$ rpki-client -vvf rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/8FFC4170EF6C11F0B51A35C1596F56BC.roa File: 8FFC4170EF6C11F0B51A35C1596F56BC.roa (raw, json) Hash identifier: ripzMW6h7Gz3iYRNTEaVSGtOjcI1v54jEJjVqeKsNek= Subject key identifier: 0A:2D:4F:AB:5F:CA:A0:E1:9B:07:07:48:07:DD:67:BC:37:52:D5:CD Certificate issuer: /CN=A911D951/serialNumber=E7D528DEE51020A0FEEDCB5C26A5B92C50F81FAC Certificate serial: 22 Authority key identifier: E7:D5:28:DE:E5:10:20:A0:FE:ED:CB:5C:26:A5:B9:2C:50:F8:1F:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/59Uo3uUQIKD-7ctcJqW5LFD4H6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/8FFC4170EF6C11F0B51A35C1596F56BC.roa Signing time: Tue 03 Mar 2026 08:45:33 +0000 ROA not before: Tue 03 Mar 2026 08:45:33 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140967 IP address blocks: 103.109.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/59Uo3uUQIKD-7ctcJqW5LFD4H6w.crl rsync://rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/59Uo3uUQIKD-7ctcJqW5LFD4H6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/59Uo3uUQIKD-7ctcJqW5LFD4H6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D951, serialNumber=E7D528DEE51020A0FEEDCB5C26A5B92C50F81FAC Validity Not Before: Mar 3 08:45:33 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a69fad-db16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:c9:61:fa:43:11:14:13:a1:53:f4:00:69: 3b:c9:27:e8:fe:72:9b:fb:72:03:e4:8a:78:b5:14: e5:45:df:a2:64:86:95:ad:80:76:4e:1a:d2:ed:b7: c0:e4:d5:8d:50:cd:69:97:6d:72:bb:a7:0d:ec:ff: c3:ae:a5:b6:0f:05:c0:97:26:cd:15:0e:76:44:bd: 92:93:ab:20:54:82:ed:ae:c6:26:f6:24:32:07:3b: 3b:4e:94:e5:99:0f:3e:f8:7b:8e:82:b9:c0:57:b9: fd:1f:1f:20:75:75:0c:03:03:7f:93:4f:8d:d5:f4: a0:a5:02:71:a1:57:0b:97:1e:6a:93:5d:46:01:20: 20:ab:f7:86:00:ca:3b:5b:1c:e3:e6:41:1f:4e:c7: fc:5c:d9:ed:dd:40:0e:bc:01:0b:3c:aa:17:63:0d: 2d:74:c3:43:a9:2a:71:73:16:03:33:8f:78:75:b1: c7:c4:4d:6e:74:a5:95:c3:7f:2f:35:b5:3e:59:d3: 9f:08:66:50:94:6f:d4:2f:1d:65:3e:3b:15:e4:19: 7a:67:ff:01:34:85:29:b7:e2:96:07:a0:9c:6c:bf: ec:e9:dc:1a:5e:fe:2e:7e:01:05:b2:f7:d9:fa:cc: d5:b6:de:cb:cf:46:81:11:23:8d:3a:98:0e:22:7d: e1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2D:4F:AB:5F:CA:A0:E1:9B:07:07:48:07:DD:67:BC:37:52:D5:CD X509v3 Authority Key Identifier: keyid:E7:D5:28:DE:E5:10:20:A0:FE:ED:CB:5C:26:A5:B9:2C:50:F8:1F:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/59Uo3uUQIKD-7ctcJqW5LFD4H6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/59Uo3uUQIKD-7ctcJqW5LFD4H6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D951/3A00D54CEF6C11F089DD613F596F56BC/8FFC4170EF6C11F0B51A35C1596F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.109.77.0/24 