$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/5F7685142CA811F1BD4A3469C6833773.roa File: 5F7685142CA811F1BD4A3469C6833773.roa (raw, json) Hash identifier: 1LSfp7hXsSm6wdz0BXmx5yD2/iLKKMt13t4PnmZLbew= Subject key identifier: 2C:A2:EF:8B:42:0B:01:9A:41:03:93:0A:A5:A7:DA:B1:8B:48:59:48 Certificate issuer: /CN=A912A3C4/serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Certificate serial: 0999 Authority key identifier: 95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/5F7685142CA811F1BD4A3469C6833773.roa Signing time: Tue 31 Mar 2026 02:22:03 +0000 ROA not before: Tue 31 Mar 2026 02:22:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.5.88.0/22 maxlen: 24 103.60.216.0/24 maxlen: 24 103.150.248.0/23 maxlen: 24 103.240.222.0/23 maxlen: 24 202.90.41.0/24 maxlen: 24 2406:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3C4, serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Validity Not Before: Mar 31 02:22:03 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69cb2fca-3e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:b5:66:6d:20:b6:ad:a7:90:37:f9:11:25: e2:17:5e:34:d3:c6:f8:af:c6:83:31:23:e3:01:7f: b1:0d:54:ea:0d:5f:6b:5d:9c:52:0b:98:0e:b0:b4: 0b:a7:29:32:a7:5c:4b:ba:c2:f4:9a:b0:fc:60:c7: 74:27:a3:3c:db:00:4f:79:97:76:53:7e:10:73:5a: 47:b2:e9:4e:f3:41:58:e8:6a:c1:62:69:f4:d7:e8: 72:40:70:28:bf:78:3a:24:31:b9:48:67:c0:a4:ba: 55:6f:9f:0f:10:ab:69:df:7d:8a:b5:bd:9d:fc:d1: 71:cc:17:40:27:c4:b3:e0:ac:c9:a5:30:32:d7:88: b8:ad:16:f5:b9:8c:62:ce:b8:05:cb:20:57:ad:23: cd:af:e4:d4:20:85:43:55:2b:b5:cd:15:37:79:10: 1a:e9:4a:be:58:b7:f2:4f:59:31:da:9a:27:d6:cd: db:11:01:49:87:b8:40:c9:53:0c:66:a2:bb:18:06: a6:06:57:78:29:e0:28:3a:98:e1:18:ba:e0:58:b4: 0d:84:67:43:07:95:15:c1:09:a9:ce:43:eb:8a:39: bc:fd:d7:40:87:df:27:51:d4:53:98:5a:10:05:f2: 0c:e8:07:b3:86:26:53:42:33:2f:f9:c6:4e:19:06: 0a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A2:EF:8B:42:0B:01:9A:41:03:93:0A:A5:A7:DA:B1:8B:48:59:48 X509v3 Authority Key Identifier: keyid:95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/5F7685142CA811F1BD4A3469C6833773.roa sbgp-ipAddrBlock: critical IPv4: 103.5.88.0/22 103.60.216.0/24 103.150.248.0/23 103.240.222.0/23 202.90.41.0/24 IPv6: 2406:fc0::/32 Signature Algorithm: sha256WithRSAEncryption a0:ec:0c:49:4b:e8:c3:6f:cf:22:c3:29:77:4f:d9:bc:30:5e: 72:92:56:44:39:27:38:0a:e3:9f:43:4a:c1:e0:ef:31:32:ce: 