$ rpki-client -vvf rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/8AE9FE88E63111EAAC43244EC4F9AE02.roa File: 8AE9FE88E63111EAAC43244EC4F9AE02.roa (raw, json) Hash identifier: updD38wtAdj5dijUmVbc8ur6Q26JQGPvJNSN6xjVgUc= Subject key identifier: 2E:73:C5:91:7E:63:D3:FD:73:4A:7E:C9:04:B3:08:DB:7F:B0:C8:FD Certificate issuer: /CN=A911155C/serialNumber=4DBAE8DA40F93DAED5BA7DCCBD6FD58DB6184CC9 Certificate serial: 088C Authority key identifier: 4D:BA:E8:DA:40:F9:3D:AE:D5:BA:7D:CC:BD:6F:D5:8D:B6:18:4C:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/8AE9FE88E63111EAAC43244EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:55:54 +0000 ROA not before: Sun 24 Aug 2025 21:01:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138001 IP address blocks: 103.153.230.0/23 maxlen: 23 103.153.230.0/24 maxlen: 24 103.153.231.0/24 maxlen: 24 2406:64c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.crl rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911155C, serialNumber=4DBAE8DA40F93DAED5BA7DCCBD6FD58DB6184CC9 Validity Not Before: Aug 24 21:01:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4294a-aaa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:38:ec:42:55:16:72:0e:cd:d9:67:b1:75:bf: 29:22:1d:37:c3:a8:2d:e1:d7:af:cb:e4:13:8d:9f: bb:7a:3f:83:1a:e6:3b:b3:42:bd:7c:43:da:0a:d9: 08:71:d9:f5:9f:95:9e:da:cf:5d:74:ac:3e:7d:a9: bc:21:b2:b2:cc:f7:ac:30:8e:84:5a:0a:e4:df:29: 99:25:f7:e1:cd:04:3d:84:db:48:11:a0:83:57:58: 7d:79:64:7d:47:5f:50:a8:fa:16:ad:b1:a2:de:1c: 4b:0a:b5:a2:54:71:9f:d8:6e:60:3f:a6:98:af:1f: 91:6d:d2:47:b2:ae:90:42:5d:bd:70:3a:79:a2:f3: fe:93:06:4e:cc:4d:cf:18:69:e3:d3:81:a3:11:7c: c9:b9:c8:ca:9d:22:b1:88:2a:1d:3c:43:0c:07:61: 28:a6:fb:44:44:d9:7c:73:b8:af:23:f0:59:47:c7: e4:65:17:99:ff:22:28:e6:4b:79:f2:31:2e:23:01: 62:04:fb:05:b4:65:e9:28:1d:2a:e5:8a:26:14:81: 7c:7e:4c:4a:27:1a:56:94:71:b8:5b:84:6d:62:5f: 60:40:4c:cd:fd:c9:c5:79:d5:9d:3c:65:f6:bc:22: 5c:04:71:44:70:3d:80:f8:03:f8:7a:12:b5:fb:6c: 0c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:73:C5:91:7E:63:D3:FD:73:4A:7E:C9:04:B3:08:DB:7F:B0:C8:FD X509v3 Authority Key Identifier: keyid:4D:BA:E8:DA:40:F9:3D:AE:D5:BA:7D:CC:BD:6F:D5:8D:B6:18:4C:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/8AE9FE88E63111EAAC43244EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.153.230.0/23 IPv6: 2406:64c0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:7a:07:ca:51:0c:4b:2d:9c:99:d7:69:cd:ca:21:d2:26:c9: 