$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/41C8C708244111F1AF80D04DBB833773.roa File: 41C8C708244111F1AF80D04DBB833773.roa (raw, json) Hash identifier: P0OVA8RnrCkxwGNC5Oj/FAk/vhkA7eOmVQFaY4OMLYg= Subject key identifier: 8B:CD:A3:DC:B4:41:86:8D:CC:B1:84:EA:54:43:C5:95:28:5C:B8:99 Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: DD Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/41C8C708244111F1AF80D04DBB833773.roa Signing time: Fri 20 Mar 2026 09:43:32 +0000 ROA not before: Fri 20 Mar 2026 09:43:32 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 133588 IP address blocks: 103.237.52.0/24 maxlen: 24 2001:df6:1440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Mar 20 09:43:32 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69bd16c4-0bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:6c:39:48:5f:6d:87:80:42:c5:83:f7:e3: 9e:eb:26:ec:45:77:e9:9c:a6:47:bd:d5:6f:1a:4f: b4:aa:f3:95:51:9b:d2:10:80:a5:60:d0:af:60:95: 16:ae:f3:9c:69:94:d2:ae:d0:ed:31:7a:9e:c7:2e: 53:68:0f:08:52:e8:99:58:cc:a1:db:c0:99:da:d4: 75:3f:fb:ce:8a:60:97:6f:34:50:4b:c0:6c:ad:89: 45:e1:ee:04:ed:ce:05:9f:79:bb:a0:15:03:1d:94: 89:23:3e:91:af:e0:ea:79:8c:ee:a3:fd:f8:52:ca: 38:5c:e1:69:cd:84:ec:93:9e:f4:35:52:37:0f:f3: 4e:3f:c0:26:46:01:d9:aa:c6:32:ff:7e:81:5c:65: 36:a8:7e:ff:12:d7:f9:8d:1d:08:7d:95:53:f3:ce: e3:a0:6c:1c:9f:72:47:2e:8f:24:95:36:c3:02:c9: 3a:ec:d7:48:de:a2:a4:32:88:92:99:5a:ce:60:5e: 7b:ce:e1:d8:8c:87:7c:ff:64:7e:0b:8b:f1:e2:ef: 99:d4:2a:fa:c4:ca:4f:21:14:b1:86:de:bb:2c:f3: 9f:6e:fd:a0:95:07:4e:a6:10:80:17:d3:e1:c5:e1: ac:ef:f3:ee:c7:b2:ef:2b:b7:85:39:51:e7:04:00: ce:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CD:A3:DC:B4:41:86:8D:CC:B1:84:EA:54:43:C5:95:28:5C:B8:99 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/41C8C708244111F1AF80D04DBB833773.roa sbgp-ipAddrBlock: critical IPv4: 103.237.52.0/24 IPv6: 2001:df6:1440::/48 Signature Algorithm: sha256WithRSAEncryption 0e:22:03:46:f2:8d:a7:64:ee:df:2c:f3:73:e6:6f:0f:bb:ae: 2a:40:a0:69:65:83:d6:c3:2f:b5:93:e2:69:f7:57:9e:04:03: 83:d0:29:44:b8:ea:f4:1d:1b:ae:0e:bf:9d:be:f6:69:a1:36: 72:c1:70:68:f8:10:d2:35:08:45:a2:61:af:df:08:56:07:38: 9f:0a:db:af:07:fa:7a:c2:55:d3:d2:75:0d:6f:0f:5c:87:ef: 80:35:91:de:53:54:de:cb:1f:58:d5:17:cf:61:f9:08:58:fc: 13:0d:a8:df:e0:a5:6f:9a:76:b8:41:c8:21:2b:da:2d:c0:26: 65:78:22:0d:e0:22:65:f9:d3:ed:94:8f:16:8d:6f:a2:f7:5c: 8e:77:14:f7:08:87:13:7d:92:45:ef:0c:d0:21:8f:c7:b7:27: ef:ac:b7:58:26:ad:32:ce:d9:0a:33:02:3c:40:96:d3:fc:f1: 77:ba:3a:c0:2d:bd:6f:ac:28:db:7a:00:fa:c1:55:94:71:40: 6f:48:1e:07:ed:8a:b3:73:f9:fc:6f:fe:c1:26:46:c3:44:62: 00:ec:72:80:81:8c:65:7f:ca:95:b0:1f:65:86:64:84:c0:03: 3b:db:18:e7:f9:03:fe:1b:3a:cd:10:cb:4b:6b:21:dd:d4:44: b5:c6:07:ad -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDIxMTAvBgNVBAUTKDM4NkMzMDBFRDcyRjEyQjkwNTQ3OEEzM0NFRjI3Nzk5 MjU0QTY5MUMwHhcNMjYwMzIwMDk0MzMyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJkMTZjNC0wYmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9VsOUhfbYeAQsWD9+Oe6ybsRXfpnKZHvdVvGk+0qvOVUZvSEIClYNCvYJUW rvOcaZTSrtDtMXqexy5TaA8IUuiZWMyh28CZ2tR1P/vOimCXbzRQS8BsrYlF4e4E 7c4Fn3m7oBUDHZSJIz6Rr+DqeYzuo/34Uso4XOFpzYTsk570NVI3D/NOP8AmRgHZ qsYy/36BXGU2qH7/Etf5jR0IfZVT887joGwcn3JHLo8klTbDAsk67NdI3qKkMoiS mVrOYF57zuHYjId8/2R+C4vx4u+Z1Cr6xMpPIRSxht67LPOfbv2glQdOphCAF9Ph xeGs7/Pux7LvK7eFOVHnBADOqQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIvNo9y0 QYaNzLGE6lRDxZUoXLiZMB8GA1UdIwQYMBaAFDhsMA7XLxK5BUeKM87yd5klSmkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwMi84N0MzRkQwQUZC MjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVya0ZSNG96enZKM21TVkth UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDIvODdDM0ZEMEFGQjI5MTFFRkI3NjZEQzc2QzRGOUFFMDIvNDFDOEM3MDgy NDQxMTFGMUFGODBEMDREQkI4MzM3NzMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ+00MA8EAgACMAkDBwAgAQ32FEAwDQYJKoZIhvcNAQELBQADggEB AA4iA0byjadk7t8s83Pmbw+7ripAoGllg9bDL7WT4mn3V54EA4PQKUS46vQdG64O v52+9mmhNnLBcGj4ENI1CEWiYa/fCFYHOJ8K268H+nrCVdPSdQ1vD1yH74A1kd5T VN7LH1jVF89h+QhY/BMNqN/gpW+adrhByCEr2i3AJmV4Ig3gImX50+2UjxaNb6L3 XI53FPcIhxN9kkXvDNAhj8e3J++st1gmrTLO2QozAjxAltP88Xe6OsAtvW+sKNt6 APrBVZRxQG9IHgftirNz+fxv/sEmRsNEYgDscoCBjGV/ypWwH2WGZITAAzvbGOf5 A/4bOs0Qy0trId3URLXGB60= -----END CERTIFICATE-----Generated at Thu Mar 26 11:42:54 2026 by rpki-client