$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/59ABA930252711F1BB798D71C5833773.roa File: 59ABA930252711F1BB798D71C5833773.roa (raw, json) Hash identifier: ueDzeSyCMubMTsCJCVYLPvi2cJYzZksdt/KEuyhF6Ow= Subject key identifier: 3A:33:3A:BA:2E:BC:76:B1:25:42:77:F0:52:A7:98:91:B5:BB:37:8A Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 3AFA Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/59ABA930252711F1BB798D71C5833773.roa Signing time: Sat 21 Mar 2026 13:50:05 +0000 ROA not before: Sat 21 Mar 2026 13:50:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132165 IP address blocks: 103.246.108.0/22 maxlen: 22 103.246.108.0/24 maxlen: 24 103.246.109.0/24 maxlen: 24 103.246.110.0/24 maxlen: 24 103.246.111.0/24 maxlen: 24 111.88.0.0/22 maxlen: 24 111.88.4.0/24 maxlen: 30 111.88.5.0/24 maxlen: 24 111.88.6.0/23 maxlen: 24 111.88.8.0/21 maxlen: 24 111.88.16.0/20 maxlen: 24 111.88.136.0/23 maxlen: 24 117.102.48.0/21 maxlen: 24 117.102.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15098 (0x3afa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Mar 21 13:50:05 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69bea20d-0a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:95:b0:2e:89:dc:21:23:1d:e3:d4:cc:5e:2e: 87:8b:b2:9f:10:d9:33:a8:79:32:e6:0b:fe:ed:28: 9b:92:e9:13:90:cb:d9:80:3a:f1:a3:0d:52:83:ad: b9:bc:92:4b:b7:07:a0:3c:f0:5e:8f:45:cf:9a:26: 68:ef:a9:c3:97:58:af:c5:db:2e:c7:c4:c4:54:94: c1:56:20:7a:ee:05:af:f1:0e:d3:fa:f6:bf:03:6c: 61:3a:37:8a:6b:e4:23:ae:b2:6c:f8:d8:43:f1:a8: 2b:61:e4:bd:1d:f6:ee:3d:d7:2d:82:d8:c0:36:21: 31:27:9b:d2:9d:3f:12:a0:5b:7f:06:4e:fb:95:52: 3c:40:8e:a6:df:4e:f0:f5:88:3c:1c:20:af:20:e2: a0:45:b1:ea:a3:32:4e:de:ce:92:16:81:4d:c7:aa: 9e:25:2f:c6:25:fb:58:cb:51:53:ed:1b:20:f2:11: d4:72:34:5b:76:78:e4:ba:de:d2:bc:5a:22:64:91: 6f:fe:7d:03:14:26:d4:3b:23:8a:c4:05:13:67:af: 6d:ed:ee:97:03:d1:8f:c7:a4:d3:56:a9:6d:97:a3: 19:4a:b1:0c:58:51:58:7f:3e:d6:cd:56:63:33:4f: 98:1c:51:6c:1f:43:a5:8f:80:62:3d:07:fb:c1:d0: 82:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:33:3A:BA:2E:BC:76:B1:25:42:77:F0:52:A7:98:91:B5:BB:37:8A X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/59ABA930252711F1BB798D71C5833773.roa sbgp-ipAddrBlock: critical IPv4: 103.246.108.0/22 111.88.0.0/19 111.88.136.0/23 117.102.48.0/21 117.102.60.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:e2:98:d7:18:39:8b:95:bc:ec:a2:d4:0f:68:db:e3:ea:48: 22:d9:13:b6:15:a7:5e:5d:63:bf:be:42:21:83:70:59:e0:ce: 8c:73:60:f6:93:a0:14:5d:24:e6:5f:2d:11:d1:b0:3a:09:54: 5e:f2:99:d6:dc:c7:f4:70:90:48:b4:a2:42:02:1e:5d:4c:c7: 03:e6:8a:0b:a4:02:f8:c0:ca:be:6c:f4:c2:d3:05:a3:b1:55: 7f:2a:41:e6:5c:da:2d:30:36:8f:36:e7:52:4e:c3:00:47:6c: 24:2b:72:79:ae:4b:8a:e6:29:6e:3e:53:3a:3b:d6:f3:ee:54: 1f:21:6f:38:09:02:59:ed:9e:6f:3f:d7:3d:fc:09:20:a2:4a: ca:e6:8d:8f:aa:60:09:73:07:bb:ca:f8:dd:eb:25:72:e7:75: 25:0c:09:05:1a:64:fd:9f:77:78:8e:ea:cd:64:9f:27:b8:e4: 2f:a7:61:4e:e3:03:c4:79:73:64:72:b0:c3:de:44:34:21:e2: 2a:d6:33:f3:2d:1d:e1:96:f6:50:ce:28:20:ba:47:9a:1b:6a: 9c:0b:b6:e2:a1:8b:44:b6:ae:ad:47:04:60:ef:bf:ad:0f:9f: 2c:19:54:93:11:44:7a:bf:1e:b2:94:8c:c4:bd:67:f9:9f:86: 69:1c:d4:23 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICOvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjYwMzIxMTM1MDA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJlYTIwZC0wYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpWwLoncISMd49TMXi6Hi7KfENkzqHky5gv+7SibkukTkMvZgDrxow1Sg625 vJJLtwegPPBej0XPmiZo76nDl1ivxdsux8TEVJTBViB67gWv8Q7T+va/A2xhOjeK a+QjrrJs+NhD8agrYeS9HfbuPdctgtjANiExJ5vSnT8SoFt/Bk77lVI8QI6m307w 9Yg8HCCvIOKgRbHqozJO3s6SFoFNx6qeJS/GJftYy1FT7Rsg8hHUcjRbdnjkut7S vFoiZJFv/n0DFCbUOyOKxAUTZ69t7e6XA9GPx6TTVqltl6MZSrEMWFFYfz7WzVZj M0+YHFFsH0Olj4BiPQf7wdCCFQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFDozOrou vHaxJUJ38FKnmJG1uzeKMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvNTlBQkE5MzAy NTI3MTFGMUJCNzk4RDcxQzU4MzM3NzMucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCZ/ZsAwQFb1gAAwQBb1iIAwQDdWYwAwQCdWY8MA0GCSqGSIb3DQEB CwUAA4IBAQBN4pjXGDmLlbzsotQPaNvj6kgi2RO2FadeXWO/vkIhg3BZ4M6Mc2D2 k6AUXSTmXy0R0bA6CVRe8pnW3Mf0cJBItKJCAh5dTMcD5ooLpAL4wMq+bPTC0wWj sVV/KkHmXNotMDaPNudSTsMAR2wkK3J5rkuK5iluPlM6O9bz7lQfIW84CQJZ7Z5v P9c9/AkgokrK5o2PqmAJcwe7yvjd6yVy53UlDAkFGmT9n3d4jurNZJ8nuOQvp2FO 4wPEeXNkcrDD3kQ0IeIq1jPzLR3hlvZQziggukeaG2qcC7bioYtEtq6tRwRg77+t D58sGVSTEUR6vx6ylIzEvWf5n4ZpHNQj -----END CERTIFICATE-----Generated at Thu Mar 26 06:24:55 2026 by rpki-client