$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa File: C3FEC56C855711EB871D267FC4F9AE02.roa (raw, json) Hash identifier: g/1Fb0+415aOuzRJPo8ER5eYukpXTWcbaMdvlH/TvCs= Subject key identifier: 95:50:49:2D:11:F7:1C:A6:DA:AD:DC:81:CA:7A:5F:2D:BC:ED:70:2C Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 06F4 Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:44:52 +0000 ROA not before: Thu 04 Sep 2025 23:03:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58505 IP address blocks: 43.245.176.0/24 maxlen: 24 43.245.177.0/24 maxlen: 24 43.245.178.0/23 maxlen: 23 103.4.172.0/24 maxlen: 24 103.4.173.0/24 maxlen: 24 103.13.84.0/24 maxlen: 24 103.13.85.0/24 maxlen: 24 2001:df0:26b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1780 (0x6f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Sep 4 23:03:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40a94-ad89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7a:1b:7b:8b:aa:90:4f:1d:dc:e9:2a:a9:ea: 9d:b9:c2:90:37:ed:35:47:b4:82:de:70:13:93:5c: 64:6e:a4:36:19:5f:b9:07:7e:7f:46:fe:b7:f8:75: 4c:d8:ed:e3:d4:c7:8b:cc:9d:75:19:f3:1f:39:a4: 45:79:d0:7d:79:88:bb:3f:f4:9a:94:77:70:45:7f: 58:c5:fd:b5:1e:10:ca:97:51:a4:61:17:8a:c3:f1: 4c:4d:68:e5:41:e3:25:9a:90:a0:6e:41:43:c1:5a: 7a:1f:45:fd:7d:c9:69:74:54:09:b8:e2:35:ec:8d: 56:26:00:b6:92:42:45:f6:5b:34:fd:d5:48:f5:04: 68:74:c1:79:70:b7:af:1b:a4:d8:b3:ab:ca:42:ad: 15:b0:6c:e4:65:31:4d:7d:db:56:d1:e3:10:b1:aa: e2:2b:18:50:5e:f4:30:bf:56:18:ff:5e:29:08:bf: 2e:6c:3c:a6:a2:d2:d2:cd:dc:e4:a6:8d:67:be:8e: 00:4b:04:16:49:24:2b:2d:01:26:03:e9:0e:67:c0: 38:5c:18:fc:56:ce:07:5b:46:f9:60:1f:86:8b:04: e4:a6:9b:43:11:72:24:b6:72:5c:44:8b:44:31:d6: b1:88:57:ce:19:66:80:dc:d7:8c:54:64:68:01:94: 91:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:50:49:2D:11:F7:1C:A6:DA:AD:DC:81:CA:7A:5F:2D:BC:ED:70:2C X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/C3FEC56C855711EB871D267FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.245.176.0/22 103.4.172.0/23 103.13.84.0/23 IPv6: 2001:df0:26b::/48 Signature Algorithm: sha256WithRSAEncryption 1c:2b:25:87:72:33:2b:c0:87:ed:b9:b4:3d:50:e1:31:ed:fd: 05:3a:0b:4d:ea:47:36:72:13:c3:cf:b8:a5:4a:db:74:58:b1: 95:84:42:5e:4e:24:c1:b9:f7:69:9d:3e:38:e6:7c:8c:37:e5: 68:8d:f9:cc:f4:e1:83:db:7c:36:c1:67:43:5d:35:d6:79:90: 34:6b:32:b4:5a:8a:a8:3a:a5:dd:2a:08:5f:06:0d:2a:01:44: fd:8d:16:a9:b2:de:9b:a9:55:bf:85:66:38:81:0a:a3:4b:da: 27:c1:46:2a:92:33:fe:43:46:2a:cd:ed:b3:ba:a3:a4:1a:3f: ed:d9:6b:4f:02:7c:a6:c7:90:fc:2b:b2:39:c6:bb:20:5e:f0: 4b:07:b6:90:e1:83:7d:01:37:d9:42:a1:1e:bb:82:02:5f:42: 1a:7e:0a:7f:cc:bd:46:f4:73:bc:7f:d5:15:cb:79:8b:f4:88: 2f:d8:e5:60:cd:96:e2:6f:7a:01:bd:43:75:dc:91:c4:ee:77: 54:2a:b6:30:f1:40:88:89:d2:0f:0d:ed:96:f1:6d:e2:c0:bc: 68:83:96:3d:8d:7a:5e:e8:cc:29:f7:10:53:44:02:8d:5a:3d: f6:a4:0e:8f:4a:31:23:34:b6:55:81:21:c3:b2:6a:9b:fd:a0: 53:b5:9f:4f -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwOTA0MjMwMzUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGE5NC1hZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXobe4uqkE8d3OkqqeqducKQN+01R7SC3nATk1xkbqQ2GV+5B35/Rv63+HVM 2O3j1MeLzJ11GfMfOaRFedB9eYi7P/SalHdwRX9Yxf21HhDKl1GkYReKw/FMTWjl QeMlmpCgbkFDwVp6H0X9fclpdFQJuOI17I1WJgC2kkJF9ls0/dVI9QRodMF5cLev G6TYs6vKQq0VsGzkZTFNfdtW0eMQsariKxhQXvQwv1YY/14pCL8ubDymotLSzdzk po1nvo4ASwQWSSQrLQEmA+kOZ8A4XBj8Vs4HW0b5YB+GiwTkpptDEXIktnJcRItE MdaxiFfOGWaA3NeMVGRoAZSRdwIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFJVQSS0R 9xym2q3cgcp6Xy287XAsMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkwMkUvNTdBRkRCMjg4NTU1MTFFQjk0QzIyMTVGQzRGOUFFMDIvQzNGRUM1NkM4 NTU3MTFFQjg3MUQyNjdGQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQCK/WwAwQBZwSsAwQBZw1UMA8EAgACMAkDBwAgAQ3wAmswDQYJKoZI hvcNAQELBQADggEBABwrJYdyMyvAh+25tD1Q4THt/QU6C03qRzZyE8PPuKVK23RY sZWEQl5OJMG592mdPjjmfIw35WiN+cz04YPbfDbBZ0NdNdZ5kDRrMrRaiqg6pd0q CF8GDSoBRP2NFqmy3pupVb+FZjiBCqNL2ifBRiqSM/5DRirN7bO6o6QaP+3Za08C fKbHkPwrsjnGuyBe8EsHtpDhg30BN9lCoR67ggJfQhp+Cn/MvUb0c7x/1RXLeYv0 iC/Y5WDNluJvegG9Q3XckcTud1QqtjDxQIiJ0g8N7ZbxbeLAvGiDlj2Nel7ozCn3 EFNEAo1aPfakDo9KMSM0tlWBIcOyapv9oFO1n08= -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:23 2026 by rpki-client