$ rpki-client -vvf rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa File: 3B428CDA8AE011EF90B73462C4F9AE02.roa (raw, json) Hash identifier: gxgtsWBnEAP6vapnZK0uqNLpyymktd5A/5L7ecDmBUQ= Subject key identifier: F1:35:BC:6D:0B:8B:12:B6:4F:AB:FD:B4:67:35:79:55:C2:41:A0:D1 Certificate issuer: /CN=A916D8D9/serialNumber=031C9C26E5BAB1B01AF18A0BB1B970AB5773456B Certificate serial: 06D4 Authority key identifier: 03:1C:9C:26:E5:BA:B1:B0:1A:F1:8A:0B:B1:B9:70:AB:57:73:45:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:12:44 +0000 ROA not before: Tue 30 Dec 2025 22:18:38 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131275 IP address blocks: 103.79.16.0/24 maxlen: 24 103.79.18.0/24 maxlen: 24 122.50.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.crl rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D8D9, serialNumber=031C9C26E5BAB1B01AF18A0BB1B970AB5773456B Validity Not Before: Dec 30 22:18:38 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4738b-3bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:55:e5:7f:77:20:40:3f:71:0c:1d:8f:4d:7f: 1e:38:e1:43:fd:45:3d:a8:e2:ef:2e:02:48:07:45: 7b:50:47:f1:ae:ae:97:5a:ff:3e:3f:c1:56:24:78: 25:12:26:cd:e8:ed:0c:00:f4:bd:1b:a8:b4:47:52: ac:42:cc:61:78:cc:fe:15:7b:78:1d:9a:e1:72:1c: 37:be:84:41:44:ea:ed:18:82:cc:07:12:5e:f3:39: ad:77:bb:88:cc:c2:1e:02:2d:33:09:51:e7:04:0e: df:8e:99:b5:a0:ee:75:09:f5:90:5c:12:48:eb:91: 79:3f:24:0c:d2:5f:a0:f4:57:05:a6:31:7d:2f:be: 18:cf:a9:12:5e:4e:98:0f:7f:cc:b4:f4:f9:dd:d6: f2:6a:fd:98:40:9c:93:59:66:b3:5a:fb:7b:86:c0: 4e:cf:4a:cd:bd:70:a8:ff:24:33:0d:52:4f:a5:c1: 64:96:2b:ea:af:55:89:cc:9a:19:4b:83:8b:87:e6: fe:3f:ba:3a:8f:e3:23:1a:d1:f9:e6:db:ea:45:9c: 88:89:84:cb:4a:86:31:95:1a:e1:aa:1b:0a:c1:bf: 72:61:47:d5:60:0d:a6:c4:49:79:06:c7:54:71:47: ef:6f:e4:d5:86:fb:b7:b6:a5:39:4f:ea:d9:99:34: 47:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:35:BC:6D:0B:8B:12:B6:4F:AB:FD:B4:67:35:79:55:C2:41:A0:D1 X509v3 Authority Key Identifier: keyid:03:1C:9C:26:E5:BA:B1:B0:1A:F1:8A:0B:B1:B9:70:AB:57:73:45:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/AxycJuW6sbAa8YoLsblwq1dzRWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AxycJuW6sbAa8YoLsblwq1dzRWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D8D9/5483BFB6C8FB11EBBA5BAE51C4F9AE02/3B428CDA8AE011EF90B73462C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.16.0/24 103.79.18.0/24 122.50.1.0/24 Signature Algorithm: