$ rpki-client -vvf rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa File: 0F072D383AAE11EAB5D8270EC4F9AE02.roa (raw, json) Hash identifier: Dn6xSFCy5x99YohPUflOg2YEXwlJIsT+ParKkyCySyY= Subject key identifier: CA:0E:F5:D4:79:F5:23:C5:C4:AF:2C:BC:B3:13:E3:13:05:66:91:26 Certificate issuer: /CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Certificate serial: 0BE9 Authority key identifier: 22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa Signing time: Mon 02 Mar 2026 05:15:19 +0000 ROA not before: Sat 28 Jun 2025 19:13:55 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135527 IP address blocks: 103.222.20.0/22 maxlen: 24 2405:bf40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C38F, serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Validity Not Before: Jun 28 19:13:55 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a51ce7-e4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:42:93:a3:22:2b:69:84:17:b5:5c:4f:14:7b: 7a:49:7d:82:a6:f3:53:4c:5c:74:51:eb:08:0b:80: 00:79:1c:98:44:5f:18:e8:92:9d:5e:c8:57:56:2b: 9b:95:09:07:4d:70:c0:ba:78:0a:31:c5:90:ed:f6: 0d:5a:b9:e2:b4:41:27:dd:83:07:94:6a:28:b2:24: b8:ba:5d:95:64:b1:4d:ba:c8:37:7a:db:b4:cf:09: f7:c5:f8:6d:d2:8a:1b:84:ac:c4:5b:d1:b0:ea:53: 58:0c:94:b7:04:4d:e4:a8:89:a1:8c:a1:48:d4:88: 4e:80:3d:fd:7d:18:ca:da:a8:52:4f:a3:f0:66:7c: 7b:3f:be:39:fe:3c:ce:64:e1:ae:86:d8:0f:c1:f5: 06:27:b4:c3:d1:02:a8:4d:3e:af:9b:0e:c8:93:ec: 9e:5a:26:3a:97:a9:d4:d9:29:e5:12:46:af:40:79: d6:46:ac:5b:a3:ba:54:19:05:23:29:be:57:2f:02: 8a:c2:88:b5:22:0a:4b:46:d9:bd:b0:6d:a6:20:f8: 72:0e:f4:9a:b6:2b:66:67:0f:fd:ac:bb:bb:a7:87: 7f:bc:f0:ed:88:21:07:40:a1:45:59:cc:63:52:67: 66:ae:f8:c4:dc:ca:2b:b3:56:1a:4e:96:71:04:12: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0E:F5:D4:79:F5:23:C5:C4:AF:2C:BC:B3:13:E3:13:05:66:91:26 X509v3 Authority Key Identifier: keyid:22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.222.20.0/22 IPv6: 2405:bf40::/32 Signature Algorithm: sha256WithRSAEncryption 7b:a9:50:27:83:1c:b0:a9:1e:be:f7:6e:16:56:21:e6:4f:04: 04:fb:c5:d6:01:c6:43:4b:4e:19:e6:53:58:4e:ec:f5:6c:a0: fd:6a:fc:6b:23:28:37:4a:f4:06:cd:39:fc:4e:d7:91:e1:d0: f6:e9:e9:62:a9:7b:ad:3b:82:88:a8:38:5b:95:08:c2:87:7b: 89:1f:3c:74:f3:55:5f:cf:d3:c9:85:97:d3:87:8a:51:e7:e7: 33:9b:a5:69:89:86:4b:fa:92:60:b1:e2:94:91:82:1c:d7:3b: 26:54:b8:5d:e2:60:ed:05:31:c7:5e:ce:bd:3a:ee:95:25:88: 56:cd:0a:1f:9a:68:28:f6:f5:34:8f:8a:8a:74:46:6c:56:08: aa:c2:40:eb:ce:a5:15:13:2b:67:a6:61:19:e1:b1:20:7c:ae: a5:11:70:23:79:64:e7:3a:0a:4c:7b:67:08:da:a5:79:82:b6: 92:73:65:6f:82:4f:46:0a:e2:1a:b1:d9:eb:61:04:fe:a6:24: c9:97:5a:65:b8:2e:7d:6a:3b:97:a4:62:62:bf:ba:11:cc:be: bc:4a:17:48:f6:46:06:8a:9f:07:2a:2f:b9:55:f0:54:eb:aa: 39:fa:82:12:e8:22:95:24:d0:e8:20:8b:cb:60:47:7f:a3:34: 0a:d7:cb:80 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMzOEYxMTAvBgNVBAUTKDIyMjQwRkI3ODcyQUE2MThEM0UwRDQ5MzQ1REJGNDI0 NzNBRDA0QzcwHhcNMjUwNjI4MTkxMzU1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWNlNy1lNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkKToyIraYQXtVxPFHt6SX2CpvNTTFx0UesIC4AAeRyYRF8Y6JKdXshXViub lQkHTXDAungKMcWQ7fYNWrnitEEn3YMHlGoosiS4ul2VZLFNusg3etu0zwn3xfht 0oobhKzEW9Gw6lNYDJS3BE3kqImhjKFI1IhOgD39fRjK2qhST6PwZnx7P745/jzO ZOGuhtgPwfUGJ7TD0QKoTT6vmw7Ik+yeWiY6l6nU2SnlEkavQHnWRqxbo7pUGQUj Kb5XLwKKwoi1IgpLRtm9sG2mIPhyDvSatitmZw/9rLu7p4d/vPDtiCEHQKFFWcxj UmdmrvjE3Mors1YaTpZxBBKMTQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMoO9dR5 9SPFxK8svLMT4xMFZpEmMB8GA1UdIwQYMBaAFCIkD7eHKqYY0+DUk0Xb9CRzrQTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzM4Ri82OUU5OUI4RTNB QUMxMUVBODQ3OTVFMEJDNEY5QUUwMi9JaVFQdDRjcXBoalQ0TlNUUmR2MEpIT3RC TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpUVB0NGNxcGhqVDROU1RSZHYwSkhPdEJNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMzOEYvNjlFOTlCOEUzQUFDMTFFQTg0Nzk1RTBCQzRGOUFFMDIvMEYwNzJEMzgz QUFFMTFFQUI1RDgyNzBFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ94UMA0EAgACMAcDBQAkBb9AMA0GCSqGSIb3DQEBCwUAA4IBAQB7 qVAngxywqR6+924WViHmTwQE+8XWAcZDS04Z5lNYTuz1bKD9avxrIyg3SvQGzTn8 TteR4dD26eliqXutO4KIqDhblQjCh3uJHzx081Vfz9PJhZfTh4pR5+czm6VpiYZL +pJgseKUkYIc1zsmVLhd4mDtBTHHXs69Ou6VJYhWzQofmmgo9vU0j4qKdEZsVgiq wkDrzqUVEytnpmEZ4bEgfK6lEXAjeWTnOgpMe2cI2qV5graSc2Vvgk9GCuIasdnr YQT+piTJl1pluC59ajuXpGJiv7oRzL68ShdI9kYGip8HKi+5VfBU66o5+oIS6CKV JNDoIIvLYEd/ozQK18uA -----END CERTIFICATE-----Generated at Thu Mar 26 20:38:16 2026 by rpki-client