$ rpki-client -vvf rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa File: A3E98D0E22A911EB96014E82C4F9AE02.roa (raw, json) Hash identifier: PwNatT98vDMLCMW/pGvJnRh8IWvqMHeInd7IvXTX4CU= Subject key identifier: 65:94:D3:79:52:6B:E5:91:73:3A:D0:BC:C3:E4:60:A5:C9:77:AA:63 Certificate issuer: /CN=A9195FCB/serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Certificate serial: 0806 Authority key identifier: E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa Signing time: Tue 24 Mar 2026 16:43:10 +0000 ROA not before: Tue 24 Mar 2026 16:43:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141398 IP address blocks: 103.158.62.0/23 maxlen: 23 103.158.62.0/24 maxlen: 24 103.158.63.0/24 maxlen: 24 2406:b240::/32 maxlen: 32 2406:b240:1000::/48 maxlen: 48 2406:b240:2000::/48 maxlen: 48 2406:b240:2001::/48 maxlen: 48 2406:b240:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195FCB, serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Validity Not Before: Mar 24 16:43:10 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69c2bf1e-df21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ad:18:43:7f:32:b8:a2:7a:0c:1a:e5:0c:35: 7e:60:ff:61:d3:2e:71:75:b5:e9:9c:75:8f:a5:a5: 2d:21:3f:f4:53:7a:96:e6:0e:45:9b:99:8e:3a:e2: 05:67:b2:62:42:82:c7:7c:de:41:09:cc:5b:83:c9: 57:62:69:a4:5a:74:fd:0b:d1:5f:97:12:dd:95:b4: 14:a9:0c:92:b4:59:f6:81:85:a5:79:f3:c9:8e:ac: 8e:a6:25:60:6a:f2:0b:aa:06:69:ac:9f:21:39:fa: 05:1e:f8:c9:e1:ac:f3:11:f7:e1:5f:2f:93:dd:25: 5c:3b:95:ce:e4:9f:aa:6a:08:f1:91:5c:76:94:38: f8:50:d7:c5:eb:93:d1:d2:41:bb:9d:98:46:7c:d8: b7:a4:a5:98:02:e3:17:b7:0f:8f:a2:92:92:26:f5: 13:24:97:39:d9:3c:d9:b8:4b:2a:6b:2b:c9:ae:ca: 1a:97:cc:c7:1e:00:02:f4:00:3d:6f:27:d5:f7:50: 8c:ce:fa:c6:93:74:32:a5:e7:7e:04:06:b1:5a:e8: 23:41:c1:dc:dd:34:39:56:18:7e:fe:9e:8f:fe:dd: a0:97:81:23:d7:d1:e6:3b:ce:47:59:22:a7:37:c2: d6:97:1a:07:4f:6e:54:9f:9c:6d:05:1f:e8:ae:43: 2d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:94:D3:79:52:6B:E5:91:73:3A:D0:BC:C3:E4:60:A5:C9:77:AA:63 X509v3 Authority Key Identifier: keyid:E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.62.0/23 IPv6: 2406:b240::/32 Signature Algorithm: sha256WithRSAEncryption c0:23:17:55:1a:80:b6:06:3a:fd:2e:5d:ea:85:f1:de:05:cf: 96:c1:a4:4d:f7:d2:88:09:97:38:f5:d8:9a:86:59:1e:22:c0: 6f:e9:0c:56:5d:98:1d:e7:d4:34:0f:43:fa:11:ca:1e:a6:52: b1:f2:9c:19:2c:8f:13:7c:e1:a1:17:2e:8d:59:62:ba:b7:08: 4d:35:7e:19:8d:a7:21:fa:a7:3a:7e:f2:0a:4a:48:db:c6:b8: fe:c6:02:72:e2:6e:a1:dd:61:d2:25:6c:3e:8a:03:65:fa:39: 20:09:43:46:00:8b:0f:44:ba:2b:e6:aa:f6:75:61:5b:7c:c6: 8b:62:4d:c6:2e:bd:e5:da:61:ba:8e:b0:5e:c2:1d:3c:38:5e: e7:cf:e2:a7:ee:66:c6:82:be:07:6e:b1:47:b0:35:f6:4b:14: 96:dd:c8:38:91:cc:06:65:37:6b:b2:bd:52:b9:bf:58:29:90: 3f:aa:20:8b:bb:24:52:ca:51:c7:52:f5:17:fc:c1:8e:4a:9e: 76:c5:00:0f:c1:8d:1c:49:9b:89:5c:20:3a:26:b8:51:ac:6d: a5:e0:8a:df:1e:94:7f:21:fb:8e:4d:43:4f:bf:e1:74:95:a9: 1b:5f:ee:23:90:c6:1f:65:f7:68:fc:51:17:98:c9:51:46:9a: a6:b8:6f:3b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGQ0IxMTAvBgNVBAUTKEU5NTEzNzFERTREQ0IxMDAyNTQ4NEQyRjE0RkRDREEy QzY0NTVCOTEwHhcNMjYwMzI0MTY0MzEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyYmYxZS1kZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsa0YQ38yuKJ6DBrlDDV+YP9h0y5xdbXpnHWPpaUtIT/0U3qW5g5Fm5mOOuIF Z7JiQoLHfN5BCcxbg8lXYmmkWnT9C9FflxLdlbQUqQyStFn2gYWlefPJjqyOpiVg avILqgZprJ8hOfoFHvjJ4azzEffhXy+T3SVcO5XO5J+qagjxkVx2lDj4UNfF65PR 0kG7nZhGfNi3pKWYAuMXtw+PopKSJvUTJJc52TzZuEsqayvJrsoal8zHHgAC9AA9 byfV91CMzvrGk3Qyped+BAaxWugjQcHc3TQ5Vhh+/p6P/t2gl4Ej19HmO85HWSKn N8LWlxoHT25Un5xtBR/orkMtEwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGWU03lS a+WRczrQvMPkYKXJd6pjMB8GA1UdIwQYMBaAFOlRNx3k3LEAJUhNLxT9zaLGRVuR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUZDQi84ODBFNjM0MDIy QTcxMUVCQjQwNkNFN0NDNEY5QUUwMi82VkUzSGVUY3NRQWxTRTB2RlAzTm9zWkZX NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWRTNIZVRjc1FBbFNFMHZGUDNOb3NaRlc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVGQ0IvODgwRTYzNDAyMkE3MTFFQkI0MDZDRTdDQzRGOUFFMDIvQTNFOThEMEUy MkE5MTFFQjk2MDE0RTgyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ54+MA0EAgACMAcDBQAkBrJAMA0GCSqGSIb3DQEBCwUAA4IBAQDA IxdVGoC2Bjr9Ll3qhfHeBc+WwaRN99KICZc49diahlkeIsBv6QxWXZgd59Q0D0P6 EcoeplKx8pwZLI8TfOGhFy6NWWK6twhNNX4Zjach+qc6fvIKSkjbxrj+xgJy4m6h 3WHSJWw+igNl+jkgCUNGAIsPRLor5qr2dWFbfMaLYk3GLr3l2mG6jrBewh08OF7n z+Kn7mbGgr4HbrFHsDX2SxSW3cg4kcwGZTdrsr1Sub9YKZA/qiCLuyRSylHHUvUX /MGOSp52xQAPwY0cSZuJXCA6JrhRrG2l4IrfHpR/IfuOTUNPv+F0lakbX+4jkMYf Zfdo/FEXmMlRRpqmuG87 -----END CERTIFICATE-----Generated at Fri Mar 27 00:00:42 2026 by rpki-client