$ rpki-client -vvf rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa File: 3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa (raw, json) Hash identifier: FKDhz83TnCJYR/MYFdEL/GGWg2KY5LKvFM7QwXLSjcI= Subject key identifier: 3B:EE:24:81:67:C3:60:5C:71:BA:14:52:EC:9B:60:B8:46:A1:3A:F5 Certificate issuer: /CN=A91722C3/serialNumber=EAD36A7D30B066156B803025AAAA5FF927AD75C2 Certificate serial: 1709 Authority key identifier: EA:D3:6A:7D:30:B0:66:15:6B:80:30:25:AA:AA:5F:F9:27:AD:75:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:44:34 +0000 ROA not before: Thu 02 Oct 2025 16:45:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136757 IP address blocks: 103.89.38.0/23 maxlen: 23 103.239.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.crl rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5897 (0x1709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722C3, serialNumber=EAD36A7D30B066156B803025AAAA5FF927AD75C2 Validity Not Before: Oct 2 16:45:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a442c1-0aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:bd:38:70:e8:91:ea:c4:2a:98:3e:90:01: b4:7b:8e:96:e5:c0:c4:b0:7e:4e:e0:3a:b8:93:11: 86:24:26:4b:68:70:f5:37:a7:14:16:51:46:d1:2e: 4e:43:82:2a:3b:e5:16:6a:1f:66:e6:ee:79:26:af: e6:f1:06:f7:95:78:8e:f5:10:fe:cf:b0:1b:85:e3: 1d:69:d9:5c:9a:6f:dc:d8:58:ff:12:bc:ce:0e:3b: db:40:27:f1:8d:e8:14:4b:63:b1:1d:58:82:63:17: d0:54:11:06:47:ff:75:6c:fa:e9:ec:fc:52:29:1d: f7:1b:4f:1d:7e:2d:48:5b:4c:7a:ab:ce:60:ab:1a: ad:c6:56:b0:88:8c:ba:cb:78:39:67:17:53:4d:56: b5:75:48:1f:ed:54:9f:fb:70:53:bf:5e:b1:cd:87: e4:25:6b:6b:46:0a:fd:28:e3:85:c7:e7:a6:05:b1: 51:87:21:33:5b:de:6e:52:e7:c1:58:10:bd:31:b6: c1:ef:48:26:f8:1a:36:e8:56:de:b6:83:49:b5:45: 47:05:e8:c4:7f:39:35:54:9e:0f:e8:2b:38:ef:a1: de:22:e4:03:5d:7b:77:0d:53:c8:bc:a5:be:fd:11: 55:9b:3f:e8:66:fa:8a:47:c4:17:57:68:21:2d:19: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EE:24:81:67:C3:60:5C:71:BA:14:52:EC:9B:60:B8:46:A1:3A:F5 X509v3 Authority Key Identifier: keyid:EA:D3:6A:7D:30:B0:66:15:6B:80:30:25:AA:AA:5F:F9:27:AD:75:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.38.0/23 103.239.106.0/23 Signature Algorithm: sha256WithRSAEncryption 18:98:c9:b4:9f:3a:d9:25:4c:98:42:b8:2e:8c:21:b8:55:78: 6b:01:d3:61:d7:11:85:ed:00:86:d2:33:03:dc:2b:ad:0b:55: db:d7:c3:92:10:df:cb:0e:b7:61:58:59:d3:3f:60:c0:ab:3a: 33:2b:c5:a1:5c:1c:cb:a0:28:a2:ed:2d:34:06:1d:df:4d:fc: f1:fd:3e:90:b2:38:0b:db:49:31:a0:4f:a6:6d:b8:a7:af:a4: b5:d7:8e:17:61:48:89:21:38:f2:a0:d9:2d:78:ef:05:e1:2a: f6:fd:39:b7:63:ff:57:ab:69:d6:2d:6e:9b:2c:b6:37:23:63: 86:03:15:79:fa:e5:b7:9e:da:a7:44:14:fa:3d:1d:fe:ec:b6: a4:d8:d5:08:21:70:38:85:7a:67:2d:aa:28:32:e8:8b:fc:88: 5f:24:d1:82:cd:86:86:6a:4c:fc:3d:d6:df:c0:3f:31:6b:26: db:17:91:8c:cb:05:bc:b0:e6:9d:d3:88:46:d1:46:7a:7b:96: 61:b7:af:e2:26:58:3b:9e:17:35:28:cd:3e:2c:91:63:ae:63: 8f:f4:22:3a:6a:7f:8a:4d:a8:09:5b:c7:93:b1:a9:48:0b:d4: 42:d9:23:99:f1:3a:2a:64:11:af:7d:f9:e4:5b:c4:38:7b:79: 2d:0e:4f:14 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICFwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQzMxMTAvBgNVBAUTKEVBRDM2QTdEMzBCMDY2MTU2QjgwMzAyNUFBQUE1RkY5 MjdBRDc1QzIwHhcNMjUxMDAyMTY0NTM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDJjMS0wYWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqba9OHDokerEKpg+kAG0e46W5cDEsH5O4Dq4kxGGJCZLaHD1N6cUFlFG0S5O Q4IqO+UWah9m5u55Jq/m8Qb3lXiO9RD+z7AbheMdadlcmm/c2Fj/ErzODjvbQCfx jegUS2OxHViCYxfQVBEGR/91bPrp7PxSKR33G08dfi1IW0x6q85gqxqtxlawiIy6 y3g5ZxdTTVa1dUgf7VSf+3BTv16xzYfkJWtrRgr9KOOFx+emBbFRhyEzW95uUufB WBC9MbbB70gm+Bo26FbetoNJtUVHBejEfzk1VJ4P6Cs476HeIuQDXXt3DVPIvKW+ /RFVmz/oZvqKR8QXV2ghLRmMKwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDvuJIFn w2BccboUUuybYLhGoTr1MB8GA1UdIwQYMBaAFOrTan0wsGYVa4AwJaqqX/knrXXC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJDMy8xNTIzRDJFNDA3 QUIxMUU4QUU1REZFNjRDNEY5QUUwMi82dE5xZlRDd1poVnJnREFscXFwZi1TZXRk Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ0TnFmVEN3WmhWcmdEQWxxcXBmLVNldGRjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzIyQzMvMTUyM0QyRTQwN0FCMTFFOEFFNURGRTY0QzRGOUFFMDIvM0I3RUJBNUM3 RDc0MTFFQkFFRkI5MDZBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ1kmAwQBZ+9qMA0GCSqGSIb3DQEBCwUAA4IBAQAYmMm0nzrZJUyY QrgujCG4VXhrAdNh1xGF7QCG0jMD3CutC1Xb18OSEN/LDrdhWFnTP2DAqzozK8Wh XBzLoCii7S00Bh3fTfzx/T6QsjgL20kxoE+mbbinr6S1144XYUiJITjyoNkteO8F 4Sr2/Tm3Y/9Xq2nWLW6bLLY3I2OGAxV5+uW3ntqnRBT6PR3+7Lak2NUIIXA4hXpn LaooMuiL/IhfJNGCzYaGakz8PdbfwD8xaybbF5GMywW8sOad04hG0UZ6e5Zht6/i Jlg7nhc1KM0+LJFjrmOP9CI6an+KTagJW8eTsalIC9RC2SOZ8ToqZBGvffnkW8Q4 e3ktDk8U -----END CERTIFICATE-----Generated at Mon Mar 2 03:57:39 2026 by rpki-client