$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/3A549A1EB00211F0A3A86535C4F9AE02.roa File: 3A549A1EB00211F0A3A86535C4F9AE02.roa (raw, json) Hash identifier: wN2IZ9Tp9dRoIakSTTLA1uLNoPM2YPK4OBU3DnTtTPk= Subject key identifier: E8:30:97:60:A5:DD:80:80:58:60:CB:EC:F8:BF:6C:42:3E:09:35:7B Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 05C3 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/3A549A1EB00211F0A3A86535C4F9AE02.roa Signing time: Mon 02 Mar 2026 04:57:47 +0000 ROA not before: Thu 23 Oct 2025 11:20:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4788 IP address blocks: 103.168.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1475 (0x5c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Oct 23 11:20:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a518cb-7912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:07:10:6e:ad:f2:8d:6c:fc:98:ac:30:87:44: c9:c5:38:36:fb:3f:eb:6b:88:5e:f5:62:89:c6:ef: 15:6a:fe:a0:45:6e:58:5e:ca:35:08:7a:c3:4a:e6: e5:a4:d4:3a:bf:67:53:68:a6:af:78:bc:d3:8c:92: 40:3b:18:0d:b7:ad:78:5a:f6:87:c4:c0:92:fa:e8: c4:f6:b3:29:2b:0e:5c:df:38:99:fb:64:65:05:98: c9:2a:cd:78:e4:a9:88:ea:29:79:f3:cd:af:fc:f4: 08:e0:69:cf:0e:cf:2e:84:08:e8:ea:78:bd:5c:ef: 50:83:55:4a:65:b2:fb:b3:75:4e:7f:7f:4e:96:e4: 2d:f8:95:4d:c4:19:8e:16:cc:c6:3e:7b:5e:6a:1c: a6:a7:e7:6d:71:bd:f1:45:ad:84:cb:9e:aa:f7:46: f3:a3:f1:c4:cb:d3:37:16:55:9a:7d:c5:99:49:e6: ff:51:4a:8b:ec:d6:d1:97:3c:b6:ec:c6:a6:32:7e: fa:86:8a:8d:a5:36:b4:58:80:d4:b3:c1:62:c1:ac: ab:d4:b0:8f:2a:04:64:e9:56:54:df:bb:79:71:88: 17:b7:06:58:7f:eb:14:bc:73:32:79:4e:53:fb:7e: 4d:77:25:fc:e6:d1:39:6e:f3:c3:f2:0b:2e:fe:d7: f5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:30:97:60:A5:DD:80:80:58:60:CB:EC:F8:BF:6C:42:3E:09:35:7B X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/3A549A1EB00211F0A3A86535C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.168.104.0/24 Signature Algorithm: sha256WithRSAEncryption 21:94:7c:fc:c8:28:9b:f6:ba:2b:01:d3:37:74:b4:0e:9d:61: b9:7b:cb:00:a3:8a:2d:06:93:ca:bc:dd:ec:23:d5:5a:e6:b9: af:62:1d:11:60:7e:76:73:13:cc:e5:2f:6a:e7:fb:4b:bc:23: 2e:4a:6f:f8:f4:4d:43:cd:f8:ab:8c:8f:b3:e2:83:12:77:f6: 10:99:5e:67:8d:2b:87:8a:02:28:7f:db:3f:07:0d:c3:e5:d8: 69:a4:6b:b4:7b:7d:10:0d:ee:b4:a0:13:61:8b:f2:f8:51:41: 33:ee:b3:4a:28:20:2a:ae:ad:b2:00:70:9e:b4:b5:68:fc:ea: 08:6f:6a:30:8a:0a:92:a5:5d:25:b6:b0:85:9c:e7:72:d6:5b: 0b:56:00:61:17:a0:c0:d7:b8:32:8f:dd:e9:b1:fc:38:21:1b: 57:02:7b:b1:47:25:ff:dc:c8:0f:70:55:e7:c6:41:63:4f:c7: 04:6e:18:69:b4:4a:68:ed:20:ce:84:56:49:11:8c:cb:6f:5b: 54:95:18:af:92:70:4c:71:6c:18:30:90:57:e2:f1:25:d7:ec: 21:05:ca:56:f6:73:7e:a2:b4:4a:b7:36:06:85:18:df:84:fd: 8d:d4:44:17:12:2d:b6:4a:ca:79:12:92:f0:11:1b:56:79:aa: 38:7a:bb:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUxMDIzMTEyMDA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MThjYi03OTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QcQbq3yjWz8mKwwh0TJxTg2+z/ra4he9WKJxu8Vav6gRW5YXso1CHrDSubl pNQ6v2dTaKaveLzTjJJAOxgNt614WvaHxMCS+ujE9rMpKw5c3ziZ+2RlBZjJKs14 5KmI6il5882v/PQI4GnPDs8uhAjo6ni9XO9Qg1VKZbL7s3VOf39OluQt+JVNxBmO FszGPnteahymp+dtcb3xRa2Ey56q90bzo/HEy9M3FlWafcWZSeb/UUqL7NbRlzy2 7MamMn76hoqNpTa0WIDUs8Fiwayr1LCPKgRk6VZU37t5cYgXtwZYf+sUvHMyeU5T +35NdyX85tE5bvPD8gsu/tf1yQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOgwl2Cl 3YCAWGDL7Pi/bEI+CTV7MB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ5QkUvQjA5QzNDRTIxMTdCMTFFQzgwRTQyMTQzQzRGOUFFMDIvM0E1NDlBMUVC MDAyMTFGMEEzQTg2NTM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6hoMA0GCSqGSIb3DQEBCwUAA4IBAQAhlHz8yCib9rorAdM3dLQO nWG5e8sAo4otBpPKvN3sI9Va5rmvYh0RYH52cxPM5S9q5/tLvCMuSm/49E1Dzfir jI+z4oMSd/YQmV5njSuHigIof9s/Bw3D5dhppGu0e30QDe60oBNhi/L4UUEz7rNK KCAqrq2yAHCetLVo/OoIb2owigqSpV0ltrCFnOdy1lsLVgBhF6DA17gyj93psfw4 IRtXAnuxRyX/3MgPcFXnxkFjT8cEbhhptEpo7SDOhFZJEYzLb1tUlRivknBMcWwY MJBX4vEl1+whBcpW9nN+orRKtzYGhRjfhP2N1EQXEi22Ssp5EpLwERtWeao4ertn -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:53 2026 by rpki-client