$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa File: 41A8E738045111EA9C7DF516C4F9AE02.roa (raw, json) Hash identifier: g7Y2fTPIrRGmI+yyaq93Q8oA6ahVmpPa/2gUU/U5QQ4= Subject key identifier: 71:FF:C6:A2:FF:A7:AE:62:D3:BA:A5:C8:D8:CC:5E:0D:A7:C3:FD:85 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D7E Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:26:41 +0000 ROA not before: Wed 10 Sep 2025 18:28:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132436 IP address blocks: 103.73.36.0/24 maxlen: 24 103.73.37.0/24 maxlen: 24 103.73.38.0/24 maxlen: 24 103.73.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Sep 10 18:28:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58201-518f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f7:18:d6:fc:ee:d7:98:b5:ab:99:87:ed:65: cf:ab:3b:51:dc:da:2d:3b:b9:2a:4f:19:3c:52:e8: ba:ba:2d:bf:8d:b7:7b:33:27:31:fc:c1:d5:4d:93: b4:06:a9:6e:df:07:1a:fb:c2:e4:85:e4:29:89:a4: bd:5e:aa:ec:28:a7:e0:65:c3:28:09:5f:51:52:b9: 4c:f6:97:65:03:ff:3a:44:c7:ad:4b:0f:cd:9a:8d: 8e:7a:39:00:a4:33:f7:14:dd:61:47:62:fd:e1:5c: 9f:10:44:05:a1:b1:e6:fb:b0:d5:fc:e8:7f:f6:91: 4c:a2:be:40:89:f7:f1:f0:ff:0f:cd:59:4c:6b:5f: b1:cd:40:ae:58:c1:04:90:4b:5c:76:1a:57:c9:6d: 95:dd:1c:58:07:da:8e:dd:db:dd:4b:dd:26:6d:24: 97:0f:bf:62:4e:24:91:17:93:90:06:93:62:c5:f2: ff:1f:c2:78:d1:61:3a:78:5c:84:5f:1e:f2:71:1f: bb:65:67:5d:f2:6f:5e:8d:93:52:bc:00:15:c9:dd: 3c:d4:f3:86:7f:39:6a:4f:6d:70:84:87:a6:7a:4d: 06:f9:a4:b5:5a:ff:3c:8f:7d:9b:ae:20:86:24:60: e5:12:42:86:b9:f7:be:95:3d:77:ae:24:2f:06:99: d2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FF:C6:A2:FF:A7:AE:62:D3:BA:A5:C8:D8:CC:5E:0D:A7:C3:FD:85 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.73.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:32:18:9e:b2:7f:c7:97:32:1f:53:da:30:12:7a:b0:08:ba: 5b:07:74:dc:70:f2:58:55:15:8e:fa:90:4d:0f:83:8a:09:27: 40:32:4b:ff:76:28:29:14:cd:9e:f8:1a:83:c0:6c:ff:56:7a: d7:ba:cb:23:2c:b7:db:d9:98:d6:25:a6:58:79:23:45:1c:70: f5:ce:c8:37:a2:85:2a:21:56:1a:61:05:99:5e:de:d5:3f:0c: b1:3c:08:b3:3d:92:a0:ab:29:68:3e:26:86:69:d4:2e:94:10: 32:42:30:62:c7:73:7e:ee:75:fa:94:eb:52:83:ba:fd:f4:b9: 06:f5:63:4e:b1:8f:04:ef:b0:98:28:48:e3:75:40:7d:c5:f5: 40:1f:65:42:b7:a9:d7:63:9b:37:be:e5:ee:3d:67:cb:ba:3d: c4:6c:a7:32:ee:a8:59:ce:63:0f:6b:a5:b6:78:cf:69:b5:90: 44:c6:a9:53:1c:7b:93:0a:3e:2d:10:33:73:72:92:5f:83:03: 5d:d4:a9:b3:2b:c9:26:bc:72:ae:33:d5:8f:55:1d:c2:1c:1a: d7:af:58:15:23:ac:01:16:4e:79:76:f3:f6:5c:e5:e2:da:50: 7f:83:4c:72:92:2d:2f:f1:46:73:2a:f8:88:cd:55:ff:16:a9: 53:49:71:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwOTEwMTgyODQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODIwMS01MThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfcY1vzu15i1q5mH7WXPqztR3NotO7kqTxk8Uui6ui2/jbd7Mycx/MHVTZO0 Bqlu3wca+8LkheQpiaS9XqrsKKfgZcMoCV9RUrlM9pdlA/86RMetSw/Nmo2OejkA pDP3FN1hR2L94VyfEEQFobHm+7DV/Oh/9pFMor5Aiffx8P8PzVlMa1+xzUCuWMEE kEtcdhpXyW2V3RxYB9qO3dvdS90mbSSXD79iTiSRF5OQBpNixfL/H8J40WE6eFyE Xx7ycR+7ZWdd8m9ejZNSvAAVyd081POGfzlqT21whIemek0G+aS1Wv88j32briCG JGDlEkKGufe+lT13riQvBpnSKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHH/xqL/ p65i07qlyNjMXg2nw/2FMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2MEQvRjVEQ0E2RDRFNUI4MTFFOThBNzYxMjBFQzRGOUFFMDIvNDFBOEU3Mzgw NDUxMTFFQTlDN0RGNTE2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ0kkMA0GCSqGSIb3DQEBCwUAA4IBAQBdMhiesn/HlzIfU9owEnqw CLpbB3TccPJYVRWO+pBND4OKCSdAMkv/digpFM2e+BqDwGz/VnrXussjLLfb2ZjW JaZYeSNFHHD1zsg3ooUqIVYaYQWZXt7VPwyxPAizPZKgqyloPiaGadQulBAyQjBi x3N+7nX6lOtSg7r99LkG9WNOsY8E77CYKEjjdUB9xfVAH2VCt6nXY5s3vuXuPWfL uj3EbKcy7qhZzmMPa6W2eM9ptZBExqlTHHuTCj4tEDNzcpJfgwNd1KmzK8kmvHKu M9WPVR3CHBrXr1gVI6wBFk55dvP2XOXi2lB/g0xyki0v8UZzKviIzVX/FqlTSXHy -----END CERTIFICATE-----Generated at Thu Mar 26 11:55:20 2026 by rpki-client