$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/3C5B5EF4FDC011F0B8AD40E9676F56BC.roa File: 3C5B5EF4FDC011F0B8AD40E9676F56BC.roa (raw, json) Hash identifier: BSJrDK4V2E7MvwhAcVSpnI4UVhMcWhhRV5ZmWLsrKWM= Subject key identifier: 82:B7:0C:C9:2F:89:FF:C7:E1:AC:43:EC:04:A1:4F:42:5B:7B:3A:4F Certificate issuer: /CN=A91F5DFB/serialNumber=2FA971A63BC263AEB4DAEBF20C2FC71183CA648F Certificate serial: 14 Authority key identifier: 2F:A9:71:A6:3B:C2:63:AE:B4:DA:EB:F2:0C:2F:C7:11:83:CA:64:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L6lxpjvCY6602uvyDC_HEYPKZI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/3C5B5EF4FDC011F0B8AD40E9676F56BC.roa Signing time: Sun 01 Mar 2026 05:39:41 +0000 ROA not before: Fri 30 Jan 2026 09:44:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45243 IP address blocks: 103.246.224.0/22 maxlen: 22 103.246.224.0/24 maxlen: 24 103.246.225.0/24 maxlen: 24 103.246.226.0/24 maxlen: 24 103.246.227.0/24 maxlen: 24 203.212.24.0/22 maxlen: 22 203.212.24.0/24 maxlen: 24 203.212.25.0/24 maxlen: 24 203.212.26.0/24 maxlen: 24 203.212.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/L6lxpjvCY6602uvyDC_HEYPKZI8.crl rsync://rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/L6lxpjvCY6602uvyDC_HEYPKZI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L6lxpjvCY6602uvyDC_HEYPKZI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5DFB, serialNumber=2FA971A63BC263AEB4DAEBF20C2FC71183CA648F Validity Not Before: Jan 30 09:44:14 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3d11d-90ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:65:f4:4a:f5:32:ec:5e:d7:f6:ff:de:25:30: 70:30:9f:96:1c:e0:46:02:f4:8d:83:0c:58:34:b9: 69:49:3f:5f:a4:2f:b4:4a:5a:9e:09:a8:d4:ec:98: a4:a9:54:61:b8:4c:91:bf:1c:9b:c0:f7:98:68:9a: 58:cd:17:95:32:5c:ad:74:74:16:90:ba:e2:34:ec: e0:5c:3f:6c:9b:87:fc:47:4e:cc:67:d0:96:b9:20: 27:55:42:ed:f5:77:cd:66:f3:96:40:b2:ae:08:31: 35:fe:d7:90:cf:c2:db:67:77:52:99:26:a6:6a:b0: 71:5b:14:5b:3b:f3:20:7a:19:00:71:f3:10:8f:05: 2a:28:eb:95:9d:02:af:b0:dc:08:69:84:57:83:f8: 98:30:fe:e8:fb:17:4f:31:ee:0c:47:78:57:53:46: ec:2a:37:e1:15:42:bd:ad:39:6f:1e:81:ae:8f:95: b3:20:27:c1:15:72:41:e0:96:07:d4:85:3f:b2:cb: 7a:66:a9:e2:3b:75:31:48:42:5a:f7:cf:65:8b:da: b4:5f:80:f9:bc:54:a3:ba:cf:6f:7f:b0:ea:d2:d9: 54:9f:82:a7:3d:00:2b:12:ba:88:ae:86:71:07:2a: 1d:b0:34:32:b9:e3:8a:ca:70:69:35:de:ab:35:cd: 7c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B7:0C:C9:2F:89:FF:C7:E1:AC:43:EC:04:A1:4F:42:5B:7B:3A:4F X509v3 Authority Key Identifier: