$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa File: 3FA4288CD29B11ED88E16742C4F9AE02.roa (raw, json) Hash identifier: 6U++pNkeW+MPTCwzdV8Vs83jpXrL1CTpZqHD9JNg/bc= Subject key identifier: AA:FD:8E:5D:55:8A:E8:4A:7C:09:5B:AC:47:1C:2E:71:76:0E:E9:93 Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 0226 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:29:16 +0000 ROA not before: Thu 05 Jun 2025 03:11:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45352 IP address blocks: 103.93.72.0/24 maxlen: 24 103.93.73.0/24 maxlen: 24 103.93.74.0/24 maxlen: 24 103.93.75.0/24 maxlen: 24 123.253.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD, serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Jun 5 03:11:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3eacc-c967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:9e:5f:e0:ec:9b:64:86:fe:0d:f9:9c:01: ef:93:4e:9b:f7:73:01:f0:0b:c4:43:0a:68:fd:89: 8d:69:dc:e0:7e:78:ce:34:70:e4:1e:47:48:9e:87: 8a:e5:3d:bb:d7:fe:3b:0c:35:2c:e7:0e:8d:1c:56: ea:26:03:b0:95:29:ab:3a:55:6b:15:e4:ca:54:4b: 19:c9:7f:f6:fc:74:20:51:4b:8a:b6:05:56:1f:da: af:7a:97:d4:1a:60:e8:91:a4:ec:75:9b:58:ea:4e: 16:fe:96:26:d6:f3:84:16:d7:d5:ba:77:a4:bb:5c: 5e:74:14:b0:d0:94:c1:d6:d1:b3:24:9e:8e:df:ec: ae:a8:13:e7:fc:3a:1b:f0:76:10:da:53:e9:03:bc: 40:0d:56:21:d7:e7:0b:53:32:44:c4:40:81:e9:63: b4:54:51:1d:36:19:ec:08:7f:04:6d:38:02:bf:e2: 59:b6:88:4f:cc:94:ee:4b:58:04:38:81:ed:e5:26: 1e:b3:67:bd:bc:fe:ce:bb:3a:8b:ab:a3:bc:4d:6e: dc:e0:71:b5:79:b9:a5:17:2c:4e:48:21:4d:b3:28: f1:d0:76:24:bb:e0:36:cc:03:9c:ff:35:59:20:d5: b2:ea:4d:f1:77:4b:5b:4e:f6:bc:62:ac:15:8d:68: 07:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FD:8E:5D:55:8A:E8:4A:7C:09:5B:AC:47:1C:2E:71:76:0E:E9:93 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.93.72.0/22 123.253.112.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:30:20:cb:30:c1:59:f4:84:49:79:04:74:82:f9:a5:37:2b: 94:0e:23:15:d4:01:2a:78:78:af:e0:ae:c6:aa:37:7f:4f:6f: 89:0c:d4:dc:53:97:84:33:6f:eb:e3:fb:2c:3a:76:0e:23:c6: ee:7e:ea:e3:34:f8:63:94:46:a0:92:72:d9:6f:00:15:0b:6c: 01:77:e2:40:89:77:8d:d8:51:d9:ab:da:84:4e:1e:e8:18:98: d7:9e:c8:6f:a7:3c:5d:68:fe:b4:22:10:67:a0:eb:90:57:7e: ef:83:10:51:60:e0:c8:fe:22:fd:8a:d7:bf:53:1b:0a:db:21: ec:68:a7:8c:fb:64:b3:52:f1:6c:2c:50:d0:3c:33:68:b9:97: c7:73:41:93:be:d3:4c:3c:f3:cb:8f:80:55:d0:b9:2e:4d:b5: 95:2d:d1:52:92:95:77:c4:6e:42:97:40:7a:98:6d:5e:eb:94: 56:33:d2:23:44:97:5b:cc:2b:97:ec:fd:61:50:31:77:f0:7f: d2:5b:0c:73:71:ae:4a:5e:6d:7f:e7:2b:82:b9:00:3c:b3:f3: 55:12:e9:e1:3d:a6:91:ac:c7:21:02:a0:49:8d:08:29:9a:8d: 54:43:21:f2:83:c2:30:ed:5a:87:af:ac:ba:5b:cf:91:e0:21: da:85:ce:b3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjUwNjA1MDMxMTA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWFjYy1jOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygGeX+Dsm2SG/g35nAHvk06b93MB8AvEQwpo/YmNadzgfnjONHDkHkdInoeK 5T271/47DDUs5w6NHFbqJgOwlSmrOlVrFeTKVEsZyX/2/HQgUUuKtgVWH9qvepfU GmDokaTsdZtY6k4W/pYm1vOEFtfVuneku1xedBSw0JTB1tGzJJ6O3+yuqBPn/Dob 8HYQ2lPpA7xADVYh1+cLUzJExECB6WO0VFEdNhnsCH8EbTgCv+JZtohPzJTuS1gE OIHt5SYes2e9vP7OuzqLq6O8TW7c4HG1ebmlFyxOSCFNsyjx0HYku+A2zAOc/zVZ INWy6k3xd0tbTva8YqwVjWgHAQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKr9jl1V iuhKfAlbrEccLnF2DumTMB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM4REQvQzg4NzBDQUVEMjk3MTFFREIwODU4QjNEQzRGOUFFMDIvM0ZBNDI4OENE MjlCMTFFRDg4RTE2NzQyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ11IAwQCe/1wMA0GCSqGSIb3DQEBCwUAA4IBAQCOMCDLMMFZ9IRJ eQR0gvmlNyuUDiMV1AEqeHiv4K7Gqjd/T2+JDNTcU5eEM2/r4/ssOnYOI8bufurj NPhjlEagknLZbwAVC2wBd+JAiXeN2FHZq9qETh7oGJjXnshvpzxdaP60IhBnoOuQ V37vgxBRYODI/iL9ite/UxsK2yHsaKeM+2SzUvFsLFDQPDNouZfHc0GTvtNMPPPL j4BV0LkuTbWVLdFSkpV3xG5Cl0B6mG1e65RWM9IjRJdbzCuX7P1hUDF38H/SWwxz ca5KXm1/5yuCuQA8s/NVEunhPaaRrMchAqBJjQgpmo1UQyHyg8Iw7VqHr6y6W8+R 4CHahc6z -----END CERTIFICATE-----Generated at Thu Mar 26 11:33:12 2026 by rpki-client