$ rpki-client -vvf rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa File: C3A5D7A482EC11EAB62A4C48C4F9AE02.roa (raw, json) Hash identifier: BsXGlLY4wS2bk2uF1XlDccW5fXft/Gdljkkqp72tseo= Subject key identifier: 63:C6:4A:75:79:4C:2A:8A:A4:74:78:74:3C:07:0B:05:73:47:72:FE Certificate issuer: /CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Certificate serial: 0D2F Authority key identifier: 7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:28:24 +0000 ROA not before: Sat 28 Jun 2025 18:31:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137885 IP address blocks: 103.66.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AF08, serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Validity Not Before: Jun 28 18:31:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46928-df4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d1:17:d7:8e:52:eb:96:7d:70:7d:93:3e:5a: 16:7a:c9:b2:14:ad:8e:62:8c:24:9d:05:6e:26:0f: 68:4a:41:63:75:1a:c2:05:b7:2a:fb:5d:32:2b:e0: 82:e5:40:8f:eb:ca:30:1e:63:a9:ad:34:aa:24:d6: 8e:48:aa:5c:51:e9:20:18:7f:53:de:a4:0e:38:2b: 53:26:95:d6:60:7b:0b:79:ee:8a:d1:26:c1:ff:3b: 53:aa:1b:4f:7f:58:ae:61:c4:16:4e:1a:29:17:7a: de:ae:1f:4a:40:64:a5:44:f8:f9:41:33:bf:86:ce: 14:88:cb:ce:83:dc:7e:ac:f6:6a:ee:45:fc:3e:aa: 77:a8:2f:99:bd:95:a4:0b:da:4d:08:7a:d1:2f:27: 82:3b:df:db:2a:83:18:39:23:31:8f:f6:c1:1a:0a: f0:6d:69:36:df:0c:ee:7d:04:25:f3:4c:5f:31:1a: 89:58:7b:9e:3f:65:7e:e0:1d:39:ad:a0:57:20:ca: f2:c2:da:6d:e2:ac:b2:71:61:27:49:e9:19:2b:d8: 7b:60:56:0e:8c:16:51:22:1a:3a:05:96:b1:e8:1b: 5b:1b:32:71:02:cc:16:18:7a:06:e9:8d:b1:bf:33: fe:96:61:ad:6e:6d:07:54:ea:88:ba:76:73:75:1a: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C6:4A:75:79:4C:2A:8A:A4:74:78:74:3C:07:0B:05:73:47:72:FE X509v3 Authority Key Identifier: keyid:7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C3A5D7A482EC11EAB62A4C48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.66.131.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e8:9e:63:16:7c:d2:88:a0:d6:51:fd:07:c8:0d:39:c2:f6: 0e:f1:7f:91:f0:b5:62:cd:6e:8b:4f:e7:6b:77:5f:c6:22:75: 04:da:ce:9f:bc:24:db:23:9f:f6:82:aa:c5:57:9d:99:f5:27: ac:07:98:c8:7b:1f:88:a6:e8:19:46:f2:ee:96:8a:61:ff:99: 0f:67:d8:3c:6e:6e:fc:d9:12:12:85:0f:27:d1:18:04:87:78: 2a:f1:f5:9d:04:41:0d:03:b2:3f:97:9a:13:ec:c0:5d:cc:0f: b0:2f:11:76:b5:9b:1c:29:e4:9b:42:67:77:0d:25:95:08:1d: c9:c2:c8:98:ab:ae:66:2c:7f:fa:c5:10:e6:7b:9f:65:f2:2a: 98:9a:0f:6e:71:e3:07:00:e8:a8:31:5a:34:f3:c7:22:10:3c: c2:0f:f2:a1:80:7d:00:3d:9d:74:d2:34:54:30:93:ab:eb:09: 78:e4:93:d7:39:18:aa:96:75:da:a5:75:95:21:e6:49:7a:45: 66:92:08:d6:25:24:42:1e:fa:4c:a6:38:d5:b0:5e:2a:5d:14: a6:a0:6f:1c:99:84:aa:ac:9c:5b:db:16:95:d3:a9:3e:32:6c: 45:6c:b3:2a:82:79:df:39:2d:b6:d8:72:fd:c4:29:1c:e7:6c: 89:2d:a3:94 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFGMDgxMTAvBgNVBAUTKDdFRTBDNkEyOEI3NTlGNzJENURDOUE1ODk1MDM4QkJB Qjk0QTg2MTQwHhcNMjUwNjI4MTgzMTUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkyOC1kZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9EX145S65Z9cH2TPloWesmyFK2OYowknQVuJg9oSkFjdRrCBbcq+10yK+CC 5UCP68owHmOprTSqJNaOSKpcUekgGH9T3qQOOCtTJpXWYHsLee6K0SbB/ztTqhtP f1iuYcQWThopF3rerh9KQGSlRPj5QTO/hs4UiMvOg9x+rPZq7kX8Pqp3qC+ZvZWk C9pNCHrRLyeCO9/bKoMYOSMxj/bBGgrwbWk23wzufQQl80xfMRqJWHueP2V+4B05 raBXIMrywtpt4qyycWEnSekZK9h7YFYOjBZRIho6BZax6BtbGzJxAswWGHoG6Y2x vzP+lmGtbm0HVOqIunZzdRqsOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGPGSnV5 TCqKpHR4dDwHCwVzR3L+MB8GA1UdIwQYMBaAFH7gxqKLdZ9y1dyaWJUDi7q5SoYU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUYwOC9CMEY1Mzc2Q0ZB QzAxMUU5OTREOTIwNjVDNEY5QUUwMi9mdURHb290MW4zTFYzSnBZbFFPTHVybEto aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1REdvb3QxbjNMVjNKcFlsUU9MdXJsS2hoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFGMDgvQjBGNTM3NkNGQUMwMTFFOTk0RDkyMDY1QzRGOUFFMDIvQzNBNUQ3QTQ4 MkVDMTFFQUI2MkE0QzQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ0KDMA0GCSqGSIb3DQEBCwUAA4IBAQBj6J5jFnzSiKDWUf0HyA05 wvYO8X+R8LVizW6LT+drd1/GInUE2s6fvCTbI5/2gqrFV52Z9SesB5jIex+IpugZ RvLuloph/5kPZ9g8bm782RIShQ8n0RgEh3gq8fWdBEENA7I/l5oT7MBdzA+wLxF2 tZscKeSbQmd3DSWVCB3JwsiYq65mLH/6xRDme59l8iqYmg9uceMHAOioMVo088ci EDzCD/KhgH0APZ100jRUMJOr6wl45JPXORiqlnXapXWVIeZJekVmkgjWJSRCHvpM pjjVsF4qXRSmoG8cmYSqrJxb2xaV06k+MmxFbLMqgnnfOS222HL9xCkc52yJLaOU -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:38 2026 by rpki-client