$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa File: B32668C4D98C11EB905D7281C4F9AE02.roa (raw, json) Hash identifier: ApbUgdUH10Pdfa6lJVrc4XPCGZcLshELo3PIV/SWLXw= Subject key identifier: AC:89:46:C4:EF:7F:CC:7D:B3:6A:B4:C9:26:D2:D7:6B:80:F1:18:75 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CE3 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:10:11 +0000 ROA not before: Wed 24 Dec 2025 18:16:05 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63969 IP address blocks: 103.126.20.0/22 maxlen: 23 103.126.20.0/24 maxlen: 24 103.126.21.0/24 maxlen: 24 103.126.22.0/24 maxlen: 24 103.126.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Dec 24 18:16:05 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a472f3-f131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:29:06:68:37:2d:ac:b1:fb:74:17:41:d1: 73:05:bd:e8:be:b7:90:4d:d0:73:23:92:f8:7c:fe: 52:33:8a:bc:35:d1:1c:b5:09:aa:a9:65:bd:e1:2a: f5:66:42:00:4c:2c:71:30:c2:b1:43:15:b9:c4:59: b6:06:f9:9e:1a:34:8f:14:52:01:8f:ae:d1:83:a0: 68:f9:1e:27:34:e6:69:89:2a:5f:08:46:76:bb:ee: 7f:14:49:2a:10:71:66:25:c3:02:68:6f:fe:81:ae: d0:6e:8a:ae:1b:bb:eb:95:d6:e5:f9:4d:0a:4d:36: ff:6c:cc:5b:59:1b:81:27:d8:33:f4:73:b1:11:b3: d5:b5:07:6f:a7:c5:52:8e:4b:8f:26:16:a3:b1:32: 6f:09:f9:51:e6:6d:3d:be:9b:81:78:72:fd:8d:18: c4:2d:c0:4c:17:8a:57:e7:4d:c5:16:22:a5:0b:93: dc:85:81:f7:41:37:6e:49:85:bb:f2:d3:5e:a4:1d: c6:5d:0d:4c:e1:de:39:76:7c:69:bf:d2:96:44:aa: a1:a6:c5:8f:07:81:86:73:cc:4c:0f:55:96:9f:cf: d6:6f:43:51:94:76:3b:07:0f:2d:cd:6d:90:87:3c: c9:73:84:1e:f1:e3:93:98:a7:97:4e:2f:26:a3:2c: e1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:46:C4:EF:7F:CC:7D:B3:6A:B4:C9:26:D2:D7:6B:80:F1:18:75 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/B32668C4D98C11EB905D7281C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.126.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:47:d9:a9:38:36:e1:cc:11:57:3e:bf:5c:54:75:8b:53:e9: 9b:54:b2:76:91:78:26:87:ab:4f:00:fe:03:64:e0:91:fa:38: 46:fb:9b:7d:f8:24:87:f0:00:e6:c6:ed:55:30:34:8c:2c:1d: 1d:06:c3:34:8d:58:c9:c9:ec:5b:44:39:20:ef:f6:7a:2e:e7: 11:eb:d0:a8:31:c3:0f:37:52:22:a4:f5:a4:ed:39:fe:7b:af: 2a:37:4f:7b:55:d8:c3:82:49:ca:60:c8:e1:05:fc:6a:61:db: 56:48:fc:9e:b4:53:bc:25:a0:26:8c:a8:e5:30:79:bb:f0:75: 63:51:4b:e8:0a:b7:71:20:14:fe:fe:85:79:7b:3c:57:70:30: 43:09:26:7a:3f:98:48:dc:c1:14:1a:97:dc:0e:a6:2e:eb:f7: 32:03:19:db:ce:45:3a:33:46:8c:f8:0a:d1:2b:7b:a8:6b:5f: 6c:f5:42:c1:d3:77:3c:97:de:9d:b4:d4:f4:f3:d0:6b:7e:15: 86:eb:d3:52:09:07:23:e6:a8:b8:2b:92:30:f0:4c:c1:7d:6d: bb:c0:d8:42:30:28:17:1a:19:de:f6:29:cf:a8:35:b6:0c:ef: 95:d5:3c:b2:09:8a:fa:d4:40:33:92:ae:54:a0:a0:73:f5:96: 86:82:bd:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUxMjI0MTgxNjA1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJmMy1mMTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsowpBmg3Layx+3QXQdFzBb3ovreQTdBzI5L4fP5SM4q8NdEctQmqqWW94Sr1 ZkIATCxxMMKxQxW5xFm2BvmeGjSPFFIBj67Rg6Bo+R4nNOZpiSpfCEZ2u+5/FEkq EHFmJcMCaG/+ga7QboquG7vrldbl+U0KTTb/bMxbWRuBJ9gz9HOxEbPVtQdvp8VS jkuPJhajsTJvCflR5m09vpuBeHL9jRjELcBMF4pX503FFiKlC5PchYH3QTduSYW7 8tNepB3GXQ1M4d45dnxpv9KWRKqhpsWPB4GGc8xMD1WWn8/Wb0NRlHY7Bw8tzW2Q hzzJc4Qe8eOTmKeXTi8moyzh2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKyJRsTv f8x9s2q0ySbS12uA8Rh1MB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCRjMvMUJDNkVCMjAxMUU3MTFFQUI5MDNBQTc5QzRGOUFFMDIvQjMyNjY4QzRE OThDMTFFQjkwNUQ3MjgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ34UMA0GCSqGSIb3DQEBCwUAA4IBAQCaR9mpODbhzBFXPr9cVHWL U+mbVLJ2kXgmh6tPAP4DZOCR+jhG+5t9+CSH8ADmxu1VMDSMLB0dBsM0jVjJyexb RDkg7/Z6LucR69CoMcMPN1IipPWk7Tn+e68qN097VdjDgknKYMjhBfxqYdtWSPye tFO8JaAmjKjlMHm78HVjUUvoCrdxIBT+/oV5ezxXcDBDCSZ6P5hI3MEUGpfcDqYu 6/cyAxnbzkU6M0aM+ArRK3uoa19s9ULB03c8l96dtNT089BrfhWG69NSCQcj5qi4 K5Iw8EzBfW27wNhCMCgXGhne9inPqDW2DO+V1TyyCYr61EAzkq5UoKBz9ZaGgr3I -----END CERTIFICATE-----Generated at Mon Mar 2 07:10:38 2026 by rpki-client