$ rpki-client -vvf rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa File: 3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa (raw, json) Hash identifier: YpOKenviWFcP9vOYsOSlrfDGErLXP8DjYkNlKiqazJU= Subject key identifier: 11:16:D4:BD:95:A2:9D:A3:FA:DB:FB:DD:49:E7:CC:B7:B8:AE:0A:CF Certificate issuer: /CN=A913D03A/serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Certificate serial: 0823 Authority key identifier: DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa Signing time: Mon 18 May 2026 21:25:49 +0000 ROA not before: Mon 18 May 2026 21:25:49 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 135376 IP address blocks: 103.84.97.0/24 maxlen: 24 103.139.179.0/24 maxlen: 24 103.215.210.0/24 maxlen: 24 103.215.211.0/24 maxlen: 24 103.216.160.0/24 maxlen: 24 185.193.212.0/24 maxlen: 24 185.193.213.0/24 maxlen: 24 185.193.214.0/24 maxlen: 24 185.193.215.0/24 maxlen: 24 202.3.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2083 (0x823) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D03A, serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Validity Not Before: May 18 21:25:49 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a0b83dd-b9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5d:6b:8c:65:f7:3b:67:83:a6:3c:76:ec:1e: 81:72:ba:70:88:65:c2:85:80:3c:88:a2:a3:e9:66: 22:9d:04:97:09:39:d6:ff:2e:0e:40:13:5a:ac:c2: c0:76:a1:a3:b8:09:f1:cd:af:b7:8d:ed:9a:db:54: 47:55:d0:6e:d1:25:50:ce:95:9b:1a:05:5a:5c:dd: 57:a4:e9:29:4b:48:f4:68:0d:6a:37:da:00:38:8a: 1e:43:a0:fc:80:cd:79:50:dd:aa:4b:c9:6d:9a:04: 7f:d1:a6:86:cd:c5:d4:3e:b6:18:ef:a7:96:31:bf: a3:2b:89:ea:c1:47:13:cd:0a:e4:dc:bf:f5:3a:d4: 01:32:21:a0:3e:07:9f:73:fc:00:cb:ee:e9:11:55: 89:03:e8:35:72:d4:73:69:34:c8:42:8a:ba:62:36: 90:a8:2b:0c:81:aa:99:fa:09:f8:14:16:ac:46:45: e7:b8:a1:b1:76:41:0a:cf:45:d1:a2:8e:c9:e5:f9: 73:c0:98:03:5f:65:4c:1c:03:50:3c:5e:28:3a:15: 55:52:34:f8:d1:cd:1a:55:dc:f1:05:84:9c:ef:1f: f7:89:46:bb:86:30:7d:df:92:4e:22:ee:58:73:fe: df:b5:2f:c7:3e:d5:6b:0d:03:db:10:3a:5c:93:00: e8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:16:D4:BD:95:A2:9D:A3:FA:DB:FB:DD:49:E7:CC:B7:B8:AE:0A:CF X509v3 Authority Key Identifier: keyid:DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.97.0/24 103.139.179.0/24 103.215.210.0/23 103.216.160.0/24 185.193.212.0/22 202.3.76.0/24 Signature Algorithm: sha256WithRSAEncryption ab:33:ac:81:39:97:12:9a:66:98:e8:cb:bd:ea:05:8f:fd:f1: 