$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa File: D3B49A1676CA11EDAA4FE042C4F9AE02.roa (raw, json) Hash identifier: feVu+a8lF5HfZtn0mtMt+vLIfU2xl9dTaoTUFZoVD6I= Subject key identifier: 98:C5:AB:FD:1C:3A:55:ED:58:4A:6B:62:0F:3A:FC:B1:B3:44:81:E0 Certificate issuer: /CN=A919CA1B/serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Certificate serial: 0272 Authority key identifier: 82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:05:42 +0000 ROA not before: Thu 25 Dec 2025 01:22:22 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63969 IP address blocks: 103.49.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA1B, serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Validity Not Before: Dec 25 01:22:22 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a455c5-168c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:2d:01:c0:3e:19:ff:70:5d:63:fe:30:d6: cf:ae:3a:04:6c:ad:d2:8a:cf:2d:7c:36:8d:5b:e1: dc:5d:7e:24:fb:a7:88:c0:f3:d8:50:7c:de:64:3a: 7d:ee:02:18:5c:77:49:fa:5b:27:1a:36:09:b2:71: 19:8f:e0:ae:7c:86:4b:eb:6a:0e:3d:ca:6d:a0:47: c7:f5:74:fb:56:e1:c8:f5:cb:47:e1:1f:9a:0e:51: d8:3c:7a:3c:24:c7:d5:4c:24:d4:a8:28:4f:ac:13: 0f:f9:f5:4e:db:fe:61:7a:01:e2:b8:84:44:c1:71: dc:fa:f9:62:73:03:28:c9:bf:d9:69:0b:97:7b:8e: 75:35:b3:ef:be:d5:2d:34:80:0f:f7:85:a6:08:27: 2c:48:a8:06:58:b5:f8:39:d1:47:1a:d5:90:3c:8a: c0:7f:b7:e3:c0:a0:fc:bc:5c:a4:b2:55:11:e9:8d: cb:de:2b:74:8d:2b:c7:96:2b:61:af:23:c6:c6:5d: 74:ee:e6:22:1c:6e:98:21:e2:72:ab:45:1a:9a:80: fc:1f:03:de:ea:3c:5b:9b:d3:63:64:76:e6:47:32: 95:a9:2c:23:6c:32:11:27:58:0f:93:a0:dd:78:1e: 14:f5:1a:f6:87:2a:ec:40:f9:09:bb:ec:6d:05:7c: 8b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C5:AB:FD:1C:3A:55:ED:58:4A:6B:62:0F:3A:FC:B1:B3:44:81:E0 X509v3 Authority Key Identifier: keyid:82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.114.0/23 Signature Algorithm: sha256WithRSAEncryption 44:e6:94:20:21:98:fa:bf:57:3e:e6:0e:be:1e:5f:40:19:1c: 11:e0:bf:09:a0:3d:20:1c:ac:d6:aa:dd:dc:5d:06:38:3d:2e: c6:65:04:2f:f7:de:b2:3b:d5:7e:89:83:ec:0b:61:99:7b:1b: 35:e7:c8:18:66:b4:1b:cf:cb:20:8f:c8:31:0b:0e:cf:63:42: d5:36:43:b8:3f:ed:df:59:82:05:6f:89:9a:8c:ca:6e:93:0a: f4:02:8d:fe:65:3f:c2:1c:8b:23:cc:45:af:8b:e8:a8:42:15: d3:d8:db:b3:6e:fb:b2:b9:d8:88:f4:eb:a7:4e:2d:db:34:67: 54:f8:23:0e:27:45:1e:57:59:04:32:36:44:38:6a:e3:ec:79: d5:ce:16:86:55:10:40:57:69:05:32:67:d5:fe:1d:b4:9b:09: d5:7b:d6:a8:77:3f:6b:96:af:e0:a8:77:3c:46:cf:06:8a:09: 65:b0:80:0b:07:72:4a:f1:b0:58:48:72:bd:d2:7c:4c:bc:5c: f9:e9:5f:cd:38:0e:a9:ab:f0:71:4a:d0:b8:63:2c:59:8b:aa: c0:c8:50:c4:c3:9b:13:02:51:ad:01:3e:0a:c4:b8:f1:4a:15: ea:39:37:6e:06:9e:47:36:b1:73:1e:57:5c:f9:6d:29:5d:f0: 6f:33:b8:40 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMUIxMTAvBgNVBAUTKDgyMDY0QTEwM0NGNTBGMDFEMTk0NTMwMDZBMzg2Q0Qz ODczOTFCRTYwHhcNMjUxMjI1MDEyMjIyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTVjNS0xNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s0tAcA+Gf9wXWP+MNbPrjoEbK3Sis8tfDaNW+HcXX4k+6eIwPPYUHzeZDp9 7gIYXHdJ+lsnGjYJsnEZj+CufIZL62oOPcptoEfH9XT7VuHI9ctH4R+aDlHYPHo8 JMfVTCTUqChPrBMP+fVO2/5hegHiuIREwXHc+vlicwMoyb/ZaQuXe451NbPvvtUt NIAP94WmCCcsSKgGWLX4OdFHGtWQPIrAf7fjwKD8vFykslUR6Y3L3it0jSvHlith ryPGxl107uYiHG6YIeJyq0UamoD8HwPe6jxbm9NjZHbmRzKVqSwjbDIRJ1gPk6Dd eB4U9Rr2hyrsQPkJu+xtBXyLLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJjFq/0c OlXtWEprYg86/LGzRIHgMB8GA1UdIwQYMBaAFIIGShA89Q8B0ZRTAGo4bNOHORvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExQi8xNDQ3ODI5QTc2 QkQxMUVEQkI0ODk0N0RDNEY5QUUwMi9nZ1pLRUR6MUR3SFJsRk1BYWpoczA0YzVH LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnWktFRHoxRHdIUmxGTUFhamhzMDRjNUctWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBMUIvMTQ0NzgyOUE3NkJEMTFFREJCNDg5NDdEQzRGOUFFMDIvRDNCNDlBMTY3 NkNBMTFFREFBNEZFMDQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZzFyMA0GCSqGSIb3DQEBCwUAA4IBAQBE5pQgIZj6v1c+5g6+Hl9A GRwR4L8JoD0gHKzWqt3cXQY4PS7GZQQv996yO9V+iYPsC2GZexs158gYZrQbz8sg j8gxCw7PY0LVNkO4P+3fWYIFb4majMpukwr0Ao3+ZT/CHIsjzEWvi+ioQhXT2Nuz bvuyudiI9OunTi3bNGdU+CMOJ0UeV1kEMjZEOGrj7HnVzhaGVRBAV2kFMmfV/h20 mwnVe9aodz9rlq/gqHc8Rs8GigllsIALB3JK8bBYSHK90nxMvFz56V/NOA6pq/Bx StC4YyxZi6rAyFDEw5sTAlGtAT4KxLjxShXqOTduBp5HNrFzHldc+W0pXfBvM7hA -----END CERTIFICATE-----Generated at Mon Mar 2 07:14:54 2026 by rpki-client