$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa File: 96AE931812F511F1BA310F6D113D8C67.roa (raw, json) Hash identifier: jP+hpdy04kY0o4MqB2uI3RyQMFd46KIJgsKGChbWqFc= Subject key identifier: FC:2F:A7:F8:BA:C4:6A:2E:17:99:47:08:EA:F6:4B:65:61:2F:5B:7B Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0CE7 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa Signing time: Sun 01 Mar 2026 17:09:53 +0000 ROA not before: Thu 26 Feb 2026 09:29:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138692 IP address blocks: 103.136.200.0/24 maxlen: 24 103.136.201.0/24 maxlen: 24 103.136.202.0/24 maxlen: 24 2404:9b40:100::/48 maxlen: 48 2404:9b40:101::/48 maxlen: 48 2404:9b40:102::/48 maxlen: 48 2404:9b40:103::/48 maxlen: 48 2404:9b40:104::/48 maxlen: 48 2404:9b40:105::/48 maxlen: 48 2404:9b40:106::/48 maxlen: 48 2404:9b40:107::/48 maxlen: 48 2404:9b40:108::/48 maxlen: 48 2404:9b40:109::/48 maxlen: 48 2404:9b40:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Feb 26 09:29:03 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a472e1-07f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:41:8c:80:59:77:39:3d:d0:71:12:ad:48:e4: be:a9:10:72:44:3b:b3:e6:4a:35:fb:c9:f5:57:c4: 19:34:e8:44:0b:6c:95:74:bd:a4:13:2f:8a:02:a6: 6d:ec:7c:92:3d:95:0e:98:0e:f6:f3:c6:4c:3f:44: 22:fb:c6:15:aa:b9:e5:99:5d:6d:f7:1f:e9:81:bd: 3f:3c:5f:50:b2:23:61:e0:ee:19:f5:54:ac:03:9b: 94:d7:bf:74:a1:1d:86:2b:19:08:d3:52:52:1c:c0: c5:4e:23:49:80:eb:1a:aa:6a:ad:59:2e:7c:88:db: 49:64:59:9d:30:a1:49:4a:e6:a6:c2:d9:58:55:16: e4:04:dd:50:1e:5f:56:c1:07:94:6f:af:92:5b:54: cd:9b:bb:d0:df:75:44:b2:57:23:3c:3f:7b:ff:12: 16:4b:3b:4e:58:2d:fb:6e:ac:85:00:74:95:ad:a3: ac:24:76:ee:13:a5:2a:11:06:02:eb:15:02:c3:51: 1b:fb:23:b7:32:76:ae:95:7b:93:22:5d:38:59:f8: 41:ae:67:87:2b:8c:26:61:78:af:52:db:c4:b8:51: b5:ab:2a:d1:76:e3:d6:0f:3f:5d:6d:d9:f5:ad:f9: 5b:b2:e5:ad:6d:47:36:26:8c:b2:ef:4f:1f:5e:46: 34:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2F:A7:F8:BA:C4:6A:2E:17:99:47:08:EA:F6:4B:65:61:2F:5B:7B X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/96AE931812F511F1BA310F6D113D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.136.200.0-103.136.202.255 IPv6: 2404:9b40:100::-2404:9b40:10a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7a:cb:4a:d0:f3:7a:4f:ed:c9:79:93:17:ab:91:77:a1:ff:ac: a7:d2:3b:8a:4d:8f:06:56:46:15:c5:c4:88:43:25:03:58:e6: df:80:44:96:aa:be:3f:2a:0e:70:cf:4a:0c:ac:e6:0b:61:de: 00:e0:e9:24:62:7a:9d:2c:41:10:14:c8:8a:fe:70:85:ba:82: 79:d5:b8:c9:58:d6:c5:b4:af:3b:64:ac:22:05:28:2b:63:ef: 60:3e:94:8b:5a:c1:f8:03:36:45:b4:52:da:27:c7:db:66:21: f0:59:76:cc:57:d0:e3:24:dd:2b:5f:cf:ca:5a:e3:17:c3:46: dd:39:2d:f0:91:2e:eb:3e:05:da:ba:7d:1d:e2:a0:94:c1:de: 59:45:28:07:03:7d:48:79:83:20:c2:6d:65:13:94:a6:6f:c0: fe:6c:0f:89:e8:74:fe:aa:4c:38:1e:d3:5f:ba:77:d3:ef:55: 28:27:91:35:c3:27:92:2c:e5:c3:13:51:f4:2a:8a:29:57:b5: 62:8b:d7:b6:05:07:2a:f6:bc:c7:e2:05:71:79:85:8d:68:3c: 71:77:c3:83:0e:20:1f:e9:5a:19:9f:aa:d3:a6:0b:18:14:3b: 4e:0e:1d:1e:87:43:c3:10:d8:39:bb:6d:b1:8e:05:a0:d1:be: 04:16:fd:49 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjYwMjI2MDkyOTAzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzJlMS0wN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUGMgFl3OT3QcRKtSOS+qRByRDuz5ko1+8n1V8QZNOhEC2yVdL2kEy+KAqZt 7HySPZUOmA7288ZMP0Qi+8YVqrnlmV1t9x/pgb0/PF9QsiNh4O4Z9VSsA5uU1790 oR2GKxkI01JSHMDFTiNJgOsaqmqtWS58iNtJZFmdMKFJSuamwtlYVRbkBN1QHl9W wQeUb6+SW1TNm7vQ33VEslcjPD97/xIWSztOWC37bqyFAHSVraOsJHbuE6UqEQYC 6xUCw1Eb+yO3MnaulXuTIl04WfhBrmeHK4wmYXivUtvEuFG1qyrRduPWDz9dbdn1 rflbsuWtbUc2Joyy708fXkY0DwIDAQABo4ICgzCCAn8wHQYDVR0OBBYEFPwvp/i6 xGouF5lHCOr2S2VhL1t7MB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ExN0IvODUzOTVENkUwNkQzMTFFQUJBNUQ1QTQ5QzRGOUFFMDIvOTZBRTkzMTgx MkY1MTFGMUJBMzEwRjZEMTEzRDhDNjcucm9hMEIGCCsGAQUFBwEHAQH/BDMwMTAU BAIAATAOMAwDBANniMgDBABniMowGQQCAAIwEzARAwYAJASbQAEDBwAkBJtAAQow DQYJKoZIhvcNAQELBQADggEBAHrLStDzek/tyXmTF6uRd6H/rKfSO4pNjwZWRhXF xIhDJQNY5t+ARJaqvj8qDnDPSgys5gth3gDg6SRiep0sQRAUyIr+cIW6gnnVuMlY 1sW0rztkrCIFKCtj72A+lItawfgDNkW0Utonx9tmIfBZdsxX0OMk3Stfz8pa4xfD Rt05LfCRLus+Bdq6fR3ioJTB3llFKAcDfUh5gyDCbWUTlKZvwP5sD4nodP6qTDge 01+6d9PvVSgnkTXDJ5Is5cMTUfQqiilXtWKL17YFByr2vMfiBXF5hY1oPHF3w4MO IB/pWhmfqtOmCxgUO04OHR6HQ8MQ2Dm7bbGOBaDRvgQW/Uk= -----END CERTIFICATE-----Generated at Mon Mar 2 15:04:39 2026 by rpki-client