$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa File: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (raw, json) Hash identifier: Pw6T1S/nZtLTYHmY2Zzud22xLXHu+YOzXxHo79MrzN0= Subject key identifier: 28:50:FC:44:78:F1:57:17:6F:EE:23:47:A4:2B:79:C7:C0:FA:A5:75 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 093C Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa Signing time: Thu 26 Mar 2026 20:27:33 +0000 ROA not before: Thu 26 Mar 2026 20:27:33 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 58411 IP address blocks: 103.210.240.0/24 maxlen: 24 103.210.241.0/24 maxlen: 24 103.210.242.0/24 maxlen: 24 103.210.243.0/24 maxlen: 24 160.20.60.0/24 maxlen: 24 160.20.61.0/24 maxlen: 24 160.20.62.0/24 maxlen: 24 160.20.63.0/24 maxlen: 24 2407:3a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4, serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Mar 26 20:27:33 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c596b5-6a8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:36:1c:8c:b7:c0:11:de:f7:9b:0d:6d:46:72: a7:2f:6d:d8:9c:c7:50:d1:37:45:d1:64:b1:41:d7: b1:92:71:b6:4b:3f:6f:da:19:73:40:c6:00:b5:b0: 7d:fa:92:4e:a0:3d:17:11:72:9b:fa:d3:46:bf:ba: d1:13:97:a6:08:a1:8e:25:1d:71:08:c4:f1:85:dc: bc:7f:08:d0:94:54:8a:bf:df:35:29:c5:26:5e:00: f3:22:4b:d7:1d:76:9c:c1:91:46:9c:fb:ec:1b:ad: 9e:ce:d9:b1:d1:9e:56:00:5b:3c:07:6e:f2:72:e3: f6:86:6f:ed:38:97:3b:15:a9:ad:fe:53:9f:32:3c: 2f:ca:b4:91:1d:75:ba:10:b2:bf:c3:a7:63:f2:ec: cd:50:01:76:b2:43:95:c7:21:aa:e3:6a:59:a0:25: a8:91:e2:7b:43:7f:93:27:a3:25:5c:50:20:ca:58: d6:2e:04:d8:51:ce:16:1a:8b:30:09:11:13:f8:d7: e0:89:e9:0c:f8:c0:1b:0b:34:52:f4:e6:e1:07:65: 6e:66:80:2c:b5:9b:4c:de:8e:bd:87:a5:2c:0a:62: 27:e1:99:04:11:15:56:6a:ad:8a:0a:35:57:30:b1: 00:bf:c2:8a:c6:ba:d7:5d:03:95:6c:54:9a:9f:04: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:50:FC:44:78:F1:57:17:6F:EE:23:47:A4:2B:79:C7:C0:FA:A5:75 X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/6A3C327ABD1711EA8A3C8E20C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.210.240.0/22 160.20.60.0/22 IPv6: 2407:3a40::/32 Signature Algorithm: sha256WithRSAEncryption 24:5d:f3:73:78:a4:f2:d3:92:24:8b:c4:4f:97:0b:52:75:73: 1c:f8:b5:74:13:a5:10:90:12:7c:34:18:f1:73:37:a1:b3:0f: c3:0c:93:10:96:21:8c:01:5d:74:ad:7e:16:b3:ca:dc:a2:1b: 8d:d4:a6:52:90:65:6d:85:69:89:1c:98:e0:11:32:48:4e:26: 1c:b3:f9:61:98:a4:a8:49:6b:da:35:db:49:27:3a:8e:9e:83: a6:01:11:e5:1c:a7:c4:47:c4:f2:8a:d1:0b:f4:bd:9c:aa:0a: 0a:94:38:38:2d:66:ce:c8:9f:88:1f:da:fe:4c:74:a2:d1:4c: 2d:a9:3d:5a:a8:d2:b3:6f:22:c3:b6:84:10:bd:53:83:a7:4c: eb:b7:c5:1c:17:7d:7d:f7:42:b9:ce:e9:55:43:64:4f:b7:2e: 55:a4:75:3d:74:22:57:50:ce:d7:38:e5:6d:6d:52:cf:29:f9: 40:ce:31:dc:62:82:e1:0f:e1:8b:4b:40:b1:01:39:0c:76:01: 48:3c:0e:53:34:62:11:ed:7d:0f:bf:a3:07:a2:44:67:fb:0e: e0:67:b8:4a:91:06:63:18:57:1b:f1:f4:be:c3:b7:c4:ea:79: e5:2c:4e:b5:4a:7e:fb:28:d9:96:4a:75:07:c8:26:96:c3:bc: 0d:2f:6e:0b -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjYwMzI2MjAyNzMzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1OTZiNS02YThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzYcjLfAEd73mw1tRnKnL23YnMdQ0TdF0WSxQdexknG2Sz9v2hlzQMYAtbB9 +pJOoD0XEXKb+tNGv7rRE5emCKGOJR1xCMTxhdy8fwjQlFSKv981KcUmXgDzIkvX HXacwZFGnPvsG62eztmx0Z5WAFs8B27ycuP2hm/tOJc7Famt/lOfMjwvyrSRHXW6 ELK/w6dj8uzNUAF2skOVxyGq42pZoCWokeJ7Q3+TJ6MlXFAgyljWLgTYUc4WGosw CRET+NfgiekM+MAbCzRS9ObhB2VuZoAstZtM3o69h6UsCmIn4ZkEERVWaq2KCjVX MLEAv8KKxrrXXQOVbFSanwSj2QIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFChQ/ER4 8VcXb+4jR6QrecfA+qV1MB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM4QzQvQzI0NEM4M0FCRDE1MTFFQUFCREVCMDFEQzRGOUFFMDIvNkEzQzMyN0FC RDE3MTFFQThBM0M4RTIwQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ9LwAwQCoBQ8MA0EAgACMAcDBQAkBzpAMA0GCSqGSIb3DQEBCwUA A4IBAQAkXfNzeKTy05Iki8RPlwtSdXMc+LV0E6UQkBJ8NBjxczehsw/DDJMQliGM AV10rX4Ws8rcohuN1KZSkGVthWmJHJjgETJITiYcs/lhmKSoSWvaNdtJJzqOnoOm ARHlHKfER8TyitEL9L2cqgoKlDg4LWbOyJ+IH9r+THSi0UwtqT1aqNKzbyLDtoQQ vVODp0zrt8UcF31990K5zulVQ2RPty5VpHU9dCJXUM7XOOVtbVLPKflAzjHcYoLh D+GLS0CxATkMdgFIPA5TNGIR7X0Pv6MHokRn+w7gZ7hKkQZjGFcb8fS+w7fE6nnl LE61Sn77KNmWSnUHyCaWw7wNL24L -----END CERTIFICATE-----Generated at Fri Apr 17 15:39:32 2026 by rpki-client