$ rpki-client -vvf rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa File: 3CCE23342EF211EE8BE1AB1DC4F9AE02.roa (raw, json) Hash identifier: oSOPa5PXvIuggnUAWdjwD208QEjv6p1RYpA0Azk+9ms= Subject key identifier: 0B:64:5B:CA:7F:8E:C0:90:52:92:21:2D:9F:E4:97:43:4B:DD:0F:2F Certificate issuer: /CN=A91827F2/serialNumber=4E1FDF041C4BDDFD511748E4B983DCB4625B9A80 Certificate serial: 027E Authority key identifier: 4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:56:21 +0000 ROA not before: Fri 05 Dec 2025 00:09:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 139812 IP address blocks: 103.145.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827F2, serialNumber=4E1FDF041C4BDDFD511748E4B983DCB4625B9A80 Validity Not Before: Dec 5 00:09:40 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41b55-eebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b0:5c:83:ab:8a:80:e5:34:95:6f:8a:91:c5: 86:8c:f9:27:31:6a:f5:8a:4e:53:ec:42:78:01:39: 48:84:95:f9:73:b4:e9:b3:5a:10:a3:1c:d6:b0:3e: ae:07:c4:57:81:96:7b:45:20:6b:a2:18:7a:f4:bf: 79:e6:bf:a0:66:26:49:f3:d1:3c:8e:dd:2f:f5:b1: c1:06:76:60:0c:46:36:ce:da:47:aa:f2:5c:90:e3: 2a:63:ea:fa:25:a3:df:ac:2e:30:a0:cd:f6:d6:b9: 01:76:8c:24:b5:bc:41:dd:9a:7a:50:e0:56:ec:67: 9e:01:f5:55:aa:14:bc:e3:3b:1d:98:f3:02:02:51: 01:3b:13:64:67:df:a6:bf:6e:55:16:59:00:c7:23: 3b:b5:9c:6c:89:4b:13:6d:ea:00:26:7d:21:6a:08: 40:e6:43:42:02:a0:2b:7b:b2:b8:f6:fa:44:72:ae: 0c:0b:21:42:e8:93:ea:dc:e7:1b:39:50:e8:b9:0d: 2c:05:9c:57:f8:39:72:a1:bc:af:e3:ff:67:55:5f: 23:43:5d:f3:98:a4:39:fe:83:09:2f:fc:4a:91:42: 33:78:71:d0:0f:d1:38:ee:91:5f:53:65:06:6b:69: c2:1e:b0:4b:60:e0:bc:5f:43:0f:76:99:59:30:e1: 40:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:64:5B:CA:7F:8E:C0:90:52:92:21:2D:9F:E4:97:43:4B:DD:0F:2F X509v3 Authority Key Identifier: keyid:4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.145.138.0/23 Signature Algorithm: sha256WithRSAEncryption 46:d1:45:d8:ae:2d:13:30:32:d1:c1:07:11:5c:b7:47:b8:64: 10:00:bf:09:77:66:7e:50:57:34:c0:a6:0c:18:5d:94:29:24: 85:20:8d:31:3f:44:44:f1:2a:28:2f:e6:3b:81:96:d7:f7:52: 6a:ac:d1:9b:eb:b0:3d:3f:95:27:9c:f4:45:9e:15:cb:16:f2: ed:e6:68:14:46:8b:bd:03:7b:e0:04:88:ca:0c:cf:b9:7a:b9: 5b:37:ae:a4:0b:db:84:3c:a0:27:69:09:c3:1c:42:17:94:43: ce:58:a0:0e:37:14:5a:92:fa:98:7d:79:ea:e9:81:c8:76:52: fc:31:b5:1d:53:08:57:54:64:8b:75:56:a6:36:4c:91:7d:2a: 5e:82:90:f2:41:4b:1e:c7:02:d8:74:1c:a3:43:2f:ea:34:f5: 46:f5:c3:b3:ce:46:39:bc:1b:ea:89:d0:52:0a:34:9c:bb:3e: 85:9d:55:c4:69:55:2b:ed:ad:38:43:6d:70:aa:0d:ed:5b:b1: 34:ab:28:af:24:3d:3a:dc:27:57:f6:ba:8f:4a:5d:0f:c8:d3: b8:53:b9:27:6b:f6:9e:04:6f:e2:54:42:65:4d:86:81:3d:1c: 0d:65:b4:24:4a:75:85:de:2f:97:53:b3:3f:9c:ee:17:06:1b: bc:91:35:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3RjIxMTAvBgNVBAUTKDRFMUZERjA0MUM0QkRERkQ1MTE3NDhFNEI5ODNEQ0I0 NjI1QjlBODAwHhcNMjUxMjA1MDAwOTQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI1NS1lZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rBcg6uKgOU0lW+KkcWGjPknMWr1ik5T7EJ4ATlIhJX5c7Tps1oQoxzWsD6u B8RXgZZ7RSBrohh69L955r+gZiZJ89E8jt0v9bHBBnZgDEY2ztpHqvJckOMqY+r6 JaPfrC4woM321rkBdowktbxB3Zp6UOBW7GeeAfVVqhS84zsdmPMCAlEBOxNkZ9+m v25VFlkAxyM7tZxsiUsTbeoAJn0haghA5kNCAqAre7K49vpEcq4MCyFC6JPq3Ocb OVDouQ0sBZxX+Dlyobyv4/9nVV8jQ13zmKQ5/oMJL/xKkUIzeHHQD9E47pFfU2UG a2nCHrBLYOC8X0MPdplZMOFALQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAtkW8p/ jsCQUpIhLZ/kl0NL3Q8vMB8GA1UdIwQYMBaAFE4f3wQcS939URdI5LmD3LRiW5qA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdGMi82N0VDNjQzODUz OUExMUVEOEZFM0Y3MUZDNEY5QUUwMi9UaF9mQkJ4TDNmMVJGMGprdVlQY3RHSmJt b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoX2ZCQnhMM2YxUkYwamt1WVBjdEdKYm1vQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI3RjIvNjdFQzY0Mzg1MzlBMTFFRDhGRTNGNzFGQzRGOUFFMDIvM0NDRTIzMzQy RUYyMTFFRThCRTFBQjFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5GKMA0GCSqGSIb3DQEBCwUAA4IBAQBG0UXYri0TMDLRwQcRXLdH uGQQAL8Jd2Z+UFc0wKYMGF2UKSSFII0xP0RE8SooL+Y7gZbX91JqrNGb67A9P5Un nPRFnhXLFvLt5mgURou9A3vgBIjKDM+5erlbN66kC9uEPKAnaQnDHEIXlEPOWKAO NxRakvqYfXnq6YHIdlL8MbUdUwhXVGSLdVamNkyRfSpegpDyQUsexwLYdByjQy/q NPVG9cOzzkY5vBvqidBSCjScuz6FnVXEaVUr7a04Q21wqg3tW7E0qyivJD063CdX 9rqPSl0PyNO4U7kna/aeBG/iVEJlTYaBPRwNZbQkSnWF3i+XU7M/nO4XBhu8kTVk -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:00 2026 by rpki-client