$ rpki-client -vvf rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa File: 3DC8B712E14411EFBECFB90BC4F9AE02.roa (raw, json) Hash identifier: /opDjyqnkzPqfLmMUvw/7EQ9PTKNpIy/7L1DfTTvO0o= Subject key identifier: AF:26:55:DC:A7:22:7D:31:22:AF:C4:FB:79:18:21:F5:EE:A2:34:2B Certificate issuer: /CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Certificate serial: 1424 Authority key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:59:51 +0000 ROA not before: Fri 26 Dec 2025 18:49:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138039 IP address blocks: 103.120.116.0/24 maxlen: 24 103.120.117.0/24 maxlen: 24 103.120.118.0/24 maxlen: 24 103.120.119.0/24 maxlen: 24 2407:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5156 (0x1424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91809AD, serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Validity Not Before: Dec 26 18:49:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47087-7685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:50:3f:c0:a6:b3:1a:fa:47:6c:2b:fa:24:b0: 2c:07:b7:f3:db:0a:f1:8e:b5:66:45:22:43:35:f8: 30:32:08:36:8b:b7:03:02:48:c9:b4:bd:47:9b:6b: 81:f1:63:ba:62:11:2d:93:4d:3e:bb:97:95:76:73: 53:38:87:54:5d:d8:e0:80:cb:af:be:6a:4a:62:48: 96:c1:9c:10:2e:b0:b9:be:23:62:df:c4:1a:25:cf: 02:92:75:9e:3c:cc:54:ad:f9:8b:bd:05:52:78:5d: ff:ea:6d:c7:1a:50:c1:52:88:38:77:de:3a:93:78: d7:93:d3:76:4d:8b:1a:67:c3:d8:3e:4f:97:aa:6b: 3f:ca:70:b1:1c:ee:d0:9d:b3:e2:b3:ed:a1:41:21: ca:ad:3c:36:e8:1d:02:26:51:2b:99:dc:d0:3b:01: ca:6f:93:e3:de:5a:dc:a9:c2:d0:c5:87:7e:f4:8c: 61:9a:7a:17:1f:3c:22:a6:2c:5d:52:2e:75:2c:71: a8:0b:34:ef:96:35:fb:d2:7c:e5:48:2b:9f:c4:e9: 3b:72:3d:69:f5:ab:17:dd:f1:72:50:86:79:a0:bf: 92:da:b2:cb:65:4a:15:8e:b5:c3:6a:66:73:a8:75: e3:24:a9:08:7e:9d:5c:dd:a8:1a:0f:eb:a3:a9:12: f9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:26:55:DC:A7:22:7D:31:22:AF:C4:FB:79:18:21:F5:EE:A2:34:2B X509v3 Authority Key Identifier: keyid:6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.120.116.0/22 IPv6: 2407:1840::/32 Signature Algorithm: sha256WithRSAEncryption 2a:d9:dd:3f:1e:d7:47:ef:f9:d2:b9:de:c7:9b:0b:b4:78:f1: 74:d9:3a:38:db:57:3c:08:ba:57:41:5b:89:c9:b5:57:7d:fc: ed:dd:d9:e8:97:9e:c6:48:22:6d:03:04:95:ff:ae:82:78:34: 0f:29:a4:4e:9b:7a:01:03:67:5a:c6:9f:4a:35:c1:64:04:90: 98:ae:27:0b:50:0c:86:d6:ab:3b:65:18:82:fb:63:22:31:2a: 37:33:bb:6e:8b:f5:a9:5a:c3:53:c2:46:4f:bb:92:a0:ed:af: 8f:d5:ae:0c:e4:12:4d:e6:7c:a9:51:73:38:ec:fc:4a:b1:50: 7d:2a:48:12:1f:eb:1f:d5:23:b6:55:9b:9f:a1:73:f7:78:6f: 49:22:34:24:0d:c5:66:f6:16:91:7e:e8:03:fa:48:dc:d5:08: ab:9f:14:01:1a:63:5e:7d:5b:c2:68:6b:32:11:d1:c4:50:1d: 17:a7:1e:e9:f3:e2:ea:55:ee:3a:8d:72:a8:05:2a:0b:23:91: 00:d2:17:03:5c:f3:10:ca:e7:b7:46:58:c8:8d:25:cb:5a:e0: 0b:93:83:00:89:54:30:d4:48:a7:fc:57:15:3b:27:ec:71:2c: 5c:0a:a7:69:d3:38:1d:20:0e:c4:08:e0:af:0a:0a:55:71:99: 0f:86:6d:c5 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICFCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA5QUQxMTAvBgNVBAUTKDZEN0MyMjZBN0RDQjg1RjJGNDkyMTZCN0VCQjAwRDVG MDNBNjA1QzMwHhcNMjUxMjI2MTg0OTM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzA4Ny03Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFA/wKazGvpHbCv6JLAsB7fz2wrxjrVmRSJDNfgwMgg2i7cDAkjJtL1Hm2uB 8WO6YhEtk00+u5eVdnNTOIdUXdjggMuvvmpKYkiWwZwQLrC5viNi38QaJc8CknWe PMxUrfmLvQVSeF3/6m3HGlDBUog4d946k3jXk9N2TYsaZ8PYPk+Xqms/ynCxHO7Q nbPis+2hQSHKrTw26B0CJlErmdzQOwHKb5Pj3lrcqcLQxYd+9IxhmnoXHzwipixd Ui51LHGoCzTvljX70nzlSCufxOk7cj1p9asX3fFyUIZ5oL+S2rLLZUoVjrXDamZz qHXjJKkIfp1c3agaD+ujqRL5WwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFK8mVdyn In0xIq/E+3kYIfXuojQrMB8GA1UdIwQYMBaAFG18Imp9y4Xy9JIWt+uwDV8DpgXD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDlBRC82NTZERDI2QUE3 NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhmTDBraGEzNjdBTlh3T21C Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYd2lhbjNMaGZMMGtoYTM2N0FOWHdPbUJjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA5QUQvNjU2REQyNkFBNzY4MTFFODkzMzNDNzI1QzRGOUFFMDIvM0RDOEI3MTJF MTQ0MTFFRkJFQ0ZCOTBCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3h0MA0EAgACMAcDBQAkBxhAMA0GCSqGSIb3DQEBCwUAA4IBAQAq 2d0/HtdH7/nSud7Hmwu0ePF02To421c8CLpXQVuJybVXffzt3dnol57GSCJtAwSV /66CeDQPKaROm3oBA2daxp9KNcFkBJCYricLUAyG1qs7ZRiC+2MiMSo3M7tui/Wp WsNTwkZPu5Kg7a+P1a4M5BJN5nypUXM47PxKsVB9KkgSH+sf1SO2VZufoXP3eG9J IjQkDcVm9haRfugD+kjc1QirnxQBGmNefVvCaGsyEdHEUB0Xpx7p8+LqVe46jXKo BSoLI5EA0hcDXPMQyue3RljIjSXLWuALk4MAiVQw1Ein/FcVOyfscSxcCqdp0zgd IA7ECOCvCgpVcZkPhm3F -----END CERTIFICATE-----Generated at Mon Mar 2 08:01:15 2026 by rpki-client