$ rpki-client -vvf rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/3DD8640AFCEB11F0B08C3CF3726F56BC.roa File: 3DD8640AFCEB11F0B08C3CF3726F56BC.roa (raw, json) Hash identifier: XunC+LEInnztcICr53lgZgi2QBeoXXXwTwB4esR0U38= Subject key identifier: FD:CF:60:7E:01:7F:3D:E8:78:23:E0:C2:45:CE:D4:48:30:38:57:FC Certificate issuer: /CN=A918C425/serialNumber=3A1B094191FE34753719C1D481F20885A808C16B Certificate serial: 3A Authority key identifier: 3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhsJQZH-NHU3GcHUgfIIhagIwWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/3DD8640AFCEB11F0B08C3CF3726F56BC.roa Signing time: Sun 01 Mar 2026 06:03:47 +0000 ROA not before: Thu 29 Jan 2026 08:19:33 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 24409 IP address blocks: 103.245.23.0/24 maxlen: 28 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.crl rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhsJQZH-NHU3GcHUgfIIhagIwWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C425, serialNumber=3A1B094191FE34753719C1D481F20885A808C16B Validity Not Before: Jan 29 08:19:33 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d6c3-c648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e8:7d:94:07:22:97:6b:04:aa:4c:5d:ef:6e: 03:bf:a1:15:2c:71:d5:76:1a:d0:82:e4:fa:cf:fe: d0:2a:c3:94:3c:b2:92:6f:00:85:5a:ff:01:5d:15: 69:ef:46:c2:69:02:be:80:72:a9:20:fe:07:62:90: ac:14:9a:8a:4f:10:72:b2:7b:fe:68:5c:66:63:5e: aa:24:29:3a:ef:ce:22:9d:ec:2b:af:fb:a1:93:de: 09:8e:0b:44:a7:ae:35:f4:24:8a:e8:7b:ac:dd:6b: d7:f1:a7:29:27:98:49:34:e2:a2:6e:be:bc:95:d1: b4:26:78:84:e7:88:b1:f9:1d:57:08:b3:ae:83:0f: 40:30:a3:11:d0:8a:09:d2:b1:fd:de:72:19:2a:59: c9:f1:86:e6:88:df:e4:c9:83:15:71:39:c2:e2:c2: 08:f2:16:b1:b3:39:49:6f:a4:61:7b:c2:c7:aa:9c: c7:8d:2d:16:24:c3:df:18:f6:ea:4d:b6:6a:57:5f: 7e:41:0f:3e:ef:6b:cf:11:06:12:fb:b6:c4:03:c0: 06:ac:94:49:08:f6:c4:4a:67:1a:c5:27:ba:d5:dd: e9:78:26:fa:93:2c:ac:7a:04:85:66:c7:0f:0e:b1: 3f:64:e7:64:ea:c8:0e:18:27:c3:f4:5d:37:98:bf: 46:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CF:60:7E:01:7F:3D:E8:78:23:E0:C2:45:CE:D4:48:30:38:57:FC X509v3 Authority Key Identifier: keyid:3A:1B:09:41:91:FE:34:75:37:19:C1:D4:81:F2:08:85:A8:08:C1:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/OhsJQZH-NHU3GcHUgfIIhagIwWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhsJQZH-NHU3GcHUgfIIhagIwWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C425/DFBAEE14DBE411F0A8B5BF64366F56BC/3DD8640AFCEB11F0B08C3CF3726F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.245.23.0/24 