$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/36172D6200E911F18D21A14F396F56BC.roa File: 36172D6200E911F18D21A14F396F56BC.roa (raw, json) Hash identifier: 77EbUdBXNscTbPDQ5ZvSP6ndeE2Lqe+veg3a/HAELsw= Subject key identifier: 87:EE:43:9A:C2:61:DE:EA:05:25:C8:1F:19:6D:06:D4:8E:C0:38:52 Certificate issuer: /CN=A913F8FC/serialNumber=6ADAFBA2996830C51D681C3212D04B5C724C131D Certificate serial: 01AF Authority key identifier: 6A:DA:FB:A2:99:68:30:C5:1D:68:1C:32:12:D0:4B:5C:72:4C:13:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/36172D6200E911F18D21A14F396F56BC.roa Signing time: Sun 01 Mar 2026 18:04:58 +0000 ROA not before: Tue 03 Feb 2026 10:15:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38207 IP address blocks: 103.5.188.0/22 maxlen: 24 110.172.16.0/21 maxlen: 24 219.90.96.0/20 maxlen: 24 2402:4300::/32 maxlen: 32 2402:4300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.crl rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F8FC, serialNumber=6ADAFBA2996830C51D681C3212D04B5C724C131D Validity Not Before: Feb 3 10:15:06 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a47fca-d541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5b:29:b7:95:fa:08:5d:3d:bd:ed:6c:a1:15: 01:d3:13:f5:c7:12:2f:6c:2a:22:f5:94:a7:6b:48: fc:75:c4:02:81:0b:46:2a:5d:ee:8a:a7:6a:7d:8c: fd:b2:56:0f:73:df:54:db:60:9b:a1:cb:e7:68:c6: 1e:c5:76:10:14:b0:39:a3:01:b1:90:9f:84:f2:43: 06:40:9d:03:6f:6f:19:be:83:a5:1d:93:e5:0c:1b: 23:a7:99:c5:94:0f:9b:38:d3:2d:ca:88:13:b3:f8: 6f:2b:94:96:73:b9:cf:61:74:a4:c5:85:ac:5d:b9: fc:0a:36:38:1f:a7:9d:9d:0f:28:02:de:21:a1:5e: 93:4a:0d:31:b4:e6:8d:f9:e8:7e:57:53:5d:83:44: 02:94:01:98:61:4d:b1:9d:fc:99:02:94:02:22:50: b5:0f:d5:b6:e4:73:98:50:bf:88:7c:e2:e7:8c:0c: 66:16:1f:7d:47:7f:58:4a:da:d7:ac:60:3c:1c:05: 37:04:cb:7b:ee:e0:57:43:8e:5b:0d:a9:d6:20:aa: d4:47:aa:d1:45:52:7b:d4:26:7c:eb:09:fc:c6:38: 50:f8:61:2e:ea:28:2d:f5:d4:a4:94:df:8c:9f:c2: 2f:d9:0f:f1:76:01:87:43:ec:4e:3d:ac:59:b8:37: 3b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EE:43:9A:C2:61:DE:EA:05:25:C8:1F:19:6D:06:D4:8E:C0:38:52 X509v3 Authority Key Identifier: keyid:6A:DA:FB:A2:99:68:30:C5:1D:68:1C:32:12:D0:4B:5C:72:4C:13:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/atr7oploMMUdaBwyEtBLXHJMEx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/atr7oploMMUdaBwyEtBLXHJMEx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8FC/F739A4F8BD1511EE800F482CC4F9AE02/36172D6200E911F18D21A14F396F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.5.188.0/22 110.172.16.0/21 