$ rpki-client -vvf rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/5D4A59E22A9F11F1B6C16D449B833773.roa File: 5D4A59E22A9F11F1B6C16D449B833773.roa (raw, json) Hash identifier: h/Anwhdw8hYIXbU00WYyYBTDgfVMK1vj6+wTY2GDHw4= Subject key identifier: F6:B7:2E:B3:BA:A6:B9:D1:33:5E:0E:4C:48:FA:1C:BE:1B:D7:6E:4C Certificate issuer: /CN=A911E74F/serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Certificate serial: 028B Authority key identifier: F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/5D4A59E22A9F11F1B6C16D449B833773.roa Signing time: Sat 28 Mar 2026 12:12:18 +0000 ROA not before: Sat 28 Mar 2026 12:12:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24556 IP address blocks: 103.113.196.0/22 maxlen: 22 103.113.196.0/24 maxlen: 24 103.113.197.0/24 maxlen: 24 103.113.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E74F, serialNumber=F602A6293F7E6492077E7B4D6016307ED12C1C31 Validity Not Before: Mar 28 12:12:18 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69c7c5a2-cfd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:81:25:51:e4:9a:30:28:85:f7:0c:47:8f:53: 92:65:b0:d1:d3:b0:e6:f9:40:f6:6c:c2:27:a3:f5: 80:fb:24:0f:82:9d:db:43:26:bb:f9:b5:74:e8:b4: 4b:65:6e:e9:29:bc:a1:a8:14:09:78:03:aa:9e:5e: eb:d4:23:75:71:74:90:79:da:a8:e5:8a:b7:e5:b1: df:56:9d:31:e3:b2:eb:fa:7a:db:cc:97:54:25:c7: fb:05:6d:53:50:00:58:b0:6d:f6:7d:6a:22:a1:5f: a0:4f:a1:de:d6:96:19:b4:b6:fd:23:29:7b:97:12: 4b:ec:7b:ad:c8:8e:66:cc:07:25:cb:27:78:ee:09: 64:a6:b7:e6:7e:5d:60:17:6c:ac:f9:48:0c:ef:e0: 5e:76:dd:6c:75:d9:cc:22:37:a8:f9:c9:69:2d:41: d1:34:06:62:3e:7f:6d:b8:79:e4:d5:88:44:bf:de: e3:2b:35:9a:ba:85:95:5e:5e:f6:83:fd:29:46:78: c7:6a:bc:98:33:f8:97:e2:ee:e4:cf:04:95:e8:bf: 4e:58:5e:b6:3e:ce:ca:68:ed:63:8e:ff:8c:15:f1: 60:0b:c4:ae:f2:93:f4:1b:db:80:4b:f1:32:c5:c4: 11:ab:2c:d7:03:00:b4:71:0c:73:d6:c0:77:f2:cf: 2d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B7:2E:B3:BA:A6:B9:D1:33:5E:0E:4C:48:FA:1C:BE:1B:D7:6E:4C X509v3 Authority Key Identifier: keyid:F6:02:A6:29:3F:7E:64:92:07:7E:7B:4D:60:16:30:7E:D1:2C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/9gKmKT9-ZJIHfntNYBYwftEsHDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9gKmKT9-ZJIHfntNYBYwftEsHDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E74F/1E157038638B11EDB103C02CC4F9AE02/5D4A59E22A9F11F1B6C16D449B833773.roa sbgp-ipAddrBlock: critical IPv4: 103.113.196.