Signature Algorithm: sha256WithRSAEncryption 81:8b:28:01:0e:b8:a4:f1:2f:b0:d0:03:09:5a:16:54:0e:53: 6b:3a:6e:59:7e:64:f3:09:9a:9e:71:54:7a:1e:d2:da:01:c2: fe:96:06:4a:63:1d:b3:75:04:ab:20:01:9f:64:ec:b6:b2:8f: c8:04:72:23:9a:fa:ea:fa:a7:90:00:21:8a:a3:50:73:05:3a: fa:b5:ae:2d:df:ce:bc:ab:e4:bf:79:40:18:e1:a2:f3:66:61: 98:a9:ba:ec:92:37:8d:58:8f:60:4e:10:f1:93:93:a8:62:ac: da:11:81:9b:2a:4f:2d:88:c6:7f:0a:d2:db:5f:17:46:3d:d9: 78:a7:5d:24:f3:cd:8b:bc:3f:aa:86:b5:1e:70:12:6d:07:ca: c1:0a:99:ce:c8:22:2f:2b:14:6a:1a:97:a2:d2:4c:0f:fe:c5: b1:d9:cf:4c:d2:a8:ba:64:b5:54:d0:01:ec:3d:92:31:56:1f: 5d:2c:18:b3:43:ac:9b:bb:d1:e2:3a:36:77:11:ce:48:5d:95: ea:f9:fd:27:ce:f2:4a:3d:7d:72:8d:c1:59:23:d5:85:99:89: f6:e3:14:7f:20:ac:57:c6:7e:9b:6d:7d:e6:ce:d4:58:ba:40: 14:9d:5a:d5:cc:1a:cd:34:8a:a0:55:16:3a:46:0b:45:24:af: b6:27:4a:c2 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QzQyNTExMC8GA1UEBRMoM0ExQjA5NDE5MUZFMzQ3NTM3MTlDMUQ0ODFGMjA4ODVB ODA4QzE2QjAeFw0yNjAxMjkwODE5MzNaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNmMzLWM2NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl6H2UByKXawSqTF3vbgO/oRUscdV2GtCC5PrP/tAqw5Q8spJvAIVa/wFdFWnv RsJpAr6Acqkg/gdikKwUmopPEHKye/5oXGZjXqokKTrvziKd7Cuv+6GT3gmOC0Sn rjX0JIroe6zda9fxpyknmEk04qJuvryV0bQmeITniLH5HVcIs66DD0AwoxHQignS sf3echkqWcnxhuaI3+TJgxVxOcLiwgjyFrGzOUlvpGF7wseqnMeNLRYkw98Y9upN tmpXX35BDz7va88RBhL7tsQDwAaslEkI9sRKZxrFJ7rV3el4JvqTLKx6BIVmxw8O sT9k52TqyA4YJ8P0XTeYv0ZBAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/c9gfgF/ Peh4I+DCRc7USDA4V/wwHwYDVR0jBBgwFoAUOhsJQZH+NHU3GcHUgfIIhagIwWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDNDI1L0RGQkFFRTE0REJF NDExRjBBOEI1QkY2NDM2NkY1NkJDL09oc0pRWkgtTkhVM0djSFVnZklJaGFnSXdX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2hzSlFaSC1OSFUzR2NIVWdmSUloYWdJd1dzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzQyNS9ERkJBRUUxNERCRTQxMUYwQThCNUJGNjQzNjZGNTZCQy8zREQ4NjQwQUZD RUIxMUYwQjA4QzNDRjM3MjZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABn9RcwDQYJKoZIhvcNAQELBQADggEBAIGLKAEOuKTxL7DQAwlaFlQO U2s6bll+ZPMJmp5xVHoe0toBwv6WBkpjHbN1BKsgAZ9k7Layj8gEciOa+ur6p5AA IYqjUHMFOvq1ri3fzryr5L95QBjhovNmYZipuuySN41Yj2BOEPGTk6hirNoRgZsq Ty2Ixn8K0ttfF0Y92XinXSTzzYu8P6qGtR5wEm0HysEKmc7IIi8rFGoal6LSTA/+ xbHZz0zSqLpktVTQAew9kjFWH10sGLNDrJu70eI6NncRzkhdler5/SfO8ko9fXKN wVkj1YWZifbjFH8grFfGfpttfebO1Fi6QBSdWtXMGs00iqBVFjpGC0Ukr7YnSsI= -----END CERTIFICATE-----Generated at Sun Mar 1 22:06:50 2026 by rpki-client