$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa File: 399AB6DA4ED511ED84336740C4F9AE02.roa (raw, json) Hash identifier: 5GbxzBSfHfbTK/2PyRZ8YSXCEt+H6QAHiqTTaUK/ZBg= Subject key identifier: 6B:B4:A0:1A:C3:7B:FF:FA:D2:8B:2F:D9:2E:5C:41:F6:A5:6E:F3:1F Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C9C Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:42:04 +0000 ROA not before: Tue 04 Mar 2025 19:37:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59796 IP address blocks: 103.134.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Mar 4 19:37:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4260c-d358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ec:93:67:a1:9a:d2:e0:85:0d:91:d9:18:a5: 68:2b:ca:78:01:df:f4:9d:29:14:65:54:c0:d3:98: c7:fb:28:4d:38:d8:64:db:cf:a2:86:6f:98:57:ad: 39:92:f3:81:d5:eb:35:79:28:11:c1:23:99:29:df: f7:aa:08:a1:6e:3a:88:3c:ff:c0:6b:93:34:b2:92: f3:ce:37:09:d4:be:94:9d:f9:33:7e:40:b9:1e:bc: 67:39:86:d2:40:03:3c:e2:9d:69:e3:38:64:56:6c: 6f:a1:89:57:72:a8:91:98:19:31:78:fb:ad:5a:1f: ed:8b:47:bd:0b:3c:99:54:dd:95:58:18:5d:1d:26: 44:4a:8b:79:69:ba:59:5a:4e:96:40:42:8d:02:93: 15:85:39:7f:81:dc:a4:30:30:bc:50:a5:ef:03:69: c4:20:d7:ed:cd:b6:b1:b2:dd:a0:d4:54:7b:14:51: e1:cd:2d:41:8b:6e:12:68:4a:da:d1:58:91:4f:7c: 98:a5:fd:4b:05:94:22:14:5c:83:15:d2:2c:0c:c4: 78:40:a4:7e:e7:e9:8c:87:51:6a:3c:17:32:c8:d3: 5f:c9:06:d3:46:aa:75:c8:11:fe:ec:9e:da:1b:83: 08:09:94:a7:f6:59:46:fe:47:aa:53:c5:70:7d:65: 26:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B4:A0:1A:C3:7B:FF:FA:D2:8B:2F:D9:2E:5C:41:F6:A5:6E:F3:1F X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.155.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:4d:b3:b5:ed:35:28:19:d8:ba:53:c8:6f:b4:f3:ff:db:21: ee:43:f0:22:0d:f1:3f:c1:50:2d:27:80:7b:d0:1c:4f:46:db: 94:df:28:77:bf:f9:85:33:bb:c6:20:09:d3:28:c3:b0:cc:2a: 1f:5b:4c:a3:43:25:7a:e4:8d:62:f9:71:dc:11:ed:b2:9e:b1: ef:95:d2:ce:76:9a:5f:d7:a7:da:33:89:67:72:78:1c:83:02: 73:1e:b2:49:0b:48:cd:03:34:40:6d:4a:57:0f:74:66:d4:9a: bf:a5:05:fe:1f:8f:a1:1c:3e:17:5c:c7:f5:82:52:03:a9:b8: d3:d0:4a:e0:16:ef:a8:3d:53:01:e9:72:bd:8a:da:69:09:a3: 8d:2d:0d:71:b0:1f:1e:bf:87:1f:74:49:80:6e:fb:5d:3e:5b: 8e:18:f0:ac:28:cb:e0:a2:7f:62:f9:cb:f8:ea:0d:3d:27:7d: c6:39:c4:cc:f5:8d:14:9b:2a:a8:f1:c6:27:b7:08:f3:a3:f4: de:b9:e1:e0:53:cb:85:fa:28:3b:13:3d:bc:96:70:ac:60:1a: 7c:b4:53:1d:70:57:d4:0f:3f:10:c2:73:5f:45:6d:c1:fe:70: 27:78:52:3c:22:92:e6:83:c2:01:a2:5e:b8:9f:c3:2c:4e:6b: 6b:97:7f:50 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwMzA0MTkzNzAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjYwYy1kMzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOyTZ6Ga0uCFDZHZGKVoK8p4Ad/0nSkUZVTA05jH+yhNONhk28+ihm+YV605 kvOB1es1eSgRwSOZKd/3qgihbjqIPP/Aa5M0spLzzjcJ1L6UnfkzfkC5HrxnOYbS QAM84p1p4zhkVmxvoYlXcqiRmBkxePutWh/ti0e9CzyZVN2VWBhdHSZESot5abpZ Wk6WQEKNApMVhTl/gdykMDC8UKXvA2nEINftzbaxst2g1FR7FFHhzS1Bi24SaEra 0ViRT3yYpf1LBZQiFFyDFdIsDMR4QKR+5+mMh1FqPBcyyNNfyQbTRqp1yBH+7J7a G4MICZSn9llG/keqU8VwfWUmfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGu0oBrD e//60osv2S5cQfalbvMfMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UyQjMvMjBFNjdERDgxMkY0MTFFQTg5NDIwNDMwQzRGOUFFMDIvMzk5QUI2REE0 RUQ1MTFFRDg0MzM2NzQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ4abMA0GCSqGSIb3DQEBCwUAA4IBAQCaTbO17TUoGdi6U8hvtPP/ 2yHuQ/AiDfE/wVAtJ4B70BxPRtuU3yh3v/mFM7vGIAnTKMOwzCofW0yjQyV65I1i +XHcEe2ynrHvldLOdppf16faM4lncngcgwJzHrJJC0jNAzRAbUpXD3Rm1Jq/pQX+ H4+hHD4XXMf1glIDqbjT0ErgFu+oPVMB6XK9itppCaONLQ1xsB8ev4cfdEmAbvtd PluOGPCsKMvgon9i+cv46g09J33GOcTM9Y0Umyqo8cYntwjzo/TeueHgU8uF+ig7 Ez28lnCsYBp8tFMdcFfUDz8QwnNfRW3B/nAneFI8IpLmg8IBol64n8MsTmtrl39Q -----END CERTIFICATE-----Generated at Mon Mar 2 14:01:20 2026 by rpki-client