5:9d:6f:78:2f:75:d6: dd:78:e4:0e:60:e3:63:26:e1:f4:2e:52:45:fa:b4: 2b:3c:5c:27:fb:e3:b6:7f:3e:85:8e:a6:a5:74:91: 02:57:3b:97:ad:55:51:f6:63:82:73:90:02:20:67: 09:a1:41:83:0f:b9:3b:a5:7b:08:28:8f:c1:61:1f: fe:a0:76:37:db:af:04:c1:f7:5a:31:a0:06:06:e1: 18:20:be:c3:29:83:c2:e2:cb:09:53:6b:29:12:eb: 9c:2a:a1:44:66:33:e9:81:c2:3d:64:7b:a6:6b:cc: 42:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3A:51:A2:12:17:4C:90:EE:2B:41:02:FF:B0:CE:53:ED:EB:2F:CD X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.172.14.0/23 IPv6: 2001:df7:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 80:c4:0a:0f:6b:2e:93:5a:1c:d1:d1:91:6f:59:46:b6:bb:25: 2f:7d:71:0d:01:89:12:4d:25:f3:74:9e:89:e6:c1:f0:79:e7: d7:27:8c:ab:0c:72:69:2c:31:f2:aa:b9:2b:ef:e9:76:b4:c5: c8:55:54:83:61:4d:ee:e4:d3:0a:8a:1e:14:02:0f:bf:98:d1: ad:48:22:83:7a:cc:39:6b:70:30:7f:56:aa:d0:fa:62:7c:03: 55:35:3f:fa:d8:a3:e7:f8:db:5c:5f:09:ba:76:d0:2d:72:d9: 27:0d:10:4b:7a:8a:80:c2:64:9d:e7:aa:ba:29:f1:16:0a:6a: b0:90:e7:de:54:96:f0:79:d2:69:28:36:e0:7d:08:25:bc:3c: c3:ef:c8:ac:51:61:c0:91:54:4e:e6:0a:83:b4:93:5e:8a:5d: db:22:e8:e7:5a:3d:0c:b1:29:4b:65:09:aa:5a:9a:db:23:f9: bc:17:61:c9:9d:b8:a7:b4:3c:3c:40:b1:eb:a7:48:5a:e4:f9: 79:f3:8a:eb:ca:8d:4d:f6:82:ea:62:7d:37:d6:be:d4:ba:9f: 0c:ee:25:4a:9d:f8:4d:ad:df:f0:1c:4c:0e:03:d8:9b:bf:f9: 52:73:c3:36:b2:3a:4c:f2:8e:0b:73:af:b0:7e:0d:3f:e7:ba: cd:6a:02:a2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUwOTA4MjMzNTAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGNlNy1hMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04LiGT+JZvQgj1oKVTbaibWR3wBJtCXPjV1tUKM5BiNZt4Lk3fZjcn4XPn/r bUx2uchB5YE/2z0GpGne/2yhx5dfzjep4fr52OhW7lV6jgpn7BL4WYY0z3j8bYCO +uJy3hIDeEPRFJ35ExlPlmki45Hw1MhP3+6oL1v9VzBBuZA3TgINeZ3TBGFJyiVU WLWdb3gvddbdeOQOYONjJuH0LlJF+rQrPFwn++O2fz6FjqaldJECVzuXrVVR9mOC c5ACIGcJoUGDD7k7pXsIKI/BYR/+oHY3268EwfdaMaAGBuEYIL7DKYPC4ssJU2sp EuucKqFEZjPpgcI9ZHuma8xCIwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNU6UaIS F0yQ7itBAv+wzlPt6y/NMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkExRTcvMTBGQUJFRDIwMjU1MTFFQzhFRDI0MDg1QzRGOUFFMDIvQzNCRjBFRjgw QTVGMTFFQzhFREIwMjIxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6wOMA8EAgACMAkDBwAgAQ33W4AwDQYJKoZIhvcNAQELBQADggEB AIDECg9rLpNaHNHRkW9ZRra7JS99cQ0BiRJNJfN0nonmwfB559cnjKsMcmksMfKq uSvv6Xa0xchVVINhTe7k0wqKHhQCD7+Y0a1IIoN6zDlrcDB/VqrQ+mJ8A1U1P/rY o+f421xfCbp20C1y2ScNEEt6ioDCZJ3nqrop8RYKarCQ595UlvB50mkoNuB9CCW8 PMPvyKxRYcCRVE7mCoO0k16KXdsi6OdaPQyxKUtlCapamtsj+bwXYcmduKe0PDxA seunSFrk+XnziuvKjU32gupifTfWvtS6nwzuJUqd+E2t3/AcTA4D2Ju/+VJzwzay Okzyjgtzr7B+DT/nus1qAqI= -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:59 2026 by rpki-client