$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa File: E2846570135E11EB9D58482CC4F9AE02.roa (raw, json) Hash identifier: Qga32WRMcgwtGKBYl59msd/aiS63INQRYU3RedAs7hQ= Subject key identifier: A0:A0:B9:32:F6:A8:22:1D:FE:EA:C2:FD:CA:75:25:03:BC:0E:60:83 Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 10CE Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:32:15 +0000 ROA not before: Wed 08 Oct 2025 17:47:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132400 IP address blocks: 103.72.188.0/22 maxlen: 22 103.72.188.0/24 maxlen: 24 103.72.189.0/24 maxlen: 24 103.72.190.0/24 maxlen: 24 103.72.191.0/24 maxlen: 24 160.20.40.0/22 maxlen: 22 160.20.40.0/24 maxlen: 24 160.20.41.0/24 maxlen: 24 160.20.42.0/24 maxlen: 24 160.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Oct 8 17:47:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45bff-a8d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:2a:7f:49:1a:99:b5:05:52:21:90:fc:4e: 0b:e0:3e:11:44:2b:5e:19:8a:b2:c3:e9:7c:88:b6: 4a:19:ea:19:3a:30:75:c7:c5:a8:8e:6e:bb:8d:c8: 13:fb:db:40:b1:1e:41:ec:f8:10:2f:f7:2c:e5:e0: 17:41:f0:ac:bd:e4:87:db:1e:b6:79:8e:68:e8:e3: 61:ea:16:ab:7c:b4:00:1b:86:3c:fe:b7:de:62:d4: 6f:81:1e:d5:7a:f8:27:fb:5d:06:2d:38:66:39:60: 95:95:ce:ee:ae:ce:83:f3:a5:c7:04:a1:cb:63:e0: be:aa:a1:6a:dd:fd:0b:cc:79:14:ae:7d:b3:76:f1: 10:5f:1a:db:65:33:8c:58:3c:5a:cd:9d:95:2e:0d: 02:77:ce:a9:ce:13:f8:c9:a5:12:cf:c3:fc:ba:81: 23:06:ba:7a:ad:c9:4a:72:d6:cf:ac:cc:fe:22:34: 81:1c:1f:66:04:2f:81:f9:d1:a8:3d:e6:72:c0:aa: 1a:0c:45:ab:ef:4d:76:f6:33:cc:4f:61:7e:ef:73: 68:28:c4:50:73:e5:3a:08:f3:f3:79:7a:9c:8b:b1: 35:2c:5d:f9:9f:2d:d2:74:a6:03:7f:72:e6:d4:1e: fd:d0:f4:64:9b:4b:48:70:9a:2a:f6:82:45:88:87: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A0:B9:32:F6:A8:22:1D:FE:EA:C2:FD:CA:75:25:03:BC:0E:60:83 X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.72.188.0/22 160.20.40.0/22 Signature Algorithm: sha256WithRSAEncryption 76:ce:71:98:cd:f1:d6:88:ca:0d:4c:d3:58:a3:a6:36:a3:46: f0:6d:53:d8:9c:41:32:37:1d:6f:a6:19:e1:4a:16:01:73:ad: 56:8e:b6:98:c2:76:85:15:3e:10:90:2a:ec:e3:16:0d:fc:83: 3f:fa:ff:22:47:40:9a:85:c8:ec:0b:d6:d2:b7:10:c4:74:37: f3:c1:09:1e:46:26:ca:7d:04:9f:8a:9d:2f:cf:78:aa:bb:61: 73:4f:8f:68:cd:82:5d:d1:8f:23:0f:89:00:2f:e7:38:a7:b0: c5:c7:d0:9b:26:55:89:40:37:e4:59:07:f0:54:3f:4e:6c:2d: 88:4b:b2:3a:c4:c4:44:89:7f:6b:38:96:62:f7:d0:3e:6e:6e: ff:22:4c:5b:64:4e:f1:96:a3:9d:80:e3:b7:e1:15:31:79:c3: 47:0a:e1:e2:df:c5:04:5a:5e:9a:8f:8e:47:8e:88:be:66:46: 20:11:fc:b1:c0:e4:d4:ec:a6:f9:92:3b:a6:97:08:41:0c:11: 9e:3e:8f:3a:8c:89:e4:d7:3c:19:d3:d8:fa:10:89:59:e3:95: 84:50:1a:a8:80:ca:0a:a2:ba:ee:91:f5:f2:48:75:9c:e4:2d: a0:c1:8b:1f:b6:2b:d7:53:4a:e9:ae:67:4c:2e:03:ea:ca:83: 12:76:4c:80 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUxMDA4MTc0NzM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWJmZi1hOGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yMqf0kambUFUiGQ/E4L4D4RRCteGYqyw+l8iLZKGeoZOjB1x8Wojm67jcgT +9tAsR5B7PgQL/cs5eAXQfCsveSH2x62eY5o6ONh6harfLQAG4Y8/rfeYtRvgR7V evgn+10GLThmOWCVlc7urs6D86XHBKHLY+C+qqFq3f0LzHkUrn2zdvEQXxrbZTOM WDxazZ2VLg0Cd86pzhP4yaUSz8P8uoEjBrp6rclKctbPrMz+IjSBHB9mBC+B+dGo PeZywKoaDEWr70129jPMT2F+73NoKMRQc+U6CPPzeXqci7E1LF35ny3SdKYDf3Lm 1B790PRkm0tIcJoq9oJFiIeq1QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKCguTL2 qCId/urC/cp1JQO8DmCDMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzNkEvNDMzQUY3OEM0NkM3MTFFOUFERTlENDI0QzRGOUFFMDIvRTI4NDY1NzAx MzVFMTFFQjlENTg0ODJDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCZ0i8AwQCoBQoMA0GCSqGSIb3DQEBCwUAA4IBAQB2znGYzfHWiMoN TNNYo6Y2o0bwbVPYnEEyNx1vphnhShYBc61WjraYwnaFFT4QkCrs4xYN/IM/+v8i R0CahcjsC9bStxDEdDfzwQkeRibKfQSfip0vz3iqu2FzT49ozYJd0Y8jD4kAL+c4 p7DFx9CbJlWJQDfkWQfwVD9ObC2IS7I6xMREiX9rOJZi99A+bm7/IkxbZE7xlqOd gOO34RUxecNHCuHi38UEWl6aj45Hjoi+ZkYgEfyxwOTU7Kb5kjumlwhBDBGePo86 jInk1zwZ09j6EIlZ45WEUBqogMoKorrukfXySHWc5C2gwYsftivXU0rprmdMLgPq yoMSdkyA -----END CERTIFICATE-----Generated at Thu Mar 26 08:57:59 2026 by rpki-client