$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa File: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (raw, json) Hash identifier: W6dMaUqeZUZ5yl2vrB4kDnmuCp2AkA9688MbXMn1Iu0= Subject key identifier: 8C:CA:2A:64:CA:71:80:25:E8:B0:1C:4A:57:61:4D:63:49:11:2A:D9 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 04A8 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:37:04 +0000 ROA not before: Thu 04 Dec 2025 23:35:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137427 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/23 maxlen: 23 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Dec 4 23:35:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a47940-5c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:80:82:bf:83:99:32:13:53:29:b4:bd:e8: 09:d3:db:3c:0b:bb:49:7a:e6:e5:38:33:45:47:92: f5:b3:e5:16:76:43:73:b1:fd:53:82:7d:a6:20:da: 41:8e:e7:cf:b2:11:45:9e:84:2a:af:b4:b1:69:fc: c7:82:be:32:19:55:2a:02:5b:31:04:46:da:58:00: 82:09:07:67:eb:2c:70:a3:8a:72:c3:d4:b6:96:47: 40:5d:33:39:cd:70:35:68:9f:e0:97:fc:50:dd:ce: 98:2c:b1:33:96:bc:a1:ed:65:b9:6b:6d:05:ee:4f: e2:b9:af:33:73:32:9f:41:4d:08:2c:95:56:c6:1c: cd:13:26:08:d6:ac:22:9b:90:e6:16:41:32:ee:35: ea:e4:7d:8a:4c:20:4f:38:ef:5d:65:d1:0f:05:f9: ca:66:f6:67:f9:bf:ee:3a:c0:8e:27:97:26:1b:f7: 6d:02:e2:19:1b:d7:da:ac:15:eb:53:4c:1b:d7:a5: 29:fa:80:38:ab:b5:c8:41:3a:17:be:6a:6f:d6:5a: 59:3a:10:45:23:47:61:94:3b:00:5f:91:42:b4:b7: 5b:3c:95:90:c1:c4:81:59:55:a0:dd:a4:de:fb:df: 2f:32:07:ee:e9:17:35:35:81:d0:89:b4:69:96:5b: 18:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CA:2A:64:CA:71:80:25:E8:B0:1C:4A:57:61:4D:63:49:11:2A:D9 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 3c:73:22:f4:22:40:e5:c9:f9:43:53:2a:94:39:72:23:09:5b: d6:87:0b:a4:30:a7:f7:cc:6b:99:e1:1a:e8:25:9f:57:b7:02: 31:03:ca:a6:d9:18:34:2f:c9:f1:bd:6a:dd:5b:33:0a:9d:6f: 94:82:bc:aa:94:a9:f3:c0:99:c5:5c:6e:9e:b1:e4:5d:94:5d: 60:5f:ee:89:c1:16:0b:bd:f4:d3:3e:6c:a1:cc:16:b2:2a:09: 11:dc:ca:20:f5:35:8e:54:58:38:e0:8e:93:62:b9:92:f3:db: 6d:ba:7b:7c:f9:b4:67:59:cc:48:10:47:95:84:4b:b9:c0:4e: d3:a0:35:05:b8:c9:93:f9:4e:3b:e5:e9:af:0f:2c:3f:2f:20: d7:96:25:75:a9:e9:25:49:14:ba:0f:41:53:55:f4:eb:6e:55: a4:1c:2e:c1:91:ce:21:11:49:8e:66:82:ef:70:8c:cf:51:f5: 66:3c:67:b9:0a:3f:3d:7f:b0:8e:d1:68:93:d7:68:da:b7:ff: be:69:d7:0f:cb:d3:9a:16:49:44:1c:fb:ce:9d:bf:20:14:b6: 58:cb:ed:57:13:1c:71:0a:30:f6:83:5f:6f:7e:b3:a2:07:2e: c5:79:ed:1d:42:02:87:dd:ff:06:e6:38:cf:33:27:d9:b5:f1: 47:51:8e:f8 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjUxMjA0MjMzNTM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzk0MC01YzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUeAgr+DmTITUym0vegJ09s8C7tJeublODNFR5L1s+UWdkNzsf1Tgn2mINpB jufPshFFnoQqr7SxafzHgr4yGVUqAlsxBEbaWACCCQdn6yxwo4pyw9S2lkdAXTM5 zXA1aJ/gl/xQ3c6YLLEzlryh7WW5a20F7k/iua8zczKfQU0ILJVWxhzNEyYI1qwi m5DmFkEy7jXq5H2KTCBPOO9dZdEPBfnKZvZn+b/uOsCOJ5cmG/dtAuIZG9farBXr U0wb16Up+oA4q7XIQToXvmpv1lpZOhBFI0dhlDsAX5FCtLdbPJWQwcSBWVWg3aTe +98vMgfu6Rc1NYHQibRpllsYDQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFIzKKmTK cYAl6LAcSldhTWNJESrZMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOEE0QzY2MkFF QUI1MTFFQ0JCREUzQzUwQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQAZ1vZMAwDBARnY9ADBABnY9IwDQYJKoZIhvcNAQELBQADggEBADxz IvQiQOXJ+UNTKpQ5ciMJW9aHC6Qwp/fMa5nhGugln1e3AjEDyqbZGDQvyfG9at1b Mwqdb5SCvKqUqfPAmcVcbp6x5F2UXWBf7onBFgu99NM+bKHMFrIqCRHcyiD1NY5U WDjgjpNiuZLz2226e3z5tGdZzEgQR5WES7nATtOgNQW4yZP5Tjvl6a8PLD8vINeW JXWp6SVJFLoPQVNV9OtuVaQcLsGRziERSY5mgu9wjM9R9WY8Z7kKPz1/sI7RaJPX aNq3/75p1w/L05oWSUQc+86dvyAUtljL7VcTHHEKMPaDX29+s6IHLsV57R1CAofd /wbmOM8zJ9m18UdRjvg= -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:28 2026 by rpki-client