$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4AD53F9AEA0B11F09069D0EA6F6F56BC.roa File: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (raw, json) Hash identifier: naputKDT4YFCuDBkowHlF1Y5kTitkWFz9voR8iEVFrQ= Subject key identifier: 67:45:37:59:54:CC:A7:3E:99:CC:AC:F9:48:4C:CF:9E:B1:26:6A:11 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0BE0 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4AD53F9AEA0B11F09069D0EA6F6F56BC.roa Signing time: Sun 01 Mar 2026 18:34:25 +0000 ROA not before: Wed 21 Jan 2026 08:40:56 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 202736 IP address blocks: 103.23.72.0/24 maxlen: 24 103.23.73.0/24 maxlen: 24 103.23.74.0/24 maxlen: 24 103.23.75.0/24 maxlen: 24 103.246.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Jan 21 08:40:56 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486b1-d4fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a5:4c:f1:13:dc:73:d6:ca:49:71:72:08:f0: 6b:46:67:d8:ee:29:96:69:10:61:1e:d9:04:39:41: f2:02:34:46:aa:bc:48:8c:a9:f2:6c:11:1b:0e:45: 16:f4:16:23:75:9f:ed:de:29:fe:2f:7e:06:d8:ca: 3e:3e:70:c5:4f:f7:5c:32:87:c2:e5:31:fa:69:52: c3:48:b9:a9:82:0e:2e:49:44:16:d9:7c:49:43:28: 0e:c0:b4:09:64:ac:1a:53:c7:f4:01:4e:26:41:80: ed:da:04:27:ba:64:24:98:44:f4:29:fe:8c:0d:4c: 48:4a:f7:13:0b:77:a3:35:e3:6e:40:53:f6:64:b8: a2:ce:d8:d8:c2:00:8d:4d:dc:04:06:d5:d7:a3:55: 3a:4d:9f:a8:c1:58:9e:b1:a1:e0:00:df:cc:33:b2: f2:1f:03:73:90:ce:56:d5:d6:77:e1:db:b0:ec:5e: b0:64:fa:cf:1b:af:4e:e3:7e:9a:6d:b0:97:99:53: d0:76:cb:e9:7f:19:60:25:f6:3a:67:2a:f7:8b:f7: 9b:97:12:dd:0d:42:4e:0b:21:1b:9b:0b:98:5b:d9: b0:da:ee:7c:e7:ca:e1:65:1c:25:62:5a:05:7e:d5: 13:b3:11:ef:d4:ae:13:e2:33:59:47:56:1e:f8:f0: 39:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:45:37:59:54:CC:A7:3E:99:CC:AC:F9:48:4C:CF:9E:B1:26:6A:11 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/4AD53F9AEA0B11F09069D0EA6F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.23.72.0/22 103.246.255.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:b3:b7:5c:63:b1:19:12:75:84:98:7a:58:42:3b:b7:10:f6: 46:58:2b:d9:4a:6f:93:4b:5e:9c:b3:47:82:9a:4a:41:d9:13: 39:bd:5d:d1:b7:36:4f:eb:cf:c5:3b:5a:12:ab:d6:33:18:ad: 42:e2:a5:74:79:45:7f:d2:e3:8a:f5:37:78:23:7a:cd:ef:fa: 3f:38:28:a2:9a:b6:bf:40:1c:c2:0f:ba:5e:3d:64:32:b9:2e: 87:4a:9e:cf:80:92:6d:1e:39:57:b7:61:a9:ca:c4:49:50:f3: 79:a3:8b:fb:25:de:c0:b3:55:e8:d0:55:2a:97:4b:33:f8:a8: ae:43:d7:eb:5e:3a:29:8a:cf:a8:8d:5e:8c:91:8a:78:d0:e0: 2b:7e:06:c7:83:57:40:44:32:ec:41:43:8a:be:1b:c6:bb:cf: c7:74:14:d2:17:aa:93:9d:f0:cc:60:1b:82:02:b0:de:82:b3: 0d:6b:28:07:d9:73:32:3d:10:fe:7b:e5:ee:fb:38:17:c0:ab: 25:94:64:86:b1:3d:09:05:31:83:ab:f0:7f:21:71:c6:b8:f9: bd:22:2a:ef:ee:87:3f:43:10:d9:ef:b1:d4:02:93:29:22:5a: 0f:71:0e:55:96:14:6f:66:4b:7a:31:55:4f:b8:ea:35:6e:a5: fb:76:bc:99 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwMTIxMDg0MDU2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZiMS1kNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aVM8RPcc9bKSXFyCPBrRmfY7imWaRBhHtkEOUHyAjRGqrxIjKnybBEbDkUW 9BYjdZ/t3in+L34G2Mo+PnDFT/dcMofC5TH6aVLDSLmpgg4uSUQW2XxJQygOwLQJ ZKwaU8f0AU4mQYDt2gQnumQkmET0Kf6MDUxISvcTC3ejNeNuQFP2ZLiiztjYwgCN TdwEBtXXo1U6TZ+owViesaHgAN/MM7LyHwNzkM5W1dZ34duw7F6wZPrPG69O436a bbCXmVPQdsvpfxlgJfY6Zyr3i/eblxLdDUJOCyEbmwuYW9mw2u5858rhZRwlYloF ftUTsxHv1K4T4jNZR1Ye+PA5fQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGdFN1lU zKc+mcys+UhMz56xJmoRMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNDAvNjE3RjM1MzY0MEUxMTFFQUJDNjJEQjI2QzRGOUFFMDIvNEFENTNGOUFF QTBCMTFGMDkwNjlEMEVBNkY2RjU2QkMucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZxdIAwQAZ/b/MA0GCSqGSIb3DQEBCwUAA4IBAQAPs7dcY7EZEnWE mHpYQju3EPZGWCvZSm+TS16cs0eCmkpB2RM5vV3RtzZP68/FO1oSq9YzGK1C4qV0 eUV/0uOK9Td4I3rN7/o/OCiimra/QBzCD7pePWQyuS6HSp7PgJJtHjlXt2GpysRJ UPN5o4v7Jd7As1Xo0FUql0sz+KiuQ9frXjopis+ojV6MkYp40OArfgbHg1dARDLs QUOKvhvGu8/HdBTSF6qTnfDMYBuCArDegrMNaygH2XMyPRD+e+Xu+zgXwKsllGSG sT0JBTGDq/B/IXHGuPm9Iirv7oc/QxDZ77HUApMpIloPcQ5VlhRvZkt6MVVPuOo1 bqX7dryZ -----END CERTIFICATE-----Generated at Mon Mar 2 13:11:12 2026 by rpki-client