$ rpki-client -vvf rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa File: 0E01F66437F511EEA737AD17C4F9AE02.roa (raw, json) Hash identifier: gufxQCzSfTIF5RleJsC4MqjDP+nk6ZGaiUFp0e9Uqrk= Subject key identifier: F4:B7:C5:95:AF:7B:D3:EF:94:11:70:90:1D:F7:15:B1:1B:3B:B1:92 Certificate issuer: /CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Certificate serial: 19F0 Authority key identifier: C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:42:32 +0000 ROA not before: Tue 14 Oct 2025 17:14:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136902 IP address blocks: 103.98.85.0/24 maxlen: 24 103.119.208.0/24 maxlen: 24 103.119.209.0/24 maxlen: 24 2401:24a0::/34 maxlen: 34 2401:24a0:4000::/34 maxlen: 34 2401:24a0:8000::/34 maxlen: 34 2401:24a0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6640 (0x19f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ACC3, serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Validity Not Before: Oct 14 17:14:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44248-2751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:b4:9c:9d:ac:36:ae:d8:38:59:84:79:6a: 1f:4b:fc:ea:83:21:1d:0b:67:45:0b:37:1c:34:0d: 4b:f5:43:dd:02:f8:03:4c:99:42:c9:a4:9e:92:6e: d4:aa:4b:85:c9:7d:ab:f2:2d:9e:85:be:d6:a1:21: 92:4b:3b:66:9c:2f:63:7d:13:c2:e3:0e:ff:ca:68: 6d:d2:43:60:e2:af:67:bf:90:27:4d:61:da:ca:76: 56:96:24:10:56:ed:f4:7a:bf:6a:6c:e1:63:f3:e4: 47:92:4f:3d:85:fd:99:79:28:9b:5b:e1:48:c7:16: 4f:62:8d:60:10:02:a3:b2:78:02:a1:74:29:d8:b4: 18:4c:d9:e6:2f:d6:75:3f:c6:b1:3d:11:f8:f5:e1: f9:53:ad:d0:08:3c:d8:af:75:54:d1:d2:22:51:b9: 76:4b:c0:52:df:68:13:27:da:d0:c5:f7:6b:89:e7: 0d:e4:7c:30:d0:7e:b8:87:b3:c6:22:2f:1f:aa:d4: 6b:e5:4b:2e:ef:40:d1:29:d1:3b:57:c6:ef:0d:ac: 3c:dc:a8:73:15:f6:c4:b0:b2:86:32:e5:39:d6:40: be:19:ff:b6:97:c4:84:b9:00:e4:52:b7:62:db:2f: ff:8e:33:db:53:61:8a:6b:14:f4:04:2b:d3:ce:9e: 70:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B7:C5:95:AF:7B:D3:EF:94:11:70:90:1D:F7:15:B1:1B:3B:B1:92 X509v3 Authority Key Identifier: keyid:C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.98.85.0/24 103.119.208.0/23 IPv6: 2401:24a0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:8f:dd:03:2f:f1:df:19:26:6f:e2:f1:0e:ae:36:b8:da:1a: ac:87:2b:32:56:d7:3a:45:25:34:da:b3:bd:5f:90:31:fd:1a: 07:ee:40:35:2d:16:90:9b:ce:a2:51:49:a2:a7:6f:b5:1b:78: c9:12:ab:7f:f8:f9:61:57:f1:fc:c1:ae:65:5a:a0:96:98:ed: 64:c5:5b:5d:9d:ed:c5:8c:2a:95:16:e5:17:73:49:23:1c:b2: ca:07:d3:cb:65:90:6c:d2:f1:15:a2:c7:ae:07:8b:eb:83:2d: 75:de:9a:87:7c:48:a8:0d:7a:84:a4:63:1c:5a:5e:a4:ba:3f: f4:97:b8:66:e3:d9:33:a6:bd:54:88:08:5d:92:f6:86:9b:72: 4d:8b:85:62:14:62:a0:15:29:0f:10:13:bb:5d:62:43:61:81: ff:bf:ad:e2:34:bf:09:88:04:84:24:d2:a3:8a:2d:ff:8c:0c: 99:5e:9c:7d:c4:87:c6:6d:28:a6:9c:8a:d0:5b:4e:fc:3f:6a: 67:91:03:a4:23:8d:51:4c:e3:38:08:9d:9b:64:20:47:40:1c: d7:62:db:d4:82:3d:98:cb:3b:4a:24:49:8c:66:73:7f:b4:3c: d4:e2:4a:8c:83:97:40:0c:bf:7b:b7:f8:78:d4:d0:11:89:90: f7:23:ca:ef -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICGfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDQzMxMTAvBgNVBAUTKEMxQUE1Q0U1MkUxMTUzM0I2NDFFM0I2ODVBQjMyM0M0 Njk3NkE0MDEwHhcNMjUxMDE0MTcxNDUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDI0OC0yNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNe0nJ2sNq7YOFmEeWofS/zqgyEdC2dFCzccNA1L9UPdAvgDTJlCyaSekm7U qkuFyX2r8i2ehb7WoSGSSztmnC9jfRPC4w7/ymht0kNg4q9nv5AnTWHaynZWliQQ Vu30er9qbOFj8+RHkk89hf2ZeSibW+FIxxZPYo1gEAKjsngCoXQp2LQYTNnmL9Z1 P8axPRH49eH5U63QCDzYr3VU0dIiUbl2S8BS32gTJ9rQxfdriecN5Hww0H64h7PG Ii8fqtRr5Usu70DRKdE7V8bvDaw83KhzFfbEsLKGMuU51kC+Gf+2l8SEuQDkUrdi 2y//jjPbU2GKaxT0BCvTzp5wbQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPS3xZWv e9PvlBFwkB33FbEbO7GSMB8GA1UdIwQYMBaAFMGqXOUuEVM7ZB47aFqzI8RpdqQB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUNDMy9ENEY0QjQ4ODc3 RjcxMUU3QjJEMzMyNjRDNEY5QUUwMi93YXBjNVM0UlV6dGtIanRvV3JNanhHbDJw QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dhcGM1UzRSVXp0a0hqdG9Xck1qeEdsMnBBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDQzMvRDRGNEI0ODg3N0Y3MTFFN0IyRDMzMjY0QzRGOUFFMDIvMEUwMUY2NjQz N0Y1MTFFRUE3MzdBRDE3QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ2JVAwQBZ3fQMA0EAgACMAcDBQAkASSgMA0GCSqGSIb3DQEBCwUA A4IBAQAuj90DL/HfGSZv4vEOrja42hqshysyVtc6RSU02rO9X5Ax/RoH7kA1LRaQ m86iUUmip2+1G3jJEqt/+PlhV/H8wa5lWqCWmO1kxVtdne3FjCqVFuUXc0kjHLLK B9PLZZBs0vEVoseuB4vrgy113pqHfEioDXqEpGMcWl6kuj/0l7hm49kzpr1UiAhd kvaGm3JNi4ViFGKgFSkPEBO7XWJDYYH/v63iNL8JiASEJNKjii3/jAyZXpx9xIfG bSimnIrQW078P2pnkQOkI41RTOM4CJ2bZCBHQBzXYtvUgj2YyztKJEmMZnN/tDzU 4kqMg5dADL97t/h41NARiZD3I8rv -----END CERTIFICATE-----Generated at Mon Mar 2 10:49:42 2026 by rpki-client