$ rpki-client -vvf rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/B394CFAA3B1C11EE9AEE717AC4F9AE02.roa File: B394CFAA3B1C11EE9AEE717AC4F9AE02.roa (raw, json) Hash identifier: co751clHp1NAb5mO2U3XRekaid6SQMW74TG1BnFabYU= Subject key identifier: 1A:6C:61:00:A7:9F:6B:BB:A6:78:FF:E7:97:F7:6B:E8:5E:C2:8A:C6 Certificate issuer: /CN=A913345B/serialNumber=846AC847DAC6B04209C72ACF464EBEEA16522052 Certificate serial: 0B13 Authority key identifier: 84:6A:C8:47:DA:C6:B0:42:09:C7:2A:CF:46:4E:BE:EA:16:52:20:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGrIR9rGsEIJxyrPRk6-6hZSIFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/B394CFAA3B1C11EE9AEE717AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:46:52 +0000 ROA not before: Mon 10 Mar 2025 20:09:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 54600 IP address blocks: 103.149.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/hGrIR9rGsEIJxyrPRk6-6hZSIFI.crl rsync://rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/hGrIR9rGsEIJxyrPRk6-6hZSIFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGrIR9rGsEIJxyrPRk6-6hZSIFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2835 (0xb13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913345B, serialNumber=846AC847DAC6B04209C72ACF464EBEEA16522052 Validity Not Before: Mar 10 20:09:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4272b-3963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d9:6e:8d:23:50:df:01:49:11:c9:d2:e3:d1: 6b:dd:3c:7a:94:3e:27:4a:42:37:af:ea:40:e7:9a: 47:d1:7e:2f:05:a1:8b:11:4a:c8:67:64:75:8e:9d: ae:0d:9b:f9:fd:09:ae:ed:05:65:78:61:d3:90:31: 89:2b:1f:e1:5f:65:e9:d6:d3:a6:b5:ab:4a:b5:f1: 4b:28:0d:64:54:f5:b6:77:7d:6d:61:34:c2:c8:ae: 5a:d7:64:cb:19:7b:49:42:0f:aa:45:20:c0:38:ce: 7e:b2:6f:52:71:b9:72:4f:9c:b4:24:a5:a9:61:2a: 0a:bc:8b:ce:6d:93:4f:63:c6:18:31:d6:f8:f4:66: 46:1d:9f:0d:c4:15:fe:86:08:18:83:24:3a:8a:e0: 42:a9:4e:19:80:35:d8:c3:98:d4:2d:6c:03:26:fa: 7e:6f:c4:b8:44:fd:f8:75:f8:fd:c2:ce:c8:ab:75: 60:0c:ba:69:53:6e:cb:57:eb:01:9f:2f:fe:70:70: 9f:fa:e5:dc:a4:3a:89:9f:bb:64:62:4a:5d:2d:fb: df:bb:53:0f:6c:bc:25:45:fb:e1:87:49:c3:d0:e7: ce:0b:dd:58:e6:ed:ec:bc:93:b7:58:3e:b9:f4:34: b7:03:dd:2c:c4:07:86:ad:5a:2f:dd:42:d6:44:66: 5d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6C:61:00:A7:9F:6B:BB:A6:78:FF:E7:97:F7:6B:E8:5E:C2:8A:C6 X509v3 Authority Key Identifier: keyid:84:6A:C8:47:DA:C6:B0:42:09:C7:2A:CF:46:4E:BE:EA:16:52:20:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/hGrIR9rGsEIJxyrPRk6-6hZSIFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hGrIR9rGsEIJxyrPRk6-6hZSIFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913345B/28D82C825F6E11EA924B9B80C4F9AE02/B394CFAA3B1C11EE9AEE717AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.40.0/23 