$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBC379213BD11F1BABBA626093D8C67.roa File: 3DBC379213BD11F1BABBA626093D8C67.roa (raw, json) Hash identifier: 3z1C6Le4y9oOPnD/7eJVTFXT7Cj1E8VGSLLj6TAuIEI= Subject key identifier: 93:0E:16:C7:E8:F4:C0:64:BE:EC:06:FA:B9:5F:F4:C7:40:07:2A:00 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: DB41 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBC379213BD11F1BABBA626093D8C67.roa Signing time: Sun 01 Mar 2026 23:07:32 +0000 ROA not before: Fri 27 Feb 2026 09:18:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134006 IP address blocks: 103.137.194.0/23 maxlen: 24 103.172.154.0/23 maxlen: 24 103.189.86.0/24 maxlen: 24 103.189.87.0/24 maxlen: 24 2407:d640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56129 (0xdb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Feb 27 09:18:13 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c6b4-d04b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8d:74:0d:42:b5:7e:e8:5e:ea:b5:2f:60:de: 29:ed:19:2a:7f:22:be:a4:5a:8c:25:19:ab:be:2d: 06:3b:69:0a:c1:b5:f6:f8:36:e4:16:ae:95:9b:b1: 3c:0b:ee:a3:d8:78:e8:f5:19:81:59:98:eb:5c:13: 22:b5:c8:71:ca:58:41:eb:42:11:86:4f:7d:c1:a0: 25:6b:03:79:00:26:b9:1a:e1:5f:02:ea:0a:9e:78: dd:eb:ff:98:7c:26:3a:5f:0b:ed:84:f9:2c:ff:ae: 9b:56:22:19:78:eb:79:ec:da:d6:91:bc:3c:b1:47: 5b:b5:bb:1f:7d:57:04:d5:93:7a:ab:ff:15:20:e8: 7f:39:a8:0d:04:e8:8d:f9:b8:2c:85:bf:29:06:6b: 7f:62:a8:b4:5b:ed:a4:09:28:7b:b4:d5:f6:a8:4a: b3:eb:ea:0c:0c:71:b2:7a:26:a7:06:3a:8c:04:49: f1:83:15:23:50:90:af:29:86:6e:af:37:74:a9:d0: 7e:1e:63:da:6d:3e:0c:af:a3:04:8c:0d:51:7f:4f: 36:3b:37:0d:02:08:0e:8f:07:b3:b6:a1:39:b1:a7: 3c:dc:cd:4b:6d:24:ca:1b:c9:ae:66:0c:8e:a1:6b: 59:13:77:72:fd:0c:83:85:00:9f:14:ac:d9:99:1e: 93:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0E:16:C7:E8:F4:C0:64:BE:EC:06:FA:B9:5F:F4:C7:40:07:2A:00 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBC379213BD11F1BABBA626093D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.137.194.0/23 103.172.154.0/23 103.189.86.0/23 IPv6: 2407:d640::/48 Signature Algorithm: sha256WithRSAEncryption 5f:b4:e7:bb:e8:7b:14:49:e6:67:77:9c:f0:f7:76:e5:64:34: 82:9c:ba:30:27:3a:15:db:3b:25:f7:5b:07:4d:41:96:ad:e4: 3f:cd:8e:c6:d9:22:6c:74:17:64:9c:fc:55:b5:2e:9d:1d:7f: 91:85:bb:55:0d:44:d8:3c:d7:fc:47:7e:69:22:28:09:48:0d: e6:20:3a:16:46:64:67:95:88:64:2b:0e:00:ab:0e:05:41:76: f3:d4:64:5d:d0:c6:3b:a6:2d:7a:2b:e8:5c:4d:15:2a:22:9c: 0d:63:62:a4:07:51:aa:ab:24:7f:8a:cc:bd:49:c9:8c:80:bc: 6b:f2:33:82:2b:79:bd:d3:21:40:3d:4d:d6:5b:bb:4a:b3:34: ab:1e:6a:59:34:6f:50:84:79:6d:d8:c3:6b:11:a4:7d:06:73: 42:c5:42:98:c9:5d:12:80:7e:b6:5a:c9:a9:08:91:82:a5:eb: 47:60:a8:45:8d:a4:04:90:ea:95:f5:ed:c9:ca:7f:1f:e4:3b: 77:0f:fb:86:f9:0f:cd:8f:2c:34:c8:e5:bd:d2:f4:06:4a:ca: 64:df:48:f2:16:75:9e:4b:ee:c4:5b:1e:b8:e8:cf:e3:d9:38: b1:9f:52:9b:ef:3e:6a:7b:0f:8b:6f:91:88:18:62:d9:ea:9e: 20:00:cb:7f -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIDANtBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI2MDIyNzA5MTgxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGM2YjQtZDA0YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJKNdA1CtX7oXuq1L2DeKe0ZKn8ivqRajCUZq74tBjtpCsG19vg25BaulZux PAvuo9h46PUZgVmY61wTIrXIccpYQetCEYZPfcGgJWsDeQAmuRrhXwLqCp543ev/ mHwmOl8L7YT5LP+um1YiGXjreeza1pG8PLFHW7W7H31XBNWTeqv/FSDofzmoDQTo jfm4LIW/KQZrf2KotFvtpAkoe7TV9qhKs+vqDAxxsnompwY6jARJ8YMVI1CQrymG bq83dKnQfh5j2m0+DK+jBIwNUX9PNjs3DQIIDo8Hs7ahObGnPNzNS20kyhvJrmYM jqFrWRN3cv0Mg4UAnxSs2Zkek4UCAwEAAaOCAn0wggJ5MB0GA1UdDgQWBBSTDhbH 6PTAZL7sBvq5X/THQAcqADAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNEQkMzNzky MTNCRDExRjFCQUJCQTYyNjA5M0Q4QzY3LnJvYTA8BggrBgEFBQcBBwEB/wQtMCsw GAQCAAEwEgMEAWeJwgMEAWesmgMEAWe9VjAPBAIAAjAJAwcAJAfWQAAAMA0GCSqG SIb3DQEBCwUAA4IBAQBftOe76HsUSeZnd5zw93blZDSCnLowJzoV2zsl91sHTUGW reQ/zY7G2SJsdBdknPxVtS6dHX+RhbtVDUTYPNf8R35pIigJSA3mIDoWRmRnlYhk Kw4Aqw4FQXbz1GRd0MY7pi16K+hcTRUqIpwNY2KkB1GqqyR/isy9ScmMgLxr8jOC K3m90yFAPU3WW7tKszSrHmpZNG9QhHlt2MNrEaR9BnNCxUKYyV0SgH62WsmpCJGC petHYKhFjaQEkOqV9e3Jyn8f5Dt3D/uG+Q/Njyw0yOW90vQGSspk30jyFnWeS+7E Wx646M/j2Tixn1Kb7z5qew+Lb5GIGGLZ6p4gAMt/ -----END CERTIFICATE-----Generated at Mon Mar 2 11:05:25 2026 by rpki-client