$ rpki-client -vvf rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/3A6CB168758811EA93AADD3FC4F9AE02.roa File: 3A6CB168758811EA93AADD3FC4F9AE02.roa (raw, json) Hash identifier: xVPm3Cark4WrJEzXzpMBfNeQtbyk+mDYvN6nEfU+YwA= Subject key identifier: AB:82:F7:21:17:D7:C1:E7:9B:EA:0F:DD:7C:39:E1:5A:CA:62:E6:76 Certificate issuer: /CN=A9155447/serialNumber=A83C6ECE2233B6CB8CC0EB613F0A952C833C03A1 Certificate serial: 329F Authority key identifier: A8:3C:6E:CE:22:33:B6:CB:8C:C0:EB:61:3F:0A:95:2C:83:3C:03:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDxuziIztsuMwOthPwqVLIM8A6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/3A6CB168758811EA93AADD3FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:12:25 +0000 ROA not before: Wed 02 Apr 2025 15:41:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58890 IP address blocks: 45.120.38.0/23 maxlen: 23 45.120.38.0/24 maxlen: 24 45.120.39.0/24 maxlen: 24 103.19.130.0/23 maxlen: 23 103.19.130.0/24 maxlen: 24 103.19.131.0/24 maxlen: 24 103.62.144.0/23 maxlen: 23 103.62.144.0/24 maxlen: 24 103.62.145.0/24 maxlen: 24 202.74.48.0/24 maxlen: 24 203.82.218.0/24 maxlen: 24 2404:6180::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/qDxuziIztsuMwOthPwqVLIM8A6E.crl rsync://rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/qDxuziIztsuMwOthPwqVLIM8A6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDxuziIztsuMwOthPwqVLIM8A6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12959 (0x329f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155447, serialNumber=A83C6ECE2233B6CB8CC0EB613F0A952C833C03A1 Validity Not Before: Apr 2 15:41:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a402f9-01af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:26:69:b2:24:b9:61:97:29:39:d2:29:3b:0e: 1f:29:26:fc:47:b1:19:29:81:ef:bf:1c:26:76:9f: 61:ba:2b:c7:93:b1:c6:39:c1:ab:72:3c:28:b5:3b: c7:2e:dc:e6:30:aa:71:1f:66:b7:f5:33:d7:6e:56: eb:4c:59:dd:eb:21:6b:12:88:fb:82:4e:22:de:40: ce:6b:b9:ee:06:df:47:94:a7:a7:61:e3:d3:a4:1a: 05:b3:cd:43:d4:13:1f:4e:59:6c:27:db:6c:d4:d3: 99:cd:79:73:5c:e2:b8:f3:d8:7b:59:ce:d8:75:b1: de:c1:05:15:ee:d2:fe:e9:74:14:19:22:9e:bd:be: c8:81:22:ac:00:04:34:91:fa:d2:ae:ad:7f:cb:27: 2c:00:39:55:2e:48:e8:a8:71:06:17:15:e6:80:b2: ba:a7:d6:49:91:8e:93:45:8f:7f:9b:71:15:27:f3: 2e:67:57:4f:38:8d:34:db:38:14:c0:d6:06:81:64: fe:6d:46:a8:24:fa:d2:00:6a:e5:16:0b:51:9b:24: 01:a3:ea:1a:52:b2:be:7a:60:94:f4:cb:cf:d9:56: b4:df:8e:fe:55:b2:9a:35:7f:85:af:a5:c6:37:5f: 6c:88:02:ed:06:c0:6c:39:5d:a8:5c:1a:9f:3c:b1: 4e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:82:F7:21:17:D7:C1:E7:9B:EA:0F:DD:7C:39:E1:5A:CA:62:E6:76 X509v3 Authority Key Identifier: