$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa File: 5431D022524211ECA52D990FC4F9AE02.roa (raw, json) Hash identifier: OxBZXjM5WU3mTzBTkJpk2hM02aP7JRhZY0bot56cYO4= Subject key identifier: 69:A1:2A:7F:EB:E1:07:55:2A:ED:0C:92:52:80:FC:F2:4D:0E:81:E1 Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 04F5 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa Signing time: Mon 16 Mar 2026 23:31:31 +0000 ROA not before: Mon 16 Mar 2026 23:31:31 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133934 IP address blocks: 103.48.208.0/24 maxlen: 24 103.48.209.0/24 maxlen: 24 103.48.210.0/24 maxlen: 24 103.48.211.0/24 maxlen: 24 2402:b280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Mar 16 23:31:31 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b892d3-dfc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:66:62:b3:39:07:2e:5f:89:52:a9:c6:4e:18: 27:e3:91:d5:ed:03:89:5b:6a:db:9d:db:28:6c:3d: ee:61:01:9c:3a:c2:e3:70:88:01:5b:97:f4:c8:8d: 73:cd:c4:fa:0f:d9:3c:40:5c:7b:6d:b6:74:9a:61: be:c7:b8:e6:01:36:f7:00:5f:09:43:4f:4e:d3:ab: 8b:4b:77:6f:e2:f8:59:43:65:aa:54:c1:0a:7b:02: ac:a4:ad:1e:2d:1a:b3:30:e3:1f:ab:e1:cd:1c:a5: c0:66:6b:73:49:97:45:ea:6c:b9:08:dc:2b:35:be: 92:1c:b8:59:7c:d3:92:ee:d3:19:ab:5f:60:fd:4e: 41:c1:e9:0a:f9:a8:06:67:51:ed:fc:bb:f6:06:58: 03:0f:87:ca:8d:f2:1c:35:c8:ff:6f:29:07:9f:b1: ed:8f:fc:97:06:82:aa:b4:67:20:50:24:e7:94:bf: a3:4d:58:14:a7:6b:83:d0:d8:f9:5a:9f:8f:bb:89: 26:36:08:97:e1:5f:07:f0:5c:d4:c0:d5:7a:ea:86: 2c:27:9a:ef:d9:fb:2f:fd:85:9c:59:73:5d:e4:62: 4a:12:de:b3:6d:d0:dc:f9:e7:c3:62:4e:57:c5:9d: 46:df:a0:1e:d7:5b:1f:41:a6:72:cb:87:a9:7d:8e: 4e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A1:2A:7F:EB:E1:07:55:2A:ED:0C:92:52:80:FC:F2:4D:0E:81:E1 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.48.208.0/22 IPv6: 2402:b280::/32 Signature Algorithm: sha256WithRSAEncryption be:6c:38:ba:55:2d:75:3e:2e:4a:6f:e7:10:82:08:a6:60:7a: 7b:43:9d:de:9d:5f:8d:da:6b:8e:18:92:38:b8:74:57:e1:c4: d7:db:92:09:70:c5:1b:b1:91:a3:bf:38:54:c6:39:dc:ef:b4: 1d:e0:5d:4d:9f:a5:e9:75:02:69:07:d4:72:cd:30:6b:75:a0: 30:1f:ab:e6:c7:8b:79:16:39:0b:fd:5b:47:82:d6:52:45:2f: 3e:41:59:da:4f:34:09:7b:e5:dd:c0:79:c0:3f:41:7d:6a:94: bf:45:c2:de:d0:e4:c3:50:10:36:ec:a3:10:4b:02:fd:0c:21: 1a:2a:28:0e:24:13:48:26:89:e6:0e:3f:3c:13:a8:f9:85:dc: 4a:f0:2c:2b:d6:d6:c9:16:36:31:97:2e:30:c3:cc:a0:8a:ba: 55:a6:51:d0:57:e8:30:44:88:f8:dc:b0:c8:8c:13:3b:9f:bb: c5:1a:93:67:5c:b1:00:83:bc:de:ab:41:68:24:45:50:fb:6d: 7a:5a:d6:35:ef:6f:5c:92:6a:35:76:bf:32:ea:56:00:8c:84: 3d:d1:7a:51:4b:9b:50:a0:52:b7:96:04:5c:ce:bc:08:fb:e7: 78:81:12:b1:fc:5b:f4:95:46:79:20:a5:c6:8e:02:ab:21:c2: 7f:26:1f:c8 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjYwMzE2MjMzMTMxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4OTJkMy1kZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmZiszkHLl+JUqnGThgn45HV7QOJW2rbndsobD3uYQGcOsLjcIgBW5f0yI1z zcT6D9k8QFx7bbZ0mmG+x7jmATb3AF8JQ09O06uLS3dv4vhZQ2WqVMEKewKspK0e LRqzMOMfq+HNHKXAZmtzSZdF6my5CNwrNb6SHLhZfNOS7tMZq19g/U5BwekK+agG Z1Ht/Lv2BlgDD4fKjfIcNcj/bykHn7Htj/yXBoKqtGcgUCTnlL+jTVgUp2uD0Nj5 Wp+Pu4kmNgiX4V8H8FzUwNV66oYsJ5rv2fsv/YWcWXNd5GJKEt6zbdDc+efDYk5X xZ1G36Ae11sfQaZyy4epfY5O8QIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGmhKn/r 4QdVKu0MklKA/PJNDoHhMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3MUEvMDVCRDBGMzA1MjQwMTFFQzg2NTgwNjBFQzRGOUFFMDIvNTQzMUQwMjI1 MjQyMTFFQ0E1MkQ5OTBGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZzDQMA0EAgACMAcDBQAkArKAMA0GCSqGSIb3DQEBCwUAA4IBAQC+ bDi6VS11Pi5Kb+cQggimYHp7Q53enV+N2muOGJI4uHRX4cTX25IJcMUbsZGjvzhU xjnc77Qd4F1Nn6XpdQJpB9RyzTBrdaAwH6vmx4t5FjkL/VtHgtZSRS8+QVnaTzQJ e+XdwHnAP0F9apS/RcLe0OTDUBA27KMQSwL9DCEaKigOJBNIJonmDj88E6j5hdxK 8Cwr1tbJFjYxly4ww8ygirpVplHQV+gwRIj43LDIjBM7n7vFGpNnXLEAg7zeq0Fo JEVQ+216WtY1729ckmo1dr8y6lYAjIQ90XpRS5tQoFK3lgRczrwI++d4gRKx/Fv0 lUZ5IKXGjgKrIcJ/Jh/I -----END CERTIFICATE-----Generated at Mon Mar 23 05:05:53 2026 by rpki-client