$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa File: 3CED465E8E0811EE8450D961C4F9AE02.roa (raw, json) Hash identifier: lItS9IhoLUedBvAXuWgl/Rf34kmfafMEcysHbipPcpE= Subject key identifier: 85:B0:EF:0C:AF:A7:34:2A:F3:CF:A3:68:32:AE:9D:E0:BB:1A:E8:C2 Certificate issuer: /CN=A91BF306/serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Certificate serial: 01BE Authority key identifier: B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:39:44 +0000 ROA not before: Wed 23 Jul 2025 04:40:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149849 IP address blocks: 103.188.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF306, serialNumber=B60412CE9809C10C67DDEABBA0E335E3ADA4FE10 Validity Not Before: Jul 23 04:40:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ed40-01fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:08:3e:53:54:70:6a:32:93:7f:be:6b:75:d6: 5e:8f:b4:16:24:79:ff:c9:27:fc:03:c3:bf:2c:6d: 10:9e:77:ca:97:a3:8d:36:63:cf:54:65:22:2c:da: c2:da:42:b6:f7:7b:74:bb:20:5a:b1:8b:4a:0d:e0: 04:0d:14:08:80:dc:e6:12:4d:84:d5:ec:a4:af:27: 6d:06:36:87:a4:24:e3:a4:38:4a:24:81:cf:7a:bf: 2f:6c:94:88:e4:cb:bf:3e:6d:a5:d7:95:a4:22:2f: 87:3e:ee:33:f9:32:28:96:aa:dc:92:e2:c2:4a:71: b5:3a:a3:09:6c:5f:84:7e:d2:41:8d:02:46:5c:82: fd:c0:cd:3d:32:76:cf:b6:62:b6:d2:9c:59:37:d6: cd:0d:35:93:3a:69:52:d1:d1:12:7e:41:02:d8:8c: 55:10:01:89:86:ee:4b:4c:ee:b3:57:c9:71:89:52: 3b:29:e1:c3:07:0c:ef:cd:71:f7:45:8a:90:f5:44: 63:67:61:68:a8:da:f8:4b:db:f9:09:5b:8c:56:28: c4:93:db:5e:74:a3:50:ec:36:16:77:4c:de:9a:fd: 1d:18:a4:d6:09:8f:9a:48:b2:98:4b:60:5c:26:40: 4d:8d:40:23:16:21:b0:25:99:03:67:32:19:a7:28: 20:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B0:EF:0C:AF:A7:34:2A:F3:CF:A3:68:32:AE:9D:E0:BB:1A:E8:C2 X509v3 Authority Key Identifier: keyid:B6:04:12:CE:98:09:C1:0C:67:DD:EA:BB:A0:E3:35:E3:AD:A4:FE:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/tgQSzpgJwQxn3eq7oOM1462k_hA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgQSzpgJwQxn3eq7oOM1462k_hA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF306/1717920E716B11EEB1673277C4F9AE02/3CED465E8E0811EE8450D961C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.188.88.0/24 Signature Algorithm: sha256WithRSAEncryption 99:62:ec:40:f4:82:92:6e:19:8d:2f:f6:9a:70:41:4e:90:a9: 1b:73:f5:aa:d5:a4:39:36:71:56:71:0e:7d:85:30:e4:72:b6: b3:43:11:c6:e6:8d:c1:de:67:c6:5c:41:71:a9:f8:e7:f7:5f: e7:9f:f3:c6:0a:35:42:0f:a5:80:59:74:92:e7:9d:3a:0c:81: 7f:cc:ea:5c:53:67:66:9c:50:9c:0a:79:5e:6f:4e:65:49:a1: 09:95:16:c1:3e:73:a3:02:55:2e:ea:e3:36:22:b2:12:e9:75: 5d:54:13:3b:2f:c2:0e:ed:55:b0:08:b6:5c:62:66:f3:16:25: 20:35:a5:91:bf:40:91:c7:c7:00:6c:af:34:9b:70:2c:f6:75: 53:fb:00:4d:5f:b6:a5:e5:3b:fd:4a:25:3d:f4:cb:b4:a5:81: 9d:03:38:e8:ea:61:44:3a:24:79:7d:9d:bd:12:97:e0:17:ca: f5:df:83:ed:5d:a1:d7:2b:36:d8:a6:9e:b0:63:1c:52:de:50: d4:8b:4a:1b:9c:8a:95:95:ea:32:4d:62:b8:80:be:22:aa:98: e2:46:68:62:b8:48:78:80:35:f8:28:32:e9:4d:af:a0:1d:cd: ea:55:2d:46:59:eb:ee:58:9a:39:3f:7b:12:c3:74:1b:3f:de: 7d:86:2a:17 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMDYxMTAvBgNVBAUTKEI2MDQxMkNFOTgwOUMxMEM2N0RERUFCQkEwRTMzNUUz QURBNEZFMTAwHhcNMjUwNzIzMDQ0MDM4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWQ0MC0wMWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugg+U1RwajKTf75rddZej7QWJHn/ySf8A8O/LG0QnnfKl6ONNmPPVGUiLNrC 2kK293t0uyBasYtKDeAEDRQIgNzmEk2E1eykrydtBjaHpCTjpDhKJIHPer8vbJSI 5Mu/Pm2l15WkIi+HPu4z+TIolqrckuLCSnG1OqMJbF+EftJBjQJGXIL9wM09MnbP tmK20pxZN9bNDTWTOmlS0dESfkEC2IxVEAGJhu5LTO6zV8lxiVI7KeHDBwzvzXH3 RYqQ9URjZ2FoqNr4S9v5CVuMVijEk9tedKNQ7DYWd0zemv0dGKTWCY+aSLKYS2Bc JkBNjUAjFiGwJZkDZzIZpyggnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIWw7wyv pzQq88+jaDKuneC7GujCMB8GA1UdIwQYMBaAFLYEEs6YCcEMZ93qu6DjNeOtpP4Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMwNi8xNzE3OTIwRTcx NkIxMUVFQjE2NzMyNzdDNEY5QUUwMi90Z1FTenBnSndReG4zZXE3b09NMTQ2Mmtf aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnUVN6cGdKd1F4bjNlcTdvT00xNDYya19oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMDYvMTcxNzkyMEU3MTZCMTFFRUIxNjczMjc3QzRGOUFFMDIvM0NFRDQ2NUU4 RTA4MTFFRTg0NTBEOTYxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ7xYMA0GCSqGSIb3DQEBCwUAA4IBAQCZYuxA9IKSbhmNL/aacEFO kKkbc/Wq1aQ5NnFWcQ59hTDkcrazQxHG5o3B3mfGXEFxqfjn91/nn/PGCjVCD6WA WXSS5506DIF/zOpcU2dmnFCcCnleb05lSaEJlRbBPnOjAlUu6uM2IrIS6XVdVBM7 L8IO7VWwCLZcYmbzFiUgNaWRv0CRx8cAbK80m3As9nVT+wBNX7al5Tv9SiU99Mu0 pYGdAzjo6mFEOiR5fZ29EpfgF8r134PtXaHXKzbYpp6wYxxS3lDUi0obnIqVleoy TWK4gL4iqpjiRmhiuEh4gDX4KDLpTa+gHc3qVS1GWevuWJo5P3sSw3QbP959hioX -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:06 2026 by rpki-client