$ rpki-client -vvf rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/D4A6E66C184411F1A6C9F001253D8C67.roa File: D4A6E66C184411F1A6C9F001253D8C67.roa (raw, json) Hash identifier: RCo97+BQ7c4x9Y7DEYvpGWpLOBI7K1vi8X0A+4tNDLU= Subject key identifier: CE:81:BA:95:57:2F:15:E7:70:21:35:1A:B3:88:EC:7F:B9:67:BD:FB Certificate issuer: /CN=A911D3F3/serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Certificate serial: 06C4 Authority key identifier: 31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/D4A6E66C184411F1A6C9F001253D8C67.roa Signing time: Thu 05 Mar 2026 03:44:39 +0000 ROA not before: Thu 05 Mar 2026 03:44:39 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9667 IP address blocks: 103.20.208.0/24 maxlen: 24 103.20.209.0/24 maxlen: 24 103.20.210.0/24 maxlen: 24 103.20.211.0/24 maxlen: 24 180.94.112.0/22 maxlen: 24 180.94.116.0/22 maxlen: 24 202.58.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 22:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D3F3, serialNumber=317C307FFC6ECB6CF656F26B8282FFB9E62F9365 Validity Not Before: Mar 5 03:44:39 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a8fc27-5f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2a:b4:2c:c2:7f:ed:f3:5c:33:92:b9:4a:73: 13:a9:ff:49:1c:52:fb:e9:f0:e0:65:e2:57:b4:ce: 5c:be:ba:d5:1a:e6:39:99:a3:32:f9:85:59:0e:19: e3:0c:32:15:24:0e:57:ee:5c:96:bb:40:9c:0e:ab: d1:a2:38:af:2c:a9:2b:81:00:90:bc:2c:f7:22:7c: 7a:70:dd:68:ec:2d:22:c6:55:e8:4b:68:32:d4:57: 20:6a:75:d1:61:95:1c:bd:73:35:89:db:c2:30:55: e0:1a:a1:8f:6d:55:1e:09:58:16:d9:b3:8e:55:af: 79:c3:23:df:48:63:fd:17:fc:ef:23:b9:84:5f:f7: 1c:ae:36:3f:f5:60:3d:98:ca:54:ed:da:90:8d:55: b0:e5:66:f4:01:3e:c0:e9:0a:6b:76:b0:a4:bd:ad: e0:68:bd:63:19:68:71:10:a9:f5:12:a2:2e:d4:a8: 8a:ef:ee:56:f1:3d:08:d0:94:90:ae:35:71:54:de: 8f:00:5f:f7:27:8a:ea:6f:35:53:dc:1b:f0:1b:8b: d7:65:8b:4f:b5:2b:da:b9:09:53:db:04:24:ec:6a: ac:cc:8f:a1:c7:c3:78:81:f7:66:4e:2d:11:38:a4: 4f:80:68:7a:e3:3f:27:7c:de:0d:24:e0:c9:ad:d2: 52:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:81:BA:95:57:2F:15:E7:70:21:35:1A:B3:88:EC:7F:B9:67:BD:FB X509v3 Authority Key Identifier: keyid:31:7C:30:7F:FC:6E:CB:6C:F6:56:F2:6B:82:82:FF:B9:E6:2F:93:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/MXwwf_xuy2z2VvJrgoL_ueYvk2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXwwf_xuy2z2VvJrgoL_ueYvk2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D3F3/B254481ACA3411EB8C90D941C4F9AE02/D4A6E66C184411F1A6C9F001253D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.20.208.0/22 