$ rpki-client -vvf rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa File: 046B33A4431C11EE8DDA391AC4F9AE02.roa (raw, json) Hash identifier: 2IMnLKkDtPnRMRm7EMhHOB0THYlzNJsg+gB0GBMnX4s= Subject key identifier: 3A:F4:B8:14:E4:1E:45:8C:10:EA:01:65:B5:B0:7B:93:64:76:70:9F Certificate issuer: /CN=A918A996/serialNumber=8386BE861BDBDB6D0165087DC044A07FA4D4F089 Certificate serial: 021B Authority key identifier: 83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:01:16 +0000 ROA not before: Sat 31 Jan 2026 03:22:11 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 10118 IP address blocks: 117.103.144.0/20 maxlen: 20 117.103.144.0/20 maxlen: 24 117.103.152.0/23 maxlen: 23 117.103.156.0/24 maxlen: 24 117.103.157.0/24 maxlen: 24 117.103.158.0/24 maxlen: 24 117.103.159.0/24 maxlen: 24 124.217.128.0/18 maxlen: 24 180.188.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.crl rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A996, serialNumber=8386BE861BDBDB6D0165087DC044A07FA4D4F089 Validity Not Before: Jan 31 03:22:11 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4389c-53b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:71:8f:ce:87:0d:f9:20:de:26:ce:2c:60:9f: 5e:38:3a:de:e8:cd:4f:b6:ad:ab:58:da:38:48:3d: f8:9a:74:40:07:7c:18:d4:dd:2a:d4:85:05:66:94: 70:6f:a4:76:1f:be:dd:c0:37:9a:dc:bd:96:94:26: 4d:f1:0f:cb:28:fc:15:25:95:38:a9:f4:de:1d:72: 6c:59:12:19:12:56:4e:2c:ee:2a:2c:28:c0:87:fe: 12:18:50:93:7d:d4:9f:5b:ad:f2:f1:5a:31:ca:cc: 9e:32:7c:ca:4a:39:b9:1e:37:49:f0:1c:05:a7:89: c4:07:9f:42:43:ff:da:ec:bb:5d:eb:57:c4:a5:3c: 87:0a:d1:e6:e7:20:15:e1:b1:db:14:b0:0b:9a:5c: 55:95:b3:ed:81:c2:b8:e3:43:86:23:67:47:7f:63: ed:7a:ca:aa:e5:43:61:5e:25:bd:7e:60:41:c7:9f: ee:88:42:78:2c:05:92:04:d4:f9:67:28:15:16:ce: 8c:f9:e1:cc:ad:d9:63:73:7b:59:f8:63:ea:a8:c0: aa:e3:7a:cb:8c:63:42:f9:92:b1:f1:63:44:72:4f: d4:a8:86:5c:e8:f3:09:f0:10:50:2d:3e:30:56:82: 0b:61:2b:ea:6d:30:72:9e:01:00:a9:1d:b1:37:31: 2e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F4:B8:14:E4:1E:45:8C:10:EA:01:65:B5:B0:7B:93:64:76:70:9F X509v3 Authority Key Identifier: keyid:83:86:BE:86:1B:DB:DB:6D:01:65:08:7D:C0:44:A0:7F:A4:D4:F0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/g4a-hhvb220BZQh9wESgf6TU8Ik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g4a-hhvb220BZQh9wESgf6TU8Ik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A996/32C68A5E279811EEBD8DC55FC4F9AE02/046B33A4431C11EE8DDA391AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.103.144.0/20 124.217.128.0/18 180.188.