keyid:A8:3C:6E:CE:22:33:B6:CB:8C:C0:EB:61:3F:0A:95:2C:83:3C:03:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/qDxuziIztsuMwOthPwqVLIM8A6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDxuziIztsuMwOthPwqVLIM8A6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155447/81B0F15C9C7711E2A98348DF2F5A7754/3A6CB168758811EA93AADD3FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 45.120.38.0/23 103.19.130.0/23 103.62.144.0/23 202.74.48.0/24 203.82.218.0/24 IPv6: 2404:6180::/32 Signature Algorithm: sha256WithRSAEncryption 89:0c:9d:5b:7b:05:82:5d:4d:4e:3b:69:a1:81:6e:68:9c:58: 8a:2e:08:74:f6:c5:a7:0e:cf:c1:74:7c:e7:18:f7:d0:ba:53: d8:ef:cb:8e:e6:9f:ed:92:98:56:fc:a5:f1:d5:1a:31:25:70: 67:19:a2:a3:6a:74:79:af:5e:2a:61:db:b6:7f:4d:5a:0e:ee: cd:12:d6:46:df:b9:95:84:28:e6:fc:77:4b:4b:23:9a:03:f4: 55:2a:d7:c1:2a:b6:dc:33:ea:82:d1:b4:f1:74:f0:c4:79:74: fa:e7:ff:62:b4:bb:40:63:86:ed:ac:7b:55:6d:ff:4b:5e:14: 8c:81:1a:fa:33:e1:bf:46:2f:ce:31:1c:97:2a:30:11:9a:38: ac:55:f3:29:82:82:20:29:82:7c:87:80:21:04:cd:42:81:a5: 98:bc:dd:c7:a1:d4:63:9f:6b:0e:87:86:aa:38:dc:47:e9:0a: c8:56:d1:52:75:eb:21:90:3b:2d:b3:95:d8:1f:3f:73:fd:91: ae:e4:c1:35:b0:67:61:29:3f:2c:22:e6:22:2a:5a:aa:56:42: 09:e8:48:18:fe:8a:ba:64:95:b8:e7:74:04:f8:fa:55:4f:cd: 28:53:11:11:2d:14:e9:3b:50:05:5b:6c:8a:6b:6a:f7:12:7b: 2c:37:3f:d1 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICMp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0NDcxMTAvBgNVBAUTKEE4M0M2RUNFMjIzM0I2Q0I4Q0MwRUI2MTNGMEE5NTJD ODMzQzAzQTEwHhcNMjUwNDAyMTU0MTU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDJmOS0wMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCZpsiS5YZcpOdIpOw4fKSb8R7EZKYHvvxwmdp9huivHk7HGOcGrcjwotTvH LtzmMKpxH2a39TPXblbrTFnd6yFrEoj7gk4i3kDOa7nuBt9HlKenYePTpBoFs81D 1BMfTllsJ9ts1NOZzXlzXOK489h7Wc7YdbHewQUV7tL+6XQUGSKevb7IgSKsAAQ0 kfrSrq1/yycsADlVLkjoqHEGFxXmgLK6p9ZJkY6TRY9/m3EVJ/MuZ1dPOI002zgU wNYGgWT+bUaoJPrSAGrlFgtRmyQBo+oaUrK+emCU9MvP2Va0347+VbKaNX+Fr6XG N19siALtBsBsOV2oXBqfPLFOvwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKuC9yEX 18Hnm+oP3Xw54VrKYuZ2MB8GA1UdIwQYMBaAFKg8bs4iM7bLjMDrYT8KlSyDPAOh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTQ0Ny84MUIwRjE1QzlD NzcxMUUyQTk4MzQ4REYyRjVBNzc1NC9xRHh1emlJenRzdU13T3RoUHdxVkxJTThB NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FEeHV6aUl6dHN1TXdPdGhQd3FWTElNOEE2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU0NDcvODFCMEYxNUM5Qzc3MTFFMkE5ODM0OERGMkY1QTc3NTQvM0E2Q0IxNjg3 NTg4MTFFQTkzQUFERDNGQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQBLXgmAwQBZxOCAwQBZz6QAwQAykowAwQAy1LaMA0EAgACMAcDBQAk BGGAMA0GCSqGSIb3DQEBCwUAA4IBAQCJDJ1bewWCXU1OO2mhgW5onFiKLgh09sWn Ds/BdHznGPfQulPY78uO5p/tkphW/KXx1RoxJXBnGaKjanR5r14qYdu2f01aDu7N EtZG37mVhCjm/HdLSyOaA/RVKtfBKrbcM+qC0bTxdPDEeXT65/9itLtAY4btrHtV bf9LXhSMgRr6M+G/Ri/OMRyXKjARmjisVfMpgoIgKYJ8h4AhBM1CgaWYvN3HodRj n2sOh4aqONxH6QrIVtFSdeshkDsts5XYHz9z/ZGu5ME1sGdhKT8sIuYiKlqqVkIJ 6EgY/oq6ZJW453QE+PpVT80oUxERLRTpO1AFW2yKa2r3EnssNz/R -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:56 2026 by rpki-client