$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa File: DCB2531AC75911EF979D593BC4F9AE02.roa (raw, json) Hash identifier: xeSp+ee2o5QPG9Bonf7PC8aiLXnBIzPrcdEWH1qZB/w= Subject key identifier: 9C:02:1A:A6:8F:B4:4D:5B:3B:BD:41:0C:AE:CC:45:03:45:63:01:E1 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0F4F Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:48:55 +0000 ROA not before: Thu 16 Oct 2025 18:26:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134715 IP address blocks: 103.197.176.0/22 maxlen: 24 220.158.236.0/22 maxlen: 24 2403:580::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3919 (0xf4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Oct 16 18:26:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a443c6-fd5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:89:2a:17:c0:6c:f7:9b:a7:a7:09:7b:2c: b1:c1:d4:fd:6e:c3:7a:e8:dd:2b:09:41:7b:bd:cd: c6:21:20:34:96:bb:3f:97:8c:3f:ba:cc:93:49:6d: ce:03:6f:a1:13:b8:9c:53:ae:23:e8:b3:24:8c:83: c4:98:c6:8d:a8:2d:9a:a6:25:f9:9d:13:24:ad:85: da:af:21:e8:b1:ef:1f:3a:59:31:42:89:56:25:33: 79:12:26:e4:94:01:93:ca:ca:4e:b5:f1:19:92:0d: 5f:10:aa:eb:11:f7:4d:23:91:6b:67:b8:8b:1c:16: de:18:22:e2:f7:67:86:dc:f4:3c:bf:86:86:32:5d: 1c:a0:cb:38:bc:21:5b:1b:77:7e:bb:7c:98:3d:e8: 29:e8:50:c7:22:60:81:98:dc:53:ce:87:b2:58:b3: cb:a3:84:78:d0:41:f3:09:30:1c:cb:c1:92:14:16: 32:e6:85:96:a4:b6:e0:6d:3e:53:6b:a8:a1:b2:b2: 64:9b:1c:ff:90:ed:6d:c0:58:f9:d5:33:84:f9:e3: 16:40:2e:09:8c:23:3a:c5:c6:9e:c4:a2:7f:49:fb: da:24:16:e6:61:3e:e2:ca:56:79:27:71:86:43:ad: f8:37:33:0f:a9:ee:b2:e3:69:47:e2:19:be:d3:29: f9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:02:1A:A6:8F:B4:4D:5B:3B:BD:41:0C:AE:CC:45:03:45:63:01:E1 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.197.176.0/22 220.158.236.0/22 IPv6: 2403:580::/32 Signature Algorithm: sha256WithRSAEncryption 3b:03:86:ab:81:05:d7:75:0d:15:38:a0:16:bb:3e:ec:70:ef: d2:ff:89:1e:c1:83:fc:80:01:49:d7:2b:c6:ec:5b:30:16:88: dc:f3:64:5f:bf:6a:4f:84:e6:8e:82:7a:8f:50:25:0a:77:fc: 86:68:61:49:4a:ee:ee:76:d5:3d:81:dc:de:14:02:ea:aa:3b: 97:b6:07:90:93:58:0f:62:c5:1b:f7:b7:d2:ef:9d:5d:d2:b6: 7c:2a:5f:ca:7d:f7:b9:a4:33:75:4f:28:f0:f9:20:64:44:0b: 6c:40:04:c3:e3:47:d1:69:a9:7e:3b:8f:11:1e:13:38:7e:a0: f6:ae:08:b1:66:71:d2:da:cd:38:f5:4f:ab:1f:2f:f7:11:e6: 98:0b:e1:bb:bb:bd:1f:bb:a6:e5:0a:1e:d8:48:6a:35:66:61: 9a:eb:3b:5f:f9:52:2c:54:4a:68:70:a9:bd:e9:fd:1b:9f:7f: b0:f3:2d:d6:39:2d:9e:06:87:e3:39:40:0a:b0:6c:b0:20:14: cc:2e:d4:9f:e1:56:2d:eb:f5:df:dc:d7:50:79:4d:95:cd:16: d1:cf:29:4d:ed:2a:19:d7:ca:5a:70:22:16:43:31:7f:25:aa: a3:6f:79:fb:c0:a3:0a:43:58:82:af:60:45:a3:5b:1f:8e:2b: 55:4d:72:35 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICD08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUxMDE2MTgyNjM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDNjNi1mZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/OJKhfAbPebp6cJeyyxwdT9bsN66N0rCUF7vc3GISA0lrs/l4w/usyTSW3O A2+hE7icU64j6LMkjIPEmMaNqC2apiX5nRMkrYXaryHose8fOlkxQolWJTN5Eibk lAGTyspOtfEZkg1fEKrrEfdNI5FrZ7iLHBbeGCLi92eG3PQ8v4aGMl0coMs4vCFb G3d+u3yYPegp6FDHImCBmNxTzoeyWLPLo4R40EHzCTAcy8GSFBYy5oWWpLbgbT5T a6ihsrJkmxz/kO1twFj51TOE+eMWQC4JjCM6xcaexKJ/SfvaJBbmYT7iylZ5J3GG Q634NzMPqe6y42lH4hm+0yn5BQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFJwCGqaP tE1bO71BDK7MRQNFYwHhMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYzMUMvQTlDMzE3MDQ4QzIzMTFFOTlGODQ1RDcyQzRGOUFFMDIvRENCMjUzMUFD NzU5MTFFRjk3OUQ1OTNCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ8WwAwQC3J7sMA0EAgACMAcDBQAkAwWAMA0GCSqGSIb3DQEBCwUA A4IBAQA7A4argQXXdQ0VOKAWuz7scO/S/4kewYP8gAFJ1yvG7FswFojc82Rfv2pP hOaOgnqPUCUKd/yGaGFJSu7udtU9gdzeFALqqjuXtgeQk1gPYsUb97fS751d0rZ8 Kl/Kffe5pDN1Tyjw+SBkRAtsQATD40fRaal+O48RHhM4fqD2rgixZnHS2s049U+r Hy/3EeaYC+G7u70fu6blCh7YSGo1ZmGa6ztf+VIsVEpocKm96f0bn3+w8y3WOS2e BofjOUAKsGywIBTMLtSf4VYt6/Xf3NdQeU2VzRbRzylN7SoZ18pacCIWQzF/Jaqj b3n7wKMKQ1iCr2BFo1sfjitVTXI1 -----END CERTIFICATE-----Generated at Mon Mar 2 07:43:07 2026 by rpki-client