keyid:2F:A9:71:A6:3B:C2:63:AE:B4:DA:EB:F2:0C:2F:C7:11:83:CA:64:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/L6lxpjvCY6602uvyDC_HEYPKZI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L6lxpjvCY6602uvyDC_HEYPKZI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5DFB/47F74DE6FDBF11F0A5FE8CE6676F56BC/3C5B5EF4FDC011F0B8AD40E9676F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.246.224.0/22 203.212.24.0/22 Signature Algorithm: sha256WithRSAEncryption 07:9a:7b:7a:8a:d4:0f:e8:e7:2c:a5:de:13:22:79:0c:15:5f: c0:fc:67:c1:43:51:db:f0:3c:a9:e6:57:04:72:bd:61:08:bb: 8f:fa:0c:4d:5a:0b:01:45:c5:8a:40:71:da:53:8d:15:4a:33: 9d:8f:61:ff:f4:12:af:a7:f5:2a:fe:31:3b:41:d8:d6:86:58: 98:b3:38:b7:89:24:f5:a3:fa:ff:ac:b3:a6:55:3a:46:ba:60: 73:3c:72:7a:84:e7:c8:5f:48:e5:23:cf:15:16:d6:af:58:d0: f1:11:28:e4:18:54:ee:34:e8:75:30:a9:7f:a9:bd:73:7b:1e: aa:8e:db:a7:ad:1b:07:b5:17:15:eb:df:3e:2e:fc:df:28:2a: b8:b3:56:64:a5:de:fc:15:9b:54:8a:f7:43:ed:8e:3f:58:94: aa:f1:76:eb:99:5d:85:aa:5a:fa:90:b2:ce:08:ff:a5:9a:37: b1:6c:ab:1a:b2:7b:81:c5:d7:b4:d5:0e:a1:1a:05:4e:8b:7c: d2:c0:29:e4:e8:98:c5:2c:4c:1a:bc:9c:1f:32:29:6f:3b:3b: cc:b1:f1:0f:0e:ae:4d:a7:af:14:e0:0d:58:24:6d:cc:5e:70: 1a:31:9d:9b:b3:94:90:e2:bd:ed:75:c9:48:35:b5:e3:81:de: ac:5a:5b:93 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NURGQjExMC8GA1UEBRMoMkZBOTcxQTYzQkMyNjNBRUI0REFFQkYyMEMyRkM3MTE4 M0NBNjQ4RjAeFw0yNjAxMzAwOTQ0MTRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMTFkLTkwZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSZfRK9TLsXtf2/94lMHAwn5Yc4EYC9I2DDFg0uWlJP1+kL7RKWp4JqNTsmKSp VGG4TJG/HJvA95homljNF5UyXK10dBaQuuI07OBcP2ybh/xHTsxn0Ja5ICdVQu31 d81m85ZAsq4IMTX+15DPwttnd1KZJqZqsHFbFFs78yB6GQBx8xCPBSoo65WdAq+w 3AhphFeD+Jgw/uj7F08x7gxHeFdTRuwqN+EVQr2tOW8ega6PlbMgJ8EVckHglgfU hT+yy3pmqeI7dTFIQlr3z2WL2rRfgPm8VKO6z29/sOrS2VSfgqc9ACsSuoiuhnEH Kh2wNDK544rKcGk13qs1zXybAgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUgrcMyS+J /8fhrEPsBKFPQlt7Ok8wHwYDVR0jBBgwFoAUL6lxpjvCY6602uvyDC/HEYPKZI8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1REZCLzQ3Rjc0REU2RkRC RjExRjBBNUZFOENFNjY3NkY1NkJDL0w2bHhwanZDWTY2MDJ1dnlEQ19IRVlQS1pJ OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDZseHBqdkNZNjYwMnV2eURDX0hFWVBLWkk4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NURGQi80N0Y3NERFNkZEQkYxMUYwQTVGRThDRTY2NzZGNTZCQy8zQzVCNUVGNEZE QzAxMUYwQjhBRDQwRTk2NzZGNTZCQy5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAJn9uADBALL1BgwDQYJKoZIhvcNAQELBQADggEBAAeae3qK1A/o5yyl 3hMieQwVX8D8Z8FDUdvwPKnmVwRyvWEIu4/6DE1aCwFFxYpAcdpTjRVKM52PYf/0 Eq+n9Sr+MTtB2NaGWJizOLeJJPWj+v+ss6ZVOka6YHM8cnqE58hfSOUjzxUW1q9Y 0PERKOQYVO406HUwqX+pvXN7HqqO26etGwe1FxXr3z4u/N8oKrizVmSl3vwVm1SK 90Ptjj9YlKrxduuZXYWqWvqQss4I/6WaN7Fsqxqye4HF17TVDqEaBU6LfNLAKeTo mMUsTBq8nB8yKW87O8yx8Q8Ork2nrxTgDVgkbcxecBoxnZuzlJDive11yUg1teOB 3qxaW5M= -----END CERTIFICATE-----Generated at Mon Mar 2 13:10:27 2026 by rpki-client