$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa File: 436B3BEC822D11EBB19C1844C4F9AE02.roa (raw, json) Hash identifier: jtuVSDyIBwb+m5w2Pot79YKxb5aIewHwwqmEIPo9l0Q= Subject key identifier: 4F:1D:B8:7D:57:57:DA:EC:AE:EB:1C:E7:40:38:11:05:3D:07:61:E3 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 06F3 Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:43:54 +0000 ROA not before: Thu 20 Mar 2025 22:33:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.163.168.0/23 maxlen: 23 103.163.168.0/24 maxlen: 24 103.163.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215, serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Validity Not Before: Mar 20 22:33:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3fc4a-abef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:2c:d8:9f:a6:87:ad:ab:ad:a9:e0:34:ce: ee:bc:6b:49:9b:ae:54:62:1f:2b:f9:d3:dd:02:a2: 30:e1:e1:ea:ee:4e:4c:24:a6:ec:12:5c:72:c7:b5: c7:6d:f3:83:5e:4a:4b:9b:1a:31:ea:09:4f:5f:c1: de:0c:b2:d7:d8:8b:da:44:ba:90:95:0c:e4:be:ed: 7c:b3:3e:60:fc:d6:90:8f:ad:d3:85:cb:9a:a7:a1: 48:cd:47:02:26:a8:21:f8:3e:50:fa:b7:16:c6:1e: de:0b:dc:31:d6:19:90:70:3c:35:53:c7:86:c5:2d: b7:0c:16:fa:cd:61:96:f4:36:8c:27:4b:a1:aa:79: 26:24:3f:35:09:a7:01:74:26:9c:3a:d0:e0:d6:23: 52:03:cb:c8:d2:9a:22:3b:70:0c:70:b8:e7:63:f0: cc:33:2f:03:53:57:3b:fe:e2:ee:d7:7b:c0:fe:69: be:5e:cc:34:ae:c0:94:06:78:ec:ae:54:f1:cc:5f: f8:56:91:44:89:9e:65:44:f5:57:1e:55:34:2e:ce: 96:f1:39:7f:86:42:7f:aa:85:0c:19:90:97:6c:7a: c7:5b:e0:45:c8:03:ce:f6:c7:67:5a:6b:be:55:29: 2e:7a:81:e4:ac:22:e1:d8:d2:5a:f6:20:5c:40:a0: 5e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1D:B8:7D:57:57:DA:EC:AE:EB:1C:E7:40:38:11:05:3D:07:61:E3 X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.168.0/23 Signature Algorithm: sha256WithRSAEncryption 51:c0:e5:34:c1:70:8f:f0:a1:18:ea:a4:c4:ab:32:55:61:57: 77:b6:83:8b:de:62:e7:b8:46:6c:f6:d1:b0:67:89:08:e9:6e: a9:ef:13:a4:4f:48:50:83:9b:b0:3b:d9:4a:1f:09:eb:a1:c6: ee:c0:9c:e8:72:1d:51:4c:31:5f:ba:1a:db:f8:c1:5f:b2:2a: 73:42:66:c3:12:63:ce:41:61:b4:f1:4b:bf:2d:30:65:89:2b: 6b:77:27:fb:64:c0:13:19:6c:1f:5d:3f:73:91:d9:54:fa:3a: c7:a5:3b:62:c9:e7:c9:13:a5:0c:17:6e:14:91:20:18:e4:bb: 17:c8:da:89:c5:6a:79:ba:48:71:de:fa:36:3c:3e:97:52:49: 71:85:d8:79:5e:8c:de:95:bb:82:da:51:73:f5:e4:c3:df:27: d5:d7:a1:bf:fc:f0:3b:7f:af:f9:c9:01:df:13:66:d0:19:ab: 83:a6:8f:7c:25:98:bb:e8:72:cf:af:e3:21:2c:9d:4a:d6:db: 67:74:99:74:c3:df:39:10:8c:fe:6f:c8:90:1a:45:e3:cb:f7: 1c:e5:ae:45:71:ad:4a:e2:da:72:1f:df:92:03:de:38:77:44: a9:f0:16:63:91:97:44:a1:2f:c4:e6:5b:83:ef:95:b1:3c:1b: eb:75:31:dd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjUwMzIwMjIzMzQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmM0YS1hYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuYs2J+mh62rrangNM7uvGtJm65UYh8r+dPdAqIw4eHq7k5MJKbsElxyx7XH bfODXkpLmxox6glPX8HeDLLX2IvaRLqQlQzkvu18sz5g/NaQj63Thcuap6FIzUcC Jqgh+D5Q+rcWxh7eC9wx1hmQcDw1U8eGxS23DBb6zWGW9DaMJ0uhqnkmJD81CacB dCacOtDg1iNSA8vI0poiO3AMcLjnY/DMMy8DU1c7/uLu13vA/mm+Xsw0rsCUBnjs rlTxzF/4VpFEiZ5lRPVXHlU0Ls6W8Tl/hkJ/qoUMGZCXbHrHW+BFyAPO9sdnWmu+ VSkueoHkrCLh2NJa9iBcQKBexQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE8duH1X V9rsrusc50A4EQU9B2HjMB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUyMTUvOTIyREJCOTQ4MjJCMTFFQkJCQzc1RTQyQzRGOUFFMDIvNDM2QjNCRUM4 MjJEMTFFQkIxOUMxODQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6OoMA0GCSqGSIb3DQEBCwUAA4IBAQBRwOU0wXCP8KEY6qTEqzJV YVd3toOL3mLnuEZs9tGwZ4kI6W6p7xOkT0hQg5uwO9lKHwnrocbuwJzoch1RTDFf uhrb+MFfsipzQmbDEmPOQWG08Uu/LTBliStrdyf7ZMATGWwfXT9zkdlU+jrHpTti yefJE6UMF24UkSAY5LsXyNqJxWp5ukhx3vo2PD6XUklxhdh5XozelbuC2lFz9eTD 3yfV16G//PA7f6/5yQHfE2bQGauDpo98JZi76HLPr+MhLJ1K1ttndJl0w985EIz+ b8iQGkXjy/cc5a5Fca1K4tpyH9+SA944d0Sp8BZjkZdEoS/E5luD75WxPBvrdTHd -----END CERTIFICATE-----Generated at Mon Mar 2 08:53:01 2026 by rpki-client