57:9a:83:dc:24:d9:d0:49:7a:4c:e6:cf:0e:44:6f:8f:e4:31: 8f:9c:2f:a6:72:23:c6:91:9b:a2:ef:00:1e:a4:73:4b:c5:da: 32:9a:73:6d:7c:1e:79:4f:34:cc:e3:6f:28:72:bd:7b:9f:c6: 31:dd:1d:2f:85:b3:2e:03:5a:2f:09:b7:6f:65:82:73:59:94: bd:a3:ff:15:c9:4c:e8:48:60:bf:60:24:96:6e:3a:f6:bb:af: 89:88:d6:c0:9b:c5:a1:43:8b:e6:10:77:65:a7:10:eb:69:c6: 9a:8e:d2:e1:82:69:cb:f0:5f:48:7a:7f:3f:0b:02:ff:af:1d: 51:03:5f:08:78:a2:84:2c:e2:c4:a6:ae:2c:2e:d1:9a:5b:c1: bd:70:4d:1a:73:72:65:a6:da:bd:21:23:0a:ba:c2:78:39:68: b6:f3:92:3c:1f:36:a0:f0:e9:db:d2:5c:6a:be:41:98:9a:7e: df:3e:81:bf:c7:6a:7f:87:d2:3c:e7:a3:fc:9e:e6:46:d8:7a: 85:bf:13:1a:cf:70:d7:61:95:c1:24:6f:3e:31:52:42:a1:9c: 27:9c:2c:c4:4d:f0:5a:be:e1:97:92:cf:26:47:87:ed:64:e4: 8b:cc:9d:c7 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICCCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QwM0ExMTAvBgNVBAUTKERCQkU5QkZDN0Y4QTNEM0JFMDVCQjVCNjAyMUY3NTQ1 QkU5ODFCRjAwHhcNMjYwNTE4MjEyNTQ5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBiODNkZC1iOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l1rjGX3O2eDpjx27B6BcrpwiGXChYA8iKKj6WYinQSXCTnW/y4OQBNarMLA dqGjuAnxza+3je2a21RHVdBu0SVQzpWbGgVaXN1XpOkpS0j0aA1qN9oAOIoeQ6D8 gM15UN2qS8ltmgR/0aaGzcXUPrYY76eWMb+jK4nqwUcTzQrk3L/1OtQBMiGgPgef c/wAy+7pEVWJA+g1ctRzaTTIQoq6YjaQqCsMgaqZ+gn4FBasRkXnuKGxdkEKz0XR oo7J5flzwJgDX2VMHANQPF4oOhVVUjT40c0aVdzxBYSc7x/3iUa7hjB935JOIu5Y c/7ftS/HPtVrDQPbEDpckwDoAQIDAQABo4ICfjCCAnowHQYDVR0OBBYEFBEW1L2V op2j+tv73UnnzLe4rgrPMB8GA1UdIwQYMBaAFNu+m/x/ij074Fu1tgIfdUW+mBvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDAzQS85MjZCNDNFODIx OTAxMUVCODJBNDFCNDhDNEY5QUUwMi8yNzZiX0gtS1BUdmdXN1cyQWg5MVJiNllH X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI3NmJfSC1LUFR2Z1c3VzJBaDkxUmI2WUdfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QwM0EvOTI2QjQzRTgyMTkwMTFFQjgyQTQxQjQ4QzRGOUFFMDIvM0E5RjNBREMy MzRBMTFFQkEwQzQwQzJGQzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAATAkAwQAZ1RhAwQAZ4uzAwQBZ9fSAwQAZ9igAwQCucHUAwQAygNMMA0GCSqG SIb3DQEBCwUAA4IBAQCrM6yBOZcSmmaY6Mu96gWP/fFXmoPcJNnQSXpM5s8ORG+P 5DGPnC+mciPGkZui7wAepHNLxdoymnNtfB55TzTM428ocr17n8Yx3R0vhbMuA1ov CbdvZYJzWZS9o/8VyUzoSGC/YCSWbjr2u6+JiNbAm8WhQ4vmEHdlpxDracaajtLh gmnL8F9Ien8/CwL/rx1RA18IeKKELOLEpq4sLtGaW8G9cE0ac3Jlptq9ISMKusJ4 OWi285I8Hzag8Onb0lxqvkGYmn7fPoG/x2p/h9I856P8nuZG2HqFvxMaz3DXYZXB JG8+MVJCoZwnnCzETfBavuGXks8mR4ftZOSLzJ3H -----END CERTIFICATE-----Generated at Sat Jun 13 21:25:18 2026 by rpki-client