$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/B65C355AE1E411EAAD5D8545C4F9AE02.roa File: B65C355AE1E411EAAD5D8545C4F9AE02.roa (raw, json) Hash identifier: a0ikFcPtz4uKTdxcDLlrrrB8ZBAu38Rn0L19Tx4gd1Q= Subject key identifier: 98:FE:F6:46:70:E3:F8:CB:1F:14:9E:FA:14:E3:C0:11:FD:AC:A2:E5 Certificate issuer: /CN=A919DA63/serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Certificate serial: 0890 Authority key identifier: CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/B65C355AE1E411EAAD5D8545C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:21:27 +0000 ROA not before: Wed 30 Jul 2025 21:32:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136741 IP address blocks: 103.95.0.0/22 maxlen: 22 103.95.0.0/24 maxlen: 24 103.95.1.0/24 maxlen: 24 103.95.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA63, serialNumber=CA195E7FD2598D85A36C99EC481B3574C06E3B17 Validity Not Before: Jul 30 21:32:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42f47-495b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:74:4b:41:5b:bd:89:ae:77:34:e5:03:57:d7: 54:88:d5:47:60:0b:20:1c:cf:02:7a:6e:89:cf:eb: 0f:b8:e1:05:e8:bf:ce:90:e6:5f:f9:06:a2:2b:d1: 55:10:df:b9:86:f8:86:43:cf:38:c6:20:0f:5b:2f: 61:b3:e7:cc:9f:9c:e3:5b:cd:30:99:ea:0b:81:0f: ce:52:eb:70:a3:0c:ca:c4:f7:4b:2d:be:85:31:31: 95:d8:f1:55:73:2b:60:03:5f:b6:19:f3:df:87:98: 0f:db:a6:1b:3b:b1:9e:d0:62:6b:f6:53:d1:a8:a0: 4c:d1:89:11:9b:28:84:73:b3:43:13:c1:78:e3:6c: 5a:3c:fd:17:ca:61:28:6d:32:60:57:5e:18:9c:3a: 3c:b7:c9:49:d4:1d:02:7c:90:cc:49:38:98:d5:2c: 51:c4:60:69:38:86:c4:13:89:82:3b:9e:e6:21:b0: 54:4e:59:f1:e4:bc:b6:52:49:c4:4f:5a:0d:b7:64: 74:2b:a3:e2:ab:c9:67:66:08:fd:17:b9:d8:fb:11: 33:d9:ff:e0:98:e9:c9:ec:de:37:a5:c7:43:c4:1f: 85:3f:65:fc:af:2e:3b:e3:e6:ff:50:22:98:6b:e5: b9:fb:b6:62:0d:fc:9f:45:ff:40:81:6a:87:8f:93: ad:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FE:F6:46:70:E3:F8:CB:1F:14:9E:FA:14:E3:C0:11:FD:AC:A2:E5 X509v3 Authority Key Identifier: keyid:CA:19:5E:7F:D2:59:8D:85:A3:6C:99:EC:48:1B:35:74:C0:6E:3B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/yhlef9JZjYWjbJnsSBs1dMBuOxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhlef9JZjYWjbJnsSBs1dMBuOxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA63/01BF7BEEE1E311EAB497DD28C4F9AE02/B65C355AE1E411EAAD5D8545C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.95.0.