$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa File: 354725E6763311EABAE64466C4F9AE02.roa (raw, json) Hash identifier: 3d9jsCefER0nIG4s1C7Y+ZFE8U1DqWKJqZgdO4q0rjA= Subject key identifier: DE:F3:8E:5F:61:56:AF:15:D4:EB:EF:07:D9:13:1C:67:48:31:A2:62 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A9E Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:00:56 +0000 ROA not before: Tue 04 Nov 2025 20:09:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137039 IP address blocks: 103.102.220.0/24 maxlen: 24 103.146.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2718 (0xa9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Nov 4 20:09:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a44698-1385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:8d:07:20:ab:dc:e2:36:4a:bd:2e:91:a6: 5b:f4:79:56:35:de:aa:77:13:91:88:2f:5f:3c:c5: 7a:8a:0a:fa:df:0a:cc:c5:1a:2d:19:c3:24:fe:85: f2:05:e0:8a:d1:e3:9a:12:1b:3c:2f:c7:e2:67:27: 77:52:69:20:ae:8c:9c:5a:39:d1:16:30:ea:83:59: 10:02:7a:ad:c4:93:c0:d2:09:85:28:bb:4d:74:70: 4d:d5:87:00:cb:31:e7:b8:67:79:17:3d:0b:91:2a: ef:f7:fd:66:1b:2b:26:a8:2e:cb:1b:b1:99:1e:44: 44:2f:06:6c:af:bc:22:54:58:9a:6a:9f:d8:37:b9: 1f:ad:27:ae:5e:bb:1e:ab:3a:62:ff:c8:a8:7c:61: f2:e8:7d:b7:36:18:5c:5c:4c:34:b1:d0:ec:20:77: 8f:bd:b8:c6:61:19:ce:5b:bb:2c:3f:c5:d5:3e:e9: df:47:1a:e8:f6:a1:ba:1d:71:61:8e:32:9c:27:15: b4:09:c6:f9:e1:1e:22:34:64:3d:de:ce:e6:0d:68: ab:73:d6:a9:4a:d2:55:e0:18:42:9f:af:93:c0:4c: 29:d8:2e:2c:98:d3:79:84:90:40:59:8f:aa:3d:77: bc:82:e3:3e:4f:64:d6:fc:58:9f:6e:69:78:8a:df: 5f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F3:8E:5F:61:56:AF:15:D4:EB:EF:07:D9:13:1C:67:48:31:A2:62 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.102.220.0/24 103.146.198.0/24 Signature Algorithm: sha256WithRSAEncryption 80:af:63:0c:90:8b:f3:10:81:87:37:00:ee:c7:47:b9:0c:42: 6c:af:93:4f:67:2c:77:57:66:d1:0e:4b:77:f7:6f:d2:f4:87: ab:a1:39:94:61:e9:21:f5:4e:7a:20:2b:71:8f:77:3a:cb:31: 92:0d:40:01:66:6e:7b:58:23:53:58:41:69:a7:ab:86:da:ef: fd:34:4a:12:97:b8:9c:55:fd:d2:73:4d:4e:08:23:5d:fb:6a: f7:b7:13:42:b4:a2:69:62:6c:57:ab:8c:84:74:61:d9:aa:87: 49:b9:15:59:5d:cd:52:bd:0c:c2:da:83:ec:aa:3b:02:b5:d6: f5:6f:df:94:b0:56:92:5a:76:7b:3f:69:46:73:bb:4d:d4:44: e0:0e:82:25:fe:b2:17:9a:b3:da:e1:33:e0:2f:e5:e8:37:6c: 2c:51:8a:d3:33:90:4d:17:cc:a9:23:fc:d7:8c:60:40:36:ac: ce:01:b1:e0:28:4f:3d:2a:12:a9:da:2a:47:75:f0:51:fd:13: df:66:83:56:dd:9a:0e:b7:dc:e6:d2:33:69:32:c6:18:8e:eb: 9e:77:50:7a:4b:df:d9:0b:9f:1b:d8:25:a4:cc:d7:43:24:a5: 38:f9:59:c0:0e:21:34:d3:d6:c6:09:f6:0a:04:e8:0f:f0:45: 39:cd:49:52 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUxMTA0MjAwOTEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDY5OC0xMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnuNByCr3OI2Sr0ukaZb9HlWNd6qdxORiC9fPMV6igr63wrMxRotGcMk/oXy BeCK0eOaEhs8L8fiZyd3UmkgroycWjnRFjDqg1kQAnqtxJPA0gmFKLtNdHBN1YcA yzHnuGd5Fz0LkSrv9/1mGysmqC7LG7GZHkRELwZsr7wiVFiaap/YN7kfrSeuXrse qzpi/8iofGHy6H23NhhcXEw0sdDsIHePvbjGYRnOW7ssP8XVPunfRxro9qG6HXFh jjKcJxW0Ccb54R4iNGQ93s7mDWirc9apStJV4BhCn6+TwEwp2C4smNN5hJBAWY+q PXe8guM+T2TW/Fifbml4it9fNQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFN7zjl9h Vq8V1OvvB9kTHGdIMaJiMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUzRjUvODExQjYwNEM3NjMxMTFFQTk3MTVGODYwQzRGOUFFMDIvMzU0NzI1RTY3 NjMzMTFFQUJBRTY0NDY2QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ2bcAwQAZ5LGMA0GCSqGSIb3DQEBCwUAA4IBAQCAr2MMkIvzEIGH NwDux0e5DEJsr5NPZyx3V2bRDkt392/S9IeroTmUYekh9U56ICtxj3c6yzGSDUAB Zm57WCNTWEFpp6uG2u/9NEoSl7icVf3Sc01OCCNd+2r3txNCtKJpYmxXq4yEdGHZ qodJuRVZXc1SvQzC2oPsqjsCtdb1b9+UsFaSWnZ7P2lGc7tN1ETgDoIl/rIXmrPa 4TPgL+XoN2wsUYrTM5BNF8ypI/zXjGBANqzOAbHgKE89KhKp2ipHdfBR/RPfZoNW 3ZoOt9zm0jNpMsYYjuued1B6S9/ZC58b2CWkzNdDJKU4+VnADiE009bGCfYKBOgP 8EU5zUlS -----END CERTIFICATE-----Generated at Mon Mar 2 09:25:17 2026 by rpki-client