$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa File: 3408F1BA450811F09650FF5FC4F9AE02.roa (raw, json) Hash identifier: LgIHG0W8PH+BYBIWZChDxWTeWm+mE0UsFagnNkGmodQ= Subject key identifier: EF:20:35:4C:67:08:18:1E:D5:21:2D:BC:96:98:19:3D:67:D3:72:32 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: DD Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:20:09 +0000 ROA not before: Mon 09 Jun 2025 08:03:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 401696 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Jun 9 08:03:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5aaa9-3ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:49:5a:f9:02:21:a9:1c:08:97:94:c6:08:c1: f9:38:d3:46:e2:8d:74:ac:0d:48:e5:87:9d:a8:97: 0d:82:54:3c:67:b6:5a:e0:74:b0:ec:fd:ef:67:e3: 3c:01:6c:2c:a9:af:3f:7e:c5:14:65:14:60:3b:33: fc:9e:01:7b:c6:11:b5:79:28:3b:75:53:55:7d:34: b2:63:ee:f6:16:d0:fa:f4:da:38:70:15:b8:67:0c: 09:06:f1:e9:9c:d1:2a:2d:49:28:77:73:10:91:15: 90:ae:13:89:d5:98:b4:e2:76:d4:e6:51:c3:48:b6: f8:e3:b0:47:6b:e9:0b:9a:00:3b:f5:2d:95:39:47: b4:aa:78:b0:38:f0:61:b4:70:35:15:fa:4a:4c:03: af:9c:8e:bd:a2:63:53:c3:00:d6:b0:d7:e1:ec:73: ee:f6:08:99:62:29:54:9c:fd:c3:77:47:b6:22:0d: 3b:38:b5:b6:bb:6b:c8:74:1b:c8:f2:29:30:e7:40: d7:46:ed:18:dc:32:9d:db:90:ce:c1:d3:35:0a:1a: c7:dd:f9:92:c6:d0:d5:48:17:a1:f7:de:79:8b:2d: 0c:d8:b0:9a:cf:47:ae:b2:04:22:f2:82:20:c8:80: 4d:02:fc:62:c9:cc:47:66:b2:33:d7:64:8b:02:66: 67:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:20:35:4C:67:08:18:1E:D5:21:2D:BC:96:98:19:3D:67:D3:72:32 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/3408F1BA450811F09650FF5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 22:72:d8:e5:7e:c0:de:1f:1a:95:b6:3a:41:93:49:33:66:7e: c9:2d:bf:f1:09:b4:3f:43:fa:ab:49:89:63:d4:5d:dd:44:a9: f9:0e:a8:7d:46:99:0a:5e:f3:e0:5e:16:be:f1:30:7f:f2:8d: 51:73:17:38:b1:42:eb:ff:0e:3b:32:ee:d5:d1:43:f4:45:78: 29:5c:26:17:8d:c4:8e:34:36:26:a9:fa:5e:2e:c3:c2:18:1a: eb:e0:64:19:3b:e9:2a:f3:41:66:5c:4c:13:9c:c5:03:29:3a: 89:24:cf:11:3b:78:ed:63:1a:9e:35:18:17:71:85:58:24:db: 22:56:5d:4d:27:3c:43:12:a6:7c:06:d1:19:fc:70:01:ac:ac: e7:db:73:93:92:4d:94:89:2d:1a:0e:5a:8f:59:ea:8f:5a:98: ea:95:a2:80:4b:e6:05:6c:f6:21:1d:c9:89:39:1e:3b:cf:da: e5:e3:e6:43:09:31:c3:25:42:1f:21:36:e4:6b:ac:dd:d1:5c: 60:91:de:84:60:38:39:87:d1:33:21:35:f3:0d:37:9f:38:65: 38:70:bf:17:3c:40:76:85:f9:72:3b:2b:42:73:54:28:80:75: 72:be:ad:6c:d0:ec:67:1c:1c:97:b0:fd:7e:a9:b1:19:f6:50: 40:7d:35:a1 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI0M0YxMTAvBgNVBAUTKDE4OTY3RENEQjcyNEE4NEE3MTcxMUU2NzhBQUIxRDJF NzIyMTVENkMwHhcNMjUwNjA5MDgwMzE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWFhOS0zZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Ula+QIhqRwIl5TGCMH5ONNG4o10rA1I5YedqJcNglQ8Z7Za4HSw7P3vZ+M8 AWwsqa8/fsUUZRRgOzP8ngF7xhG1eSg7dVNVfTSyY+72FtD69No4cBW4ZwwJBvHp nNEqLUkod3MQkRWQrhOJ1Zi04nbU5lHDSLb447BHa+kLmgA79S2VOUe0qniwOPBh tHA1FfpKTAOvnI69omNTwwDWsNfh7HPu9giZYilUnP3Dd0e2Ig07OLW2u2vIdBvI 8ikw50DXRu0Y3DKd25DOwdM1ChrH3fmSxtDVSBeh9955iy0M2LCaz0eusgQi8oIg yIBNAvxiycxHZrIz12SLAmZnPQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFO8gNUxn CBge1SEtvJaYGT1n03IyMB8GA1UdIwQYMBaAFBiWfc23JKhKcXEeZ4qrHS5yIV1s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjQzRi9ENjg0RkMyRTFB OEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi9HSlo5emJja3FFcHhjUjVuaXFzZExuSWhY V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI0M0YvRDY4NEZDMkUxQThCMTFGMDlDQzI0NTM1QzRGOUFFMDIvMzQwOEYxQkE0 NTA4MTFGMDk2NTBGRjVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZ3WIAwQCZ3lcAwQBZ7rWMA0GCSqGSIb3DQEBCwUAA4IBAQAictjl fsDeHxqVtjpBk0kzZn7JLb/xCbQ/Q/qrSYlj1F3dRKn5Dqh9RpkKXvPgXha+8TB/ 8o1Rcxc4sULr/w47Mu7V0UP0RXgpXCYXjcSONDYmqfpeLsPCGBrr4GQZO+kq80Fm XEwTnMUDKTqJJM8RO3jtYxqeNRgXcYVYJNsiVl1NJzxDEqZ8BtEZ/HABrKzn23OT kk2UiS0aDlqPWeqPWpjqlaKAS+YFbPYhHcmJOR47z9rl4+ZDCTHDJUIfITbka6zd 0Vxgkd6EYDg5h9EzITXzDTefOGU4cL8XPEB2hflyOytCc1QogHVyvq1s0OxnHByX sP1+qbEZ9lBAfTWh -----END CERTIFICATE-----Generated at Wed Mar 4 14:22:29 2026 by rpki-client