$ rpki-client -vvf rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa File: 86CCDF8EC91411F085F4A61BC4F9AE02.roa (raw, json) Hash identifier: TtYj2sjHiscSoHGcXukyvA6H2jH+qg3mM5AVrWsmoS8= Subject key identifier: 69:F6:98:7B:96:7A:89:72:BD:40:B5:0D:D3:0E:0B:E0:3A:35:40:94 Certificate issuer: /CN=A913D2D8/serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Certificate serial: 3E Authority key identifier: A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa Signing time: Fri 13 Mar 2026 07:45:21 +0000 ROA not before: Fri 13 Mar 2026 07:45:21 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 4594 IP address blocks: 103.224.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D2D8, serialNumber=A2D0E7DF88AB69DB6E059A3064E4DDC1E6FC9D19 Validity Not Before: Mar 13 07:45:21 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b3c091-cace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:c6:97:47:33:7b:7e:49:e3:68:67:90:35: fc:89:a0:64:03:ac:93:f3:69:e3:f6:9b:ee:71:5a: 22:76:ee:82:9c:f6:b2:5e:ad:e8:7a:34:ef:0a:f6: 38:b6:b1:4f:e5:21:93:be:de:82:4e:e3:ab:75:a8: c7:d9:6a:1a:da:ff:ae:cd:50:b5:af:25:e2:4d:76: 21:1a:1b:d6:11:a7:0d:ce:5c:18:6e:d8:6e:61:69: 9c:03:e0:c8:34:ba:16:ce:bd:78:e8:ff:0e:33:28: 6c:af:3c:a9:8d:2a:8a:5c:3a:da:5d:11:8b:67:46: 82:54:96:8e:38:1c:58:38:cd:a9:f3:a1:15:cb:65: 42:43:4a:94:dd:50:39:e7:18:0c:97:d0:bc:e0:26: eb:95:5c:7e:83:b4:81:47:77:5f:6f:3b:eb:53:b9: 4c:96:b0:03:c3:d9:1d:40:ec:0e:ad:10:59:df:4d: 9e:8e:5d:03:e4:30:0f:77:fa:6f:ee:f3:f6:67:f5: 99:91:f3:1d:ad:9f:79:e0:bf:d0:21:47:6a:90:12: 94:17:ab:bf:cd:07:fc:5b:b7:47:61:b2:6d:c7:15: ea:49:34:43:65:f5:ca:13:bd:8b:c3:e6:ef:b1:92: c8:b2:f1:4c:56:26:b3:5d:1a:b5:1e:9b:b1:61:97: 95:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F6:98:7B:96:7A:89:72:BD:40:B5:0D:D3:0E:0B:E0:3A:35:40:94 X509v3 Authority Key Identifier: keyid:A2:D0:E7:DF:88:AB:69:DB:6E:05:9A:30:64:E4:DD:C1:E6:FC:9D:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/otDn34iradtuBZowZOTdweb8nRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/otDn34iradtuBZowZOTdweb8nRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D2D8/9496D74EC91111F0B001CE83C4F9AE02/86CCDF8EC91411F085F4A61BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.224.20.0/24 Signature Algorithm: sha256WithRSAEncryption be:ef:60:da:e7:e4:72:ac:a4:37:eb:ce:2d:cc:bd:0e:95:ce: 3f:41:52:ed:21:98:60:45:44:47:ea:d8:72:e9:37:37:6e:ee: fc:06:92:60:f5:de:bd:41:b1:c0:7d:38:16:01:30:cf:c5:d0: 56:0e:15:23:7d:37:3a:96:d9:ce:07:bd:d8:05:ce:f7:f6:57: f0:4d:e0:ec:66:33:0a:8e:30:b9:fd:40:09:4d:56:bd:66:9e: b8:57:a0:67:61:4f:80:a1:2a:f1:ac:83:cf:2f:af:db:0a:3b: c0:b3:58:a7:87:82:73:fe:c5:1c:38:5f:bc:c1:a7:ee:59:ca: aa:89:31:f6:9b:bd:0a:1d:91:4d:4f:4f:f1:e7:21:fc:8b:20: 03:6a:ae:a7:06:f7:ea:ad:c0:5b:25:3b:8a:87:6e:6b:bf:94: 0a:c1:19:6f:9a:6b:5f:3f:be:55:f7:4d:03:e0:5e:bd:c7:26: 21:89:c6:4f:9c:41:a8:0a:eb:cf:5a:8f:26:a0:5c:59:14:74: c6:9f:1d:1c:b5:94:d0:03:ca:6c:8a:ef:9d:3c:38:3e:fa:2c: 6e:77:8a:91:64:d9:f7:e7:53:4b:57:e1:17:63:f8:8c:bb:e6: 59:10:d0:3d:80:17:48:eb:0e:11:26:46:cd:7c:a6:0c:cf:20: 14:e6:0b:81 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDJEODExMC8GA1UEBRMoQTJEMEU3REY4OEFCNjlEQjZFMDU5QTMwNjRFNEREQzFF NkZDOUQxOTAeFw0yNjAzMTMwNzQ1MjFaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjNjMDkxLWNhY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7F8aXRzN7fknjaGeQNfyJoGQDrJPzaeP2m+5xWiJ27oKc9rJereh6NO8K9ji2 sU/lIZO+3oJO46t1qMfZahra/67NULWvJeJNdiEaG9YRpw3OXBhu2G5haZwD4Mg0 uhbOvXjo/w4zKGyvPKmNKopcOtpdEYtnRoJUlo44HFg4zanzoRXLZUJDSpTdUDnn GAyX0LzgJuuVXH6DtIFHd19vO+tTuUyWsAPD2R1A7A6tEFnfTZ6OXQPkMA93+m/u 8/Zn9ZmR8x2tn3ngv9AhR2qQEpQXq7/NB/xbt0dhsm3HFepJNENl9coTvYvD5u+x ksiy8UxWJrNdGrUem7Fhl5XLAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUafaYe5Z6 iXK9QLUN0w4L4Do1QJQwHwYDVR0jBBgwFoAUotDn34iradtuBZowZOTdweb8nRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMkQ4Lzk0OTZENzRFQzkx MTExRjBCMDAxQ0U4M0M0RjlBRTAyL290RG4zNGlyYWR0dUJab3daT1Rkd2ViOG5S ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3REbjM0aXJhZHR1Qlpvd1pPVGR3ZWI4blJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDJEOC85NDk2RDc0RUM5MTExMUYwQjAwMUNFODNDNEY5QUUwMi84NkNDREY4RUM5 MTQxMUYwODVGNEE2MUJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABn4BQwDQYJKoZIhvcNAQELBQADggEBAL7vYNrn5HKspDfrzi3MvQ6V zj9BUu0hmGBFREfq2HLpNzdu7vwGkmD13r1BscB9OBYBMM/F0FYOFSN9NzqW2c4H vdgFzvf2V/BN4OxmMwqOMLn9QAlNVr1mnrhXoGdhT4ChKvGsg88vr9sKO8CzWKeH gnP+xRw4X7zBp+5ZyqqJMfabvQodkU1PT/HnIfyLIANqrqcG9+qtwFslO4qHbmu/ lArBGW+aa18/vlX3TQPgXr3HJiGJxk+cQagK689ajyagXFkUdMafHRy1lNADymyK 7508OD76LG53ipFk2ffnU0tX4Rdj+Iy75lkQ0D2AF0jrDhEmRs18pgzPIBTmC4E= -----END CERTIFICATE-----Generated at Thu Mar 26 11:25:24 2026 by rpki-client