$ rpki-client -vvf rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa File: 71C4845EDD9A11EF8CFB3566C4F9AE02.roa (raw, json) Hash identifier: zD5WhC0bCWsOo5jdXngZobTQEu1Lt+roWNrpYQlV4vk= Subject key identifier: 65:98:2E:BF:BB:2E:04:32:90:B3:49:A4:FB:05:19:4C:B3:10:7D:00 Certificate issuer: /CN=A9153E2E/serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Certificate serial: D9 Authority key identifier: 25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:40:55 +0000 ROA not before: Fri 15 Aug 2025 07:45:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45337 IP address blocks: 103.11.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153E2E, serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Validity Not Before: Aug 15 07:45:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a177-f4a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f7:fe:13:42:5d:bc:e2:7f:ca:d1:bf:c2:f5: d6:0f:29:72:52:74:b1:93:92:73:b0:b7:06:93:18: 63:79:4d:3b:76:e0:9e:1c:24:7f:4e:c5:cc:75:59: 23:64:38:29:e9:10:3a:f9:71:31:f8:15:b8:2b:ea: 79:9f:1e:04:4a:ed:b8:42:97:ee:07:d7:dc:f0:31: a5:e1:02:fe:15:cc:5c:5b:dc:9a:d7:e5:be:eb:40: 24:2e:a8:79:11:77:94:3f:45:62:51:ee:a2:5f:b1: e1:92:cd:9a:21:c9:20:64:c1:62:91:75:38:f2:e4: b2:8c:8d:7b:00:19:35:12:a8:a7:73:4f:b9:81:43: 21:7a:68:ff:fd:23:31:c9:5f:33:2b:3c:c2:b6:0e: 5f:8a:be:7e:f2:1a:bb:2a:d2:19:97:e4:ec:a2:4f: 68:19:75:1a:4a:5c:58:1e:cb:43:58:58:0a:59:9a: 05:38:a9:42:51:61:1b:fb:60:26:0e:7d:9f:81:8c: 8a:e5:a3:67:46:5f:c7:01:f9:d5:7a:2a:3c:4a:5d: 00:2d:2e:ae:fa:01:54:29:11:4e:d4:bc:86:8f:36: b6:bc:bf:5e:c3:a1:ef:4f:af:ef:38:26:8e:6e:fb: 29:c3:9d:fc:6d:39:8e:02:3d:d7:9a:84:7c:87:21: 9a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:98:2E:BF:BB:2E:04:32:90:B3:49:A4:FB:05:19:4C:B3:10:7D:00 X509v3 Authority Key Identifier: keyid:25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.11.20.0/24 Signature Algorithm: sha256WithRSAEncryption 18:63:6a:7a:6f:0b:50:a1:1b:f5:e7:9f:18:b9:d5:d4:d2:51: dc:25:68:a8:07:36:eb:1a:67:62:37:e7:c2:cd:0d:50:fb:21: ac:bf:05:fc:9e:91:1e:7a:c9:f3:50:a7:b7:c8:43:7c:fb:4f: a5:13:79:aa:4d:37:31:98:39:2f:0f:d1:c4:c0:1a:61:d0:db: 2b:fa:81:fc:2c:47:5b:37:da:3b:fc:2c:94:b2:54:cb:4e:6a: 58:27:2c:41:76:39:f2:9d:ce:80:a9:f3:ba:53:6f:a5:2d:c0: 77:33:40:c3:8a:8c:49:a9:57:d7:25:8f:6c:9c:e9:57:4e:98: 84:e4:9e:c3:1d:19:62:68:08:cd:97:91:07:02:b2:77:c5:6d: 0c:af:3d:47:86:5d:07:aa:42:71:ca:4a:d7:fb:f2:d5:8e:33: 18:29:34:89:6f:9c:54:a4:7b:72:8f:83:35:50:c6:e3:c4:b7: 02:8e:a2:fe:d6:69:43:e3:72:71:3b:3a:9b:9b:76:a8:da:ee: 9c:05:28:0d:f3:c3:dc:76:55:2e:11:34:7e:9c:3d:bc:ea:38: 76:25:8f:90:3a:73:1b:88:24:39:82:69:92:81:dc:6a:da:32: 8d:1a:96:1f:a4:0b:d7:a7:bd:39:1c:c1:96:7c:85:84:77:1a: 53:7c:8f:93 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNFMkUxMTAvBgNVBAUTKDI1QUMzRTQ4RjJFNThFODhDNjA1NDQ3OThFQzY3MjQw NzZCNTM0MTMwHhcNMjUwODE1MDc0NTE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTE3Ny1mNGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlff+E0JdvOJ/ytG/wvXWDylyUnSxk5JzsLcGkxhjeU07duCeHCR/TsXMdVkj ZDgp6RA6+XEx+BW4K+p5nx4ESu24QpfuB9fc8DGl4QL+FcxcW9ya1+W+60AkLqh5 EXeUP0ViUe6iX7Hhks2aIckgZMFikXU48uSyjI17ABk1Eqinc0+5gUMhemj//SMx yV8zKzzCtg5fir5+8hq7KtIZl+Tsok9oGXUaSlxYHstDWFgKWZoFOKlCUWEb+2Am Dn2fgYyK5aNnRl/HAfnVeio8Sl0ALS6u+gFUKRFO1LyGjza2vL9ew6HvT6/vOCaO bvspw538bTmOAj3XmoR8hyGadQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGWYLr+7 LgQykLNJpPsFGUyzEH0AMB8GA1UdIwQYMBaAFCWsPkjy5Y6IxgVEeY7GckB2tTQT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0UyRS9GRkEzNUYwNERE OTgxMUVGQTlBRjQzNDZDNEY5QUUwMi9KYXctU1BMbGpvakdCVVI1anNaeVFIYTFO Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0phdy1TUExsam9qR0JVUjVqc1p5UUhhMU5CTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNFMkUvRkZBMzVGMDRERDk4MTFFRkE5QUY0MzQ2QzRGOUFFMDIvNzFDNDg0NUVE RDlBMTFFRjhDRkIzNTY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwsUMA0GCSqGSIb3DQEBCwUAA4IBAQAYY2p6bwtQoRv1558YudXU 0lHcJWioBzbrGmdiN+fCzQ1Q+yGsvwX8npEeesnzUKe3yEN8+0+lE3mqTTcxmDkv D9HEwBph0Nsr+oH8LEdbN9o7/CyUslTLTmpYJyxBdjnync6AqfO6U2+lLcB3M0DD ioxJqVfXJY9snOlXTpiE5J7DHRliaAjNl5EHArJ3xW0Mrz1Hhl0HqkJxykrX+/LV jjMYKTSJb5xUpHtyj4M1UMbjxLcCjqL+1mlD43JxOzqbm3ao2u6cBSgN88PcdlUu ETR+nD286jh2JY+QOnMbiCQ5gmmSgdxq2jKNGpYfpAvXp705HMGWfIWEdxpTfI+T -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:33 2026 by rpki-client