$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa File: 1190361AAF1B11E7B89F3883C4F9AE02.roa (raw, json) Hash identifier: bfiGLOqg6WEf/R0XNy4/HeNqzd36AQk5hmCgwfazvuk= Subject key identifier: CD:80:5B:5D:30:EE:AA:5C:B5:D4:58:14:5C:4A:E6:03:04:5A:A2:E6 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 3542 Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa Signing time: Thu 02 Apr 2026 16:13:29 +0000 ROA not before: Thu 02 Apr 2026 16:13:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56172 IP address blocks: 103.1.5.0/24 maxlen: 24 103.98.134.0/24 maxlen: 24 103.136.52.0/23 maxlen: 23 103.136.52.0/24 maxlen: 24 103.136.53.0/24 maxlen: 24 2001:df0:400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13634 (0x3542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63, serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: Apr 2 16:13:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69ce95a9-709b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1e:a8:11:5c:f9:3d:b4:03:9b:f9:ea:38:5e: 4f:cf:3b:ab:ea:e0:28:dc:48:99:a2:cd:7f:6d:1b: 3b:e4:b2:34:25:cc:ad:dc:bf:9e:1b:19:4b:0b:2d: 27:55:a0:6e:e6:60:9b:09:38:68:8e:cc:63:b0:88: d6:94:a8:c6:6f:8e:55:21:76:30:a5:93:e2:a7:82: 55:57:f2:ca:4b:d1:9e:f8:c7:2d:56:88:a6:a2:b5: 76:5c:5e:ce:56:8c:fe:81:c1:10:a2:17:29:01:fd: 86:66:fe:be:3f:4c:72:30:66:46:c8:43:1a:83:58: 09:a6:f5:99:c3:60:87:92:63:6b:a3:84:b2:c1:f3: 15:ec:ea:65:f3:c9:0f:b4:07:1c:c5:be:36:fb:79: be:ba:d1:de:63:ca:ca:9f:65:2c:53:f3:da:ba:14: 22:2b:95:fd:4b:e6:7f:83:91:d2:8c:4a:1a:dd:44: b2:72:f0:63:2b:2c:cb:d5:db:06:fb:39:e2:cc:66: 0a:a2:0c:7e:03:b2:e5:37:f4:17:20:a0:17:46:d7: 5b:26:c9:af:db:69:f9:3d:d3:47:46:55:1a:40:32: e2:7c:af:77:20:82:6d:ba:8f:a2:93:c3:27:1d:49: 31:7e:9f:79:b1:05:25:7e:17:bc:36:bf:1e:e8:eb: b6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:80:5B:5D:30:EE:AA:5C:B5:D4:58:14:5C:4A:E6:03:04:5A:A2:E6 X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/1190361AAF1B11E7B89F3883C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.1.5.0/24 103.98.134.0/24 103.136.52.0/23 IPv6: 2001:df0:400::/48 Signature Algorithm: sha256WithRSAEncryption 3c:b0:4a:7a:1c:1b:1b:f4:5f:33:ac:d6:e7:3d:7b:cc:2f:d9: 0c:95:5d:4f:2c:22:d9:59:57:7e:33:1e:c2:b4:59:ba:15:6f: c5:23:52:b9:84:27:5c:d2:58:42:36:a3:8d:ee:ec:d1:37:3d: 8d:66:b6:86:5b:ea:70:7e:7a:c3:92:18:78:1f:1f:84:98:3f: e7:60:21:b7:7a:cd:07:8c:69:8d:24:5b:93:ae:e7:42:e5:7c: 2b:4d:60:04:84:38:ce:a1:68:ec:30:4b:1c:89:13:89:d4:97: f4:d8:c7:fd:47:f1:a6:d8:51:51:70:62:12:b0:c9:97:75:0f: ef:fd:6c:6e:33:05:88:7e:38:78:60:ca:77:06:e9:27:70:88: 01:c9:ac:93:59:15:a4:3c:3a:75:2c:59:d9:86:2d:95:07:ae: f6:d9:3e:a0:52:5d:8a:6c:53:7f:2e:f1:8b:6b:bb:c8:c9:a1: ae:cb:73:93:11:66:ea:af:c4:97:58:2a:8c:9f:81:f0:a8:3b: 61:64:b3:a3:6b:7a:40:fa:17:60:45:f0:2c:d0:24:c3:68:a7: 4c:03:c4:c5:02:68:04:d2:30:c6:e7:ef:64:33:04:92:5b:09: 54:ac:15:b2:91:34:81:68:2d:65:ca:21:14:0f:f7:93:b2:37: 36:d6:59:08 -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICNUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjYwNDAyMTYxMzI5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlOTVhOS03MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtR6oEVz5PbQDm/nqOF5Pzzur6uAo3EiZos1/bRs75LI0Jcyt3L+eGxlLCy0n VaBu5mCbCThojsxjsIjWlKjGb45VIXYwpZPip4JVV/LKS9Ge+MctVoimorV2XF7O Voz+gcEQohcpAf2GZv6+P0xyMGZGyEMag1gJpvWZw2CHkmNro4SywfMV7Opl88kP tAccxb42+3m+utHeY8rKn2UsU/PauhQiK5X9S+Z/g5HSjEoa3USycvBjKyzL1dsG +znizGYKogx+A7LlN/QXIKAXRtdbJsmv22n5PdNHRlUaQDLifK93IIJtuo+ik8Mn HUkxfp95sQUlfhe8Nr8e6Ou2rwIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFM2AW10w 7qpctdRYFFxK5gMEWqLmMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NCNjMvRTFCMDU0RkMxREE3MTFFMkI2ODhFQkExMDhCMDJDRDIvMTE5MDM2MUFB RjFCMTFFN0I4OUYzODgzQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQAZwEFAwQAZ2KGAwQBZ4g0MA8EAgACMAkDBwAgAQ3wBAAwDQYJKoZI hvcNAQELBQADggEBADywSnocGxv0XzOs1uc9e8wv2QyVXU8sItlZV34zHsK0WboV b8UjUrmEJ1zSWEI2o43u7NE3PY1mtoZb6nB+esOSGHgfH4SYP+dgIbd6zQeMaY0k W5Ou50LlfCtNYASEOM6haOwwSxyJE4nUl/TYx/1H8abYUVFwYhKwyZd1D+/9bG4z BYh+OHhgyncG6SdwiAHJrJNZFaQ8OnUsWdmGLZUHrvbZPqBSXYpsU38u8Ytru8jJ oa7Lc5MRZuqvxJdYKoyfgfCoO2Fks6NrekD6F2BF8CzQJMNop0wDxMUCaATSMMbn 72QzBJJbCVSsFbKRNIFoLWXKIRQP95OyNzbWWQg= -----END CERTIFICATE-----Generated at Mon Apr 6 10:09:31 2026 by rpki-client