$ rpki-client -vvf rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa File: 995AA100551611E9BDD3CB66C4F9AE02.roa (raw, json) Hash identifier: BQWQGkvS6+dv+lH0TyP8ATO3aXbiPe0D5KK0TeyfHfM= Subject key identifier: D4:0A:AF:EB:9A:02:C9:F7:37:97:35:FC:25:67:D7:9A:66:FB:0A:1D Certificate issuer: /CN=A912190F/serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Certificate serial: 10C5 Authority key identifier: 34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa Signing time: Thu 26 Mar 2026 17:21:53 +0000 ROA not before: Thu 26 Mar 2026 17:21:53 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138699 IP address blocks: 103.136.220.0/24 maxlen: 24 103.136.221.0/24 maxlen: 24 103.136.222.0/24 maxlen: 24 103.136.223.0/24 maxlen: 24 118.26.132.0/24 maxlen: 24 2404:9dc0:c002::/48 maxlen: 48 2404:9dc0:cd01::/48 maxlen: 48 2404:9dc0:cd02::/48 maxlen: 48 2404:9dc0:cd03::/48 maxlen: 48 2404:9dc0:cd04::/48 maxlen: 48 2404:9dc0:cd05::/48 maxlen: 48 2404:9dc0:cd06::/48 maxlen: 48 2404:9dc0:cd07::/48 maxlen: 48 2404:9dc0:cd08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4293 (0x10c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912190F, serialNumber=344FB499A6A37D26329AB7D5FF526251098E5DF2 Validity Not Before: Mar 26 17:21:53 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c56b31-942f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ff:0c:cf:a9:8a:9e:26:1a:71:d4:78:62:be: 57:cb:b0:24:a6:9d:cd:95:68:ed:50:68:77:ee:b0: 36:fa:06:ff:e9:7d:4e:32:8f:64:e5:37:2e:44:8b: b5:66:7c:98:fd:fa:f0:07:40:db:5a:9d:b6:66:16: 4a:ad:53:d6:a2:e3:bb:0d:19:9e:07:a4:5a:b0:5f: 5b:c5:69:96:43:60:56:be:09:b4:21:8d:1f:83:6f: 5d:39:03:b0:e5:a9:f0:92:28:5f:06:6d:92:1e:ed: 2e:63:2d:27:03:b3:57:06:df:4c:88:ae:98:60:bd: 67:cb:50:2a:c9:a5:1d:5a:15:06:2d:f1:67:f6:69: 45:5f:63:19:e1:bc:55:f8:78:ba:4c:a9:bf:3b:2d: 04:e7:bf:2c:e0:8b:79:00:01:90:d6:2a:31:86:b1: 32:f5:07:ae:5a:a3:75:3f:c3:4e:34:38:96:db:0d: 30:9e:6b:26:48:95:8e:32:04:8f:c3:b7:e8:b6:a0: 5d:b4:95:f1:8c:f7:a4:68:15:af:92:a5:8a:3c:9e: 28:15:4b:b5:5a:64:b5:5f:a3:36:4d:69:53:cb:c3: e3:e0:15:cd:c3:4e:76:1b:d1:5a:d0:f0:48:6a:79: 01:f4:02:bb:53:c6:fe:0c:37:69:6a:e5:16:07:44: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:0A:AF:EB:9A:02:C9:F7:37:97:35:FC:25:67:D7:9A:66:FB:0A:1D X509v3 Authority Key Identifier: keyid:34:4F:B4:99:A6:A3:7D:26:32:9A:B7:D5:FF:52:62:51:09:8E:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/NE-0maajfSYymrfV_1JiUQmOXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NE-0maajfSYymrfV_1JiUQmOXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912190F/6CC0F9F447B111E99FCCA059C4F9AE02/995AA100551611E9BDD3CB66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.136.220.0/22 