$ rpki-client -vvf rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/3408D944DC0311EC879DE280C4F9AE02.roa File: 3408D944DC0311EC879DE280C4F9AE02.roa (raw, json) Hash identifier: X2TaF3YKM0s8VUzzhEaphXHF/ct0sZDe6tpxxxbTq9I= Subject key identifier: E7:40:45:32:9E:CE:BA:52:17:3D:CA:D7:D6:51:78:8E:26:BA:12:80 Certificate issuer: /CN=A9156021/serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Certificate serial: 2E99 Authority key identifier: AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/3408D944DC0311EC879DE280C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:52:50 +0000 ROA not before: Wed 28 Jan 2026 16:12:39 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 135097 IP address blocks: 103.255.44.0/22 maxlen: 22 103.255.44.0/24 maxlen: 24 103.255.45.0/24 maxlen: 24 103.255.46.0/24 maxlen: 24 103.255.47.0/24 maxlen: 24 202.61.84.0/22 maxlen: 22 202.61.84.0/24 maxlen: 24 202.61.85.0/24 maxlen: 24 202.61.86.0/24 maxlen: 24 202.61.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11929 (0x2e99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156021, serialNumber=AA4C9B7FFB7760D134DA34FA31129DE11A1DE2AE Validity Not Before: Jan 28 16:12:39 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a460d1-84c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:88:81:16:ca:53:3d:97:e9:e2:cc:77:7e: ef:57:0d:1a:11:8b:fb:4c:6e:85:4b:2a:bb:89:1c: e8:30:b4:dd:a9:ff:55:80:56:2f:93:1e:68:c9:8e: 7b:40:d1:cc:e7:63:4c:e1:8b:f7:c7:11:4e:71:35: 4a:53:f5:22:34:f2:1d:e0:1b:62:89:ae:d4:4f:4e: e8:f7:ab:cd:a6:03:b3:09:43:18:de:bc:f8:b9:80: 41:23:b1:e2:93:ae:2d:de:8b:76:20:de:a7:2b:56: 63:7a:3f:5a:dc:e9:3d:f7:1b:a3:2f:b8:c8:64:fa: 04:31:78:7b:2d:0f:cd:80:cc:79:7b:1b:df:3c:a9: 96:fe:ea:e3:2f:68:2b:4e:74:4b:e1:9c:78:9e:9e: 10:37:9b:d9:4f:c4:9c:04:03:99:a1:43:04:92:0b: 13:75:4f:0f:c8:92:7d:c5:08:f8:37:c9:fb:4b:b6: 24:bb:c6:4e:69:59:b2:47:fb:fa:b0:da:41:a6:81: 41:fd:0c:7b:d5:43:22:79:15:60:31:ad:a1:cf:ed: 8b:c8:49:bf:b9:a5:5f:9f:17:11:fe:02:8f:83:41: 7f:6a:4b:5d:c5:df:2d:41:40:2d:76:c1:7a:a0:ad: f8:ed:d9:62:fa:3c:54:df:08:28:c8:c0:bf:09:d5: 64:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:40:45:32:9E:CE:BA:52:17:3D:CA:D7:D6:51:78:8E:26:BA:12:80 X509v3 Authority Key Identifier: keyid:AA:4C:9B:7F:FB:77:60:D1:34:DA:34:FA:31:12:9D:E1:1A:1D:E2:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/qkybf_t3YNE02jT6MRKd4Rod4q4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkybf_t3YNE02jT6MRKd4Rod4q4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156021/D98761D4692E11E388C8252E5911EA32/3408D944DC0311EC879DE280C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.255.44.0/22 