$ rpki-client -vvf rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa File: 3C24D492BF6911EAA877B317C4F9AE02.roa (raw, json) Hash identifier: YvoyIa4X5+eH/S8ETCJsSq3/yvA3YsM8Vh6vUH1fhtU= Subject key identifier: E7:19:CA:80:C2:05:12:A0:07:14:BA:7D:80:13:FD:0E:24:4B:1C:84 Certificate issuer: /CN=A912A4D7/serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C Certificate serial: 091E Authority key identifier: 55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:52:35 +0000 ROA not before: Tue 20 May 2025 20:57:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140878 IP address blocks: 103.152.214.0/23 maxlen: 24 2001:df4:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.crl rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2334 (0x91e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A4D7, serialNumber=556CA8B09747D07B6F6A27A405528D39FA5B824C Validity Not Before: May 20 20:57:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42883-1f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9c:78:a3:7c:b0:a6:3a:82:2c:47:94:f5:c8: bb:33:09:d8:40:cc:5e:e0:ef:92:8b:fe:5b:79:72: c2:27:84:16:e6:a8:05:55:a0:91:15:01:7c:71:7a: 46:c6:e7:aa:43:f1:bf:f2:7c:12:4f:70:df:03:8b: 5a:2b:3a:61:ba:be:d9:e8:ed:dd:1b:c0:2b:3e:60: 62:ab:96:90:35:f7:8a:53:db:be:34:c7:11:eb:50: 69:90:7d:eb:18:a0:3d:f9:b0:ee:b3:fd:5a:bb:b1: 6f:34:28:b1:ae:71:47:46:62:2d:c2:fb:a8:bd:97: 1d:a3:a3:18:a6:0a:4f:8d:e4:fe:61:da:86:8e:b5: 23:d3:0b:4b:66:b6:36:bd:b2:ae:f0:a9:f2:e4:8f: 6c:77:9f:ac:3b:be:f8:e4:ed:88:e4:7e:15:8e:a8: 8b:b7:89:bf:eb:2b:3f:7e:4f:ed:8c:30:f0:dc:df: a9:0d:4d:b4:a9:0b:fc:47:cb:9e:81:7b:aa:8b:d7: de:b5:aa:12:00:91:a0:ca:3f:f9:8c:ad:87:e1:86: ff:46:ce:ec:0e:af:87:71:50:95:d8:71:5e:ab:2f: 9c:61:d1:43:68:49:b1:7d:89:a0:15:1c:53:f9:3c: 9b:f1:18:a5:55:ab:13:8a:ab:c3:ce:2e:19:cd:2e: 0e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:19:CA:80:C2:05:12:A0:07:14:BA:7D:80:13:FD:0E:24:4B:1C:84 X509v3 Authority Key Identifier: keyid:55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/3C24D492BF6911EAA877B317C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.214.0/23 IPv6: 2001:df4:1d80::/48 Signature Algorithm: sha256WithRSAEncryption 52:da:83:80:aa:8e:57:3e:5e:93:15:dd:0b:ae:23:30:e3:f8: b2:69:e2:61:db:a3:cc:98:c9:d1:e1:25:c8:92:3e:47:7b:83: ed:1b:47:d1:87:1b:4b:79:0d:e6:a7:b9:42:bb:95:eb:5b:dc: bf:a2:71:7d:11:fa:5f:b2:85:50:a2:8f:b0:99:39:3b:60:a2: da:df:f6:c6:f7:00:80:a8:fb:4b:58:08:73:2d:6a:b3:a7:1f: 48:fa:b8:29:66:57:32:bf:06:c3:84:3e:e0:5c:86:71:1a:4d: 15:83:50:fd:99:15:27:e5:e7:ae:1c:af:15:bf:5c:9a:35:6a: dd:c9:9b:7e:1e:49:8f:2f:ea:db:02:ab:9e:5f:ec:e1:93:7f: 77:3a:85:e5:9b:9d:08:1b:29:a8:d4:f0:df:59:aa:78:3c:da: e8:98:88:02:79:9c:bd:1b:1c:e0:50:8a:bc:4c:bc:09:27:d3: 61:7e:8a:3b:73:c2:ae:b5:01:ad:a5:86:32:5b:4c:0b:74:71: d2:c7:03:c2:57:8d:9e:5f:bf:4d:19:c3:5e:37:e4:8c:ef:0a: 81:92:d2:42:19:d8:2e:1a:64:de:08:d2:e9:16:c8:6c:dc:45: be:15:49:c2:49:a3:a4:fb:68:92:de:c6:58:3c:4a:36:8d:5c: 87:f9:69:54 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE0RDcxMTAvBgNVBAUTKDU1NkNBOEIwOTc0N0QwN0I2RjZBMjdBNDA1NTI4RDM5 RkE1QjgyNEMwHhcNMjUwNTIwMjA1NzU1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjg4My0xZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Jx4o3ywpjqCLEeU9ci7MwnYQMxe4O+Si/5beXLCJ4QW5qgFVaCRFQF8cXpG xueqQ/G/8nwST3DfA4taKzphur7Z6O3dG8ArPmBiq5aQNfeKU9u+NMcR61BpkH3r GKA9+bDus/1au7FvNCixrnFHRmItwvuovZcdo6MYpgpPjeT+YdqGjrUj0wtLZrY2 vbKu8Kny5I9sd5+sO7745O2I5H4VjqiLt4m/6ys/fk/tjDDw3N+pDU20qQv8R8ue gXuqi9fetaoSAJGgyj/5jK2H4Yb/Rs7sDq+HcVCV2HFeqy+cYdFDaEmxfYmgFRxT +Tyb8RilVasTiqvDzi4ZzS4OzwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOcZyoDC BRKgBxS6fYAT/Q4kSxyEMB8GA1UdIwQYMBaAFFVsqLCXR9B7b2onpAVSjTn6W4JM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTRENy9CRDBDMDNGMkJG NjcxMUVBQjNCQjE4MTVDNEY5QUUwMi9WV3lvc0pkSDBIdHZhaWVrQlZLTk9mcGJn a3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZXeW9zSmRIMEh0dmFpZWtCVktOT2ZwYmdrdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE0RDcvQkQwQzAzRjJCRjY3MTFFQUIzQkIxODE1QzRGOUFFMDIvM0MyNEQ0OTJC RjY5MTFFQUE4NzdCMzE3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5jWMA8EAgACMAkDBwAgAQ30HYAwDQYJKoZIhvcNAQELBQADggEB AFLag4Cqjlc+XpMV3QuuIzDj+LJp4mHbo8yYydHhJciSPkd7g+0bR9GHG0t5Dean uUK7letb3L+icX0R+l+yhVCij7CZOTtgotrf9sb3AICo+0tYCHMtarOnH0j6uClm VzK/BsOEPuBchnEaTRWDUP2ZFSfl564crxW/XJo1at3Jm34eSY8v6tsCq55f7OGT f3c6heWbnQgbKajU8N9Zqng82uiYiAJ5nL0bHOBQirxMvAkn02F+ijtzwq61Aa2l hjJbTAt0cdLHA8JXjZ5fv00Zw1435IzvCoGS0kIZ2C4aZN4I0ukWyGzcRb4VScJJ o6T7aJLexlg8SjaNXIf5aVQ= -----END CERTIFICATE-----Generated at Mon Mar 2 02:51:10 2026 by rpki-client