118.26.132.0/24 IPv6: 2404:9dc0:c002::/48 2404:9dc0:cd01::-2404:9dc0:cd08:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0f:c9:78:1c:54:96:ba:64:4f:c0:68:84:f5:db:8c:51:c6:40: 0e:4b:33:1e:ce:b0:99:6a:6f:ed:72:04:d0:2b:7a:c4:b8:5f: 01:ae:0c:eb:03:e5:f2:5e:61:77:22:86:3e:43:a0:25:a6:a6: 35:b3:98:e4:ac:82:87:08:b5:41:1d:ad:e4:b5:49:6b:c4:9e: 34:49:dd:03:14:e0:d4:e9:bf:61:76:d7:c3:17:6f:81:ca:f6: 3c:89:76:d9:a5:13:6d:c5:4f:78:fb:25:80:d0:78:77:b8:c1: 9c:0a:9b:ec:db:9c:92:fa:9f:cd:86:84:07:8e:4b:66:ff:b7: 72:9a:d6:d4:3b:76:bf:0e:66:c4:a5:8d:4c:69:29:8b:9c:5c: f3:84:0a:41:b9:9c:14:6f:ac:d2:2a:ec:98:57:6e:79:f1:2a: 05:bf:76:5a:8f:49:bc:3c:ef:b5:85:72:76:5b:e2:40:a6:87: c3:c8:98:91:84:37:fd:b5:0a:dc:b4:00:c8:5d:e8:cd:3c:12: 12:7c:f0:e7:e9:49:1e:0f:1d:65:d0:e8:fb:bc:13:21:f3:a2: dc:12:33:7d:36:ba:06:72:bd:fd:e1:e3:fe:a3:dc:ed:f0:b6: d1:49:86:de:7d:c9:e7:e3:86:8b:9e:5d:f0:44:c1:3a:3f:a7: 12:ca:3c:a7 -----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgICEMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE5MEYxMTAvBgNVBAUTKDM0NEZCNDk5QTZBMzdEMjYzMjlBQjdENUZGNTI2MjUx MDk4RTVERjIwHhcNMjYwMzI2MTcyMTUzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1NmIzMS05NDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/8Mz6mKniYacdR4Yr5Xy7Akpp3NlWjtUGh37rA2+gb/6X1OMo9k5TcuRIu1 ZnyY/frwB0DbWp22ZhZKrVPWouO7DRmeB6RasF9bxWmWQ2BWvgm0IY0fg29dOQOw 5anwkihfBm2SHu0uYy0nA7NXBt9MiK6YYL1ny1AqyaUdWhUGLfFn9mlFX2MZ4bxV +Hi6TKm/Oy0E578s4It5AAGQ1ioxhrEy9QeuWqN1P8NONDiW2w0wnmsmSJWOMgSP w7fotqBdtJXxjPekaBWvkqWKPJ4oFUu1WmS1X6M2TWlTy8Pj4BXNw052G9Fa0PBI ankB9AK7U8b+DDdpauUWB0QwiwIDAQABo4ICizCCAocwHQYDVR0OBBYEFNQKr+ua Asn3N5c1/CVn15pm+wodMB8GA1UdIwQYMBaAFDRPtJmmo30mMpq31f9SYlEJjl3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTkwRi82Q0MwRjlGNDQ3 QjExMUU5OUZDQ0EwNTlDNEY5QUUwMi9ORS0wbWFhamZTWXltcmZWXzFKaVVRbU9Y ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FLTBtYWFqZlNZeW1yZlZfMUppVVFtT1hmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE5MEYvNkNDMEY5RjQ0N0IxMTFFOTlGQ0NBMDU5QzRGOUFFMDIvOTk1QUExMDA1 NTE2MTFFOUJERDNDQjY2QzRGOUFFMDIucm9hMEoGCCsGAQUFBwEHAQH/BDswOTAS BAIAATAMAwQCZ4jcAwQAdhqEMCMEAgACMB0DBwAkBJ3AwAIwEgMHACQEncDNAQMH ACQEncDNCDANBgkqhkiG9w0BAQsFAAOCAQEAD8l4HFSWumRPwGiE9duMUcZADksz Hs6wmWpv7XIE0Ct6xLhfAa4M6wPl8l5hdyKGPkOgJaamNbOY5KyChwi1QR2t5LVJ a8SeNEndAxTg1Om/YXbXwxdvgcr2PIl22aUTbcVPePslgNB4d7jBnAqb7Nuckvqf zYaEB45LZv+3cprW1Dt2vw5mxKWNTGkpi5xc84QKQbmcFG+s0irsmFduefEqBb92 Wo9JvDzvtYVydlviQKaHw8iYkYQ3/bUK3LQAyF3ozTwSEnzw5+lJHg8dZdDo+7wT IfOi3BIzfTa6BnK9/eHj/qPc7fC20UmG3n3J5+OGi55d8ETBOj+nEso8pw== -----END CERTIFICATE-----Generated at Fri Mar 27 07:09:20 2026 by rpki-client