$ rpki-client -vvf rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa File: 3BB70A86092211F08BA72686C4F9AE02.roa (raw, json) Hash identifier: n2/dWwwbsPVQvjLILKjQ6cAG3MMBLfAzkKw6aR2yhc0= Subject key identifier: 77:7F:2C:B3:EB:F7:1C:39:FB:84:3C:C7:34:A5:91:88:59:B9:8B:BE Certificate issuer: /CN=A91689C8/serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Certificate serial: B4 Authority key identifier: AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:55:36 +0000 ROA not before: Fri 31 Oct 2025 02:17:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150309 IP address blocks: 103.244.188.0/23 maxlen: 24 2400:a9e0::/32 maxlen: 32 2400:a9e0::/36 maxlen: 36 2400:a9e0:1000::/36 maxlen: 36 2400:a9e0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689C8, serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Validity Not Before: Oct 31 02:17:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48ba8-400c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:ad:ca:e9:6b:a9:53:46:d3:f3:4f:8b:9a: a0:f9:6e:48:75:f8:48:cf:80:69:6a:52:e5:5d:81: 0a:6b:3f:02:01:05:49:17:c6:4d:c8:f4:fc:40:2e: a3:a9:32:da:50:a3:ee:f1:83:ea:f3:03:63:78:cb: 12:2b:f7:14:a3:a4:06:a1:99:78:34:88:5f:42:fa: 95:80:62:fe:07:0b:26:af:cf:0c:c6:65:2c:9e:c3: c7:95:a2:15:10:25:9f:19:a9:3e:12:2c:7a:14:fc: a4:1b:b7:53:64:96:31:00:13:92:6a:53:27:05:cd: 61:5e:02:14:c7:9e:0d:cf:75:66:04:91:2e:fc:e1: 0b:b0:c1:65:66:2c:6d:74:dc:d5:94:f5:38:bc:19: cc:b7:0c:ed:91:4a:59:2a:74:37:ea:03:1a:28:da: f5:65:9e:a7:0e:b7:63:48:4b:e7:9a:60:04:09:ee: 7d:55:9b:8c:81:eb:65:de:95:02:3b:89:db:3d:bc: d8:29:3d:4e:c3:cc:fb:44:88:12:89:e3:00:0b:c0: ff:31:c8:e7:d1:e5:7a:cc:5c:1f:d3:c3:5a:df:29: ca:be:6f:5f:5c:3e:fd:eb:64:ea:16:5d:dd:0a:18: 03:ce:a8:50:fe:55:ac:c5:5f:f0:08:48:63:f0:c1: 8b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7F:2C:B3:EB:F7:1C:39:FB:84:3C:C7:34:A5:91:88:59:B9:8B:BE X509v3 Authority Key Identifier: keyid:AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.244.188.0/23 IPv6: 2400:a9e0::/32 Signature Algorithm: sha256WithRSAEncryption 59:77:02:13:10:ea:ce:ef:db:51:51:8f:74:aa:62:d0:0e:6c: 4d:1f:46:7d:4a:a2:66:fa:fe:d0:47:27:66:89:7f:2e:fc:54: 0f:9e:8a:9c:e4:e4:79:35:74:b7:74:98:31:24:09:91:7b:0d: 0c:19:ae:8f:a4:77:69:3e:0d:a5:90:a7:90:13:3d:7d:f6:9e: d7:71:50:5b:b5:a7:c8:a1:c5:2a:da:58:1d:35:68:86:95:86: 16:02:00:80:0e:fc:99:f3:3d:92:7b:0f:28:5e:98:02:a0:3b: 89:5b:6e:c3:e1:0b:d8:75:06:73:7a:fd:f3:a6:d8:47:14:4f: 2d:c2:b7:83:c0:dc:00:ca:71:ec:f3:f8:8c:37:81:ba:14:93: 34:dd:eb:48:86:52:59:12:68:10:3c:50:1f:4a:64:8d:bf:66: ea:fc:df:b7:ae:7d:66:d1:c4:1d:eb:5b:f5:b3:2c:57:51:10: b3:9b:98:e5:39:e0:b4:c5:ba:74:57:68:ed:3c:e8:d2:cf:90: 35:0b:15:a0:af:4a:aa:41:7e:6a:ea:db:9e:e4:1a:3d:c6:27: 10:fc:ff:f3:a3:3d:eb:d6:e8:b4:3e:3b:26:86:71:af:a2:59: 80:c8:47:c9:df:41:77:c1:8a:8d:ee:46:fb:04:ab:e0:fe:48: de:4e:04:bc -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QzgxMTAvBgNVBAUTKEFEREIyQkYzQzQxODI2RDZEMEZCRThEMkJGMkYwNTJE OThBNUQ5NDkwHhcNMjUxMDMxMDIxNzA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGJhOC00MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBatyulrqVNG0/NPi5qg+W5IdfhIz4BpalLlXYEKaz8CAQVJF8ZNyPT8QC6j qTLaUKPu8YPq8wNjeMsSK/cUo6QGoZl4NIhfQvqVgGL+Bwsmr88MxmUsnsPHlaIV ECWfGak+Eix6FPykG7dTZJYxABOSalMnBc1hXgIUx54Nz3VmBJEu/OELsMFlZixt dNzVlPU4vBnMtwztkUpZKnQ36gMaKNr1ZZ6nDrdjSEvnmmAECe59VZuMgetl3pUC O4nbPbzYKT1Ow8z7RIgSieMAC8D/Mcjn0eV6zFwf08Na3ynKvm9fXD7962TqFl3d ChgDzqhQ/lWsxV/wCEhj8MGLFQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHd/LLPr 9xw5+4Q8xzSlkYhZuYu+MB8GA1UdIwQYMBaAFK3bK/PEGCbW0Pvo0r8vBS2YpdlJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlDOC8zOEIzOEU1RThE RDcxMUVEODUyMjVBN0VDNEY5QUUwMi9yZHNyODhRWUp0YlEtLWpTdnk4RkxaaWwy VWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jkc3I4OFFZSnRiUS0talN2eThGTFppbDJVay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5QzgvMzhCMzhFNUU4REQ3MTFFRDg1MjI1QTdFQzRGOUFFMDIvM0JCNzBBODYw OTIyMTFGMDhCQTcyNjg2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ/S8MA0EAgACMAcDBQAkAKngMA0GCSqGSIb3DQEBCwUAA4IBAQBZ dwITEOrO79tRUY90qmLQDmxNH0Z9SqJm+v7QRydmiX8u/FQPnoqc5OR5NXS3dJgx JAmRew0MGa6PpHdpPg2lkKeQEz199p7XcVBbtafIocUq2lgdNWiGlYYWAgCADvyZ 8z2Sew8oXpgCoDuJW27D4QvYdQZzev3zpthHFE8twreDwNwAynHs8/iMN4G6FJM0 3etIhlJZEmgQPFAfSmSNv2bq/N+3rn1m0cQd61v1syxXURCzm5jlOeC0xbp0V2jt POjSz5A1CxWgr0qqQX5q6tue5Bo9xicQ/P/zoz3r1ui0PjsmhnGvolmAyEfJ30F3 wYqN7kb7BKvg/kjeTgS8 -----END CERTIFICATE-----Generated at Sat Mar 28 13:42:38 2026 by rpki-client