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:1a:89:ca:59:68:cc:a9:16:fd:38:f4:2f:8f:ec:cb:7d:94: 6b:70:18:a1:d5:2b:b4:8f:56:31:bf:fa:f3:7e:63:c5:8d:52: 34:49:c6:62:6f:ce:42:68:14:28:e9:86:33:ab:69:26:de:c8: 57:b9:f6:d1:85:fb:94:97:6b:b5:9f:96:30:c1:4b:a2:10:ac: 9b:11:ea:00:06:ec:b8:ff:10:c2:60:02:59:61:c1:c5:99:ce: e5:3f:80:a6:30:22:a5:d3:41:ef:00:65:3e:92:15:29:bb:81: 6f:c5:e7:63:8d:05:3a:a5:d8:ee:60:47:30:6f:ce:68:52:33: e8:9e:b1:ef:30:6a:51:ec:ec:17:43:b1:d9:ab:59:40:d4:22: 3f:3b:ce:bb:1d:37:02:a2:ec:52:d8:f1:ea:e9:60:1a:97:9b: 10:cc:3e:df:7c:be:9c:c7:7b:a3:1f:55:09:49:a8:d5:1f:2e: 81:20:b9:0e:ef:14:55:92:c4:40:b9:ed:6d:32:51:2c:00:77: 80:58:02:00:5b:9d:c1:f2:11:aa:8e:9e:8a:60:c6:22:21:83: e6:84:82:2e:d3:1d:70:a6:3d:54:e0:b8:93:42:72:c9:77:ce: 14:63:d1:82:6e:38:dd:ea:d1:11:cb:73:25:83:60:51:95:cb: 52:57:7f:b6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU3NEYxMTAvBgNVBAUTKEY2MDJBNjI5M0Y3RTY0OTIwNzdFN0I0RDYwMTYzMDdF RDEyQzFDMzEwHhcNMjYwMzI4MTIxMjE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM3YzVhMi1jZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA84ElUeSaMCiF9wxHj1OSZbDR07Dm+UD2bMIno/WA+yQPgp3bQya7+bV06LRL ZW7pKbyhqBQJeAOqnl7r1CN1cXSQedqo5Yq35bHfVp0x47Lr+nrbzJdUJcf7BW1T UABYsG32fWoioV+gT6He1pYZtLb9Iyl7lxJL7HutyI5mzAclyyd47glkprfmfl1g F2ys+UgM7+Bedt1sddnMIjeo+clpLUHRNAZiPn9tuHnk1YhEv97jKzWauoWVXl72 g/0pRnjHaryYM/iX4u7kzwSV6L9OWF62Ps7KaO1jjv+MFfFgC8Su8pP0G9uAS/Ey xcQRqyzXAwC0cQxz1sB38s8t8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPa3LrO6 prnRM14OTEj6HL4b125MMB8GA1UdIwQYMBaAFPYCpik/fmSSB357TWAWMH7RLBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTc0Ri8xRTE1NzAzODYz OEIxMUVEQjEwM0MwMkNDNEY5QUUwMi85Z0ttS1Q5LVpKSUhmbnROWUJZd2Z0RXNI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlnS21LVDktWkpJSGZudE5ZQll3ZnRFc0hERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU3NEYvMUUxNTcwMzg2MzhCMTFFREIxMDNDMDJDQzRGOUFFMDIvNUQ0QTU5RTIy QTlGMTFGMUI2QzE2RDQ0OUI4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3HEMA0GCSqGSIb3DQEBCwUAA4IBAQAvGonKWWjMqRb9OPQvj+zL fZRrcBih1Su0j1Yxv/rzfmPFjVI0ScZib85CaBQo6YYzq2km3shXufbRhfuUl2u1 n5YwwUuiEKybEeoABuy4/xDCYAJZYcHFmc7lP4CmMCKl00HvAGU+khUpu4Fvxedj jQU6pdjuYEcwb85oUjPonrHvMGpR7OwXQ7HZq1lA1CI/O867HTcCouxS2PHq6WAa l5sQzD7ffL6cx3ujH1UJSajVHy6BILkO7xRVksRAue1tMlEsAHeAWAIAW53B8hGq jp6KYMYiIYPmhIIu0x1wpj1U4LiTQnLJd84UY9GCbjjd6tERy3Mlg2BRlctSV3+2 -----END CERTIFICATE-----Generated at Mon Apr 6 10:04:53 2026 by rpki-client