$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa File: 3A9A3904330011EBA08B865DC4F9AE02.roa (raw, json) Hash identifier: mKwK5iOPGex40HNrt/NQkPkIKFqlB9W9tlJIyUVibC4= Subject key identifier: 5E:8A:F9:49:C6:1D:A6:46:D1:C7:3C:00:5A:B2:15:AD:5F:C2:3A:2D Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 07C0 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:27:15 +0000 ROA not before: Sat 04 Oct 2025 21:52:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134554 IP address blocks: 103.195.20.0/22 maxlen: 22 103.195.20.0/24 maxlen: 24 103.195.21.0/24 maxlen: 24 103.195.22.0/24 maxlen: 24 103.195.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1984 (0x7c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Oct 4 21:52:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a430a3-e450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:22:06:32:9e:87:cc:59:6f:d8:0d:53:27:73: b1:b8:ea:64:f4:76:ca:f7:1a:9f:c8:2a:ee:7d:26: 53:4c:8a:36:25:85:ce:54:e0:65:00:a3:4a:71:ac: 93:bb:ff:53:61:4c:2b:d9:3e:6d:c0:95:09:62:2a: 34:2c:1a:70:57:ec:ec:f1:27:bd:26:a7:e4:c5:08: 96:62:ac:1f:5f:36:7b:32:d6:40:c9:3f:69:06:0e: 97:ad:c7:6a:c0:7c:67:63:93:70:03:b6:e9:2c:8a: 08:3c:fc:f0:ad:2a:90:ed:df:eb:a2:b4:4b:88:f7: 90:a1:e7:8f:3c:fa:ba:58:bd:f5:da:be:1e:98:19: 53:c6:b1:91:7b:62:92:32:e6:5d:54:22:df:56:9f: 54:bf:9e:a2:6d:78:0a:7a:36:a5:cf:eb:77:40:d8: ad:ca:c1:7f:b8:0e:40:58:ac:9f:aa:6c:13:63:08: 7f:6c:a3:55:2e:be:16:ef:55:98:03:bb:e9:26:58: e0:af:56:1c:77:b8:cf:81:c4:4f:58:0c:8c:4f:de: 08:79:3c:ff:54:a4:4f:da:0c:23:4c:4f:83:78:65: 36:54:11:c3:a6:6f:87:fc:de:ad:97:07:1a:69:ba: 92:82:e9:30:3a:c4:67:38:71:7f:4b:6b:50:ab:bb: d8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:8A:F9:49:C6:1D:A6:46:D1:C7:3C:00:5A:B2:15:AD:5F:C2:3A:2D X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.195.20.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:48:b6:c3:4f:ea:6c:25:97:d0:8c:ee:b8:35:db:f3:2e:e1: 78:97:3c:f1:fb:bc:c4:98:7d:32:b1:42:3f:63:08:30:a0:0b: 7f:29:bd:75:f7:10:48:bc:52:a1:c5:df:e6:94:d5:20:96:92: bd:53:ac:f3:4c:24:a4:eb:31:fe:af:3b:be:5b:2b:96:28:95: ef:70:73:b3:1e:54:b7:41:61:46:6e:8d:f7:b5:f0:f8:a2:39: eb:38:ca:97:06:88:da:50:14:4c:a3:5f:a2:6e:d1:72:2e:9d: 3c:09:f6:3d:31:a2:8c:8d:ed:70:db:e3:a1:40:b4:db:dc:dc: 17:c1:fc:a3:7d:73:ab:6d:55:d9:27:40:12:81:3f:9c:ae:64: 4a:08:1e:91:6c:00:23:37:ef:db:3e:ab:9c:5d:29:37:96:48: 73:62:a2:dd:ea:6a:30:89:5b:04:df:0c:bb:a5:44:86:c5:db: fd:f7:4c:12:57:e0:9d:6b:0e:03:76:df:bf:4f:23:71:e0:48: ed:3e:10:c5:9c:47:7b:5f:4b:12:91:bb:45:96:b8:16:13:fa: 31:bb:86:e9:ba:2c:a3:d6:55:13:2d:5a:f0:91:98:1e:72:b5: f1:bd:43:89:5c:15:a0:bb:27:6f:58:6f:be:b2:41:c8:ed:8c: c6:80:6f:bb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUxMDA0MjE1MjIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzBhMy1lNDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iIGMp6HzFlv2A1TJ3OxuOpk9HbK9xqfyCrufSZTTIo2JYXOVOBlAKNKcayT u/9TYUwr2T5twJUJYio0LBpwV+zs8Se9JqfkxQiWYqwfXzZ7MtZAyT9pBg6Xrcdq wHxnY5NwA7bpLIoIPPzwrSqQ7d/rorRLiPeQoeePPPq6WL312r4emBlTxrGRe2KS MuZdVCLfVp9Uv56ibXgKejalz+t3QNitysF/uA5AWKyfqmwTYwh/bKNVLr4W71WY A7vpJljgr1Ycd7jPgcRPWAyMT94IeTz/VKRP2gwjTE+DeGU2VBHDpm+H/N6tlwca abqSgukwOsRnOHF/S2tQq7vYawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF6K+UnG HaZG0cc8AFqyFa1fwjotMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZFRjYvMTk4NkI5RDgzMkZFMTFFQjg1QkFEMTU3QzRGOUFFMDIvM0E5QTM5MDQz MzAwMTFFQkEwOEI4NjVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ8MUMA0GCSqGSIb3DQEBCwUAA4IBAQAqSLbDT+psJZfQjO64Ndvz LuF4lzzx+7zEmH0ysUI/YwgwoAt/Kb119xBIvFKhxd/mlNUglpK9U6zzTCSk6zH+ rzu+WyuWKJXvcHOzHlS3QWFGbo33tfD4ojnrOMqXBojaUBRMo1+ibtFyLp08CfY9 MaKMje1w2+OhQLTb3NwXwfyjfXOrbVXZJ0ASgT+crmRKCB6RbAAjN+/bPqucXSk3 lkhzYqLd6mowiVsE3wy7pUSGxdv990wSV+Cdaw4Ddt+/TyNx4EjtPhDFnEd7X0sS kbtFlrgWE/oxu4bpuiyj1lUTLVrwkZgecrXxvUOJXBWguydvWG++skHI7YzGgG+7 -----END CERTIFICATE-----Generated at Sat Mar 28 15:13:15 2026 by rpki-client