$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/57A5ACF20FE911EBB5AE5524C4F9AE02.roa File: 57A5ACF20FE911EBB5AE5524C4F9AE02.roa (raw, json) Hash identifier: Lb32CCKaZxPXJVtVTz41kWSGeP/mH1CszKT3y/ullaM= Subject key identifier: DC:14:5D:AF:DD:9E:61:2F:5A:E4:02:AA:A6:B3:61:D1:38:4C:49:CF Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0C7A Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/57A5ACF20FE911EBB5AE5524C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:55:13 +0000 ROA not before: Tue 20 May 2025 19:14:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 27281 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A, serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: May 20 19:14:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a44541-e5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:cb:16:0b:23:04:04:a0:72:65:6d:b9:07: 61:4f:cf:40:52:67:29:f0:d2:2e:47:fc:bc:0b:65: e6:3c:99:d4:c0:50:fb:49:eb:96:18:3e:75:9a:3a: 64:06:24:ca:31:c0:fe:e4:38:4e:bb:3a:6c:d9:dd: d9:29:c9:54:59:9b:99:a5:76:2f:6b:01:9a:aa:e6: 73:aa:cd:f0:90:ab:9c:a2:8a:f1:7d:71:0f:35:8c: 24:99:8c:73:21:59:ad:f7:d1:5d:bb:40:d7:a8:e2: 82:93:c2:87:45:f4:d9:7b:3d:43:df:2c:52:5c:25: 38:86:d0:01:31:52:78:b4:f8:35:93:2b:3b:d8:b5: a5:27:1a:ac:e6:f0:68:a1:9e:d2:fa:b1:56:dd:cb: 2f:a0:9b:54:40:f0:63:c4:b7:83:06:82:c6:e0:36: 0e:d4:20:b6:c1:cc:6b:cc:84:d4:9e:45:81:36:9a: c8:9f:6d:db:29:f3:9c:e0:65:ea:7c:44:d5:5b:b1: 50:53:4c:f3:9d:79:3c:41:47:fc:77:84:af:2a:b8: b6:1a:13:61:29:aa:7b:b7:fb:38:73:ff:8b:3d:ba: e7:da:75:cb:f0:96:c7:25:40:6b:52:71:9a:9a:19: ca:3f:2d:84:0f:c3:2a:0c:f1:b3:a3:3e:dc:6a:71: 3f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:14:5D:AF:DD:9E:61:2F:5A:E4:02:AA:A6:B3:61:D1:38:4C:49:CF X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/57A5ACF20FE911EBB5AE5524C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption 99:fd:d7:72:32:80:df:b5:c0:81:ec:e6:23:4a:ae:54:cd:89: 1a:32:c6:e9:17:3f:72:b8:03:d1:e9:0d:5b:0b:4f:92:35:25: 7b:2e:6c:84:e0:bf:27:1a:f5:cf:4a:38:bd:0c:ff:e8:bb:c2: 87:fd:fd:da:7a:bc:6f:36:35:ed:00:1a:c7:01:40:3a:70:69: ef:01:8e:d3:a1:f1:83:ee:10:c8:d9:07:72:b1:83:d3:e4:39: 53:06:14:05:4b:2f:14:b5:2d:5c:e7:f7:b7:25:7d:04:70:e5: 68:09:0f:6f:d1:f7:d6:7d:bd:e6:a9:02:21:21:67:f2:0a:ff: f4:63:60:ec:b7:b9:c7:35:61:3a:50:04:29:16:95:c0:35:26: 01:f2:c0:53:7b:27:a3:f6:02:89:b7:95:5e:00:1c:75:f5:1a: 03:fd:67:a2:1d:78:89:1d:77:9d:e3:2b:0e:a9:b8:eb:2c:c3: 36:06:ea:af:7a:33:bf:8e:56:c3:9c:de:07:27:ed:f5:bb:47: 32:11:d7:2b:de:b1:90:9e:56:85:d5:69:27:50:3c:bf:77:89: 02:e8:4f:ef:26:d2:6f:89:5c:55:04:0a:fe:93:94:5f:ba:4b: e0:23:b0:c0:12:73:f2:83:79:25:cc:e9:81:a1:d1:99:69:93: 11:c4:b6:c7 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICDHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjUwNTIwMTkxNDMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDU0MS1lNWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDzLFgsjBASgcmVtuQdhT89AUmcp8NIuR/y8C2XmPJnUwFD7SeuWGD51mjpk BiTKMcD+5DhOuzps2d3ZKclUWZuZpXYvawGaquZzqs3wkKucoorxfXEPNYwkmYxz IVmt99Fdu0DXqOKCk8KHRfTZez1D3yxSXCU4htABMVJ4tPg1kys72LWlJxqs5vBo oZ7S+rFW3csvoJtUQPBjxLeDBoLG4DYO1CC2wcxrzITUnkWBNprIn23bKfOc4GXq fETVW7FQU0zznXk8QUf8d4SvKri2GhNhKap7t/s4c/+LPbrn2nXL8JbHJUBrUnGa mhnKPy2ED8MqDPGzoz7canE/+wIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFNwUXa/d nmEvWuQCqqazYdE4TEnPMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNTdBNUFDRjIw RkU5MTFFQkI1QUU1NTI0QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBANn5QgDBABn5QowDQYJKoZIhvcNAQELBQADggEBAJn913IygN+1 wIHs5iNKrlTNiRoyxukXP3K4A9HpDVsLT5I1JXsubITgvyca9c9KOL0M/+i7wof9 /dp6vG82Ne0AGscBQDpwae8BjtOh8YPuEMjZB3Kxg9PkOVMGFAVLLxS1LVzn97cl fQRw5WgJD2/R99Z9veapAiEhZ/IK//RjYOy3ucc1YTpQBCkWlcA1JgHywFN7J6P2 Aom3lV4AHHX1GgP9Z6IdeIkdd53jKw6puOsswzYG6q96M7+OVsOc3gcn7fW7RzIR 1yvesZCeVoXVaSdQPL93iQLoT+8m0m+JXFUECv6TlF+6S+AjsMASc/KDeSXM6YGh 0ZlpkxHEtsc= -----END CERTIFICATE-----Generated at Thu Mar 26 12:28:49 2026 by rpki-client