$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F408EB0754C11EC9936C547C4F9AE02.roa File: 3F408EB0754C11EC9936C547C4F9AE02.roa (raw, json) Hash identifier: 0q5KK6dB19FiWbdje45ZiiC5jGZSvmJyrzhMnE/WD3Y= Subject key identifier: 0D:95:9A:BD:9B:C6:85:FE:50:9C:68:E8:9B:0B:C4:64:20:80:C0:D1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D3C2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F408EB0754C11EC9936C547C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:27:53 +0000 ROA not before: Thu 08 May 2025 16:07:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136676 IP address blocks: 103.88.80.0/24 maxlen: 24 103.88.81.0/24 maxlen: 24 103.88.82.0/24 maxlen: 24 103.88.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54210 (0xd3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bd68-3b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6a:c3:5f:e6:fa:63:8c:d1:72:f5:74:78:b3: 1f:72:f1:f8:ed:73:6c:90:8b:78:e8:f9:c9:9c:eb: 2f:b8:62:ac:62:a7:1c:1b:9b:a9:5e:d2:a2:fd:ff: 09:3a:10:90:bc:0d:de:98:e4:69:da:48:1b:6a:88: 59:6a:20:c0:4f:cb:3f:f1:0c:a8:ad:74:17:71:dd: 1f:85:d4:86:7c:d9:95:5b:b7:2c:fc:40:7d:56:c5: 9f:c4:6f:36:ce:6c:67:e3:4d:68:a9:bd:57:7f:70: 7d:ab:8b:18:bc:43:ad:30:99:ff:b1:6b:ad:a3:b6: bb:23:5e:e5:02:5d:6b:39:05:3c:dd:10:cc:27:ac: 0d:e8:08:3c:1c:e4:df:73:27:35:6e:83:2e:8a:06: 73:f9:ef:01:a3:09:2f:d6:3c:da:0c:c5:87:e6:32: 5b:d3:f4:fe:b7:5a:06:cd:1e:5b:87:2e:c8:19:d7: a7:51:93:46:22:f7:24:92:c4:db:3e:df:1e:90:0d: bf:f0:e6:8b:3e:56:e1:f3:2b:a8:7a:a9:b2:2b:17: 03:85:9f:49:6b:8e:51:8c:aa:0d:1d:a4:bc:0b:51: 21:e4:4b:ac:36:ec:fc:a9:4a:82:dd:cd:0e:27:a5: 88:0a:30:bb:1a:33:b6:f3:09:fa:f0:29:77:84:b5: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:95:9A:BD:9B:C6:85:FE:50:9C:68:E8:9B:0B:C4:64:20:80:C0:D1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3F408EB0754C11EC9936C547C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.80.0/22 Signature Algorithm: sha256WithRSAEncryption 62:d3:15:72:37:ca:19:2b:05:ba:34:61:30:f2:be:d9:0b:d5: 50:ee:83:69:97:c7:6e:52:ee:c9:91:76:0a:13:0e:89:7d:35: 49:51:94:8b:97:b8:fc:1f:10:23:e7:84:da:4b:d6:27:57:c7: 95:bc:0a:56:49:16:d0:3d:7b:96:f9:eb:10:1f:24:e9:87:80: 9f:2c:61:e6:55:f4:33:56:41:96:71:74:e4:15:dc:8a:e4:f5: f4:fb:30:47:04:fa:c1:6c:73:a3:77:82:5e:3c:d1:9f:dd:a5: 82:51:78:6d:b0:9c:5a:cb:10:37:24:a2:4c:fd:1d:9c:b3:e1: 33:e0:39:fc:ab:5d:f6:82:53:39:0d:ce:13:de:ae:9b:77:7f: 8c:b5:db:38:e6:0b:ba:a3:f9:b8:2a:84:67:f1:54:bb:2d:d5: a1:57:29:81:e5:59:7f:38:6a:0e:2f:b9:4c:26:7f:41:2c:01: d6:32:12:94:09:57:f8:da:ed:28:90:ed:54:85:73:fc:43:06: c7:40:24:53:f8:79:8a:d8:22:79:fd:e3:9f:ab:e4:4e:4d:65: 4d:92:ef:26:2a:5f:00:9d:55:e7:40:dc:2f:61:d2:75:0a:3c: 2a:4b:cb:31:78:6d:d0:b0:f9:0a:45:b4:e4:42:ef:d9:4f:23: 14:5c:c7:66 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANPCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDc1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJkNjgtM2IzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtqw1/m+mOM0XL1dHizH3Lx+O1zbJCLeOj5yZzrL7hirGKnHBubqV7Sov3/ CToQkLwN3pjkadpIG2qIWWogwE/LP/EMqK10F3HdH4XUhnzZlVu3LPxAfVbFn8Rv Ns5sZ+NNaKm9V39wfauLGLxDrTCZ/7FrraO2uyNe5QJdazkFPN0QzCesDegIPBzk 33MnNW6DLooGc/nvAaMJL9Y82gzFh+YyW9P0/rdaBs0eW4cuyBnXp1GTRiL3JJLE 2z7fHpANv/Dmiz5W4fMrqHqpsisXA4WfSWuOUYyqDR2kvAtRIeRLrDbs/KlKgt3N DieliAowuxoztvMJ+vApd4S1YdkCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBQNlZq9 m8aF/lCcaOibC8RkIIDA0TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNGNDA4RUIw NzU0QzExRUM5OTM2QzU0N0M0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdYUDANBgkqhkiG9w0BAQsFAAOCAQEAYtMVcjfKGSsFujRhMPK+ 2QvVUO6DaZfHblLuyZF2ChMOiX01SVGUi5e4/B8QI+eE2kvWJ1fHlbwKVkkW0D17 lvnrEB8k6YeAnyxh5lX0M1ZBlnF05BXciuT19PswRwT6wWxzo3eCXjzRn92lglF4 bbCcWssQNySiTP0dnLPhM+A5/Ktd9oJTOQ3OE96um3d/jLXbOOYLuqP5uCqEZ/FU uy3VoVcpgeVZfzhqDi+5TCZ/QSwB1jISlAlX+NrtKJDtVIVz/EMGx0AkU/h5itgi ef3jn6vkTk1lTZLvJipfAJ1V50DcL2HSdQo8KkvLMXht0LD5CkW05ELv2U8jFFzH Zg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:07:02 2026 by rpki-client