Signature Algorithm: sha256WithRSAEncryption 33:7b:a8:50:43:21:19:a5:22:30:41:a1:99:fe:7c:d7:f4:9d: d2:09:b3:63:b7:31:c0:ce:d7:10:5a:cf:51:17:f9:ec:f5:28: eb:07:fd:e1:29:a0:2f:a1:bd:1b:60:57:6f:d4:45:dd:2f:e3: b1:1b:ee:15:8e:27:f4:8e:47:54:d7:02:33:c1:96:e3:99:1e: e4:2b:4d:33:ac:c2:70:9e:f9:13:40:e7:ae:b8:a3:eb:9c:7e: 8b:70:f8:f2:c1:50:91:d3:b5:c6:b7:26:56:95:8f:5b:8a:0c: ba:a1:1b:e0:ad:ec:80:44:a4:44:25:c7:f9:2b:3b:9f:5b:1a: 39:7c:5b:f0:cf:9b:13:49:14:b6:d3:fc:fc:68:f5:93:a6:13: e3:9a:a7:af:f4:6c:c2:9a:48:7e:0c:bc:20:ed:75:20:19:9d: f9:48:53:66:db:5e:3f:ee:f2:b5:1a:86:de:9e:f4:8a:ac:ce: e6:20:a2:60:c4:47:ab:a7:6e:1e:20:25:80:ff:be:a5:90:b3: 0f:0a:98:e8:cb:f6:3f:6b:5b:82:38:93:96:1a:43:f6:e5:cd: b8:0b:20:41:ed:bc:19:7e:d6:1f:57:3b:7a:a8:40:78:34:5e: 27:85:59:ec:bf:30:62:34:8a:2a:ae:31:e0:63:7a:3e:5d:7e: b6:66:7b:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NUIxMTAvBgNVBAUTKDg0NkFDODQ3REFDNkIwNDIwOUM3MkFDRjQ2NEVCRUVB MTY1MjIwNTIwHhcNMjUwMzEwMjAwOTIyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjcyYi0zOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtlujSNQ3wFJEcnS49Fr3Tx6lD4nSkI3r+pA55pH0X4vBaGLEUrIZ2R1jp2u DZv5/Qmu7QVleGHTkDGJKx/hX2Xp1tOmtatKtfFLKA1kVPW2d31tYTTCyK5a12TL GXtJQg+qRSDAOM5+sm9ScblyT5y0JKWpYSoKvIvObZNPY8YYMdb49GZGHZ8NxBX+ hggYgyQ6iuBCqU4ZgDXYw5jULWwDJvp+b8S4RP34dfj9ws7Iq3VgDLppU27LV+sB ny/+cHCf+uXcpDqJn7tkYkpdLfvfu1MPbLwlRfvhh0nD0OfOC91Y5u3svJO3WD65 9DS3A90sxAeGrVov3ULWRGZdFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBpsYQCn n2u7pnj/55f3a+heworGMB8GA1UdIwQYMBaAFIRqyEfaxrBCCccqz0ZOvuoWUiBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ1Qi8yOEQ4MkM4MjVG NkUxMUVBOTI0QjlCODBDNEY5QUUwMi9oR3JJUjlyR3NFSUp4eXJQUms2LTZoWlNJ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hHcklSOXJHc0VJSnh5clBSazYtNmhaU0lGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM0NUIvMjhEODJDODI1RjZFMTFFQTkyNEI5QjgwQzRGOUFFMDIvQjM5NENGQUEz QjFDMTFFRTlBRUU3MTdBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5UoMA0GCSqGSIb3DQEBCwUAA4IBAQAze6hQQyEZpSIwQaGZ/nzX 9J3SCbNjtzHAztcQWs9RF/ns9SjrB/3hKaAvob0bYFdv1EXdL+OxG+4Vjif0jkdU 1wIzwZbjmR7kK00zrMJwnvkTQOeuuKPrnH6LcPjywVCR07XGtyZWlY9bigy6oRvg reyARKREJcf5KzufWxo5fFvwz5sTSRS20/z8aPWTphPjmqev9GzCmkh+DLwg7XUg GZ35SFNm214/7vK1GobenvSKrM7mIKJgxEerp24eICWA/76lkLMPCpjoy/Y/a1uC OJOWGkP25c24CyBB7bwZftYfVzt6qEB4NF4nhVnsvzBiNIoqrjHgY3o+XX62Znv+ -----END CERTIFICATE-----Generated at Mon Mar 2 08:17:56 2026 by rpki-client