$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa File: 436B3BEC822D11EBB19C1844C4F9AE02.roa (raw, json) Hash identifier: oeB8/47xsF+hpt5i8iGPJ2EnXsL0GaoatzlImZS5Dnw= Subject key identifier: 99:E1:62:86:6E:D6:B0:6B:FA:73:DD:BA:AB:78:F7:EB:C6:C3:79:27 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 06FD Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa Signing time: Thu 12 Mar 2026 22:29:33 +0000 ROA not before: Thu 12 Mar 2026 22:29:33 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137967 IP address blocks: 103.163.168.0/23 maxlen: 23 103.163.168.0/24 maxlen: 24 103.163.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215, serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Validity Not Before: Mar 12 22:29:33 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b33e4d-637d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:45:4a:69:7a:3d:90:20:aa:7f:4c:51:2c:1b: 04:3b:e6:0d:86:79:f0:98:ce:d6:dd:05:73:f2:03: f7:38:da:da:36:a5:5f:cd:03:d4:a1:6a:c2:fc:47: 5f:2b:92:4e:fd:f5:01:28:b5:de:f1:5e:bc:e3:30: 97:23:7f:2d:88:88:4e:2c:6f:79:1e:c3:fd:4c:bf: 04:78:0c:08:bb:59:51:77:27:15:5d:e7:ee:43:89: df:be:65:c0:7c:3e:08:19:b5:a0:94:5f:e4:11:47: 14:08:0d:fb:0b:0c:56:0f:d7:1c:48:6c:43:81:e9: 61:35:7c:aa:63:c3:84:fd:7b:d8:a0:1f:f1:b4:51: 84:f0:48:5d:02:44:39:13:dc:13:8b:20:d9:05:5d: 3f:4a:1d:17:e1:4b:eb:e3:d2:d5:9e:71:a8:13:ee: 0c:57:8d:52:a8:fb:fb:5d:87:f0:ca:ed:ab:0d:e8: 12:59:40:81:55:19:32:f6:f2:88:22:be:ac:29:5b: b1:a9:a0:1f:72:49:10:40:e1:3f:80:89:b2:89:af: 09:75:8c:67:fb:2f:aa:00:9e:59:49:40:a5:5d:c4: 8a:86:ff:41:48:d9:e3:4c:83:55:f0:be:34:0d:6f: b2:c9:12:8b:23:dd:d8:e2:01:96:81:55:16:58:ff: 2b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E1:62:86:6E:D6:B0:6B:FA:73:DD:BA:AB:78:F7:EB:C6:C3:79:27 X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.163.168.0/23 Signature Algorithm: sha256WithRSAEncryption 42:3f:c9:dc:52:db:ef:d6:c6:1a:55:e7:af:01:ad:bf:ce:9a: 43:bd:69:f2:99:81:6c:5a:41:15:72:ef:af:95:01:b0:e2:bd: 3c:8d:ce:6c:d5:84:37:6a:e0:79:8f:4c:42:54:d2:3a:de:a0: 4c:73:92:ef:e2:7f:b2:60:23:6f:87:61:84:e6:69:a0:72:fe: 98:1d:30:c8:fd:46:37:e4:08:0d:37:5c:8e:9d:ba:32:86:5d: 5a:6e:3b:53:80:bd:5b:e3:00:46:96:e1:9a:96:d9:be:1a:dd: 5b:99:1b:07:e8:c6:62:26:85:fa:92:c5:6a:4f:41:a8:4a:b7: e4:96:d3:bc:ba:56:ee:3f:22:f8:1a:c1:5a:9d:3f:da:f0:f0: b3:fe:c5:4c:2e:5f:9f:02:90:c9:fa:4c:27:df:f2:ea:69:25: 57:7f:9d:43:0b:96:58:a2:20:17:57:1b:e7:dc:0e:07:13:75: bd:bf:ef:c0:2b:88:e4:00:c5:4f:10:99:fe:a8:4a:57:d5:74: 36:32:4d:08:8e:64:a3:36:3f:c0:a1:1d:1a:bb:44:76:f5:d7: d8:89:e7:59:12:9a:5c:34:b6:14:d8:d6:e0:ab:36:e5:17:c1: b7:a8:c9:9f:28:72:49:21:24:5e:18:c9:77:f6:e4:2a:9d:9b: 1b:d3:bf:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjYwMzEyMjIyOTMzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzM2U0ZC02MzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUVKaXo9kCCqf0xRLBsEO+YNhnnwmM7W3QVz8gP3ONraNqVfzQPUoWrC/Edf K5JO/fUBKLXe8V684zCXI38tiIhOLG95HsP9TL8EeAwIu1lRdycVXefuQ4nfvmXA fD4IGbWglF/kEUcUCA37CwxWD9ccSGxDgelhNXyqY8OE/XvYoB/xtFGE8EhdAkQ5 E9wTiyDZBV0/Sh0X4Uvr49LVnnGoE+4MV41SqPv7XYfwyu2rDegSWUCBVRky9vKI Ir6sKVuxqaAfckkQQOE/gImyia8JdYxn+y+qAJ5ZSUClXcSKhv9BSNnjTINV8L40 DW+yyRKLI93Y4gGWgVUWWP8rXQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJnhYoZu 1rBr+nPduqt49+vGw3knMB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUyMTUvOTIyREJCOTQ4MjJCMTFFQkJCQzc1RTQyQzRGOUFFMDIvNDM2QjNCRUM4 MjJEMTFFQkIxOUMxODQ0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6OoMA0GCSqGSIb3DQEBCwUAA4IBAQBCP8ncUtvv1sYaVeevAa2/ zppDvWnymYFsWkEVcu+vlQGw4r08jc5s1YQ3auB5j0xCVNI63qBMc5Lv4n+yYCNv h2GE5mmgcv6YHTDI/UY35AgNN1yOnboyhl1abjtTgL1b4wBGluGaltm+Gt1bmRsH 6MZiJoX6ksVqT0GoSrfkltO8ulbuPyL4GsFanT/a8PCz/sVMLl+fApDJ+kwn3/Lq aSVXf51DC5ZYoiAXVxvn3A4HE3W9v+/AK4jkAMVPEJn+qEpX1XQ2Mk0IjmSjNj/A oR0au0R29dfYiedZEppcNLYU2NbgqzblF8G3qMmfKHJJISReGMl39uQqnZsb078j -----END CERTIFICATE-----Generated at Thu Mar 26 18:19:43 2026 by rpki-client