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:2c:97:01:ba:62:37:e8:c2:aa:fc:b1:da:20:80:e6:e6:7c: 12:66:9e:30:96:50:22:d3:db:0a:57:d7:10:12:7c:a1:d6:33: d7:55:7c:ef:ae:ad:6c:8b:81:91:08:9c:a6:b2:60:8d:2c:13: 92:9e:70:b6:32:ca:02:bc:77:d7:0e:d6:2e:93:2c:78:de:1a: f5:a2:9f:28:8f:29:1c:73:bb:41:ed:1f:b9:a0:25:c1:22:7e: eb:70:fc:89:6e:3d:8f:cf:fd:8a:06:16:c0:e7:75:54:ee:07: a6:76:ea:78:56:cf:6a:8e:e1:8f:28:84:2d:da:ff:f3:ad:44: 2c:04:ca:e9:36:6f:f7:12:2d:70:b1:a5:17:57:94:df:4e:ad: 44:d8:06:92:09:dd:6c:41:a1:92:da:a1:e1:d7:50:42:fe:09: d5:65:3d:a9:23:e6:3d:89:ad:96:02:a0:4d:01:a8:a6:1f:ef: ca:a7:48:5d:dd:c5:a9:a1:a6:d3:02:eb:e7:e2:61:69:a0:27: d8:01:3f:ed:ed:74:db:b1:f5:82:26:66:d0:be:08:f0:fa:3b: e6:d0:a1:99:06:a5:1e:da:62:a3:06:b3:9b:91:0e:04:68:23: a8:a6:12:12:e0:2b:6b:fa:65:e7:90:d5:13:4b:2e:8c:1b:dd: 57:54:74:18 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBNjMxMTAvBgNVBAUTKENBMTk1RTdGRDI1OThEODVBMzZDOTlFQzQ4MUIzNTc0 QzA2RTNCMTcwHhcNMjUwNzMwMjEzMjEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY0Ny00OTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3RLQVu9ia53NOUDV9dUiNVHYAsgHM8Cem6Jz+sPuOEF6L/OkOZf+QaiK9FV EN+5hviGQ884xiAPWy9hs+fMn5zjW80wmeoLgQ/OUutwowzKxPdLLb6FMTGV2PFV cytgA1+2GfPfh5gP26YbO7Ge0GJr9lPRqKBM0YkRmyiEc7NDE8F442xaPP0XymEo bTJgV14YnDo8t8lJ1B0CfJDMSTiY1SxRxGBpOIbEE4mCO57mIbBUTlnx5Ly2UknE T1oNt2R0K6Piq8lnZgj9F7nY+xEz2f/gmOnJ7N43pcdDxB+FP2X8ry474+b/UCKY a+W5+7ZiDfyfRf9AgWqHj5OtlQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJj+9kZw 4/jLHxSe+hTjwBH9rKLlMB8GA1UdIwQYMBaAFMoZXn/SWY2Fo2yZ7EgbNXTAbjsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REE2My8wMUJGN0JFRUUx RTMxMUVBQjQ5N0REMjhDNEY5QUUwMi95aGxlZjlKWmpZV2piSm5zU0JzMWRNQnVP eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lobGVmOUpaallXamJKbnNTQnMxZE1CdU94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBNjMvMDFCRjdCRUVFMUUzMTFFQUI0OTdERDI4QzRGOUFFMDIvQjY1QzM1NUFF MUU0MTFFQUFENUQ4NTQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ18AMA0GCSqGSIb3DQEBCwUAA4IBAQAeLJcBumI36MKq/LHaIIDm 5nwSZp4wllAi09sKV9cQEnyh1jPXVXzvrq1si4GRCJymsmCNLBOSnnC2MsoCvHfX DtYukyx43hr1op8ojykcc7tB7R+5oCXBIn7rcPyJbj2Pz/2KBhbA53VU7gemdup4 Vs9qjuGPKIQt2v/zrUQsBMrpNm/3Ei1wsaUXV5TfTq1E2AaSCd1sQaGS2qHh11BC /gnVZT2pI+Y9ia2WAqBNAaimH+/Kp0hd3cWpoabTAuvn4mFpoCfYAT/t7XTbsfWC JmbQvgjw+jvm0KGZBqUe2mKjBrObkQ4EaCOophIS4Ctr+mXnkNUTSy6MG91XVHQY -----END CERTIFICATE-----Generated at Thu Mar 26 05:36:20 2026 by rpki-client