$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3BDD23E27CA611EE82D65D19C4F9AE02.roa File: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (raw, json) Hash identifier: syfI5VBGCCOaxinq66/rQy0KiVO/nQZm82G8XJ0s/uQ= Subject key identifier: 74:B9:33:7E:F0:DE:29:11:3B:07:FE:97:B5:12:D2:74:09:6A:D5:BE Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DE5 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3BDD23E27CA611EE82D65D19C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:06:20 +0000 ROA not before: Wed 24 Sep 2025 16:34:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141711 IP address blocks: 103.12.120.0/22 maxlen: 22 103.12.120.0/24 maxlen: 24 103.12.121.0/24 maxlen: 24 103.12.122.0/24 maxlen: 24 103.12.123.0/24 maxlen: 24 113.203.200.0/22 maxlen: 22 113.203.200.0/24 maxlen: 24 113.203.201.0/24 maxlen: 24 113.203.202.0/24 maxlen: 24 113.203.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7653 (0x1de5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 24 16:34:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4801c-5e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5f:a5:62:88:8d:fc:cf:d8:cc:2b:cf:71:5d: 12:f1:d1:dc:3e:b3:cc:75:8e:17:86:87:a1:80:25: 98:0b:31:9d:ae:c2:c8:14:06:ff:14:5a:52:23:c9: c7:d3:c1:51:90:bd:e1:b7:e8:f1:3b:d9:6e:48:7b: 21:80:26:0a:49:e7:fc:ba:82:db:91:04:84:6f:28: 17:d3:61:25:6d:0e:76:a4:a1:00:08:cf:80:06:0e: fd:4c:29:bd:17:3d:89:3c:e1:6e:de:49:b1:56:3a: 0b:29:fe:7b:7b:2c:44:30:b6:e3:e8:7f:a6:22:43: 18:a1:a7:38:45:6d:e1:6e:40:12:8e:e1:74:96:11: 9c:57:83:a2:5d:04:97:f6:f6:ee:6a:44:4b:b6:f8: cd:60:54:21:8e:69:ed:a8:34:50:ab:bb:ed:a9:bc: 45:31:4d:00:3b:21:32:d8:67:64:5b:20:ee:d7:21: 92:24:09:ff:87:91:02:75:a6:17:a1:46:ed:7e:f2: 8b:03:7e:de:7f:82:3b:29:13:a3:07:b8:fc:4f:15: 07:79:fd:2d:f2:e3:d7:fd:2b:d3:20:1e:a6:97:d4: d5:3a:a4:7a:b4:ad:6b:81:cd:8f:63:8f:e7:2e:2a: e1:86:4f:53:f3:be:35:19:3b:0a:cf:13:dc:89:fe: 9b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B9:33:7E:F0:DE:29:11:3B:07:FE:97:B5:12:D2:74:09:6A:D5:BE X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3BDD23E27CA611EE82D65D19C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.12.120.0/22 113.203.200.0/22 Signature Algorithm: sha256WithRSAEncryption 14:4b:8f:3b:91:ca:7d:bf:7c:d1:df:cb:15:ce:d0:16:e9:c9: 60:8b:fb:01:6f:2d:1f:ea:39:66:16:8a:19:22:86:07:22:bc: 39:5d:0a:05:95:b6:1e:29:98:1f:78:f0:0e:27:b7:49:df:2a: fe:c3:b6:6c:30:62:f7:f9:2c:ac:ee:81:3e:d0:d9:ec:fb:d1: 30:b2:63:e1:89:0b:51:ec:5d:8b:e2:86:12:46:8f:6c:1b:71: 11:40:e2:94:9e:94:a0:f8:61:c2:c8:b1:03:00:52:0e:9b:3b: e1:ad:78:87:4b:9e:54:e2:04:1c:80:57:c6:84:3c:68:48:89: b2:f0:07:3b:cb:71:fd:2d:f4:cf:97:25:b7:c7:80:a9:2c:b1: 8b:e6:c2:d5:20:a4:22:2a:ff:ab:9e:90:71:97:71:68:7c:7c: 0e:be:57:d5:af:1b:4f:86:b0:59:d3:44:b5:bc:9f:14:3a:42: ec:c4:51:ae:b6:75:65:89:73:ba:9a:d9:13:b4:c4:0e:0a:5d: 18:25:6d:7e:6d:33:cf:85:1d:54:97:45:f4:07:ec:1e:2c:d4: 80:b0:ac:cc:7e:7d:43:31:d3:c3:27:51:d7:ee:73:3e:0b:05: 82:67:ec:aa:0f:7d:96:32:4e:16:46:a1:eb:34:02:da:c3:64: 46:ab:9e:8d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICHeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwOTI0MTYzNDM4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODAxYy01ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6l+lYoiN/M/YzCvPcV0S8dHcPrPMdY4XhoehgCWYCzGdrsLIFAb/FFpSI8nH 08FRkL3ht+jxO9luSHshgCYKSef8uoLbkQSEbygX02ElbQ52pKEACM+ABg79TCm9 Fz2JPOFu3kmxVjoLKf57eyxEMLbj6H+mIkMYoac4RW3hbkASjuF0lhGcV4OiXQSX 9vbuakRLtvjNYFQhjmntqDRQq7vtqbxFMU0AOyEy2GdkWyDu1yGSJAn/h5ECdaYX oUbtfvKLA37ef4I7KROjB7j8TxUHef0t8uPX/SvTIB6ml9TVOqR6tK1rgc2PY4/n Lirhhk9T8741GTsKzxPcif6bOQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFHS5M37w 3ikROwf+l7US0nQJatW+MB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvM0JERDIzRTI3 Q0E2MTFFRTgyRDY1RDE5QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZwx4AwQCccvIMA0GCSqGSIb3DQEBCwUAA4IBAQAUS487kcp9v3zR 38sVztAW6clgi/sBby0f6jlmFooZIoYHIrw5XQoFlbYeKZgfePAOJ7dJ3yr+w7Zs MGL3+Sys7oE+0Nns+9EwsmPhiQtR7F2L4oYSRo9sG3ERQOKUnpSg+GHCyLEDAFIO mzvhrXiHS55U4gQcgFfGhDxoSImy8Ac7y3H9LfTPlyW3x4CpLLGL5sLVIKQiKv+r npBxl3FofHwOvlfVrxtPhrBZ00S1vJ8UOkLsxFGutnVliXO6mtkTtMQOCl0YJW1+ bTPPhR1Ul0X0B+weLNSAsKzMfn1DMdPDJ1HX7nM+CwWCZ+yqD32WMk4WRqHrNALa w2RGq56N -----END CERTIFICATE-----Generated at Mon Mar 2 17:17:36 2026 by rpki-client