$ rpki-client -vvf rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa File: 70BB6C14064A11EDA0A92068C4F9AE02.roa (raw, json) Hash identifier: te2pLoJZYO3JYrW3CAq/cTYGshKCIgPSrs/rQNrttpI= Subject key identifier: 8B:79:34:E0:D1:D6:CF:F3:2C:44:12:9B:CB:77:C0:BC:4F:C8:32:1B Certificate issuer: /CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Certificate serial: 0321 Authority key identifier: 70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:02:40 +0000 ROA not before: Wed 07 May 2025 01:39:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38209 IP address blocks: 103.88.155.0/24 maxlen: 24 103.88.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 801 (0x321) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125AE9, serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Validity Not Before: May 7 01:39:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a58a70-18de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2f:a6:00:77:7f:d8:c8:f9:9b:cf:35:2e:a2: 38:a0:1e:f8:7f:01:21:a5:07:e9:23:67:39:e8:0a: ea:17:40:07:6b:06:3a:73:bf:17:64:35:93:4d:82: a5:51:39:b1:bc:b6:ab:f5:c4:2e:63:08:38:f5:b7: 2a:c5:ef:2e:27:f2:ac:71:31:06:1c:0c:ca:cc:70: 13:2f:80:64:cb:84:34:80:a6:b0:4f:e8:d6:14:99: 2b:0c:eb:04:9b:db:4d:70:ac:ec:36:b6:3d:a6:af: ca:8e:19:44:4d:c4:cc:d1:a0:80:74:d0:10:37:9e: 26:ee:2b:55:9d:d6:e5:a4:e7:98:58:86:1a:b3:37: fd:7e:fb:64:41:17:88:7b:df:e7:dc:26:7c:0a:fe: cd:ab:01:82:ce:1f:d4:22:06:a8:e5:30:a6:4c:d9: 44:52:33:32:d6:39:39:dd:5c:d0:1e:20:dd:95:d8: cf:d7:d0:00:a6:c0:65:8a:92:dd:5d:6c:2a:71:28: fb:f2:4b:11:2c:4a:b5:87:ee:72:1b:58:8d:79:9d: 80:79:5a:b2:82:e5:b6:0f:f9:25:aa:13:87:89:04: 72:ce:64:b1:a2:e1:74:b3:d3:d8:83:21:6f:fc:38: c3:cf:83:6a:a2:83:4c:71:a0:c9:82:af:39:a4:6f: e7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:79:34:E0:D1:D6:CF:F3:2C:44:12:9B:CB:77:C0:BC:4F:C8:32:1B X509v3 Authority Key Identifier: keyid:70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/70BB6C14064A11EDA0A92068C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.155.0/24 103.88.162.0/24 Signature Algorithm: sha256WithRSAEncryption a9:15:70:2e:58:f4:62:a4:6e:d8:68:a7:75:18:d4:16:1c:32: ef:ac:ff:76:37:40:03:a9:59:cc:31:37:f2:2f:b2:ca:05:e7: ab:47:41:d8:6d:3e:e5:3c:1b:f1:d8:e9:3b:c3:3d:1f:a0:69: f9:47:cd:de:9d:55:56:6b:92:07:79:93:32:57:41:f1:be:61: ce:94:63:32:f6:f7:15:99:94:71:96:71:65:9d:b8:ae:07:2d: 50:d8:a9:bb:e0:b2:21:9e:2c:25:13:4d:24:18:2e:21:38:a7: 7c:90:40:0a:6a:74:24:61:30:fb:bf:9f:14:90:ad:45:f5:94: db:c9:f9:d1:df:37:50:c8:1e:aa:9c:e0:ad:24:8b:bc:3c:74: 0b:02:51:72:76:1c:ab:2b:38:01:c0:45:32:7a:21:4f:2b:0c: cd:cd:fe:c9:f7:8b:5a:8c:a6:59:ed:3c:3b:79:cf:c0:65:e8: ea:63:31:b1:3a:07:40:a1:4d:1c:bc:53:2a:9c:90:36:16:56: 14:57:1e:ef:f8:30:a2:0f:40:b2:90:ac:18:16:37:d2:9c:e0: b4:96:9b:ee:8e:52:1b:c4:76:21:71:3a:28:91:6a:97:e5:0e: a9:74:63:5a:17:77:ce:de:ce:3c:c3:0c:cf:98:1b:55:fc:d8: 2c:06:83:5f -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBRTkxMTAvBgNVBAUTKDcwNjVBOEJFMzQxNjM4NURCRDAzMjI0MDRFNEY2MzRD NkVGRTVEODIwHhcNMjUwNTA3MDEzOTA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE3MC0xOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAli+mAHd/2Mj5m881LqI4oB74fwEhpQfpI2c56ArqF0AHawY6c78XZDWTTYKl UTmxvLar9cQuYwg49bcqxe8uJ/KscTEGHAzKzHATL4Bky4Q0gKawT+jWFJkrDOsE m9tNcKzsNrY9pq/KjhlETcTM0aCAdNAQN54m7itVndblpOeYWIYaszf9fvtkQReI e9/n3CZ8Cv7NqwGCzh/UIgao5TCmTNlEUjMy1jk53VzQHiDdldjP19AApsBlipLd XWwqcSj78ksRLEq1h+5yG1iNeZ2AeVqyguW2D/klqhOHiQRyzmSxouF0s9PYgyFv /DjDz4NqooNMcaDJgq85pG/nHQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIt5NODR 1s/zLEQSm8t3wLxPyDIbMB8GA1UdIwQYMBaAFHBlqL40FjhdvQMiQE5PY0xu/l2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUFFOS9GRkVCN0Y5QTA2 NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09GMjlBeUpBVGs5alRHNy1Y WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NHV292alFXT0YyOUF5SkFUazlqVEc3LVhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVBRTkvRkZFQjdGOUEwNjQ2MTFFRDlDQjczMTYzQzRGOUFFMDIvNzBCQjZDMTQw NjRBMTFFREEwQTkyMDY4QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1ibAwQAZ1iiMA0GCSqGSIb3DQEBCwUAA4IBAQCpFXAuWPRipG7Y aKd1GNQWHDLvrP92N0ADqVnMMTfyL7LKBeerR0HYbT7lPBvx2Ok7wz0foGn5R83e nVVWa5IHeZMyV0HxvmHOlGMy9vcVmZRxlnFlnbiuBy1Q2Km74LIhniwlE00kGC4h OKd8kEAKanQkYTD7v58UkK1F9ZTbyfnR3zdQyB6qnOCtJIu8PHQLAlFydhyrKzgB wEUyeiFPKwzNzf7J94tajKZZ7Tw7ec/AZejqYzGxOgdAoU0cvFMqnJA2FlYUVx7v +DCiD0CykKwYFjfSnOC0lpvujlIbxHYhcTookWqX5Q6pdGNaF3fO3s48wwzPmBtV /NgsBoNf -----END CERTIFICATE-----Generated at Fri Mar 27 01:13:35 2026 by rpki-client