$ rpki-client -vvf rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa File: FC3B44CE519A11EAB1229A87C4F9AE02.roa (raw, json) Hash identifier: sh5UH2ZBn9wBTa697FDn0y/l7y45xFGnVGbIE4BxV4Y= Subject key identifier: 45:92:05:78:F9:FF:F0:20:5E:38:3A:FE:2E:97:AA:E7:A5:A7:9C:5E Certificate issuer: /CN=A913FD96/serialNumber=34041FE399C0765961B79FE124694172872073BB Certificate serial: 0B4E Authority key identifier: 34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:46:01 +0000 ROA not before: Thu 24 Jul 2025 19:59:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134515 IP address blocks: 103.236.119.0/24 maxlen: 24 2001:df5:8400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2894 (0xb4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FD96, serialNumber=34041FE399C0765961B79FE124694172872073BB Validity Not Before: Jul 24 19:59:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a426f8-4b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:71:6e:b3:bc:27:0e:f6:a0:ca:82:b9:88:76: 74:a4:f0:80:05:3c:cf:45:b5:9f:f5:62:24:35:31: 4a:97:93:2d:57:d6:f6:15:cb:eb:79:57:00:0a:12: f0:ec:13:7b:56:65:23:8e:36:dd:2c:04:47:a1:4e: a6:c8:76:81:55:fd:da:43:81:12:b3:fc:45:50:9b: 59:64:7a:0d:8a:38:3b:11:01:85:57:0e:d3:ba:d5: 66:a7:55:e6:2f:5b:24:af:32:cf:01:f8:b3:23:8d: 46:77:db:eb:a7:97:b4:3c:96:bf:f3:01:a4:1f:46: e2:0f:1d:8e:17:03:69:06:da:5c:1a:a3:15:f8:2c: 82:98:6c:48:75:35:0c:85:ed:cc:7c:78:f4:90:73: 13:7d:73:aa:85:f9:5d:43:93:db:99:c0:07:fb:32: 61:56:cb:08:a0:2f:1e:08:80:18:11:38:c4:fd:0d: c6:34:c6:41:9f:e3:08:c3:87:1d:c5:c3:d9:ab:13: 73:45:2a:b2:bc:8e:53:e7:5b:74:f8:1f:ae:d5:e1: 2d:d6:99:80:59:1e:4f:44:d2:11:bd:47:fc:de:b8: 02:6c:04:81:dc:41:24:ed:95:82:5d:2b:a0:28:28: 30:84:30:bf:37:08:c2:83:17:4b:96:72:60:1b:48: 2e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:92:05:78:F9:FF:F0:20:5E:38:3A:FE:2E:97:AA:E7:A5:A7:9C:5E X509v3 Authority Key Identifier: keyid:34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.236.119.0/24 IPv6: 2001:df5:8400::/48 Signature Algorithm: sha256WithRSAEncryption 2b:ac:72:b8:bb:76:21:f7:5e:63:74:7a:bc:a1:84:4a:07:39: 58:0a:68:6e:82:4d:b8:8e:d3:1e:b2:85:e9:da:ef:bb:8e:2c: 1f:a5:88:c2:c6:93:51:81:4e:c0:8e:0c:04:92:c5:f2:76:f0: 28:cd:0b:2e:11:d6:66:10:2c:de:3d:9e:e2:21:aa:5e:d9:dc: 12:f7:62:5b:cf:80:8d:8d:83:fc:6f:23:78:5b:52:5a:86:c9: 6c:b2:7a:5d:1e:14:d0:b7:1d:cd:26:15:53:e4:ac:90:25:9d: d6:da:97:d7:49:80:b0:7c:89:a1:7e:90:8f:b2:3a:46:47:7d: 81:94:8b:4e:76:00:a4:a9:d4:fc:0c:6b:8a:83:09:fb:fe:30: 1d:90:32:71:df:f6:e0:1b:36:99:18:99:46:62:9e:c7:bc:52: c4:5d:fc:73:8b:4e:d6:71:89:0c:e9:cb:a6:83:7f:9c:79:64: cb:c3:56:0c:7f:66:30:6e:fc:b8:a8:11:4e:60:55:22:d8:7d: 49:71:f8:31:fa:8d:3c:23:2a:fa:84:04:b0:2d:71:6e:d9:b4: 7e:83:be:a8:dd:c2:25:00:f3:86:a5:16:24:71:4f:bd:60:86: fe:10:77:9a:f3:17:2f:39:69:33:5b:90:fb:97:7b:e9:55:4c: 9e:32:ce:a3 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICC04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZEOTYxMTAvBgNVBAUTKDM0MDQxRkUzOTlDMDc2NTk2MUI3OUZFMTI0Njk0MTcy ODcyMDczQkIwHhcNMjUwNzI0MTk1OTU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjZmOC00YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHFus7wnDvagyoK5iHZ0pPCABTzPRbWf9WIkNTFKl5MtV9b2FcvreVcAChLw 7BN7VmUjjjbdLARHoU6myHaBVf3aQ4ESs/xFUJtZZHoNijg7EQGFVw7TutVmp1Xm L1skrzLPAfizI41Gd9vrp5e0PJa/8wGkH0biDx2OFwNpBtpcGqMV+CyCmGxIdTUM he3MfHj0kHMTfXOqhfldQ5PbmcAH+zJhVssIoC8eCIAYETjE/Q3GNMZBn+MIw4cd xcPZqxNzRSqyvI5T51t0+B+u1eEt1pmAWR5PRNIRvUf83rgCbASB3EEk7ZWCXSug KCgwhDC/NwjCgxdLlnJgG0gu4QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEWSBXj5 //AgXjg6/i6Xquelp5xeMB8GA1UdIwQYMBaAFDQEH+OZwHZZYbef4SRpQXKHIHO7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkQ5Ni9BNjI0RkM0NDUx OTgxMUVBOTcyMjU5ODNDNEY5QUUwMi9OQVFmNDVuQWRsbGh0NV9oSkdsQmNvY2dj N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BUWY0NW5BZGxsaHQ1X2hKR2xCY29jZ2M3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZEOTYvQTYyNEZDNDQ1MTk4MTFFQTk3MjI1OTgzQzRGOUFFMDIvRkMzQjQ0Q0U1 MTlBMTFFQUIxMjI5QTg3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ+x3MA8EAgACMAkDBwAgAQ31hAAwDQYJKoZIhvcNAQELBQADggEB ACuscri7diH3XmN0eryhhEoHOVgKaG6CTbiO0x6yhena77uOLB+liMLGk1GBTsCO DASSxfJ28CjNCy4R1mYQLN49nuIhql7Z3BL3YlvPgI2Ng/xvI3hbUlqGyWyyel0e FNC3Hc0mFVPkrJAlndbal9dJgLB8iaF+kI+yOkZHfYGUi052AKSp1PwMa4qDCfv+ MB2QMnHf9uAbNpkYmUZinse8UsRd/HOLTtZxiQzpy6aDf5x5ZMvDVgx/ZjBu/Lio EU5gVSLYfUlx+DH6jTwjKvqEBLAtcW7ZtH6DvqjdwiUA84alFiRxT71ghv4Qd5rz Fy85aTNbkPuXe+lVTJ4yzqM= -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:38 2026 by rpki-client