$ rpki-client -vvf rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/3C4FDE3C0FCA11F18E293E94403D8C67.roa File: 3C4FDE3C0FCA11F18E293E94403D8C67.roa (raw, json) Hash identifier: WfW3TvX//PVo0P/ZBW64rIIqCW2R7aTX6JlE3iuszp0= Subject key identifier: C6:36:4E:E2:67:A6:01:7A:4A:81:AC:D0:BD:5A:E9:E7:18:18:EA:33 Certificate issuer: /CN=A91D226F/serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Certificate serial: 022B Authority key identifier: 87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/3C4FDE3C0FCA11F18E293E94403D8C67.roa Signing time: Sun 01 Mar 2026 10:14:16 +0000 ROA not before: Sun 22 Feb 2026 08:41:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151352 IP address blocks: 103.176.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D226F, serialNumber=87F0596871B515BBB3D2982DC6FB9C12DEF4C234 Validity Not Before: Feb 22 08:41:09 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a41178-03a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:2e:bf:92:25:ed:86:52:3c:dc:fd:13:e2: 9f:5d:8b:0a:e9:5f:c6:16:db:31:2c:12:65:a8:fb: 0e:0e:a2:d8:3f:87:f5:86:f0:42:02:40:3b:c1:0a: 4c:da:44:e2:ab:35:a6:6f:77:87:d7:bb:51:76:d6: b5:40:cf:e8:62:58:92:f4:5e:75:e0:df:94:86:fa: 49:2f:b8:48:66:65:70:fd:30:cd:d8:21:93:5c:34: da:e6:99:76:84:57:67:38:bb:75:8f:16:b0:58:1f: 22:de:05:6a:bd:aa:c6:7e:4a:8b:80:82:64:8c:e8: df:80:39:0a:f9:b7:2b:fb:60:71:28:b6:ed:11:6f: ad:25:c0:8b:06:24:ea:b1:09:1d:58:93:b7:1b:e6: 9a:4c:ab:e9:b2:e7:46:f5:0c:96:6f:e4:15:f8:cf: dc:b2:21:0e:ab:9d:92:fd:e5:aa:df:43:2c:17:f0: 16:12:b9:31:89:13:40:2b:54:c3:58:2e:fa:5b:90: b9:89:8a:f3:6f:09:85:fd:13:ec:6d:bd:4a:f0:fc: 20:74:4a:6b:2f:d0:9a:67:ac:fb:3d:4c:70:eb:8e: 43:d4:9b:ad:20:11:4f:6f:df:91:d5:c8:77:32:fc: dd:bf:20:b2:2d:47:d3:99:5c:45:1b:6e:00:28:ea: 6d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:36:4E:E2:67:A6:01:7A:4A:81:AC:D0:BD:5A:E9:E7:18:18:EA:33 X509v3 Authority Key Identifier: keyid:87:F0:59:68:71:B5:15:BB:B3:D2:98:2D:C6:FB:9C:12:DE:F4:C2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/h_BZaHG1Fbuz0pgtxvucEt70wjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_BZaHG1Fbuz0pgtxvucEt70wjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D226F/D5C56E28FAD411ED80EED05FC4F9AE02/3C4FDE3C0FCA11F18E293E94403D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.176.0.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:be:e5:08:cc:24:6d:c4:86:e5:d8:01:86:f0:dc:fa:40:d5: 2e:5f:a6:fd:a4:10:d3:3e:03:ce:ff:a5:ae:2d:4f:ca:42:d9: db:de:dc:46:cf:44:9e:95:38:d4:ed:cf:fa:24:ee:0c:9a:18: cd:5f:6d:60:6c:53:23:3b:b0:aa:2c:f8:41:b5:1b:25:66:38: b5:bc:ad:65:93:dc:08:08:55:e4:d9:ae:55:3c:b9:9b:25:73: 04:5c:dc:24:31:89:5a:19:03:c1:e0:0d:fe:54:09:10:9a:0a: c6:b8:9b:ea:ac:2d:dc:23:22:b5:6a:7e:cb:79:b0:34:58:b2: 61:5d:75:fc:8a:97:e3:10:c0:14:42:e1:9d:be:07:d9:31:71: 22:1d:b5:fc:f6:ae:2a:d3:b8:5f:08:de:3a:3a:63:80:2c:f3: ce:1f:11:34:e2:9f:fa:31:9b:8f:61:0f:c0:59:50:87:50:0f: 02:bb:f5:f4:cd:db:ce:57:d5:6c:f2:fb:72:23:30:a7:f4:b2: c6:79:14:fe:03:d8:51:35:8a:06:25:db:d7:ca:b0:8f:c3:1d: 30:16:8b:ff:23:ac:48:1a:2f:81:63:92:dc:2c:72:d9:ad:07: d1:7b:e8:6f:1a:52:ac:bf:3c:a2:e2:a8:d2:10:79:34:ce:b5: e1:ef:f3:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIyNkYxMTAvBgNVBAUTKDg3RjA1OTY4NzFCNTE1QkJCM0QyOTgyREM2RkI5QzEy REVGNEMyMzQwHhcNMjYwMjIyMDg0MTA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTE3OC0wM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxIuv5Il7YZSPNz9E+KfXYsK6V/GFtsxLBJlqPsODqLYP4f1hvBCAkA7wQpM 2kTiqzWmb3eH17tRdta1QM/oYliS9F514N+UhvpJL7hIZmVw/TDN2CGTXDTa5pl2 hFdnOLt1jxawWB8i3gVqvarGfkqLgIJkjOjfgDkK+bcr+2BxKLbtEW+tJcCLBiTq sQkdWJO3G+aaTKvpsudG9QyWb+QV+M/csiEOq52S/eWq30MsF/AWErkxiRNAK1TD WC76W5C5iYrzbwmF/RPsbb1K8PwgdEprL9CaZ6z7PUxw645D1JutIBFPb9+R1ch3 MvzdvyCyLUfTmVxFG24AKOptQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMY2TuJn pgF6SoGs0L1a6ecYGOozMB8GA1UdIwQYMBaAFIfwWWhxtRW7s9KYLcb7nBLe9MI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjI2Ri9ENUM1NkUyOEZB RDQxMUVEODBFRUQwNUZDNEY5QUUwMi9oX0JaYUhHMUZidXowcGd0eHZ1Y0V0NzB3 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfQlphSEcxRmJ1ejBwZ3R4dnVjRXQ3MHdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIyNkYvRDVDNTZFMjhGQUQ0MTFFRDgwRUVEMDVGQzRGOUFFMDIvM0M0RkRFM0Mw RkNBMTFGMThFMjkzRTk0NDAzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7AAMA0GCSqGSIb3DQEBCwUAA4IBAQAfvuUIzCRtxIbl2AGG8Nz6 QNUuX6b9pBDTPgPO/6WuLU/KQtnb3txGz0SelTjU7c/6JO4MmhjNX21gbFMjO7Cq LPhBtRslZji1vK1lk9wICFXk2a5VPLmbJXMEXNwkMYlaGQPB4A3+VAkQmgrGuJvq rC3cIyK1an7LebA0WLJhXXX8ipfjEMAUQuGdvgfZMXEiHbX89q4q07hfCN46OmOA LPPOHxE04p/6MZuPYQ/AWVCHUA8Cu/X0zdvOV9Vs8vtyIzCn9LLGeRT+A9hRNYoG JdvXyrCPwx0wFov/I6xIGi+BY5LcLHLZrQfRe+hvGlKsvzyi4qjSEHk0zrXh7/Nk -----END CERTIFICATE-----Generated at Thu Mar 26 18:39:53 2026 by rpki-client