3d:f0:1d:79:1f:88:e9:3a:b7:88:00:41:77:b9:9c:9f:f6:58: 80:0d:a8:b2:8f:86:31:82:66:9b:fe:0e:2e:08:fe:48:e6:94: 29:cd:d8:b0:c9:f1:bb:ad:59:53:33:53:86:0e:3c:b7:67:50: d8:fc:b4:5f:dd:22:c4:87:b4:6b:2e:cd:b9:23:f6:ee:83:92: 07:3a:d7:0d:87:e9:98:c2:d2:dc:7f:af:9c:6d:8b:6e:93:eb: c3:a9:ab:5e:07:6e:37:d7:66:84:97:50:5f:0e:ed:93:42:ab: 89:c1:a1:2c:5c:20:91:47:b8:34:aa:cc:02:09:8b:16:91:a8: 68:c5:56:26:3b:42:a9:5d:9c:59:ee:70:ad:65:98:f7:64:8c: c9:57:45:b0:7b:aa:7e:5a:18:92:92:03:51:1a:b1:53:84:5d: b3:de:5a:90:36:3e:75:99:12:dc:20:9b:99:88:d7:44:c3:7c: 9b:ab:d0:0b:aa:c2:fb:80:ea:95:fb:20:e0:c2:d1:ec:6c:9b: 0b:4d:98:b7:b5:90:4b:2c:54:0d:93:fb:e9:25:9b:e8:1a:a5: 13:e2:46:7d -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQzQxMTAvBgNVBAUTKDk1MjNBRDI1RUNBRDVDQzUyNUVDNDJFOUVDMURBRTRG REZEODYwNTcwHhcNMjYwMzMxMDIyMjAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiMmZjYS0zZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8+1Zm0gtq2nkDf5ESXiF14008b4r8aDMSPjAX+xDVTqDV9rXZxSC5gOsLQL pykyp1xLusL0mrD8YMd0J6M82wBPeZd2U34Qc1pHsulO80FY6GrBYmn01+hyQHAo v3g6JDG5SGfApLpVb58PEKtp332Ktb2d/NFxzBdAJ8Sz4KzJpTAy14i4rRb1uYxi zrgFyyBXrSPNr+TUIIVDVSu1zRU3eRAa6Uq+WLfyT1kx2pon1s3bEQFJh7hAyVMM ZqK7GAamBld4KeAoOpjhGLrgWLQNhGdDB5UVwQmpzkPrijm8/ddAh98nUdRTmFoQ BfIM6AezhiZTQjMv+cZOGQYKkQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFCyi74tC CwGaQQOTCqWn2rGLSFlIMB8GA1UdIwQYMBaAFJUjrSXsrVzFJexC6ewdrk/f2GBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNDNC8zRUU2NEMxQUIx MDQxMUVBQTM4NDE2NUFDNEY5QUUwMi9sU090SmV5dFhNVWw3RUxwN0IydVQ5X1lZ RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTT3RKZXl0WE1VbDdFTHA3QjJ1VDlfWVlGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQzQvM0VFNjRDMUFCMTA0MTFFQUEzODQxNjVBQzRGOUFFMDIvNUY3Njg1MTQy Q0E4MTFGMUJENEEzNDY5QzY4MzM3NzMucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCZwVYAwQAZzzYAwQBZ5b4AwQBZ/DeAwQAylopMA0EAgACMAcDBQAk Bg/AMA0GCSqGSIb3DQEBCwUAA4IBAQCg7AxJS+jDb88iwyl3T9m8MF5yklZEOSc4 CuOfQ0rB4O8xMs498B15H4jpOreIAEF3uZyf9liADaiyj4Yxgmab/g4uCP5I5pQp zdiwyfG7rVlTM1OGDjy3Z1DY/LRf3SLEh7RrLs25I/bug5IHOtcNh+mYwtLcf6+c bYtuk+vDqateB24312aEl1BfDu2TQquJwaEsXCCRR7g0qswCCYsWkahoxVYmO0Kp XZxZ7nCtZZj3ZIzJV0Wwe6p+WhiSkgNRGrFThF2z3lqQNj51mRLcIJuZiNdEw3yb q9ALqsL7gOqV+yDgwtHsbJsLTZi3tZBLLFQNk/vpJZvoGqUT4kZ9 -----END CERTIFICATE-----Generated at Mon Apr 6 11:29:44 2026 by rpki-client