202.61.84.0/22 Signature Algorithm: sha256WithRSAEncryption 30:36:d6:e8:f5:85:83:c6:74:f0:b0:7c:74:92:2f:a2:fb:ad: 60:a0:76:0d:e6:49:31:3c:f6:19:6c:5a:16:c5:ab:39:b6:ed: 45:29:0d:c5:c9:aa:d9:e5:6c:0f:89:3f:91:40:c3:8a:40:b8: 30:49:f5:99:08:56:cb:70:7c:13:0e:8a:7a:91:66:cc:d7:c3: ad:d6:1a:33:0b:0d:3e:98:6c:46:52:76:09:33:e0:23:93:b4: f5:44:09:65:44:50:79:94:cf:be:0a:ac:c1:f3:f8:e9:7e:c8: 01:4d:b7:8d:3a:c9:ce:0c:b0:fb:de:06:fb:38:03:e4:28:92: 7f:6e:21:22:da:13:47:d7:9e:fc:83:f1:3f:28:ec:c3:f4:f8: bd:6b:d7:ed:58:09:fe:86:bd:05:2b:10:2e:77:f5:58:9f:45: 04:fa:76:3d:c1:eb:8c:36:66:99:9b:a6:52:63:17:32:9b:e6: 54:3a:89:4a:c3:25:27:e1:95:00:de:56:22:1d:10:be:85:8c: 52:f9:3b:70:eb:c6:46:c5:ad:1e:b4:36:84:9c:82:0a:27:7b: eb:54:7f:e1:9f:35:21:13:e6:19:4f:99:2d:cf:f0:58:2d:e4: 8f:07:d4:79:33:48:03:7f:7e:2a:cf:58:b9:82:bf:c7:a8:1e: 1c:81:98:64 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICLpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwMjExMTAvBgNVBAUTKEFBNEM5QjdGRkI3NzYwRDEzNERBMzRGQTMxMTI5REUx MUExREUyQUUwHhcNMjYwMTI4MTYxMjM5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBkMS04NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxKIgRbKUz2X6eLMd37vVw0aEYv7TG6FSyq7iRzoMLTdqf9VgFYvkx5oyY57 QNHM52NM4Yv3xxFOcTVKU/UiNPId4Btiia7UT07o96vNpgOzCUMY3rz4uYBBI7Hi k64t3ot2IN6nK1Zjej9a3Ok99xujL7jIZPoEMXh7LQ/NgMx5exvfPKmW/urjL2gr TnRL4Zx4np4QN5vZT8ScBAOZoUMEkgsTdU8PyJJ9xQj4N8n7S7Yku8ZOaVmyR/v6 sNpBpoFB/Qx71UMieRVgMa2hz+2LyEm/uaVfnxcR/gKPg0F/aktdxd8tQUAtdsF6 oK347dli+jxU3wgoyMC/CdVk/QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFOdARTKe zrpSFz3K19ZReI4muhKAMB8GA1UdIwQYMBaAFKpMm3/7d2DRNNo0+jESneEaHeKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjAyMS9EOTg3NjFENDY5 MkUxMUUzODhDODI1MkU1OTExRUEzMi9xa3liZl90M1lORTAyalQ2TVJLZDRSb2Q0 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FreWJmX3QzWU5FMDJqVDZNUktkNFJvZDRxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYwMjEvRDk4NzYxRDQ2OTJFMTFFMzg4QzgyNTJFNTkxMUVBMzIvMzQwOEQ5NDRE QzAzMTFFQzg3OURFMjgwQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ/8sAwQCyj1UMA0GCSqGSIb3DQEBCwUAA4IBAQAwNtbo9YWDxnTw sHx0ki+i+61goHYN5kkxPPYZbFoWxas5tu1FKQ3FyarZ5WwPiT+RQMOKQLgwSfWZ CFbLcHwTDop6kWbM18Ot1hozCw0+mGxGUnYJM+Ajk7T1RAllRFB5lM++CqzB8/jp fsgBTbeNOsnODLD73gb7OAPkKJJ/biEi2hNH1578g/E/KOzD9Pi9a9ftWAn+hr0F KxAud/VYn0UE+nY9weuMNmaZm6ZSYxcym+ZUOolKwyUn4ZUA3lYiHRC+hYxS+Ttw 68ZGxa0etDaEnIIKJ3vrVH/hnzUhE+YZT5ktz/BYLeSPB9R5M0gDf34qz1i5gr/H qB4cgZhk -----END CERTIFICATE-----Generated at Mon Mar 2 09:29:43 2026 by rpki-client