$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa File: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (raw, json) Hash identifier: TbPU17bpo04BFh9lrKGXrNBNTfQf592zMrLzg3O+aNI= Subject key identifier: 54:3E:F1:4A:E3:80:D4:D6:A2:88:2B:75:BF:A2:08:77:6C:3B:2B:0B Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 092B Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:49 +0000 ROA not before: Tue 04 Mar 2025 21:49:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58411 IP address blocks: 103.210.240.0/24 maxlen: 24 103.210.241.0/24 maxlen: 24 103.210.242.0/24 maxlen: 24 103.210.243.0/24 maxlen: 24 160.20.60.0/24 maxlen: 24 160.20.61.0/24 maxlen: 24 160.20.62.0/24 maxlen: 24 160.20.63.0/24 maxlen: 24 2407:3a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2347 (0x92b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4, serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Mar 4 21:49:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a407fd-b539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c6:79:26:81:00:3f:68:7f:99:2b:f3:cb:26: 78:bf:1d:79:3e:c6:52:64:da:87:70:f6:19:80:0e: f8:be:03:c6:ef:d3:7b:19:77:ad:62:89:47:a7:25: 13:40:ad:1c:a2:67:c6:35:b6:0c:86:8b:a5:f9:a1: 8b:17:1f:b6:b5:93:83:86:b7:18:4e:de:45:05:aa: 75:8e:a6:20:ed:52:5b:ac:05:1b:9a:fa:ac:f5:84: 06:59:ee:30:63:22:4d:17:4d:ef:bb:50:8c:27:c4: 76:1f:4a:19:0c:d7:1b:cf:fb:c1:8f:02:61:fa:2e: 8a:d2:ad:70:3e:bc:9d:f0:b3:0c:32:d4:2d:6d:b2: 5a:ac:5b:0a:db:53:11:1d:9c:a1:9f:07:f3:9c:00: d0:1d:ed:35:8a:4b:b5:be:ac:9b:c5:51:7e:61:82: 49:03:cc:32:05:33:9c:8b:d6:36:31:72:e1:79:23: c2:8d:4d:91:fa:40:82:0b:e2:ea:c0:a2:3a:c7:38: ee:64:a1:88:6b:36:e3:75:71:64:d4:08:d2:f7:e2: 69:2a:37:88:c1:a0:f8:2d:95:ee:04:38:18:2c:8f: ec:d6:30:4d:87:07:fc:ee:db:5c:b4:f6:43:a9:76: de:46:15:a3:a3:55:25:37:04:31:4e:a6:e3:d7:de: de:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3E:F1:4A:E3:80:D4:D6:A2:88:2B:75:BF:A2:08:77:6C:3B:2B:0B X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.210.240.0/22 160.20.60.0/22 IPv6: 2407:3a40::/32 Signature Algorithm: sha256WithRSAEncryption c7:20:d5:88:fe:26:9f:69:2f:93:b7:0a:fd:a2:51:f9:4f:81: 6f:be:d6:b0:7f:a0:84:85:4d:de:f8:89:24:bb:8a:ce:2f:c8: cf:5c:68:46:89:11:72:29:6d:e6:04:55:1e:b8:91:bb:5a:9a: 66:9d:2a:13:b9:c3:4b:a8:43:42:20:62:bd:93:2c:6e:e4:65: 4f:c1:9b:af:80:3e:5b:64:2e:87:a0:84:39:6c:5d:95:73:f9: f6:c7:d4:c7:4e:82:5f:7c:7f:ea:5e:47:96:65:9d:39:2d:7c: 1b:21:11:4d:8b:51:37:43:b5:e6:44:18:ec:a8:ce:fd:fe:32: 48:31:09:03:c1:23:e4:25:e5:83:59:64:f2:53:c3:58:a9:a5: 17:28:0d:70:78:23:00:7e:58:82:1c:ee:34:29:81:c8:1d:85: 1a:be:d6:7f:b7:46:b2:93:d0:4e:ab:1d:e0:a1:7c:89:fa:84: 2f:cd:a4:b9:d4:c4:20:77:d4:74:b8:cd:89:5d:db:41:18:9e: 03:d8:dc:b7:25:9d:72:20:69:a9:c5:49:f9:43:24:f5:e9:c2: 14:97:14:fc:09:fe:81:62:e9:b2:92:d7:7e:0b:2e:e6:92:f1: b7:21:91:7d:74:b3:b3:84:a3:97:0c:bc:62:c5:e6:62:49:e8: 7b:7f:57:a8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjUwMzA0MjE0OTE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdmZC1iNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cZ5JoEAP2h/mSvzyyZ4vx15PsZSZNqHcPYZgA74vgPG79N7GXetYolHpyUT QK0comfGNbYMhoul+aGLFx+2tZODhrcYTt5FBap1jqYg7VJbrAUbmvqs9YQGWe4w YyJNF03vu1CMJ8R2H0oZDNcbz/vBjwJh+i6K0q1wPryd8LMMMtQtbbJarFsK21MR HZyhnwfznADQHe01iku1vqybxVF+YYJJA8wyBTOci9Y2MXLheSPCjU2R+kCCC+Lq wKI6xzjuZKGIazbjdXFk1AjS9+JpKjeIwaD4LZXuBDgYLI/s1jBNhwf87ttctPZD qXbeRhWjo1UlNwQxTqbj197efwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFFQ+8Urj gNTWoogrdb+iCHdsOysLMB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM4QzQvQzI0NEM4M0FCRDE1MTFFQUFCREVCMDFEQzRGOUFFMDIvNkEzQzMyN0FC RDE3MTFFQThBM0M4RTIwQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9LwAwQCoBQ8MA0EAgACMAcDBQAkBzpAMA0GCSqGSIb3DQEBCwUA A4IBAQDHINWI/iafaS+Ttwr9olH5T4Fvvtawf6CEhU3e+Ikku4rOL8jPXGhGiRFy KW3mBFUeuJG7WppmnSoTucNLqENCIGK9kyxu5GVPwZuvgD5bZC6HoIQ5bF2Vc/n2 x9THToJffH/qXkeWZZ05LXwbIRFNi1E3Q7XmRBjsqM79/jJIMQkDwSPkJeWDWWTy U8NYqaUXKA1weCMAfliCHO40KYHIHYUavtZ/t0ayk9BOqx3goXyJ+oQvzaS51MQg d9R0uM2JXdtBGJ4D2Ny3JZ1yIGmpxUn5QyT16cIUlxT8Cf6BYumyktd+Cy7mkvG3 IZF9dLOzhKOXDLxixeZiSeh7f1eo -----END CERTIFICATE-----Generated at Mon Mar 2 11:39:15 2026 by rpki-client