$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa File: 3B495FFCA46211E9B730310FC4F9AE02.roa (raw, json) Hash identifier: 4pVvE+I9wNinJDczPi8MpCDR2ep+npYGZpMqxp50Meo= Subject key identifier: 1B:26:13:7C:1D:B5:79:7B:F2:B9:F3:AE:42:36:CB:9C:70:5E:B6:E1 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0EC4 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:21:10 +0000 ROA not before: Thu 24 Apr 2025 17:46:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55482 IP address blocks: 103.78.32.0/24 maxlen: 24 103.78.33.0/24 maxlen: 24 103.78.34.0/24 maxlen: 24 103.78.35.0/24 maxlen: 24 182.173.72.0/22 maxlen: 22 182.173.72.0/24 maxlen: 24 182.173.73.0/24 maxlen: 24 182.173.74.0/24 maxlen: 24 182.173.75.0/24 maxlen: 24 2401:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3780 (0xec4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Apr 24 17:46:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40505-fcd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ab:f4:63:89:3b:f5:ee:69:44:a5:c9:bd:4d: 87:a2:35:21:51:f0:c3:8a:8e:e7:8b:ab:39:8e:12: 6f:89:7a:2f:e6:41:90:72:bd:af:29:c0:2d:83:22: 89:37:e7:67:6a:06:54:e2:aa:ed:8b:89:34:b4:5b: 4e:cf:25:c5:ec:81:90:fc:90:93:30:13:6b:5b:33: cb:00:da:7d:52:75:e7:6a:2c:45:2d:62:58:c8:1a: b3:f0:6e:85:de:b0:57:c3:39:af:6b:db:83:c1:ab: 9f:2e:69:b1:bd:d4:64:e3:db:6d:c0:b6:61:32:16: 23:1a:d7:d5:3a:55:92:15:d4:79:a1:ce:86:b9:71: 10:02:af:9e:f6:87:b7:31:d7:71:8b:24:b2:2c:02: ce:40:41:6e:c8:b8:8b:54:27:94:dc:c3:9b:44:73: ad:0a:d0:15:9f:35:7d:6d:9d:66:8e:0e:2d:a1:90: c4:e9:6a:30:73:30:cd:66:c7:42:94:f1:fe:20:11: 66:40:ad:61:80:07:be:5c:b3:00:db:b6:89:e2:bf: 54:d3:2a:35:08:ee:97:d9:70:d3:fe:b3:eb:84:b7: 0a:a0:48:53:26:f6:8b:64:46:82:e7:49:81:bd:e3: 33:77:11:83:37:a0:30:cb:14:35:11:49:a1:50:20: ce:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:26:13:7C:1D:B5:79:7B:F2:B9:F3:AE:42:36:CB:9C:70:5E:B6:E1 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.78.32.0/22 182.173.72.0/22 IPv6: 2401:3140::/48 Signature Algorithm: sha256WithRSAEncryption 0b:ad:64:1e:e3:b3:99:24:cd:1c:c8:54:d7:d7:97:24:ca:e9: 02:09:dd:fe:7c:2a:53:34:45:d1:7e:52:9c:22:a6:51:83:4b: c4:8f:e6:9b:15:92:d3:b8:b3:13:0d:50:42:5c:ff:d0:69:fe: f1:67:34:e5:7d:37:48:35:09:bf:90:6d:5e:17:76:d8:66:a3: 0e:23:0f:3a:8b:a8:e8:44:5f:93:b8:57:73:36:e9:74:62:84: e8:f2:17:db:eb:03:d1:78:2d:20:d1:1c:7e:af:5b:37:cf:b5: 73:4c:09:94:9e:48:ca:69:e5:e0:bd:90:e1:ae:42:da:c3:14: a4:0b:ab:e3:10:45:86:09:ca:a7:28:76:f3:2f:0d:2a:15:64: bb:f8:2d:97:7d:b5:72:8c:b0:e3:71:f7:47:27:4f:11:f4:65: fb:9a:44:9a:6f:3c:33:da:6b:11:62:f4:30:30:e6:56:88:b4: 9c:c6:1f:c9:ac:8f:1a:65:8d:84:36:66:21:a9:01:d8:24:ed: 1c:fe:ea:25:b5:7b:ce:b0:ac:af:8f:90:d9:14:5a:dc:ed:d0: 85:ce:30:5d:e7:b2:b8:b5:3b:d9:43:04:d9:08:54:e8:1b:31: 9d:52:da:67:83:60:5c:99:64:67:0a:2a:5b:61:d8:0f:df:f2: 64:29:da:dd -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICDsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwNDI0MTc0NjU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDUwNS1mY2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06v0Y4k79e5pRKXJvU2HojUhUfDDio7ni6s5jhJviXov5kGQcr2vKcAtgyKJ N+dnagZU4qrti4k0tFtOzyXF7IGQ/JCTMBNrWzPLANp9UnXnaixFLWJYyBqz8G6F 3rBXwzmva9uDwaufLmmxvdRk49ttwLZhMhYjGtfVOlWSFdR5oc6GuXEQAq+e9oe3 MddxiySyLALOQEFuyLiLVCeU3MObRHOtCtAVnzV9bZ1mjg4toZDE6WowczDNZsdC lPH+IBFmQK1hgAe+XLMA27aJ4r9U0yo1CO6X2XDT/rPrhLcKoEhTJvaLZEaC50mB veMzdxGDN6AwyxQ1EUmhUCDO7QIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFBsmE3wd tXl78rnzrkI2y5xwXrbhMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlCQzQvOTJFODIxRjBBNDYwMTFFOTgxMEE1QzBCQzRGOUFFMDIvM0I0OTVGRkNB NDYyMTFFOUI3MzAzMTBGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCZ04gAwQCtq1IMA8EAgACMAkDBwAkATFAAAAwDQYJKoZIhvcNAQEL BQADggEBAAutZB7js5kkzRzIVNfXlyTK6QIJ3f58KlM0RdF+UpwiplGDS8SP5psV ktO4sxMNUEJc/9Bp/vFnNOV9N0g1Cb+QbV4Xdthmow4jDzqLqOhEX5O4V3M26XRi hOjyF9vrA9F4LSDRHH6vWzfPtXNMCZSeSMpp5eC9kOGuQtrDFKQLq+MQRYYJyqco dvMvDSoVZLv4LZd9tXKMsONx90cnTxH0ZfuaRJpvPDPaaxFi9DAw5laItJzGH8ms jxpljYQ2ZiGpAdgk7Rz+6iW1e86wrK+PkNkUWtzt0IXOMF3nsri1O9lDBNkIVOgb MZ1S2meDYFyZZGcKKlth2A/f8mQp2t0= -----END CERTIFICATE-----Generated at Mon Mar 2 11:01:59 2026 by rpki-client