$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: jZIgzMxV7HHYSorF6uqDrUanTlB4VELgicqdZyoWx9g= Subject key identifier: 9F:10:57:02:8A:73:8B:02:EB:BE:CD:17:13:00:4C:D2:1F:1A:5E:79 Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 02A8 Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:02:15 +0000 ROA not before: Sun 23 Nov 2025 00:17:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/23 maxlen: 23 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 2001:df1:6e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971, serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Nov 23 00:17:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a59867-94f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a8:7a:74:1b:4d:eb:26:a4:63:e7:9e:67:ef: ef:b7:af:b5:5d:8b:11:c5:16:f3:2d:40:bf:76:ad: 9b:23:3f:c3:0e:42:09:e0:08:eb:6a:05:26:1f:39: 41:2f:aa:a1:e8:3a:b8:6f:bf:9d:c9:a7:75:e1:27: fc:13:dd:7d:b8:99:79:a2:31:95:f5:97:cf:90:10: d1:cb:16:e2:09:9b:b8:79:17:44:d3:8c:87:f4:18: 06:e8:b6:ff:de:de:dc:dd:fd:05:66:c0:41:69:8d: b6:af:b2:ca:c8:34:05:1c:66:df:12:28:69:be:2b: 58:32:26:23:9f:a5:17:87:ef:69:aa:ca:1e:06:5d: e5:0c:af:1b:7f:b6:37:88:8f:ba:02:97:7a:af:bf: 3b:3b:63:e9:2d:1f:28:2e:ed:b0:6e:4f:4d:c3:b3: 82:41:78:a2:ab:94:9e:a2:74:67:a6:06:c1:5e:70: 3e:d6:da:7f:e0:07:a2:f2:2b:e3:46:d5:cb:79:38: 31:1d:2c:48:43:a5:8e:ec:85:1c:fa:01:a6:35:66: 51:1c:5e:61:bb:22:5a:b1:a8:c8:36:ed:70:92:28: 24:28:c7:be:e0:ea:90:1d:8b:00:67:2d:33:00:ee: 55:ad:d7:2b:d2:50:c7:85:28:b0:00:b1:6c:81:3d: dc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:10:57:02:8A:73:8B:02:EB:BE:CD:17:13:00:4C:D2:1F:1A:5E:79 X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 IPv6: 2001:df1:6e40::/48 Signature Algorithm: sha256WithRSAEncryption 40:0c:6d:2c:c4:8b:82:db:2d:0a:11:8e:d4:65:1d:17:38:b7: 36:4e:d6:d3:14:43:b0:d9:52:49:17:95:bd:78:78:00:40:83: 1c:58:76:6e:12:02:4e:93:70:a6:3b:ae:9e:72:a7:e3:04:22: 67:02:3d:89:0f:02:cc:e3:19:41:e9:59:27:83:01:66:2c:f1: fc:c9:12:65:f9:cf:78:ee:9a:52:49:11:78:6e:ac:ae:58:eb: 28:79:41:25:ab:72:44:1c:9f:d0:87:ac:e9:af:41:9d:89:00: d5:73:81:ba:6b:9a:99:4c:e0:5d:db:5d:ee:6e:72:1a:d9:68: 64:aa:04:4c:15:ad:33:a1:58:1c:08:d9:1f:e3:d6:a0:4f:d5: 58:78:63:ac:bf:d3:f1:23:84:af:1a:5b:ee:1d:58:3e:89:6f: fe:9e:b6:59:f7:bb:c2:34:bd:4c:d6:69:fd:cf:8c:70:75:17: 0a:b0:1a:2e:bb:3b:30:49:b7:17:f4:02:e1:af:92:22:cd:02: bb:95:1b:de:a7:75:a5:52:02:14:4e:c4:45:07:b2:0d:c4:4e: 70:b0:0f:ab:80:a9:25:fc:f6:0c:c6:36:a7:66:db:ce:24:77: d6:62:36:59:42:73:63:23:f6:71:6f:bb:d2:7e:c5:dc:78:7a: 7d:25:1f:4d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjUxMTIzMDAxNzU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTg2Ny05NGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKh6dBtN6yakY+eeZ+/vt6+1XYsRxRbzLUC/dq2bIz/DDkIJ4AjragUmHzlB L6qh6Dq4b7+dyad14Sf8E919uJl5ojGV9ZfPkBDRyxbiCZu4eRdE04yH9BgG6Lb/ 3t7c3f0FZsBBaY22r7LKyDQFHGbfEihpvitYMiYjn6UXh+9pqsoeBl3lDK8bf7Y3 iI+6Apd6r787O2PpLR8oLu2wbk9Nw7OCQXiiq5SeonRnpgbBXnA+1tp/4Aei8ivj RtXLeTgxHSxIQ6WO7IUc+gGmNWZRHF5huyJasajINu1wkigkKMe+4OqQHYsAZy0z AO5Vrdcr0lDHhSiwALFsgT3cmQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJ8QVwKK c4sC677NFxMATNIfGl55MB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZxgQMA8EAgACMAkDBwAgAQ3xbkAwDQYJKoZIhvcNAQELBQADggEB AEAMbSzEi4LbLQoRjtRlHRc4tzZO1tMUQ7DZUkkXlb14eABAgxxYdm4SAk6TcKY7 rp5yp+MEImcCPYkPAszjGUHpWSeDAWYs8fzJEmX5z3jumlJJEXhurK5Y6yh5QSWr ckQcn9CHrOmvQZ2JANVzgbprmplM4F3bXe5uchrZaGSqBEwVrTOhWBwI2R/j1qBP 1Vh4Y6y/0/EjhK8aW+4dWD6Jb/6etln3u8I0vUzWaf3PjHB1FwqwGi67OzBJtxf0 AuGvkiLNAruVG96ndaVSAhROxEUHsg3ETnCwD6uAqSX89gzGNqdm284kd9ZiNllC c2Mj9nFvu9J+xdx4en0lH00= -----END CERTIFICATE-----Generated at Thu Mar 26 08:30:12 2026 by rpki-client