180.94.112.0/21 202.58.32.0/19 Signature Algorithm: sha256WithRSAEncryption 25:e6:df:e3:55:26:11:c6:96:93:4e:a1:c9:61:5e:0a:97:ea: f5:00:a9:33:e3:ea:02:51:79:6e:f8:f3:8c:e6:e3:b7:0c:04: 6c:6c:fd:16:ae:b9:eb:4c:f6:7b:89:36:5e:17:1d:f8:c9:29: 92:38:17:f9:17:28:40:3f:d3:65:22:ae:4c:23:32:a1:e5:eb: 1b:1d:16:8f:b8:c5:9d:1c:fc:14:45:a5:71:52:b9:40:08:df: 1d:b0:73:0e:4c:d4:40:37:b7:7d:93:40:96:49:af:34:91:a7: 33:a0:32:72:fd:d7:03:15:23:4a:fc:40:1c:27:7a:5c:1f:56: 34:2f:b5:2a:94:a9:55:e4:0d:e4:b6:a6:07:23:16:78:82:b7: 34:3e:29:72:32:cb:20:ca:88:f3:2b:80:e5:45:41:98:e6:4c: ae:a7:6f:9e:87:b3:73:36:37:bb:94:d9:b5:85:99:6c:56:22: b9:f2:17:eb:c0:ab:11:2f:80:77:9e:d2:60:12:30:4c:84:cc: 38:d3:ee:c7:3a:a5:db:41:b0:31:01:8a:43:25:57:cc:fd:7f: 5c:39:ab:c0:28:5b:0b:f5:8d:4e:51:ee:ba:75:08:fa:7c:0f: 3f:c5:04:e0:86:ac:55:f2:00:10:95:2d:e7:e0:11:f3:56:ac: aa:51:08:54 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzRjMxMTAvBgNVBAUTKDMxN0MzMDdGRkM2RUNCNkNGNjU2RjI2QjgyODJGRkI5 RTYyRjkzNjUwHhcNMjYwMzA1MDM0NDM5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4ZmMyNy01ZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyq0LMJ/7fNcM5K5SnMTqf9JHFL76fDgZeJXtM5cvrrVGuY5maMy+YVZDhnj DDIVJA5X7lyWu0CcDqvRojivLKkrgQCQvCz3Inx6cN1o7C0ixlXoS2gy1FcganXR YZUcvXM1idvCMFXgGqGPbVUeCVgW2bOOVa95wyPfSGP9F/zvI7mEX/ccrjY/9WA9 mMpU7dqQjVWw5Wb0AT7A6QprdrCkva3gaL1jGWhxEKn1EqIu1KiK7+5W8T0I0JSQ rjVxVN6PAF/3J4rqbzVT3BvwG4vXZYtPtSvauQlT2wQk7GqszI+hx8N4gfdmTi0R OKRPgGh64z8nfN4NJODJrdJSnwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFM6BupVX LxXncCE1GrOI7H+5Z737MB8GA1UdIwQYMBaAFDF8MH/8bsts9lbya4KC/7nmL5Nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDNGMy9CMjU0NDgxQUNB MzQxMUVCOEM5MEQ5NDFDNEY5QUUwMi9NWHd3Zl94dXkyejJWdkpyZ29MX3VlWXZr MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Yd3dmX3h1eTJ6MlZ2SnJnb0xfdWVZdmsyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQzRjMvQjI1NDQ4MUFDQTM0MTFFQjhDOTBEOTQxQzRGOUFFMDIvRDRBNkU2NkMx ODQ0MTFGMUE2QzlGMDAxMjUzRDhDNjcucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZxTQAwQDtF5wAwQFyjogMA0GCSqGSIb3DQEBCwUAA4IBAQAl5t/j VSYRxpaTTqHJYV4Kl+r1AKkz4+oCUXlu+POM5uO3DARsbP0WrrnrTPZ7iTZeFx34 ySmSOBf5FyhAP9NlIq5MIzKh5esbHRaPuMWdHPwURaVxUrlACN8dsHMOTNRAN7d9 k0CWSa80kaczoDJy/dcDFSNK/EAcJ3pcH1Y0L7UqlKlV5A3ktqYHIxZ4grc0Pily MssgyojzK4DlRUGY5kyup2+eh7NzNje7lNm1hZlsViK58hfrwKsRL4B3ntJgEjBM hMw40+7HOqXbQbAxAYpDJVfM/X9cOavAKFsL9Y1OUe66dQj6fA8/xQTghqxV8gAQ lS3n4BHzVqyqUQhU -----END CERTIFICATE-----Generated at Wed Mar 11 12:28:04 2026 by rpki-client