90:b1:4b:98:fc:e7:52:13:a6:27:96:c5:31:fc:f7:3e:48:c7: e9:60:51:60:4b:cc:63:65:e8:de:a6:0b:63:75:54:73:7d:b0: 90:e3:5e:7e:59:b4:5d:2a:a9:a5:ec:bf:2e:a1:ff:1e:64:cc: 9e:42:8f:18:cc:c5:1f:31:00:31:7f:60:42:36:d0:9c:64:d0: a8:8a:fb:84:41:b6:d7:7a:6b:3a:78:64:9a:1c:5d:c4:78:0c: 45:4b:bd:46:61:6e:b6:af:5a:97:d3:f3:8e:a1:3d:1d:8c:be: c6:c7:3c:bd:52:e6:0d:a9:82:19:89:bc:4b:a6:f6:d8:83:fc: 0d:de:ab:3f:f8:62:b8:ee:27:bd:4f:62:c0:22:c0:86:e1:bf: ae:d6:c1:a2:fc:85:f6:c4:a5:d1:94:32:ca:d6:a9:07:f0:b5: 03:7d:c3:0b:5f:b6:62:0f:60:3b:2e:45:0a:9f:8b:90:57:4b: 26:08:02:11:c7:73:eb:6c:69:22:b1:1e:24:a6:46:d7:10:fc: ab:3b:56:47:77:ee:22:39:51:ee:03:91:39:0d:c7:05:d7:8c: 08:a8:28:28:1b:2f:18:c3:91:4a:2e:7e:75:71:3e:cb:58:6d: 9f:c2:8b:70 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE1NUMxMTAvBgNVBAUTKDREQkFFOERBNDBGOTNEQUVENUJBN0RDQ0JENkZENThE QjYxODRDQzkwHhcNMjUwODI0MjEwMTAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjk0YS1hYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkDjsQlUWcg7N2Wexdb8pIh03w6gt4devy+QTjZ+7ej+DGuY7s0K9fEPaCtkI cdn1n5We2s9ddKw+fam8IbKyzPesMI6EWgrk3ymZJffhzQQ9hNtIEaCDV1h9eWR9 R19QqPoWrbGi3hxLCrWiVHGf2G5gP6aYrx+RbdJHsq6QQl29cDp5ovP+kwZOzE3P GGnj04GjEXzJucjKnSKxiCodPEMMB2EopvtERNl8c7ivI/BZR8fkZReZ/yIo5kt5 8jEuIwFiBPsFtGXpKB0q5YomFIF8fkxKJxpWlHG4W4RtYl9gQEzN/cnFedWdPGX2 vCJcBHFEcD2A+AP4ehK1+2wMmQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFC5zxZF+ Y9P9c0p+yQSzCNt/sMj9MB8GA1UdIwQYMBaAFE266NpA+T2u1bp9zL1v1Y22GEzJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTU1Qy9BOTU4RTMwRUU2 MkYxMUVBOEU0QTMyNEJDNEY5QUUwMi9UYnJvMmtENVBhN1Z1bjNNdldfVmpiWVlU TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Ricm8ya0Q1UGE3VnVuM012V19WamJZWVRNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE1NUMvQTk1OEUzMEVFNjJGMTFFQThFNEEzMjRCQzRGOUFFMDIvOEFFOUZFODhF NjMxMTFFQUFDNDMyNDRFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5nmMA0EAgACMAcDBQAkBmTAMA0GCSqGSIb3DQEBCwUAA4IBAQAq egfKUQxLLZyZ12nNyiHSJsmQsUuY/OdSE6YnlsUx/Pc+SMfpYFFgS8xjZejepgtj dVRzfbCQ415+WbRdKqml7L8uof8eZMyeQo8YzMUfMQAxf2BCNtCcZNCoivuEQbbX ems6eGSaHF3EeAxFS71GYW62r1qX0/OOoT0djL7Gxzy9UuYNqYIZibxLpvbYg/wN 3qs/+GK47ie9T2LAIsCG4b+u1sGi/IX2xKXRlDLK1qkH8LUDfcMLX7ZiD2A7LkUK n4uQV0smCAIRx3PrbGkisR4kpkbXEPyrO1ZHd+4iOVHuA5E5DccF14wIqCgoGy8Y w5FKLn51cT7LWG2fwotw -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:06 2026 by rpki-client