$ rpki-client -vvf rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F902E016BFED11EABE972E5AC4F9AE02.roa File: F902E016BFED11EABE972E5AC4F9AE02.roa (raw, json) Hash identifier: d+fGr61yoNUPXzaLf+BeZ6kemTLVO0y8GsU/1fIouFE= Subject key identifier: 66:2F:4D:9F:0C:C8:BB:C5:1C:7A:4B:92:DD:F9:65:E7:27:56:9E:20 Certificate issuer: /CN=A913FA1D/serialNumber=7C53BF6AF493D24C3B7C6BA216B382B0C7F7FC24 Certificate serial: 0925 Authority key identifier: 7C:53:BF:6A:F4:93:D2:4C:3B:7C:6B:A2:16:B3:82:B0:C7:F7:FC:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F902E016BFED11EABE972E5AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:02:39 +0000 ROA not before: Mon 02 Feb 2026 20:17:21 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 17819 IP address blocks: 103.28.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.crl rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2341 (0x925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FA1D, serialNumber=7C53BF6AF493D24C3B7C6BA216B382B0C7F7FC24 Validity Not Before: Feb 2 20:17:21 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a4631f-e0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ed:8b:59:18:1e:60:15:f6:98:8e:38:b0:e4: d0:bb:ec:42:e0:f5:d1:df:12:3b:d4:8a:2d:9b:45: 8d:23:94:19:1d:03:8b:30:21:32:91:a3:eb:11:bf: 3d:da:ec:f0:a8:43:a8:f6:08:0b:d6:2c:cb:c3:db: 7f:95:c7:4e:7d:eb:91:da:fb:30:5b:59:83:f7:96: 24:63:99:a5:56:93:d2:66:64:b4:91:5b:75:71:5b: 27:b3:10:e6:d9:8a:26:43:77:8f:29:6d:f4:a6:a5: af:9e:b1:b7:fa:69:9e:60:b3:c3:fc:cf:b2:9d:38: 59:e5:8a:48:5e:a9:c5:67:32:49:d7:e5:10:1a:03: f8:85:83:7a:ba:70:84:3a:0a:35:7f:29:91:03:bb: 82:b6:4d:34:23:3f:de:79:b2:51:fd:b2:e9:26:e3: 17:04:af:29:09:50:69:dc:72:ac:47:0f:83:0c:92: a4:10:8c:17:7f:26:38:22:4a:da:38:83:a2:71:e2: 66:be:1f:6a:0e:e6:f9:74:ed:26:1e:cd:71:28:bf: a8:fd:f3:55:f9:da:f9:54:b6:ad:51:a3:b4:53:ec: 6c:a1:b9:24:b3:84:f8:37:c5:dc:0d:28:5d:6f:50: c4:ec:be:65:f6:e6:ed:9d:fe:bf:0c:ef:7c:b4:fc: 95:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:2F:4D:9F:0C:C8:BB:C5:1C:7A:4B:92:DD:F9:65:E7:27:56:9E:20 X509v3 Authority Key Identifier: keyid:7C:53:BF:6A:F4:93:D2:4C:3B:7C:6B:A2:16:B3:82:B0:C7:F7:FC:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/fFO_avST0kw7fGuiFrOCsMf3_CQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fFO_avST0kw7fGuiFrOCsMf3_CQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FA1D/9EEA4D68BFEC11EA89929A58C4F9AE02/F902E016BFED11EABE972E5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.28.171.0/24 