$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa File: DD1D106AB55611F0ABCE9254C4F9AE02.roa (raw, json) Hash identifier: HXVArtG7682TOfdIk9HoiDIPKWjHdrg5PVF+pT8VfXs= Subject key identifier: 50:01:6C:3B:B7:78:09:BF:AE:C6:19:67:A7:AA:03:F9:2C:E2:EE:DE Certificate issuer: /CN=A919EFEE/serialNumber=3142A1A861D9A44A9327F06619FEC8A6A962B423 Certificate serial: 61 Authority key identifier: 31:42:A1:A8:61:D9:A4:4A:93:27:F0:66:19:FE:C8:A6:A9:62:B4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa Signing time: Mon 23 Mar 2026 03:36:24 +0000 ROA not before: Mon 23 Mar 2026 03:36:24 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133135 IP address blocks: 103.253.14.0/24 maxlen: 24 103.253.15.0/24 maxlen: 24 202.176.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.crl rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFEE, serialNumber=3142A1A861D9A44A9327F06619FEC8A6A962B423 Validity Not Before: Mar 23 03:36:24 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69c0b538-3f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f5:02:b6:56:cf:d6:46:e9:b1:b0:b2:93:37: 96:0c:6a:34:ea:18:9d:30:ca:9f:83:c0:81:2a:f4: 77:a4:11:af:db:fe:de:7b:52:2b:be:1d:16:84:d9: 4e:b2:f0:84:78:81:67:a9:d9:b7:c8:35:e0:22:79: 7a:7e:28:c2:56:cf:6f:e9:e3:6d:ab:b2:32:9b:5c: 0d:11:05:c8:2c:05:8c:91:b0:23:bf:ce:34:ae:e6: 74:23:43:db:a1:31:cd:09:dd:42:08:d2:0c:75:90: f6:f1:1e:8d:31:1b:2a:8c:ee:58:e3:9f:6b:b6:ef: 50:d6:ef:c0:1a:3c:c0:80:37:81:49:a4:89:a4:dd: af:a7:26:2d:9f:e3:41:2d:2f:76:73:8c:9a:b9:b8: e7:7d:c4:02:77:f3:2d:4b:26:37:91:0d:2f:df:2b: 92:be:65:28:fd:e6:ce:c2:54:a0:ca:12:00:9e:e0: b3:51:64:8a:f2:c8:ca:fd:d5:a1:de:b2:5a:df:16: 25:41:a5:b5:d1:7e:98:09:06:61:9f:b6:14:bd:09: e9:06:c5:f7:78:fb:09:05:cc:ff:0e:6a:93:b2:07: e0:b7:0b:58:05:9f:77:69:fc:79:1f:f7:c1:06:4b: e0:2b:3b:a5:9b:9d:17:c1:46:5d:4d:17:fd:d8:f6: 9c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:01:6C:3B:B7:78:09:BF:AE:C6:19:67:A7:AA:03:F9:2C:E2:EE:DE X509v3 Authority Key Identifier: keyid:31:42:A1:A8:61:D9:A4:4A:93:27:F0:66:19:FE:C8:A6:A9:62:B4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.253.14.0/23 202.176.7.0/24 Signature Algorithm: sha256WithRSAEncryption 17:30:0c:b9:90:83:b9:f6:aa:6b:93:e1:56:6f:fc:78:3d:30: d5:6d:76:30:97:1d:ff:4b:3b:0d:2f:65:fa:b0:8b:34:0b:ee: b5:ab:b3:df:c8:71:66:17:d2:01:85:26:a3:8d:ab:e0:43:9d: 28:4b:51:a1:88:e7:fb:43:56:3b:83:5e:33:06:7a:1a:f7:bc: 34:68:db:01:31:2d:75:76:9d:6d:90:07:38:a0:54:df:2e:21: 3d:da:71:6a:67:93:b3:66:0b:a1:69:8e:02:ea:79:0a:8c:59: 27:0b:0f:0e:fa:0f:19:2c:c0:15:64:36:9f:23:d9:30:f6:9e: a7:74:f4:45:8c:52:e4:89:9e:87:f1:09:e4:4f:ba:a7:32:34: 1c:37:e1:38:a1:ec:27:f1:cd:34:5e:6e:7e:70:02:7a:fd:66: ae:ed:47:4e:ff:97:a7:6e:4d:10:50:74:cf:7a:f9:7b:87:89: c8:d0:96:2e:ac:b4:eb:26:98:df:54:bd:b3:1b:82:3d:21:51: 2c:19:d5:c2:37:5b:95:eb:9e:20:e9:b1:94:0a:70:b7:0e:f2: 82:e9:63:c6:ba:3e:57:01:20:e5:72:e3:3f:de:5f:23:b8:71: f7:df:14:fd:47:ee:0c:20:9e:50:3c:08:e3:40:9e:5f:6f:3a: d4:d0:1c:c0 -----BEGIN CERTIFICATE----- MIIFQTCCBCmgAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUZFRTExMC8GA1UEBRMoMzE0MkExQTg2MUQ5QTQ0QTkzMjdGMDY2MTlGRUM4QTZB OTYyQjQyMzAeFw0yNjAzMjMwMzM2MjRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzBiNTM4LTNmMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe9QK2Vs/WRumxsLKTN5YMajTqGJ0wyp+DwIEq9HekEa/b/t57Uiu+HRaE2U6y 8IR4gWep2bfINeAieXp+KMJWz2/p422rsjKbXA0RBcgsBYyRsCO/zjSu5nQjQ9uh Mc0J3UII0gx1kPbxHo0xGyqM7ljjn2u271DW78AaPMCAN4FJpImk3a+nJi2f40Et L3ZzjJq5uOd9xAJ38y1LJjeRDS/fK5K+ZSj95s7CVKDKEgCe4LNRZIryyMr91aHe slrfFiVBpbXRfpgJBmGfthS9CekGxfd4+wkFzP8OapOyB+C3C1gFn3dp/Hkf98EG S+ArO6WbnRfBRl1NF/3Y9pw/AgMBAAGjggJmMIICYjAdBgNVHQ4EFgQUUAFsO7d4 Cb+uxhlnp6oD+Szi7t4wHwYDVR0jBBgwFoAUMUKhqGHZpEqTJ/BmGf7IpqlitCMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFRkVFLzBGOUU5MUY4QjNE MTExRjA4NkMyMkQ1QUM0RjlBRTAyL01VS2hxR0hacEVxVEpfQm1HZjdJcHFsaXRD TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVVLaHFHSFpwRXFUSl9CbUdmN0lwcWxpdENNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUZFRS8wRjlFOTFGOEIzRDExMUYwODZDMjJENUFDNEY5QUUwMi9ERDFEMTA2QUI1 NTYxMUYwQUJDRTkyNTRDNEY5QUUwMi5yb2EwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAFn/Q4DBADKsAcwDQYJKoZIhvcNAQELBQADggEBABcwDLmQg7n2qmuT 4VZv/Hg9MNVtdjCXHf9LOw0vZfqwizQL7rWrs9/IcWYX0gGFJqONq+BDnShLUaGI 5/tDVjuDXjMGehr3vDRo2wExLXV2nW2QBzigVN8uIT3acWpnk7NmC6FpjgLqeQqM WScLDw76DxkswBVkNp8j2TD2nqd09EWMUuSJnofxCeRPuqcyNBw34Tih7CfxzTRe bn5wAnr9Zq7tR07/l6duTRBQdM96+XuHicjQli6stOsmmN9UvbMbgj0hUSwZ1cI3 W5XrniDpsZQKcLcO8oLpY8a6PlcBIOVy4z/eXyO4cfffFP1H7gwgnlA8CONAnl9v OtTQHMA= -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:23 2026 by rpki-client