$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: 6cuRYkKrSNBuAIRhtyOQTmq+Tuxf6pFsDwJm5X0jf/o= Subject key identifier: 81:73:58:3E:63:A1:98:19:03:86:1B:1C:2B:9C:58:02:DC:36:00:EC Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0BC3 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:22:24 +0000 ROA not before: Mon 02 Feb 2026 19:16:09 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:b::/48 maxlen: 48 2403:da40:100::/40 maxlen: 40 2403:da40:100::/48 maxlen: 48 2403:da40:101::/48 maxlen: 48 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299, serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Feb 2 19:16:09 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a475d0-ec88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fe:6b:51:85:de:d2:d3:fa:df:56:06:dd:dc: d9:5a:ca:e3:68:2d:f8:c6:c7:c5:b8:c8:83:8f:11: 54:a5:c6:5c:13:b0:04:9b:7a:91:ac:65:ff:64:12: ef:19:3b:ab:b7:48:09:c0:20:bc:91:f6:90:51:93: 9c:c1:3a:d1:00:fb:8c:25:81:0f:22:b0:b1:d9:8e: c6:a5:ef:51:a7:5f:4b:40:5d:e0:77:2f:af:45:18: 8a:da:25:67:60:89:3b:72:10:07:ae:c4:b1:cd:20: 91:46:03:ff:7b:5c:a5:c7:56:86:00:63:d0:e7:2f: 99:4e:0e:6d:91:53:0e:cd:bb:ec:95:23:45:61:87: 73:42:d8:df:6d:f1:33:44:0d:2c:51:db:a3:5c:46: 46:39:a7:0b:2d:f2:a5:9a:33:d6:61:fa:5b:94:6b: 8b:3c:e6:10:3c:02:9b:5d:3c:da:3b:49:4f:b0:09: 92:49:e4:e3:dd:31:bd:d3:68:53:e4:af:d6:35:bb: f7:10:59:c5:9a:81:2f:c3:89:a1:e5:e2:df:e6:ac: e9:eb:93:f6:28:6b:95:c0:86:5a:bb:1c:80:7d:68: cf:bc:5c:5f:66:54:1b:c5:3f:03:cb:fb:d4:d3:eb: c3:bf:c5:80:52:12:ec:d5:6c:de:a7:96:9d:e6:9a: 8a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:73:58:3E:63:A1:98:19:03:86:1B:1C:2B:9C:58:02:DC:36:00:EC X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption 74:ba:56:b0:bc:ae:41:ed:cf:30:df:4a:25:00:1c:86:9a:74: 88:7e:e9:45:bd:65:08:f1:89:99:c0:60:3f:56:28:9a:99:71: 39:86:d6:d3:c2:cc:0e:70:5e:c0:40:58:42:68:a9:07:64:0d: 0a:7f:ec:2a:20:b7:e4:f3:b7:c0:61:91:75:81:18:4a:79:82: 12:20:9b:d7:94:73:6b:c7:a7:1e:38:49:2a:5b:87:40:c4:92: 92:56:8b:f0:19:bf:38:02:13:8d:91:a5:83:87:51:0b:67:87: de:a4:bf:e5:55:4e:a6:31:cb:d5:c8:d0:5e:54:27:ce:db:58: e7:ea:31:df:8d:53:0a:97:d2:e9:86:a9:24:42:06:07:13:1d: 1d:73:f3:45:71:b2:03:78:c6:54:6a:80:fe:d7:a9:6c:a9:b6: 2d:15:51:79:d3:37:6f:e6:d2:0e:8b:e5:1c:d1:e9:7b:f7:e5: 6c:56:f4:56:ce:10:cd:1a:4b:04:ea:65:b9:99:33:8a:17:5a: 57:89:22:e2:87:cb:bd:12:98:83:53:4e:e2:fe:25:0b:06:df: 0a:76:93:6b:17:62:41:67:29:c5:d8:d4:6e:ff:1a:30:3b:d8: d3:85:b3:13:da:bd:4e:bb:2e:ae:a6:cf:b7:c1:98:b4:e3:f0: 0a:6e:78:11 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjYwMjAyMTkxNjA5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVkMC1lYzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/5rUYXe0tP631YG3dzZWsrjaC34xsfFuMiDjxFUpcZcE7AEm3qRrGX/ZBLv GTurt0gJwCC8kfaQUZOcwTrRAPuMJYEPIrCx2Y7Gpe9Rp19LQF3gdy+vRRiK2iVn YIk7chAHrsSxzSCRRgP/e1ylx1aGAGPQ5y+ZTg5tkVMOzbvslSNFYYdzQtjfbfEz RA0sUdujXEZGOacLLfKlmjPWYfpblGuLPOYQPAKbXTzaO0lPsAmSSeTj3TG902hT 5K/WNbv3EFnFmoEvw4mh5eLf5qzp65P2KGuVwIZauxyAfWjPvFxfZlQbxT8Dy/vU 0+vDv8WAUhLs1Wzep5ad5pqKpwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFIFzWD5j oZgZA4YbHCucWALcNgDsMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3w0MA0EAgACMAcDBQAkA9pAMA0GCSqGSIb3DQEBCwUAA4IBAQB0 ulawvK5B7c8w30olAByGmnSIfulFvWUI8YmZwGA/ViiamXE5htbTwswOcF7AQFhC aKkHZA0Kf+wqILfk87fAYZF1gRhKeYISIJvXlHNrx6ceOEkqW4dAxJKSVovwGb84 AhONkaWDh1ELZ4fepL/lVU6mMcvVyNBeVCfO21jn6jHfjVMKl9LphqkkQgYHEx0d c/NFcbIDeMZUaoD+16lsqbYtFVF50zdv5tIOi+Uc0el79+VsVvRWzhDNGksE6mW5 mTOKF1pXiSLih8u9EpiDU07i/iULBt8KdpNrF2JBZynF2NRu/xowO9jThbMT2r1O uy6ups+3wZi04/AKbngR -----END CERTIFICATE-----Generated at Thu Mar 26 11:57:06 2026 by rpki-client