sha256WithRSAEncryption 95:1a:97:3a:ce:ce:33:97:e7:fb:5e:13:ff:3e:87:80:79:00: 62:c6:2f:3d:74:36:16:dc:21:88:58:c9:2d:35:ed:38:ea:79: b9:fd:6c:40:ef:3c:b5:90:41:22:3f:0a:8c:07:b0:42:6c:04: 1d:43:b1:69:88:3e:63:72:d5:86:21:d9:1a:d7:4c:8c:bd:95: a2:26:6b:4c:f6:30:ad:1b:34:24:bb:66:2f:da:2d:61:15:ec: 0a:b7:eb:16:68:bf:5f:af:e0:c9:bf:d9:c3:69:45:4f:e3:bd: 45:83:b3:25:7e:1a:ec:46:0f:3f:91:9d:5c:d1:60:59:ed:20: 77:01:26:3c:b0:bd:98:98:8a:77:96:9c:42:dd:08:2b:9f:32: b6:34:dc:44:9e:3a:d1:cb:bb:1c:08:02:f9:9b:bb:39:a2:8f: e7:ae:bb:c5:52:2a:fd:e8:0c:c1:7e:f1:da:5f:4e:14:5b:06: f2:9e:40:f9:5d:16:33:57:97:4a:0a:e6:01:88:6a:fa:73:6f: 01:89:78:a7:70:c5:87:04:a0:58:38:ef:2c:9d:ed:06:d3:02: d8:40:d4:c0:28:af:2c:27:f1:d3:7e:d5:da:f3:17:56:f2:fb: 18:86:fe:45:6a:aa:c2:27:c3:e0:17:03:06:dd:28:16:73:ff: 42:ca:13:9c -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ4RDkxMTAvBgNVBAUTKDAzMUM5QzI2RTVCQUIxQjAxQUYxOEEwQkIxQjk3MEFC NTc3MzQ1NkIwHhcNMjUxMjMwMjIxODM4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzM4Yi0zYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylXlf3cgQD9xDB2PTX8eOOFD/UU9qOLvLgJIB0V7UEfxrq6XWv8+P8FWJHgl EibN6O0MAPS9G6i0R1KsQsxheMz+FXt4HZrhchw3voRBROrtGILMBxJe8zmtd7uI zMIeAi0zCVHnBA7fjpm1oO51CfWQXBJI65F5PyQM0l+g9FcFpjF9L74Yz6kSXk6Y D3/MtPT53dbyav2YQJyTWWazWvt7hsBOz0rNvXCo/yQzDVJPpcFklivqr1WJzJoZ S4OLh+b+P7o6j+MjGtH55tvqRZyIiYTLSoYxlRrhqhsKwb9yYUfVYA2mxEl5BsdU cUfvb+TVhvu3tqU5T+rZmTRHJQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPE1vG0L ixK2T6v9tGc1eVXCQaDRMB8GA1UdIwQYMBaAFAMcnCblurGwGvGKC7G5cKtXc0Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDhEOS81NDgzQkZCNkM4 RkIxMUVCQkE1QkFFNTFDNEY5QUUwMi9BeHljSnVXNnNiQWE4WW9Mc2Jsd3ExZHpS V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4eWNKdVc2c2JBYThZb0xzYmx3cTFkelJXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ4RDkvNTQ4M0JGQjZDOEZCMTFFQkJBNUJBRTUxQzRGOUFFMDIvM0I0MjhDREE4 QUUwMTFFRjkwQjczNDYyQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ08QAwQAZ08SAwQAejIBMA0GCSqGSIb3DQEBCwUAA4IBAQCVGpc6 zs4zl+f7XhP/PoeAeQBixi89dDYW3CGIWMktNe046nm5/WxA7zy1kEEiPwqMB7BC bAQdQ7FpiD5jctWGIdka10yMvZWiJmtM9jCtGzQku2Yv2i1hFewKt+sWaL9fr+DJ v9nDaUVP471Fg7MlfhrsRg8/kZ1c0WBZ7SB3ASY8sL2YmIp3lpxC3QgrnzK2NNxE njrRy7scCAL5m7s5oo/nrrvFUir96AzBfvHaX04UWwbynkD5XRYzV5dKCuYBiGr6 c28BiXincMWHBKBYOO8sne0G0wLYQNTAKK8sJ/HTftXa8xdW8vsYhv5FaqrCJ8Pg FwMG3SgWc/9CyhOc -----END CERTIFICATE-----Generated at Fri Mar 13 19:35:00 2026 by rpki-client