Signature Algorithm: sha256WithRSAEncryption 84:85:41:59:31:72:c3:34:1f:86:50:19:86:ff:7c:7d:66:5a: 5c:44:e7:a0:17:a6:5c:8a:c6:d9:43:85:2e:54:a7:ae:be:c3: a0:19:f5:d7:f3:ed:56:bc:ed:7b:7d:ff:ca:f6:64:6e:6d:dd: 8f:87:9a:02:ab:8e:a9:b4:b3:e5:b0:27:2b:68:ca:3e:b7:09: a5:76:bf:e8:d2:cc:0b:cd:73:c2:48:68:35:29:49:06:ae:92: b6:a2:79:b9:ab:b9:98:aa:f8:15:72:8c:7b:42:5c:b5:b6:64: 6e:e1:20:52:a9:d8:97:8e:1b:b2:8f:ba:62:a7:84:aa:ed:56: 6b:96:4a:61:08:53:89:55:a0:0e:02:97:f1:62:51:a1:80:60: a7:91:b5:20:5f:1b:36:9b:b6:e6:7d:35:ed:9a:3b:a7:22:c2: b2:b7:fa:e9:2a:54:05:78:82:58:85:09:65:9d:50:3f:19:d2: f2:13:12:41:40:7d:79:99:98:52:5f:15:6d:4e:77:98:fb:97: 45:2e:7d:86:df:cf:9a:ad:66:dc:f1:b6:72:a7:30:92:3d:7d: f5:b6:e3:1b:2a:3b:93:d6:0a:09:50:1d:a4:cd:c7:b8:c4:0a: 93:e5:85:79:90:7f:f5:da:69:77:18:88:f7:3e:fb:72:dd:32: d9:0b:d9:30 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZBMUQxMTAvBgNVBAUTKDdDNTNCRjZBRjQ5M0QyNEMzQjdDNkJBMjE2QjM4MkIw QzdGN0ZDMjQwHhcNMjYwMjAyMjAxNzIxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjMxZi1lMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze2LWRgeYBX2mI44sOTQu+xC4PXR3xI71Iotm0WNI5QZHQOLMCEykaPrEb89 2uzwqEOo9ggL1izLw9t/lcdOfeuR2vswW1mD95YkY5mlVpPSZmS0kVt1cVsnsxDm 2YomQ3ePKW30pqWvnrG3+mmeYLPD/M+ynThZ5YpIXqnFZzJJ1+UQGgP4hYN6unCE Ogo1fymRA7uCtk00Iz/eebJR/bLpJuMXBK8pCVBp3HKsRw+DDJKkEIwXfyY4Ikra OIOiceJmvh9qDub5dO0mHs1xKL+o/fNV+dr5VLatUaO0U+xsobkks4T4N8XcDShd b1DE7L5l9ubtnf6/DO98tPyVGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGYvTZ8M yLvFHHpLkt35ZecnVp4gMB8GA1UdIwQYMBaAFHxTv2r0k9JMO3xrohazgrDH9/wk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkExRC85RUVBNEQ2OEJG RUMxMUVBODk5MjlBNThDNEY5QUUwMi9mRk9fYXZTVDBrdzdmR3VpRnJPQ3NNZjNf Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZGT19hdlNUMGt3N2ZHdWlGck9Dc01mM19DUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZBMUQvOUVFQTRENjhCRkVDMTFFQTg5OTI5QTU4QzRGOUFFMDIvRjkwMkUwMTZC RkVEMTFFQUJFOTcyRTVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxyrMA0GCSqGSIb3DQEBCwUAA4IBAQCEhUFZMXLDNB+GUBmG/3x9 ZlpcROegF6ZcisbZQ4UuVKeuvsOgGfXX8+1WvO17ff/K9mRubd2Ph5oCq46ptLPl sCcraMo+twmldr/o0swLzXPCSGg1KUkGrpK2onm5q7mYqvgVcox7Qly1tmRu4SBS qdiXjhuyj7pip4Sq7VZrlkphCFOJVaAOApfxYlGhgGCnkbUgXxs2m7bmfTXtmjun IsKyt/rpKlQFeIJYhQllnVA/GdLyExJBQH15mZhSXxVtTneY+5dFLn2G38+arWbc 8bZypzCSPX31tuMbKjuT1goJUB2kzce4xAqT5YV5kH/12ml3GIj3Pvty3TLZC9kw -----END CERTIFICATE-----Generated at Thu Mar 26 11:18:54 2026 by rpki-client