$ rpki-client -vvf rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa File: A8C0A13EAB5D11ED88A54424C4F9AE02.roa (raw, json) Hash identifier: c8XgK4k1WTQiswMVAGE4kKsCbobn1u/Z+G3dpP2KXyw= Subject key identifier: B5:BE:CC:22:EA:05:93:76:D5:90:EA:7B:EB:06:92:3F:E1:8F:AB:07 Certificate issuer: /CN=A9142091/serialNumber=E08813BD188CDC2ABF5018DE6FE37F443747208E Certificate serial: 0266 Authority key identifier: E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa Signing time: Tue 05 May 2026 02:34:12 +0000 ROA not before: Tue 05 May 2026 02:34:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132148 IP address blocks: 103.84.100.0/23 maxlen: 23 103.84.100.0/24 maxlen: 24 103.84.101.0/24 maxlen: 24 2001:df1:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142091, serialNumber=E08813BD188CDC2ABF5018DE6FE37F443747208E Validity Not Before: May 5 02:34:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69f95724-b530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e0:43:bd:f6:2c:81:ac:0f:7d:31:ba:7c:0a: 53:96:b7:74:ff:aa:2b:35:13:4f:1c:cc:cb:06:92: 27:a1:8a:67:c5:d6:d2:22:5e:01:27:7d:c3:7c:c8: 94:7a:40:ec:da:9a:e8:5d:1a:0d:a3:48:27:f4:73: 3e:d0:cb:d8:39:e1:eb:62:96:8e:67:c4:15:49:f0: f1:cf:9a:9f:7e:61:eb:18:fc:c2:14:c7:49:d8:40: c7:a7:6d:35:77:06:c7:0e:ce:e9:21:ec:d8:d2:ef: 90:af:ec:e5:39:e3:94:dc:83:d5:72:60:6b:76:ab: e8:50:be:ea:7f:4d:cb:a1:18:46:ef:00:7d:52:07: 8e:7f:90:65:1f:36:51:8a:93:60:12:78:a6:3b:22: 88:41:4f:fb:38:4e:1d:4a:a8:0a:ab:76:6d:07:bf: 62:99:df:36:de:36:06:28:77:7b:07:81:96:d1:da: 56:31:78:f5:a3:f3:58:d1:73:89:39:b9:ad:c0:ad: 29:41:c1:60:9d:70:3e:35:70:a9:56:a0:d7:15:77: a3:e4:c3:99:bd:29:54:4f:6f:8f:f1:2c:3d:15:13: 90:fa:53:48:d4:81:52:41:37:9b:d0:fd:cb:96:26: 31:f0:69:e3:7a:99:9d:7e:db:d6:62:c7:ad:df:8f: bf:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BE:CC:22:EA:05:93:76:D5:90:EA:7B:EB:06:92:3F:E1:8F:AB:07 X509v3 Authority Key Identifier: keyid:E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.100.0/23 IPv6: 2001:df1:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption cd:c8:13:a1:36:c6:94:e3:42:41:30:9e:e8:be:b7:ee:25:f7: 72:f4:b6:ad:13:c5:af:97:42:54:73:ab:e8:19:0a:13:b9:64: 04:35:ba:d2:2f:86:4e:b4:1d:19:7e:d1:62:28:0f:02:78:27: 14:22:3b:cc:9d:24:45:ea:02:da:02:6b:34:02:13:94:44:58: 95:76:92:69:c4:b8:ee:42:d2:df:ea:a3:a6:ef:52:58:57:48: 2f:d4:d9:db:a7:ab:75:e5:a1:2e:d5:0e:47:b9:3b:4e:7e:46: 2e:f5:fb:eb:54:63:81:d9:8f:06:c6:ad:9f:a0:80:d0:4b:79: 00:17:df:41:a3:9b:f1:fa:a8:30:59:a0:21:df:64:42:11:4e: 4f:44:5d:45:11:c7:e2:8a:a6:d9:18:ad:bd:e7:bc:e5:66:27: 10:19:b3:73:dc:8f:6e:05:c4:1c:94:3b:1b:e9:48:7f:ed:90: 60:4c:d5:64:e1:4a:9c:ce:6c:b4:65:bd:e9:f3:f4:90:4d:14: 09:a9:5b:c6:1c:00:a3:2e:e5:f2:19:a7:3b:cb:b4:63:15:15: a7:47:6d:f0:96:7d:38:bc:00:ab:6b:dc:1f:9c:8a:7c:03:e3: 0f:79:44:da:c4:ec:24:19:c8:6c:0f:ed:85:4c:ba:a5:9d:d0: 3b:ec:e7:3d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwOTExMTAvBgNVBAUTKEUwODgxM0JEMTg4Q0RDMkFCRjUwMThERTZGRTM3RjQ0 Mzc0NzIwOEUwHhcNMjYwNTA1MDIzNDEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5NTcyNC1iNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouBDvfYsgawPfTG6fApTlrd0/6orNRNPHMzLBpInoYpnxdbSIl4BJ33DfMiU ekDs2proXRoNo0gn9HM+0MvYOeHrYpaOZ8QVSfDxz5qffmHrGPzCFMdJ2EDHp201 dwbHDs7pIezY0u+Qr+zlOeOU3IPVcmBrdqvoUL7qf03LoRhG7wB9UgeOf5BlHzZR ipNgEnimOyKIQU/7OE4dSqgKq3ZtB79imd823jYGKHd7B4GW0dpWMXj1o/NY0XOJ ObmtwK0pQcFgnXA+NXCpVqDXFXej5MOZvSlUT2+P8Sw9FROQ+lNI1IFSQTeb0P3L liYx8GnjepmdftvWYset34+/VwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFLW+zCLq BZN21ZDqe+sGkj/hj6sHMB8GA1UdIwQYMBaAFOCIE70YjNwqv1AY3m/jf0Q3RyCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjA5MS9BQkM0RDQ0NEFC NTkxMUVEOUI3OUIxMUVDNEY5QUUwMi80SWdUdlJpTTNDcV9VQmplYi1OX1JEZEhJ STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJZ1R2UmlNM0NxX1VCamViLU5fUkRkSElJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIwOTEvQUJDNEQ0NDRBQjU5MTFFRDlCNzlCMTFFQzRGOUFFMDIvQThDMEExM0VB QjVEMTFFRDg4QTU0NDI0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ1RkMA8EAgACMAkDBwAgAQ3x8MAwDQYJKoZIhvcNAQELBQADggEB AM3IE6E2xpTjQkEwnui+t+4l93L0tq0Txa+XQlRzq+gZChO5ZAQ1utIvhk60HRl+ 0WIoDwJ4JxQiO8ydJEXqAtoCazQCE5REWJV2kmnEuO5C0t/qo6bvUlhXSC/U2dun q3XloS7VDke5O05+Ri71++tUY4HZjwbGrZ+ggNBLeQAX30Gjm/H6qDBZoCHfZEIR Tk9EXUURx+KKptkYrb3nvOVmJxAZs3Pcj24FxByUOxvpSH/tkGBM1WThSpzObLRl venz9JBNFAmpW8YcAKMu5fIZpzvLtGMVFadHbfCWfTi8AKtr3B+cinwD4w95RNrE 7CQZyGwP7YVMuqWd0Dvs5z0= -----END CERTIFICATE-----Generated at Wed May 13 03:28:55 2026 by rpki-client