$ rpki-client -vvf rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa File: 3DF6459A772511EEA2E37420C4F9AE02.roa (raw, json) Hash identifier: rdUY5o4flNxATzMbPqo0gzo0RDU24xXXFTR8UNUkUPg= Subject key identifier: 23:8A:C9:35:31:C9:4A:E1:65:71:EB:DA:AD:58:36:20:B2:93:F3:5B Certificate issuer: /CN=A918A56A/serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Certificate serial: 01C4 Authority key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:18:56 +0000 ROA not before: Fri 09 May 2025 04:24:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151049 IP address blocks: 103.121.64.0/23 maxlen: 23 103.121.64.0/24 maxlen: 24 103.121.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A56A, serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Validity Not Before: May 9 04:24:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f670-57ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7d:38:eb:1b:c7:07:b5:44:c4:8a:aa:c8:b7: cd:49:77:9d:d9:44:26:09:4b:95:c2:6a:25:95:b6: 93:59:4d:66:f9:89:fe:2c:fb:c6:ce:9c:71:3d:ac: 7b:e5:98:b8:2c:b2:33:04:38:57:67:3c:50:0b:41: 3e:93:fe:89:80:1d:c5:5a:81:87:a0:de:34:47:3d: e3:6a:98:dc:c7:69:23:11:73:55:5c:08:c2:1f:bf: 25:7a:64:ef:93:93:94:55:9c:13:78:a5:74:e4:e9: 8d:89:ee:09:1f:4a:33:b9:b5:17:46:97:e3:78:13: 91:dd:d7:79:fd:76:25:fe:b2:66:8a:58:f1:47:43: 29:26:a1:1f:a5:b7:de:ab:db:61:c7:50:bd:3e:cb: ac:bf:e6:77:ac:87:38:9b:db:78:83:b2:ef:2c:d4: 3d:08:bd:50:9e:2c:ad:e4:c6:01:25:2c:fb:49:58: 0f:a3:f8:4e:31:90:0f:36:c4:5a:70:cd:74:1e:4a: 1c:7b:cd:d6:8c:95:0e:1a:e3:38:2f:d1:04:5b:92: 2b:e6:e8:a8:be:09:e4:be:96:e6:0b:65:c8:d7:81: ce:25:f6:33:52:d8:cb:7a:bc:19:05:c3:c4:f9:f3: e1:e1:72:61:9b:1e:13:16:0c:f3:73:6b:ea:3a:f0: 08:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:8A:C9:35:31:C9:4A:E1:65:71:EB:DA:AD:58:36:20:B2:93:F3:5B X509v3 Authority Key Identifier: keyid:DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.121.64.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:f9:07:e3:f8:0f:c4:a1:3f:32:5e:b1:86:44:a1:ee:4b:47: 27:b6:0c:10:89:54:cb:0e:0e:0b:c6:cc:63:84:48:64:d4:a6: 0b:87:14:0c:91:1a:a2:3b:8f:0b:03:63:1b:42:ef:46:b3:97: e2:b7:15:6d:1f:35:47:57:b3:a8:d1:76:e0:56:97:6f:ba:86: 7f:79:ab:12:0b:f4:c7:c8:31:4d:b0:66:5f:5d:e3:83:7b:68: 6e:20:60:61:5b:38:69:97:71:38:b1:ef:3b:84:91:63:03:a6: 0c:2b:fd:3a:c9:26:89:84:8e:b3:98:c3:3f:24:d9:48:79:e1: 47:8c:bf:71:3e:89:1e:4f:36:7a:86:f5:f0:84:38:a1:a3:1e: be:3c:c3:3a:c6:2b:8f:b7:a4:e2:6d:05:eb:44:1e:78:70:ce: 10:19:e4:b1:9a:27:61:f5:e5:25:a0:ee:c7:bb:43:07:e9:69: e2:34:ff:23:50:49:8c:af:bc:44:3c:8a:c9:29:61:c9:e2:cf: 3b:a7:20:ed:bb:ce:f1:7d:10:8e:86:96:9a:53:58:98:35:cf: 9a:9c:f4:9f:c8:56:5e:d0:71:60:18:5e:3e:74:6a:d4:4f:9d: 99:71:33:e4:ef:36:13:bd:bf:c0:e1:a2:74:2e:f4:45:9b:38: 14:08:76:6e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1NkExMTAvBgNVBAUTKERBNDMxMEIyRjA4NzlERjRCRDk4MzlBMTRDOEUzRkJC QjZGMUVCRjEwHhcNMjUwNTA5MDQyNDU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjY3MC01N2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX046xvHB7VExIqqyLfNSXed2UQmCUuVwmollbaTWU1m+Yn+LPvGzpxxPax7 5Zi4LLIzBDhXZzxQC0E+k/6JgB3FWoGHoN40Rz3japjcx2kjEXNVXAjCH78lemTv k5OUVZwTeKV05OmNie4JH0ozubUXRpfjeBOR3dd5/XYl/rJmiljxR0MpJqEfpbfe q9thx1C9Psusv+Z3rIc4m9t4g7LvLNQ9CL1Qniyt5MYBJSz7SVgPo/hOMZAPNsRa cM10Hkoce83WjJUOGuM4L9EEW5Ir5uiovgnkvpbmC2XI14HOJfYzUtjLerwZBcPE +fPh4XJhmx4TFgzzc2vqOvAIxwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCOKyTUx yUrhZXHr2q1YNiCyk/NbMB8GA1UdIwQYMBaAFNpDELLwh530vZg5oUyOP7u28evx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTU2QS8yNkZBMTgxODc3 MjQxMUVFQTE2NzRFMUZDNEY5QUUwMi8ya01Rc3ZDSG5mUzltRG1oVEk0X3U3Yng2 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrTVFzdkNIbmZTOW1EbWhUSTRfdTdieDZfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE1NkEvMjZGQTE4MTg3NzI0MTFFRUExNjc0RTFGQzRGOUFFMDIvM0RGNjQ1OUE3 NzI1MTFFRUEyRTM3NDIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ3lAMA0GCSqGSIb3DQEBCwUAA4IBAQB++Qfj+A/EoT8yXrGGRKHu S0cntgwQiVTLDg4LxsxjhEhk1KYLhxQMkRqiO48LA2MbQu9Gs5fitxVtHzVHV7Oo 0XbgVpdvuoZ/easSC/THyDFNsGZfXeODe2huIGBhWzhpl3E4se87hJFjA6YMK/06 ySaJhI6zmMM/JNlIeeFHjL9xPokeTzZ6hvXwhDihox6+PMM6xiuPt6TibQXrRB54 cM4QGeSxmidh9eUloO7Hu0MH6WniNP8jUEmMr7xEPIrJKWHJ4s87pyDtu87xfRCO hpaaU1iYNc+anPSfyFZe0HFgGF4+dGrUT52ZcTPk7zYTvb/A4aJ0LvRFmzgUCHZu -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:30 2026 by rpki-client