$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa File: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (raw, json) Hash identifier: xhNjPqA73OpL8U8u4dVTjHBcy8FV6vJPVW6N4NhLK5I= Subject key identifier: 8E:AD:55:D4:3C:2B:BB:3E:0A:74:C3:80:90:AF:BC:57:62:E6:0D:F4 Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 097B Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:03:33 +0000 ROA not before: Mon 02 Jun 2025 21:06:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.118.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 19:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2427 (0x97b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Jun 2 21:06:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a44735-3345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b8:b5:ee:7a:6a:8d:08:ee:88:0d:57:4d:2b: 78:9e:10:ee:e7:7e:da:98:05:ec:c5:63:c2:f2:5a: 43:1d:e4:8d:0e:c7:12:3a:5d:e9:c1:1a:d1:12:6d: 00:ff:73:fa:30:97:6d:1c:30:16:02:e7:b0:e6:12: c9:9d:6b:9a:a9:c4:49:4a:05:14:9a:69:8d:af:8c: a0:6e:21:85:b5:85:05:97:ef:b2:9e:44:1e:31:32: fb:75:eb:de:d5:9c:ad:93:6b:f5:7c:1e:4d:99:3f: 76:f5:e0:4a:00:da:2e:58:43:d6:e0:c6:5f:a6:63: cd:ec:f5:8b:76:61:84:36:94:ad:c3:1b:49:80:1e: b9:58:6c:b0:12:03:9e:f2:93:a4:de:a1:91:9b:e1: 2b:6e:31:34:6a:58:18:3e:1c:09:36:86:75:eb:b6: 61:4d:21:d1:bc:15:f9:81:15:fc:57:a3:c8:dd:1f: 69:05:54:ea:7a:54:8a:39:e4:12:10:90:ec:ad:93: 37:96:14:e9:b2:fb:a1:df:bb:8a:58:27:01:66:04: 0d:fd:4a:08:a1:98:60:b8:5f:93:c0:b2:df:92:74: 2e:e0:a8:17:90:ea:ef:e7:4b:a0:1f:b5:a2:57:fe: f2:8b:dc:98:8f:c2:e7:ac:32:34:e5:0c:98:bd:61: f9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AD:55:D4:3C:2B:BB:3E:0A:74:C3:80:90:AF:BC:57:62:E6:0D:F4 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.118.48.0/23 Signature Algorithm: sha256WithRSAEncryption a3:fa:d7:17:ec:d7:6a:ff:5f:8f:fb:b4:95:43:ca:25:bd:40: 2e:3a:2c:f0:fa:a0:72:66:77:5d:34:f2:b7:dc:9b:7c:56:dc: 0a:07:e5:69:5d:3c:b5:2f:3b:5a:3e:ca:12:d0:4f:5f:da:45: c2:28:1f:ad:c4:dd:b9:f7:bc:a0:02:5d:9b:13:38:23:ea:83: fb:37:7d:53:e2:d7:4f:0c:21:4d:76:ad:46:c9:f3:77:5d:eb: 6e:c7:88:51:2f:13:8d:86:47:26:d8:04:53:54:a0:8c:06:3f: 81:4a:6d:23:b5:c9:ad:60:b8:ee:c0:cd:ab:ba:7d:67:6f:2b: 5a:bb:35:f8:70:f2:a8:bc:06:42:22:c3:1a:aa:36:b3:9f:3a: fa:c1:64:69:10:2a:7d:c4:2a:7f:a9:69:fa:0a:7b:ef:10:ea: ff:be:17:14:60:16:1b:1e:19:bc:4f:3b:4f:cc:de:fc:8b:8d: 10:a3:5c:1a:69:9c:f5:19:0b:b8:6a:ac:15:86:d1:38:19:7f: 99:d8:b7:ae:10:1f:d9:53:ea:bd:d6:a2:9e:33:a0:42:6e:32: d1:db:b0:bb:38:51:c8:eb:a8:55:f7:8d:82:86:49:09:6c:e2: 15:3b:07:b5:25:71:65:3a:47:b9:08:d0:98:1c:f3:72:58:9f: cf:d9:f5:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUwNjAyMjEwNjAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDczNS0zMzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLi17npqjQjuiA1XTSt4nhDu537amAXsxWPC8lpDHeSNDscSOl3pwRrREm0A /3P6MJdtHDAWAuew5hLJnWuaqcRJSgUUmmmNr4ygbiGFtYUFl++ynkQeMTL7deve 1Zytk2v1fB5NmT929eBKANouWEPW4MZfpmPN7PWLdmGENpStwxtJgB65WGywEgOe 8pOk3qGRm+ErbjE0algYPhwJNoZ167ZhTSHRvBX5gRX8V6PI3R9pBVTqelSKOeQS EJDsrZM3lhTpsvuh37uKWCcBZgQN/UoIoZhguF+TwLLfknQu4KgXkOrv50ugH7Wi V/7yi9yYj8LnrDI05QyYvWH5dQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI6tVdQ8 K7s+CnTDgJCvvFdi5g30MB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQxOEYvNzVCOTBEMjRBRkI4MTFFQUE3NkU1RTdCQzRGOUFFMDIvM0JFRjE4MjBB RkJBMTFFQTg0NDlCOTgwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3YwMA0GCSqGSIb3DQEBCwUAA4IBAQCj+tcX7Ndq/1+P+7SVQ8ol vUAuOizw+qByZnddNPK33Jt8VtwKB+VpXTy1LztaPsoS0E9f2kXCKB+txN2597yg Al2bEzgj6oP7N31T4tdPDCFNdq1GyfN3Xetux4hRLxONhkcm2ARTVKCMBj+BSm0j tcmtYLjuwM2run1nbytauzX4cPKovAZCIsMaqjaznzr6wWRpECp9xCp/qWn6Cnvv EOr/vhcUYBYbHhm8TztPzN78i40Qo1waaZz1GQu4aqwVhtE4GX+Z2LeuEB/ZU+q9 1qKeM6BCbjLR27C7OFHI66hV942ChkkJbOIVOwe1JXFlOke5CNCYHPNyWJ/P2fWk -----END CERTIFICATE-----Generated at Wed Mar 18 19:39:43 2026 by rpki-client