$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa File: 551036FCF1CA11EFA1495230C4F9AE02.roa (raw, json) Hash identifier: ph9mjxQXcLl4fEECl4pEGWMTp7mLbB/lR7kFkW96rzY= Subject key identifier: 35:C4:AB:28:3E:0C:8E:7B:EE:02:9A:E7:7C:E7:11:3B:76:37:AC:1D Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 0205 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:58:59 +0000 ROA not before: Sat 03 Jan 2026 03:25:51 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 40676 IP address blocks: 103.79.76.0/22 maxlen: 22 103.79.76.0/24 maxlen: 24 103.79.77.0/24 maxlen: 24 103.79.78.0/24 maxlen: 24 103.79.79.0/24 maxlen: 24 103.79.118.0/24 maxlen: 24 103.91.144.0/24 maxlen: 24 103.91.145.0/24 maxlen: 24 103.216.162.0/23 maxlen: 23 202.91.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 03:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C, serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Jan 3 03:25:51 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47e63-6f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:93:96:e6:f8:a9:f3:86:cc:ae:7a:ce:d8: 95:d9:6a:36:03:eb:21:54:50:1e:d5:21:ce:fe:61: bb:22:6e:4b:d9:e8:1a:b5:7a:61:8c:f7:e7:f6:40: 88:79:6b:e3:da:9c:ec:3b:db:8b:fc:d3:5f:0a:8f: 66:20:42:19:76:d5:56:5b:db:19:3a:ee:bc:c7:80: 3f:a7:00:c8:fe:89:11:5f:53:be:02:b6:36:65:a1: ce:35:88:68:63:43:d5:c7:6d:31:93:b2:32:39:c3: 29:9a:a1:b5:e5:d2:53:dc:66:da:bb:53:64:db:04: 5c:7c:ff:d7:45:8c:13:35:0a:2c:1b:4d:d9:08:a2: 18:6a:5a:f3:4d:98:93:07:82:b1:c9:05:bf:5e:dd: 7c:d4:6e:e5:29:ab:f5:b7:e9:4e:58:4e:06:92:00: 00:b9:ef:fa:80:74:07:d5:cb:b2:b2:90:7f:f3:ee: a1:b4:3b:3a:7c:06:27:99:af:30:d2:8f:dd:24:5b: 3e:f1:ea:da:04:70:42:86:0f:99:13:da:00:86:a8: af:02:22:9f:00:42:0c:a5:e8:31:cd:3c:5c:25:23: c2:7c:96:9d:26:67:a0:65:b5:68:a2:d9:99:1d:a1: 10:c3:96:fc:99:51:e6:7f:26:53:9e:05:a5:df:ff: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C4:AB:28:3E:0C:8E:7B:EE:02:9A:E7:7C:E7:11:3B:76:37:AC:1D X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.76.0/22 103.79.118.0/24 103.91.144.0/23 103.216.162.0/23 202.91.32.0/24 Signature Algorithm: sha256WithRSAEncryption 71:8d:80:d7:5b:8d:74:bf:cd:79:60:c5:c4:02:fc:36:b9:b7: cc:6c:89:a9:31:92:57:cc:ef:f8:13:89:66:fd:cf:11:c9:08: c8:7f:55:72:1d:b1:c7:a1:77:8d:ea:7c:3e:09:b2:ab:b0:47: ee:c8:f2:78:03:3d:ee:2b:18:b9:2f:0a:af:f8:18:35:8a:5d: 85:81:7a:f4:8e:c0:ca:31:0a:1e:5c:eb:95:f4:76:62:9e:46: 12:1e:f6:36:5a:50:62:f6:bf:2d:bb:92:53:c5:94:0b:dc:19: 97:69:37:bb:1c:0b:ac:f1:eb:2d:a3:8d:6c:84:8f:1e:4c:5f: 6b:c3:dd:ed:55:e0:ff:7d:5a:5d:4d:e6:16:00:a8:2e:ca:d6: c6:75:24:78:a7:ac:d7:31:e1:51:cc:a6:18:a1:87:b7:1f:0b: 9c:4d:de:13:f6:bc:a4:9d:56:aa:17:47:40:76:af:ad:69:f1: f9:30:09:78:80:fb:9a:b5:51:4a:7e:fc:56:26:27:e1:0f:33: 9d:93:66:d8:15:8f:56:b5:47:d0:e5:27:56:ee:8f:bc:b5:b5: 59:b8:43:7d:07:16:3f:74:44:d4:17:01:c9:d0:4c:ea:3e:b9: e0:e4:68:39:e2:f0:f2:f4:7a:7d:fd:f1:23:eb:88:cb:6a:3e: b8:31:11:c6 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjYwMTAzMDMyNTUxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2U2My02Zjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRaTlub4qfOGzK56ztiV2Wo2A+shVFAe1SHO/mG7Im5L2egatXphjPfn9kCI eWvj2pzsO9uL/NNfCo9mIEIZdtVWW9sZOu68x4A/pwDI/okRX1O+ArY2ZaHONYho Y0PVx20xk7IyOcMpmqG15dJT3Gbau1Nk2wRcfP/XRYwTNQosG03ZCKIYalrzTZiT B4KxyQW/Xt181G7lKav1t+lOWE4GkgAAue/6gHQH1cuyspB/8+6htDs6fAYnma8w 0o/dJFs+8eraBHBChg+ZE9oAhqivAiKfAEIMpegxzTxcJSPCfJadJmegZbVootmZ HaEQw5b8mVHmfyZTngWl3/9n1QIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFDXEqyg+ DI577gKa53znETt2N6wdMB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVEMkMvMDAzNzNDNkM5QkJDMTFFRTg1MUFERDUwQzRGOUFFMDIvNTUxMDM2RkNG MUNBMTFFRkExNDk1MjMwQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZ09MAwQAZ092AwQBZ1uQAwQBZ9iiAwQAylsgMA0GCSqGSIb3DQEB CwUAA4IBAQBxjYDXW410v815YMXEAvw2ubfMbImpMZJXzO/4E4lm/c8RyQjIf1Vy HbHHoXeN6nw+CbKrsEfuyPJ4Az3uKxi5Lwqv+Bg1il2FgXr0jsDKMQoeXOuV9HZi nkYSHvY2WlBi9r8tu5JTxZQL3BmXaTe7HAus8esto41shI8eTF9rw93tVeD/fVpd TeYWAKguytbGdSR4p6zXMeFRzKYYoYe3HwucTd4T9ryknVaqF0dAdq+tafH5MAl4 gPuatVFKfvxWJifhDzOdk2bYFY9WtUfQ5SdW7o+8tbVZuEN9BxY/dETUFwHJ0Ezq Prng5Gg54vDy9Hp9/fEj64jLaj64MRHG -----END CERTIFICATE-----Generated at Tue Mar 17 20:31:24 2026 by rpki-client