$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa File: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (raw, json) Hash identifier: mSjl0ibvEOuCK6DB5KHjDY/U2WKZFdSr/+i3luIa4aI= Subject key identifier: 33:47:05:92:00:D2:E3:40:8D:F8:B7:7E:0D:99:DB:AF:93:98:AE:87 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0BE3 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa Signing time: Wed 18 Mar 2026 19:24:23 +0000 ROA not before: Wed 18 Mar 2026 19:24:23 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 137505 IP address blocks: 103.111.8.0/22 maxlen: 24 2402:9140::/32 maxlen: 32 2402:9140::/48 maxlen: 48 2402:9140:1::/48 maxlen: 48 2402:9140:2::/48 maxlen: 48 2402:9140:3::/48 maxlen: 48 2402:9140:4::/48 maxlen: 48 2402:9140:5::/48 maxlen: 48 2402:9140:6::/48 maxlen: 48 2402:9140:7::/48 maxlen: 48 2402:9140:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D, serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: Mar 18 19:24:23 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bafbe7-116b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d0:a0:b7:39:e3:19:69:a0:ea:e9:cb:39:db: 56:23:65:63:57:a1:d7:bc:ea:8b:8e:12:d6:c0:90: 6f:27:d9:59:3d:9b:27:cf:27:be:e3:55:48:93:a8: 1b:6b:97:6a:69:1b:8b:31:20:7b:e4:92:53:55:8d: 5d:2b:8f:5a:2a:5b:3f:53:82:c5:16:ad:61:fb:7c: 73:73:36:f6:f5:0e:cb:62:cf:81:26:97:59:a4:73: 11:54:8e:3c:91:3f:df:50:7c:13:03:9e:71:b0:80: 46:f7:fe:d9:ee:f7:82:e7:64:e5:85:dc:8c:76:be: 60:66:4a:d9:d2:fe:77:47:c0:ec:ca:a0:00:ab:b6: 7c:c8:3c:86:63:3e:5c:5b:d6:58:83:a9:28:41:64: dc:22:d8:a9:3d:8b:bc:c9:f2:8c:d3:49:f7:e6:9f: 17:1a:1b:14:d6:a2:e6:d3:ed:35:fd:31:61:d3:d6: 56:24:02:8f:90:52:24:3f:a6:7e:d3:f3:c2:d4:14: 6d:9f:15:70:77:a4:8f:72:5f:61:07:6f:90:58:75: 63:19:ca:c6:e4:07:49:8c:ab:9e:20:0e:b3:a7:bf: 38:f2:ed:6b:be:6c:32:94:07:47:e5:43:68:d5:78: f8:a6:bb:5f:99:5a:6b:6d:93:d9:d5:d4:7e:46:bc: 7e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:47:05:92:00:D2:E3:40:8D:F8:B7:7E:0D:99:DB:AF:93:98:AE:87 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/C8FB48F808AF11EBAB78DF6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.111.8.0/22 IPv6: 2402:9140::/32 Signature Algorithm: sha256WithRSAEncryption ae:94:6b:bf:02:6d:92:6c:bc:77:12:c5:0c:d7:e9:00:51:9b: 6b:e3:85:f8:3c:4b:15:30:c2:7c:4b:b6:a0:82:de:86:55:04: d6:09:1e:97:be:9d:73:10:56:93:7e:02:f4:c0:f6:c2:19:60: 98:c9:86:a8:02:ff:ad:65:80:c1:72:91:c4:fb:46:54:2a:fa: 4f:7e:5e:d9:96:ae:7a:6c:f1:0c:7c:f8:8d:9f:31:f9:fd:2e: c3:b1:e2:df:a0:00:ba:2a:66:bf:00:3d:ae:62:04:ee:ed:17: fc:4f:2a:65:b5:0f:b7:7e:d8:4f:f8:79:3c:a6:c2:5f:d6:e4: b4:c6:a2:a3:4e:89:b8:e1:1e:c7:a0:e7:fe:da:2e:33:83:c8: d3:61:b9:82:a3:a1:42:79:be:05:54:1c:e8:1b:92:61:c6:20: d5:12:b6:12:f4:d0:45:58:78:a6:49:c4:60:0c:5f:e6:0a:54: bd:fe:19:87:71:f1:f9:a6:95:ce:51:13:2a:2c:fa:8c:bf:30: 42:c6:a9:84:f5:35:10:bc:0b:b9:7b:d6:e8:b9:1a:e2:84:5c: ac:82:38:ae:e8:a3:be:93:3e:be:b4:94:a7:72:73:c1:b2:90: 07:85:0e:65:4c:a6:0b:cc:b0:96:cf:f4:26:e1:7f:26:87:54: 48:b5:c0:60 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjYwMzE4MTkyNDIzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhZmJlNy0xMTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNCgtznjGWmg6unLOdtWI2VjV6HXvOqLjhLWwJBvJ9lZPZsnzye+41VIk6gb a5dqaRuLMSB75JJTVY1dK49aKls/U4LFFq1h+3xzczb29Q7LYs+BJpdZpHMRVI48 kT/fUHwTA55xsIBG9/7Z7veC52TlhdyMdr5gZkrZ0v53R8DsyqAAq7Z8yDyGYz5c W9ZYg6koQWTcItipPYu8yfKM00n35p8XGhsU1qLm0+01/TFh09ZWJAKPkFIkP6Z+ 0/PC1BRtnxVwd6SPcl9hB2+QWHVjGcrG5AdJjKueIA6zp7848u1rvmwylAdH5UNo 1Xj4prtfmVprbZPZ1dR+Rrx+PwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDNHBZIA 0uNAjfi3fg2Z26+TmK6HMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlFMEQvOTA0RTc0N0UzOTA5MTFFQUIwREUzRjQ5QzRGOUFFMDIvQzhGQjQ4Rjgw OEFGMTFFQkFCNzhERjZCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ28IMA0EAgACMAcDBQAkApFAMA0GCSqGSIb3DQEBCwUAA4IBAQCu lGu/Am2SbLx3EsUM1+kAUZtr44X4PEsVMMJ8S7aggt6GVQTWCR6Xvp1zEFaTfgL0 wPbCGWCYyYaoAv+tZYDBcpHE+0ZUKvpPfl7Zlq56bPEMfPiNnzH5/S7DseLfoAC6 Kma/AD2uYgTu7Rf8TypltQ+3fthP+Hk8psJf1uS0xqKjTom44R7HoOf+2i4zg8jT YbmCo6FCeb4FVBzoG5JhxiDVErYS9NBFWHimScRgDF/mClS9/hmHcfH5ppXOURMq LPqMvzBCxqmE9TUQvAu5e9bouRrihFysgjiu6KO+kz6+tJSncnPBspAHhQ5lTKYL zLCWz/Qm4X8mh1RItcBg -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:44 2026 by rpki-client