Signature Algorithm: sha256WithRSAEncryption 77:34:4d:73:05:ae:81:68:e8:3f:dc:12:74:91:30:36:69:76: 97:0b:35:ea:6a:d2:70:de:d0:c6:4b:a5:6d:cf:82:94:fa:36: d9:b4:28:8c:b0:74:83:44:be:32:ca:5e:4b:c7:2e:ef:52:a7: a4:d5:14:ab:0a:d3:2e:87:b2:58:63:1f:cb:53:04:78:f1:49: ba:56:62:21:27:41:41:bc:95:0d:6d:18:04:55:5c:75:5a:e0: a0:fe:ee:29:6f:a4:8f:42:84:5f:9b:df:58:6c:d1:58:77:4d: 94:05:a7:41:35:5b:21:d0:04:69:54:48:b4:c5:a6:b3:4f:07: 57:5b:9b:11:e8:5d:53:04:6d:b8:35:fe:ef:db:0b:37:d2:65: 96:cf:c0:65:13:a8:ec:0e:4b:9b:80:38:e0:d9:cf:a0:53:80: 8e:34:90:22:b8:e2:f7:45:0a:c9:3a:55:09:c0:f7:2a:c0:a9: 45:3e:86:ac:6f:3b:f0:e6:cc:c7:10:15:a5:99:a8:8f:89:56: cf:26:a7:75:3e:38:30:9e:4e:c9:47:9a:ed:90:4b:3a:e5:81: c8:47:e7:da:57:fd:63:28:b9:56:84:47:ae:b2:43:f8:6d:73: 0a:0a:da:8d:60:5f:57:b8:d2:18:82:16:63:0d:07:ca:f3:dc: f1:a8:8e:42 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDk1MTExMC8GA1UEBRMoRTdENTI4REVFNTEwMjBBMEZFRURDQjVDMjZBNUI5MkM1 MEY4MUZBQzAeFw0yNjAzMDMwODQ1MzNaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTY5ZmFkLWRiMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb3Mlh+kMRFBOhU/QAaTvJJ+j+cpv7cgPkini1FOVF36JkhpWtgHZOGtLtt8Dk 1Y1QzWmXbXK7pw3s/8OupbYPBcCXJs0VDnZEvZKTqyBUgu2uxib2JDIHOztOlOWZ Dz74e46CucBXuf0fHyB1dQwDA3+TT43V9KClAnGhVwuXHmqTXUYBICCr94YAyjtb HOPmQR9Ox/xc2e3dQA68AQs8qhdjDS10w0OpKnFzFgMzj3h1scfETW50pZXDfy81 tT5Z058IZlCUb9QvHWU+OxXkGXpn/wE0hSm34pYHoJxsv+zp3Bpe/i5+AQWy99n6 zNW23svPRoERI406mA4ifeG1AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUCi1Pq1/K oOGbBwdIB91nvDdS1c0wHwYDVR0jBBgwFoAU59Uo3uUQIKD+7ctcJqW5LFD4H6ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEOTUxLzNBMDBENTRDRUY2 QzExRjA4OURENjEzRjU5NkY1NkJDLzU5VW8zdVVRSUtELTdjdGNKcVc1TEZENEg2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNTlVbzN1VVFJS0QtN2N0Y0pxVzVMRkQ0SDZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDk1MS8zQTAwRDU0Q0VGNkMxMUYwODlERDYxM0Y1OTZGNTZCQy84RkZDNDE3MEVG NkMxMUYwQjUxQTM1QzE1OTZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnbU0wDQYJKoZIhvcNAQELBQADggEBAHc0TXMFroFo6D/cEnSRMDZp dpcLNepq0nDe0MZLpW3PgpT6Ntm0KIywdINEvjLKXkvHLu9Sp6TVFKsK0y6Hslhj H8tTBHjxSbpWYiEnQUG8lQ1tGARVXHVa4KD+7ilvpI9ChF+b31hs0Vh3TZQFp0E1 WyHQBGlUSLTFprNPB1dbmxHoXVMEbbg1/u/bCzfSZZbPwGUTqOwOS5uAOODZz6BT gI40kCK44vdFCsk6VQnA9yrAqUU+hqxvO/DmzMcQFaWZqI+JVs8mp3U+ODCeTslH mu2QSzrlgchH59pX/WMouVaER66yQ/htcwoK2o1gX1e40hiCFmMNB8rz3PGojkI= -----END CERTIFICATE-----Generated at Thu Mar 26 16:14:17 2026 by rpki-client