219.90.96.0/20 IPv6: 2402:4300::/32 Signature Algorithm: sha256WithRSAEncryption 4a:30:5b:53:10:f2:b1:2c:8d:28:78:e9:c8:01:47:ee:71:c7: a3:99:8c:6a:e4:3a:54:db:b1:67:81:09:b2:73:39:2d:ab:2c: 14:11:39:6a:2a:18:12:c5:e3:84:56:e3:0a:36:a7:c0:66:e1: 78:90:00:d0:ad:cf:91:68:e9:4d:f5:82:51:f2:1a:d3:c7:51: 63:aa:28:8b:e3:37:3b:12:f4:6c:9b:81:5c:43:7c:a7:07:b8: c2:69:b1:57:8c:4b:5a:c2:34:9a:63:76:88:ba:49:ae:38:e9: 65:3d:dd:cc:c3:77:0e:56:73:05:32:bd:6f:88:fe:43:66:dd: 28:a8:ac:41:03:51:a4:4e:f6:37:a8:92:e2:17:a0:0d:53:35: 5b:01:c6:2a:03:4c:0e:31:83:c3:97:21:e5:fe:1f:36:65:4d: 42:57:84:bf:e0:32:aa:6d:fa:a4:0f:22:bf:32:7d:cb:34:90: cc:3f:57:3f:33:24:89:87:76:c3:fb:3e:a7:27:05:16:7f:94: dd:b5:dd:07:2d:a3:93:72:66:b7:6a:c2:bc:f1:97:ea:3a:45: b2:ac:ac:69:89:30:d2:a1:19:5e:c0:ac:bb:87:49:0e:a6:70: e2:b7:ca:24:82:ac:6e:50:7c:8c:13:cd:dc:81:68:a2:c5:7b: bd:65:58:e1 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y4RkMxMTAvBgNVBAUTKDZBREFGQkEyOTk2ODMwQzUxRDY4MUMzMjEyRDA0QjVD NzI0QzEzMUQwHhcNMjYwMjAzMTAxNTA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2ZjYS1kNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlspt5X6CF09ve1soRUB0xP1xxIvbCoi9ZSna0j8dcQCgQtGKl3uiqdqfYz9 slYPc99U22CbocvnaMYexXYQFLA5owGxkJ+E8kMGQJ0Db28ZvoOlHZPlDBsjp5nF lA+bONMtyogTs/hvK5SWc7nPYXSkxYWsXbn8CjY4H6ednQ8oAt4hoV6TSg0xtOaN +eh+V1Ndg0QClAGYYU2xnfyZApQCIlC1D9W25HOYUL+IfOLnjAxmFh99R39YStrX rGA8HAU3BMt77uBXQ45bDanWIKrUR6rRRVJ71CZ86wn8xjhQ+GEu6igt9dSklN+M n8Iv2Q/xdgGHQ+xOPaxZuDc7DQIDAQABo4ICezCCAncwHQYDVR0OBBYEFIfuQ5rC Yd7qBSXIHxltBtSOwDhSMB8GA1UdIwQYMBaAFGra+6KZaDDFHWgcMhLQS1xyTBMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhGQy9GNzM5QTRGOEJE MTUxMUVFODAwRjQ4MkNDNEY5QUUwMi9hdHI3b3Bsb01NVWRhQnd5RXRCTFhISk1F eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F0cjdvcGxvTU1VZGFCd3lFdEJMWEhKTUV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y4RkMvRjczOUE0RjhCRDE1MTFFRTgwMEY0ODJDQzRGOUFFMDIvMzYxNzJENjIw MEU5MTFGMThEMjFBMTRGMzk2RjU2QkMucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZwW8AwQDbqwQAwQE21pgMA0EAgACMAcDBQAkAkMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBKMFtTEPKxLI0oeOnIAUfuccejmYxq5DpU27FngQmyczktqywU ETlqKhgSxeOEVuMKNqfAZuF4kADQrc+RaOlN9YJR8hrTx1FjqiiL4zc7EvRsm4Fc Q3ynB7jCabFXjEtawjSaY3aIukmuOOllPd3Mw3cOVnMFMr1viP5DZt0oqKxBA1Gk TvY3qJLiF6ANUzVbAcYqA0wOMYPDlyHl/h82ZU1CV4S/4DKqbfqkDyK/Mn3LNJDM P1c/MySJh3bD+z6nJwUWf5Tdtd0HLaOTcma3asK88ZfqOkWyrKxpiTDSoRlewKy7 h0kOpnDit8okgqxuUHyME83cgWiixXu9ZVjh -----END CERTIFICATE-----Generated at Thu Mar 26 17:19:06 2026 by rpki-client