$ rpki-client -vvf rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/4BA3FAC8B53311EFACDFC575C4F9AE02.roa File: 4BA3FAC8B53311EFACDFC575C4F9AE02.roa (raw, json) Hash identifier: YSVC2OmaPeg+hkfiwDhK7p7s6vbq47iwF4vLH9/oI98= Subject key identifier: 6D:F3:D4:18:61:40:AD:BA:D5:E3:00:7F:91:8F:6B:61:52:82:A6:C1 Certificate issuer: /CN=A911C20D/serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D Certificate serial: 0170 Authority key identifier: A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/4BA3FAC8B53311EFACDFC575C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:28:42 +0000 ROA not before: Sat 17 May 2025 05:56:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151845 IP address blocks: 103.49.70.0/23 maxlen: 23 103.49.70.0/24 maxlen: 24 103.49.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.crl rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C20D, serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D Validity Not Before: May 17 05:56:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59e9a-db5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:88:d5:01:26:1c:c1:43:5e:0b:bd:58:9c: 9e:4f:92:b3:1b:43:04:9f:d1:d8:c7:eb:98:0b:a2: c2:e6:43:32:be:3e:6a:04:58:9e:19:2a:f7:25:cf: 9c:7a:81:ef:0d:59:8b:23:f5:83:f7:d4:48:96:f6: a1:95:a2:f8:e0:ee:95:d9:9c:9d:a8:5e:2a:4b:78: ab:40:19:40:1a:3b:dd:b9:99:a2:90:35:c2:c8:7c: fa:f6:5a:b0:87:f0:cb:50:ec:19:3e:89:28:6a:c0: ee:b7:5b:83:13:99:aa:3a:e8:69:01:2e:65:af:c1: ec:ab:83:df:29:2f:f6:dd:0f:cd:d1:fc:f4:23:31: 56:86:c2:50:17:fd:5c:bd:65:ef:ca:12:2b:64:c0: f1:84:57:4c:0c:34:af:51:52:62:e5:32:6f:ac:7b: 26:12:52:5f:08:6f:42:7f:41:33:23:70:a7:cb:5f: 30:fb:c9:d7:ca:30:9d:2f:5c:a9:5b:c7:19:30:2e: 59:6a:af:1a:96:ac:22:7c:c7:5c:dc:c0:38:45:6d: d1:e7:66:7d:68:43:ab:e7:91:58:97:e3:f0:d8:ae: ab:67:a5:9d:b0:22:01:95:b9:cf:4a:53:65:12:10: 14:65:c9:76:30:4c:08:56:47:72:11:8b:2f:06:64: b3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F3:D4:18:61:40:AD:BA:D5:E3:00:7F:91:8F:6B:61:52:82:A6:C1 X509v3 Authority Key Identifier: keyid:A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/4BA3FAC8B53311EFACDFC575C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.49.70.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:21:98:11:3f:fd:47:28:4c:6c:d2:36:62:65:d7:65:92:cd: 2c:b3:b3:3a:fa:fe:3c:bf:15:e6:5a:30:38:fb:ae:94:8d:62: e9:74:7e:94:eb:06:67:7e:c3:4c:e9:7c:e3:bd:83:28:f8:6d: a4:ff:70:b3:26:57:f4:8f:49:68:08:3a:4c:31:93:ec:84:c2: 27:4c:8f:cb:96:50:7f:20:62:3d:c2:7a:70:73:2b:5b:e5:7e: 38:c7:a2:f3:b9:46:c0:60:b4:dd:9a:69:f0:fc:ee:2d:43:1c: 20:24:40:10:cb:9b:d8:fb:5a:43:14:f8:4c:c9:2d:18:9e:b1: 5f:d4:e1:aa:37:e0:1f:ad:2e:58:fe:39:4f:06:1c:34:57:5b: d9:f1:8c:32:e5:7a:e0:95:d8:ed:46:0a:6d:af:20:1a:7a:e5: a8:fc:93:b0:54:1f:3e:03:f9:4c:eb:23:c3:68:2b:de:68:1b: f6:aa:fd:66:b3:54:0d:10:12:f1:f9:9b:92:c9:a4:71:0d:f6: 24:f8:0f:30:d6:ee:53:a8:3c:45:dc:d6:d0:ad:46:7e:c2:ae: c4:43:89:19:65:83:18:c7:1f:cd:65:cc:0f:f1:cd:55:76:89: f8:06:db:b4:13:8d:31:d4:a2:2c:0c:f9:4a:66:95:bf:e9:07: 81:0a:f1:62 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyMEQxMTAvBgNVBAUTKEE3NDk3ODhDQjRGNDFGRDg1RTdBQzI2M0M4NzVCN0VB RjJDMEU3OEQwHhcNMjUwNTE3MDU1NjE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWU5YS1kYjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0GI1QEmHMFDXgu9WJyeT5KzG0MEn9HYx+uYC6LC5kMyvj5qBFieGSr3Jc+c eoHvDVmLI/WD99RIlvahlaL44O6V2ZydqF4qS3irQBlAGjvduZmikDXCyHz69lqw h/DLUOwZPokoasDut1uDE5mqOuhpAS5lr8Hsq4PfKS/23Q/N0fz0IzFWhsJQF/1c vWXvyhIrZMDxhFdMDDSvUVJi5TJvrHsmElJfCG9Cf0EzI3Cny18w+8nXyjCdL1yp W8cZMC5Zaq8alqwifMdc3MA4RW3R52Z9aEOr55FYl+Pw2K6rZ6WdsCIBlbnPSlNl EhAUZcl2MEwIVkdyEYsvBmSzBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFG3z1Bhh QK261eMAf5GPa2FSgqbBMB8GA1UdIwQYMBaAFKdJeIy09B/YXnrCY8h1t+rywOeN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzIwRC84ODY4QTExRTAz QTExMUVGODkyNkMwMkFDNEY5QUUwMi9wMGw0akxUMEg5aGVlc0pqeUhXMzZ2TEE1 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AwbDRqTFQwSDloZWVzSmp5SFczNnZMQTU0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyMEQvODg2OEExMUUwM0ExMTFFRjg5MjZDMDJBQzRGOUFFMDIvNEJBM0ZBQzhC NTMzMTFFRkFDREZDNTc1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZzFGMA0GCSqGSIb3DQEBCwUAA4IBAQA6IZgRP/1HKExs0jZiZddl ks0ss7M6+v48vxXmWjA4+66UjWLpdH6U6wZnfsNM6XzjvYMo+G2k/3CzJlf0j0lo CDpMMZPshMInTI/LllB/IGI9wnpwcytb5X44x6LzuUbAYLTdmmnw/O4tQxwgJEAQ y5vY+1pDFPhMyS0YnrFf1OGqN+AfrS5Y/jlPBhw0V1vZ8Ywy5XrgldjtRgptryAa euWo/JOwVB8+A/lM6yPDaCveaBv2qv1ms1QNEBLx+ZuSyaRxDfYk+A8w1u5TqDxF 3NbQrUZ+wq7EQ4kZZYMYxx/NZcwP8c1Vdon4Btu0E40x1KIsDPlKZpW/6QeBCvFi -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:41 2026 by rpki-client