$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3B2A0EE4AEBC11EF876B6A5AC4F9AE02.roa File: 3B2A0EE4AEBC11EF876B6A5AC4F9AE02.roa (raw, json) Hash identifier: LkTs19W0gCsrdxuY2K03JUvqdf72Vlm5uJXTCSQ9ySM= Subject key identifier: E6:51:E5:8B:81:07:E5:0C:02:1D:05:BA:E5:4E:2C:54:63:35:B8:E4 Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 05EB Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3B2A0EE4AEBC11EF876B6A5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:13:10 +0000 ROA not before: Fri 15 Aug 2025 00:05:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 20057 IP address blocks: 103.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3, serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Aug 15 00:05:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a473a6-8935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2d:2c:66:ae:69:3b:fe:60:28:3e:a4:7f:fc: 83:8f:f2:a2:a2:e3:e1:30:e5:6a:3f:be:94:cb:e5: 33:41:fe:33:1a:fd:bd:42:2e:c9:4e:e5:82:35:bd: 3b:64:2f:6f:4d:95:d8:02:88:33:09:e4:c6:91:6e: 5c:c3:62:74:5f:28:36:db:7a:cd:a8:12:b3:56:81: f7:1c:29:32:57:29:b3:35:c5:48:38:9d:96:0a:d3: e9:58:fc:49:35:63:de:54:c3:70:b1:8a:8b:d9:e3: f6:46:18:ba:7a:40:4b:d1:f7:a6:bb:61:6f:91:44: 56:35:0f:a5:5d:ef:cc:3f:25:fa:02:a7:79:56:0a: cf:4b:f9:d2:86:a9:7d:77:40:a9:a6:6b:f2:ff:5b: a1:27:56:c2:47:d8:80:91:dd:20:69:29:fd:66:fe: d9:e3:5e:0a:7c:44:2f:57:59:1f:50:62:15:70:67: c7:06:cb:3b:6e:3f:ea:85:6d:4c:8d:81:a2:5a:93: fa:73:bb:e9:b2:63:e1:b1:89:88:fb:d9:02:2c:f7: b0:a9:38:4b:a9:37:c1:c0:c3:a0:c5:1d:42:09:ff: 58:ae:55:ef:ab:ac:5a:58:b0:85:3c:b8:6e:1f:52: 82:82:d2:8d:7b:28:44:35:e9:77:58:a4:5c:65:eb: 55:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:51:E5:8B:81:07:E5:0C:02:1D:05:BA:E5:4E:2C:54:63:35:B8:E4 X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3B2A0EE4AEBC11EF876B6A5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 69:00:5f:cc:0d:6e:ba:aa:27:a1:eb:75:b6:3f:5a:2a:a4:8d: 73:c6:51:5b:2c:48:62:b9:db:50:4c:ca:0c:fa:73:99:13:01: f7:76:74:e8:5a:23:46:99:53:86:43:9c:0e:3c:28:40:d2:dc: 53:a8:f4:1b:3e:1f:13:14:56:2f:7c:10:a1:2e:4c:6f:20:63: 30:91:89:ff:ac:b9:4e:dd:40:fa:4a:99:d3:c6:78:4e:f6:45: 4e:41:50:a4:32:e6:e3:b4:73:e2:db:e7:6a:68:3d:fd:e3:b8: e4:07:4c:87:28:68:42:49:e6:37:09:2a:4a:74:88:4d:00:54: 2c:b5:fb:9f:27:c7:f9:24:c0:77:d4:36:f4:60:89:18:f3:ab: 89:ca:88:eb:63:82:bb:9b:ee:77:fb:b8:aa:ed:ee:42:1c:de: 33:02:6c:d0:e2:b2:d5:fd:60:f4:02:5c:5d:29:cc:56:45:cd: 46:5a:6b:b9:4e:d3:9a:61:59:8f:ca:da:31:77:87:23:a5:bf: b0:a0:20:eb:dc:45:ca:f8:ca:df:32:26:7a:c4:3c:c9:3d:b3: f5:7e:1b:08:9e:77:6a:69:72:f2:d4:ab:d2:b0:60:a6:fb:35: 8d:0d:a3:0a:83:22:5f:9d:e7:76:6d:e3:5b:2f:a3:6a:78:45: 10:4d:28:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjUwODE1MDAwNTI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzNhNi04OTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi0sZq5pO/5gKD6kf/yDj/KiouPhMOVqP76Uy+UzQf4zGv29Qi7JTuWCNb07 ZC9vTZXYAogzCeTGkW5cw2J0Xyg223rNqBKzVoH3HCkyVymzNcVIOJ2WCtPpWPxJ NWPeVMNwsYqL2eP2Rhi6ekBL0femu2FvkURWNQ+lXe/MPyX6Aqd5VgrPS/nShql9 d0Cppmvy/1uhJ1bCR9iAkd0gaSn9Zv7Z414KfEQvV1kfUGIVcGfHBss7bj/qhW1M jYGiWpP6c7vpsmPhsYmI+9kCLPewqThLqTfBwMOgxR1CCf9YrlXvq6xaWLCFPLhu H1KCgtKNeyhENel3WKRcZetVKwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOZR5YuB B+UMAh0FuuVOLFRjNbjkMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvM0IyQTBFRTRB RUJDMTFFRjg3NkI2QTVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6pIMA0GCSqGSIb3DQEBCwUAA4IBAQBpAF/MDW66qieh63W2P1oq pI1zxlFbLEhiudtQTMoM+nOZEwH3dnToWiNGmVOGQ5wOPChA0txTqPQbPh8TFFYv fBChLkxvIGMwkYn/rLlO3UD6SpnTxnhO9kVOQVCkMubjtHPi2+dqaD3947jkB0yH KGhCSeY3CSpKdIhNAFQstfufJ8f5JMB31Db0YIkY86uJyojrY4K7m+53+7iq7e5C HN4zAmzQ4rLV/WD0AlxdKcxWRc1GWmu5TtOaYVmPytoxd4cjpb+woCDr3EXK+Mrf MiZ6xDzJPbP1fhsInndqaXLy1KvSsGCm+zWNDaMKgyJfned2beNbL6NqeEUQTShS -----END CERTIFICATE-----Generated at Fri Mar 13 13:31:55 2026 by rpki-client