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6f:88:ab:28:ad:a4:b1:19:22:7e:d1:cf:6e:c9:f0:56:cc:d1: e6:64:73:96:cb:f5:4a:87:3c:01:9e:82:10:9a:c3:73:8b:f8: ec:1e:8b:ef:e2:a9:9a:97:65:b5:2b:8f:0b:1f:ad:b8:3d:12: 45:98:9b:ff:e4:0b:3a:a8:00:84:81:ff:86:51:e1:90:b1:2f: 6f:89:ff:2c:b1:c9:19:9c:4d:5d:da:f7:18:6b:22:db:10:60: 5b:94:24:55:cb:c2:1f:bc:22:cd:d1:94:56:07:40:18:91:72: 17:7f:6c:80:4f:3f:15:de:05:20:92:78:ad:b8:4e:8e:75:86: 3d:99:10:1b:2e:86:ed:d0:56:18:9e:77:4f:5f:e9:aa:60:60: 88:6b:f4:5f:00:4a:53:ff:6b:46:dd:96:06:63:ff:d0:11:5c: 9f:83:f3:a7:3e:ad:d0:ad:19:b9:61:1e:c4:1f:97:74:2e:75: 76:cd:3e:09:84:19:8c:71:df:d1:06:c8:17:fe:e6:bf:e9:c4: d5:22:cb:59:39:82:98:6a:f7:c4:2d:72:da:2f:95:d4:47:2f: 81:f6:17:4d:a9:f9:45:d8:0a:bf:1b:3d:99:f4:9e:b3:77:8a: 32:bd:0d:37:36:c8:03:d3:ce:15:68:51:0a:04:e1:bb:2b:56: 24:ec:42:2a -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5OTYxMTAvBgNVBAUTKDgzODZCRTg2MUJEQkRCNkQwMTY1MDg3REMwNDRBMDdG QTRENEYwODkwHhcNMjYwMTMxMDMyMjExWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzg5Yy01M2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXGPzocN+SDeJs4sYJ9eODre6M1Ptq2rWNo4SD34mnRAB3wY1N0q1IUFZpRw b6R2H77dwDea3L2WlCZN8Q/LKPwVJZU4qfTeHXJsWRIZElZOLO4qLCjAh/4SGFCT fdSfW63y8VoxysyeMnzKSjm5HjdJ8BwFp4nEB59CQ//a7Ltd61fEpTyHCtHm5yAV 4bHbFLALmlxVlbPtgcK440OGI2dHf2Ptesqq5UNhXiW9fmBBx5/uiEJ4LAWSBNT5 ZygVFs6M+eHMrdljc3tZ+GPqqMCq43rLjGNC+ZKx8WNEck/UqIZc6PMJ8BBQLT4w VoILYSvqbTByngEAqR2xNzEuuwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFDr0uBTk HkWMEOoBZbWwe5NkdnCfMB8GA1UdIwQYMBaAFIOGvoYb29ttAWUIfcBEoH+k1PCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk5Ni8zMkM2OEE1RTI3 OTgxMUVFQkQ4REM1NUZDNEY5QUUwMi9nNGEtaGh2YjIyMEJaUWg5d0VTZ2Y2VFU4 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c0YS1oaHZiMjIwQlpRaDl3RVNnZjZUVThJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5OTYvMzJDNjhBNUUyNzk4MTFFRUJEOERDNTVGQzRGOUFFMDIvMDQ2QjMzQTQ0 MzFDMTFFRThEREEzOTFBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQEdWeQAwQGfNmAAwQGtLyAMA0GCSqGSIb3DQEBCwUAA4IBAQBviKso raSxGSJ+0c9uyfBWzNHmZHOWy/VKhzwBnoIQmsNzi/jsHovv4qmal2W1K48LH624 PRJFmJv/5As6qACEgf+GUeGQsS9vif8ssckZnE1d2vcYayLbEGBblCRVy8IfvCLN 0ZRWB0AYkXIXf2yATz8V3gUgknituE6OdYY9mRAbLobt0FYYnndPX+mqYGCIa/Rf AEpT/2tG3ZYGY//QEVyfg/OnPq3QrRm5YR7EH5d0LnV2zT4JhBmMcd/RBsgX/ua/ 6cTVIstZOYKYavfELXLaL5XURy+B9hdNqflF2Aq/Gz2Z9J6zd4oyvQ03NsgD084V aFEKBOG7K1Yk7EIq -----END CERTIFICATE-----Generated at Mon Mar 2 14:58:44 2026 by rpki-client