$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBF2CAC846A11EEAC477724C4F9AE02.roa File: 3DBF2CAC846A11EEAC477724C4F9AE02.roa (raw, json) Hash identifier: GPcMfHKuREYDew3Mm6MgR5Odkw1AmBETNOvaR+B2IRw= Subject key identifier: 61:BE:B5:74:31:A7:DE:72:A0:42:F9:3F:BA:28:5C:D8:E3:A0:FA:5B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D681 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBF2CAC846A11EEAC477724C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:44:19 +0000 ROA not before: Thu 08 May 2025 16:21:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147259 IP address blocks: 103.101.56.0/23 maxlen: 24 103.177.66.0/23 maxlen: 24 2001:df1:76c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54913 (0xd681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:21:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c142-6201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:38:68:56:a9:7e:69:7f:e0:95:db:f5:bf: 4e:4d:85:9d:93:47:11:c4:de:50:77:a8:7d:90:91: f6:bc:be:d5:75:7b:97:c7:a0:3d:73:90:36:9a:f8: 98:03:b7:96:aa:fe:e5:ff:d9:d3:4b:a5:04:b9:e4: 07:e4:32:e5:b0:16:3b:9c:c6:11:ac:18:13:89:a4: 48:1a:04:ec:4f:ef:2c:06:62:5f:5b:fa:77:d0:14: 1c:1c:1d:d5:9c:a3:7e:78:5a:49:f6:67:a6:f9:db: a9:7a:99:5d:3e:37:5a:fc:9d:fd:cb:ee:9c:fb:56: 48:09:f7:82:51:c8:c1:c0:26:13:6b:7d:e6:bd:03: fd:e5:c9:c3:95:57:c9:cb:cb:67:91:cf:3d:5a:d7: 78:f1:ea:2d:b8:27:73:1c:1c:9d:1a:cf:d8:08:31: f7:78:c6:22:a6:98:00:3e:cc:5d:42:0c:67:41:0a: b2:77:3d:e1:30:90:3d:39:33:c9:69:fe:fa:3a:e7: 65:b3:48:40:49:19:47:d5:e3:19:59:42:0c:e7:cb: 08:fb:36:b1:d3:6b:ef:8a:70:21:6b:96:46:7e:23: 63:8f:d5:50:4d:37:3a:3b:a1:e2:8b:0b:92:b8:4e: f8:82:bb:99:5c:2b:e3:d8:ca:9e:e7:5e:6b:ca:c4: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BE:B5:74:31:A7:DE:72:A0:42:F9:3F:BA:28:5C:D8:E3:A0:FA:5B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3DBF2CAC846A11EEAC477724C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.101.56.0/23 103.177.66.0/23 IPv6: 2001:df1:76c0::/48 Signature Algorithm: sha256WithRSAEncryption 13:f8:1a:bc:7f:89:36:f4:66:4a:ca:c8:59:ae:76:87:9b:e7: 66:20:05:85:a7:59:fe:eb:c3:66:5b:28:35:45:92:09:d9:22: 25:47:b7:8e:10:22:18:30:38:a8:91:1a:9b:6c:c5:0a:55:0a: db:d3:7d:8b:4f:b2:5c:d8:2e:73:29:c5:a4:e7:ff:b0:5d:99: c1:22:23:42:d1:68:50:68:31:ca:f2:c9:2e:2a:2b:eb:99:2a: d2:6f:a4:d7:a4:3a:00:1e:f0:c2:8c:ca:a9:39:5a:80:d8:be: aa:f2:90:ad:7b:9e:c3:64:aa:e4:f3:1b:0a:f6:32:9a:67:bb: 6b:8e:df:d0:70:a7:da:be:b9:0a:fc:be:ee:5d:42:12:25:f3: 46:1a:9a:17:12:17:95:94:5c:4b:ce:89:08:ec:ef:4e:b5:78: 5a:12:df:75:68:9a:d5:6e:63:b5:f6:d6:83:42:8e:7d:06:e4: e4:d4:ff:a8:8a:ea:52:97:45:99:ac:1f:c2:35:f1:0b:a7:01: 8d:eb:a6:13:21:08:b0:cb:80:03:4c:01:ef:73:b0:6c:89:1d: 71:ab:cb:ba:17:28:f7:8e:bb:da:c3:c1:2c:3d:98:a6:b1:b9: 7c:97:83:55:94:b6:06:9c:4b:e2:5c:de:c9:b2:bf:71:93:20: ee:3d:f3:24 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIDANaBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjExMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMxNDItNjIwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYBOGhWqX5pf+CV2/W/Tk2FnZNHEcTeUHeofZCR9ry+1XV7l8egPXOQNpr4 mAO3lqr+5f/Z00ulBLnkB+Qy5bAWO5zGEawYE4mkSBoE7E/vLAZiX1v6d9AUHBwd 1ZyjfnhaSfZnpvnbqXqZXT43Wvyd/cvunPtWSAn3glHIwcAmE2t95r0D/eXJw5VX ycvLZ5HPPVrXePHqLbgncxwcnRrP2Agx93jGIqaYAD7MXUIMZ0EKsnc94TCQPTkz yWn++jrnZbNIQEkZR9XjGVlCDOfLCPs2sdNr74pwIWuWRn4jY4/VUE03Ojuh4osL krhO+IK7mVwr49jKnudea8rEOjECAwEAAaOCAncwggJzMB0GA1UdDgQWBBRhvrV0 MafecqBC+T+6KFzY46D6WzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNEQkYyQ0FD ODQ2QTExRUVBQzQ3NzcyNEM0RjlBRTAyLnJvYTA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAWdlOAMEAWexQjAPBAIAAjAJAwcAIAEN8XbAMA0GCSqGSIb3DQEB CwUAA4IBAQAT+Bq8f4k29GZKyshZrnaHm+dmIAWFp1n+68NmWyg1RZIJ2SIlR7eO ECIYMDiokRqbbMUKVQrb032LT7Jc2C5zKcWk5/+wXZnBIiNC0WhQaDHK8skuKivr mSrSb6TXpDoAHvDCjMqpOVqA2L6q8pCte57DZKrk8xsK9jKaZ7trjt/QcKfavrkK /L7uXUISJfNGGpoXEheVlFxLzokI7O9OtXhaEt91aJrVbmO19taDQo59BuTk1P+o iupSl0WZrB/CNfELpwGN66YTIQiwy4ADTAHvc7BsiR1xq8u6Fyj3jrvaw8EsPZim sbl8l4NVlLYGnEviXN7Jsr9xkyDuPfMk -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:25 2026 by rpki-client