$ rpki-client -vvf rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa File: 3FCB43D2FB2911EF8A116D76C4F9AE02.roa (raw, json) Hash identifier: 84ASJMCrMoi7PK4zvDtisPYOg9pKPSCuFlmrdGVSIRg= Subject key identifier: 93:F4:73:D1:34:7E:FE:4E:08:D6:25:95:6D:9B:31:C8:02:D5:B6:9F Certificate issuer: /CN=A919F026/serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Certificate serial: DD Authority key identifier: BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:14:57 +0000 ROA not before: Thu 14 Aug 2025 11:45:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23532 IP address blocks: 103.103.64.0/23 maxlen: 24 163.61.208.0/23 maxlen: 24 2001:df5:20c0::/48 maxlen: 48 2402:1da0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 05:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F026, serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Validity Not Before: Aug 14 11:45:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a59b61-d87f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:3c:31:95:47:e8:48:59:e3:48:0a:cd:4a: 86:c1:a1:75:c4:71:76:af:02:c4:a9:aa:58:cb:06: eb:81:7b:9b:ca:65:cb:fc:98:d0:e6:86:cb:85:0e: d6:52:21:74:14:6f:ef:0f:11:b3:f0:cd:2d:56:d9: a8:e4:c5:20:37:69:c6:0a:35:8e:48:e3:9b:16:2d: 14:7e:6e:18:9d:f6:05:9c:d6:15:67:91:e8:d8:69: 50:70:58:dd:62:99:ff:c5:49:b6:c1:a6:dd:84:c9: 71:bd:0a:6c:f2:21:cb:89:e5:49:3b:44:e5:43:02: 57:87:c0:ba:6c:a5:cc:23:c6:e4:ff:9a:78:2a:ba: 77:ee:1b:b7:e6:ab:fe:5a:46:fc:41:5d:92:20:20: ca:cf:ec:e4:5c:e8:33:75:bd:f0:72:5b:50:fe:21: 2b:4b:47:9d:c4:e5:be:0a:1b:e3:d2:8f:e0:a7:cc: 31:06:00:4e:a2:ac:7f:b4:91:6f:e3:69:ba:4c:fa: e8:47:5f:0a:b2:3a:9f:2d:02:41:e7:5b:91:6d:c1: 57:78:e6:5f:94:e5:e4:26:3f:c9:04:30:e9:a6:df: 4a:92:47:ee:35:48:58:e2:75:02:54:66:35:cc:34: 8f:b4:c8:7c:83:be:e4:bc:e0:6d:82:69:e2:b0:64: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F4:73:D1:34:7E:FE:4E:08:D6:25:95:6D:9B:31:C8:02:D5:B6:9F X509v3 Authority Key Identifier: keyid:BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/3FCB43D2FB2911EF8A116D76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.103.64.0/23 163.61.208.0/23 IPv6: 2001:df5:20c0::/48 2402:1da0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:ce:2a:7f:ae:e9:6a:93:c0:fa:53:7f:93:a6:08:31:2d:74: 6c:67:2e:2d:ff:8a:05:ff:ad:da:43:91:f3:0a:48:ca:e1:b1: 73:94:b2:5d:0b:37:88:cf:b1:c9:d7:bd:c0:9c:2e:e3:67:e4: c2:ce:eb:58:ba:72:a8:20:49:31:da:86:8b:1e:81:06:6b:e0: 5e:3b:4a:2a:aa:e7:4e:12:11:62:d7:b9:b1:88:c2:1a:f5:b1: ed:ee:7a:38:86:5e:6a:d4:b4:8b:ff:44:92:8a:18:f8:3f:8c: 35:d4:0c:90:61:63:52:79:7b:5e:e3:ee:08:60:30:a6:5f:8c: bd:5f:ce:2b:09:90:51:92:8c:13:b5:d4:de:5f:d9:3d:30:61: 40:6b:b0:00:52:94:f4:2b:43:74:20:cf:78:b0:85:c7:ca:05: 2f:7d:24:80:5f:e0:93:39:ff:1f:46:79:6e:b9:67:cc:80:f3: 78:5c:aa:2e:d8:e5:ad:0b:30:72:82:6a:71:9b:44:62:4b:e6: b6:f9:e5:43:6d:d7:e1:7d:35:5d:61:b2:24:4e:91:0c:20:bb: 0c:10:0b:f1:ef:bb:fc:bc:af:52:e6:bd:d3:94:ab:b2:a1:a1: 35:8b:f2:f0:96:b6:67:96:ec:e1:0d:8a:ee:eb:e0:8a:54:13: b1:29:39:86 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwMjYxMTAvBgNVBAUTKEJENzlBQzc2NDBDOTU1QzQzNUM4Q0Y1NUMyOTFGMTIy QjcwRTJGOTkwHhcNMjUwODE0MTE0NTE0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWI2MS1kODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVE8MZVH6EhZ40gKzUqGwaF1xHF2rwLEqapYywbrgXubymXL/JjQ5obLhQ7W UiF0FG/vDxGz8M0tVtmo5MUgN2nGCjWOSOObFi0Ufm4YnfYFnNYVZ5Ho2GlQcFjd Ypn/xUm2wabdhMlxvQps8iHLieVJO0TlQwJXh8C6bKXMI8bk/5p4Krp37hu35qv+ Wkb8QV2SICDKz+zkXOgzdb3wcltQ/iErS0edxOW+Chvj0o/gp8wxBgBOoqx/tJFv 42m6TProR18KsjqfLQJB51uRbcFXeOZflOXkJj/JBDDppt9KkkfuNUhY4nUCVGY1 zDSPtMh8g77kvOBtgmnisGQzAwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFJP0c9E0 fv5OCNYllW2bMcgC1bafMB8GA1UdIwQYMBaAFL15rHZAyVXENcjPVcKR8SK3Di+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjAyNi8zQkFBQUM0NEZC MjgxMUVGOTU5RkM3NzRDNEY5QUUwMi92WG1zZGtESlZjUTF5TTlWd3BIeElyY09M NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZYbXNka0RKVmNRMXlNOVZ3cEh4SXJjT0w1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwMjYvM0JBQUFDNDRGQjI4MTFFRjk1OUZDNzc0QzRGOUFFMDIvM0ZDQjQzRDJG QjI5MTFFRjhBMTE2RDc2QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAS BAIAATAMAwQBZ2dAAwQBoz3QMBYEAgACMBADBwAgAQ31IMADBQAkAh2gMA0GCSqG SIb3DQEBCwUAA4IBAQA7zip/rulqk8D6U3+TpggxLXRsZy4t/4oF/63aQ5HzCkjK 4bFzlLJdCzeIz7HJ173AnC7jZ+TCzutYunKoIEkx2oaLHoEGa+BeO0oqqudOEhFi 17mxiMIa9bHt7no4hl5q1LSL/0SSihj4P4w11AyQYWNSeXte4+4IYDCmX4y9X84r CZBRkowTtdTeX9k9MGFAa7AAUpT0K0N0IM94sIXHygUvfSSAX+CTOf8fRnluuWfM gPN4XKou2OWtCzBygmpxm0RiS+a2+eVDbdfhfTVdYbIkTpEMILsMEAvx77v8vK9S 5r3TlKuyoaE1i/LwlrZnluzhDYru6+CKVBOxKTmG -----END CERTIFICATE-----Generated at Thu Mar 19 19:28:38 2026 by rpki-client