$ rpki-client -vvf rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa File: A8F4AE389D7E11EF91A24C73C4F9AE02.roa (raw, json) Hash identifier: 0iZ7Xt/Zu5nFY9hKwlAmek0RRWbfnGrf5rL6vXkjRAk= Subject key identifier: EC:BB:57:BA:4B:5F:8B:D0:E7:A3:A4:35:F8:44:23:9C:96:F3:12:A9 Certificate issuer: /CN=A917B736/serialNumber=30BE1EB9D3AC49D0AFEE1353C3F9D1167A007B17 Certificate serial: 011E Authority key identifier: 30:BE:1E:B9:D3:AC:49:D0:AF:EE:13:53:C3:F9:D1:16:7A:00:7B:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:37:42 +0000 ROA not before: Tue 25 Nov 2025 03:51:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 8075 IP address blocks: 103.103.44.0/23 maxlen: 23 103.103.46.0/23 maxlen: 23 2401:ef40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.crl rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B736, serialNumber=30BE1EB9D3AC49D0AFEE1353C3F9D1167A007B17 Validity Not Before: Nov 25 03:51:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5a0b6-aae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:46:67:5c:b3:b2:a5:b9:1d:de:82:86:fa:8b: bf:c0:60:eb:ee:4a:81:f8:f0:4f:c7:da:15:a7:39: fe:18:42:dd:01:b1:8b:97:9c:ba:a7:c5:65:3e:29: 1b:de:b2:97:94:67:09:32:01:31:a0:fb:dc:27:f9: f3:a8:86:4f:a8:89:20:a2:0d:16:e9:fd:77:d4:b1: b5:9a:95:52:b6:f4:70:9d:b3:56:5e:24:d4:d3:af: d5:59:c0:eb:5f:a4:76:f2:7e:55:21:43:55:ba:80: 60:bf:a7:6d:a9:73:00:c4:9f:b4:65:b8:7c:65:39: 68:5a:ad:cc:c3:c3:b1:25:b4:ed:eb:5d:d9:ab:4d: ae:2b:b4:cf:ce:94:20:67:2b:dc:21:aa:9b:57:95: b5:ad:09:15:34:af:9e:c2:2e:8e:8d:c8:b3:6a:ac: c2:f5:ec:9d:22:ab:e2:ea:0e:2f:36:d6:8f:c0:3f: e6:60:d8:03:c9:02:54:79:be:bd:66:cb:e4:d4:d9: 7d:45:42:c8:d2:30:af:0a:4a:39:31:13:41:17:26: dc:a7:03:00:50:88:d4:7d:60:c8:7f:90:b5:ae:3d: 45:6b:b8:98:c5:a0:34:b4:2e:e6:d3:b4:b5:85:a5: 47:bb:d0:17:78:ba:19:e9:4e:ab:84:29:0d:68:80: 01:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BB:57:BA:4B:5F:8B:D0:E7:A3:A4:35:F8:44:23:9C:96:F3:12:A9 X509v3 Authority Key Identifier: keyid:30:BE:1E:B9:D3:AC:49:D0:AF:EE:13:53:C3:F9:D1:16:7A:00:7B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/ML4eudOsSdCv7hNTw_nRFnoAexc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ML4eudOsSdCv7hNTw_nRFnoAexc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B736/F133EF0C842D11EF99E83D84C4F9AE02/A8F4AE389D7E11EF91A24C73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.103.44.0/22 IPv6: 2401:ef40::/48 Signature Algorithm: sha256WithRSAEncryption 4c:23:a3:60:1a:47:2c:60:e5:2a:49:0e:1a:4d:03:1c:32:45: 94:32:f4:69:cf:2c:6b:53:ea:4a:a5:51:b3:5d:51:83:f7:b4: 38:98:55:44:a7:ce:95:33:89:cc:3b:33:94:ef:ef:a8:9c:db: 51:05:f6:75:e6:47:cd:bc:0f:35:a1:a1:81:1a:27:d8:58:32: 83:f4:b2:dd:a8:29:b6:59:e1:6b:49:ce:70:78:40:4f:30:0c: f3:1d:e5:20:2e:f4:ca:75:55:e3:0b:08:32:04:53:91:1b:ef: 9a:32:46:ae:f6:bc:aa:9e:1d:58:ba:bf:86:ae:f3:a3:7e:9f: 8c:ae:ce:83:4d:d9:a9:0e:f1:b6:6f:2b:67:8f:40:64:22:8c: 80:3d:03:58:d1:fd:63:8f:a1:c1:13:2d:06:0d:9c:1f:56:46: 18:da:01:c9:6b:39:9c:f3:86:a4:09:1b:15:3f:62:28:8b:1d: 27:6d:f6:ca:d9:c3:ad:1e:96:fd:9d:a5:c4:22:00:0a:b7:d2: 7f:29:59:a8:e9:35:af:e6:26:77:2b:7e:6d:5c:da:87:0c:3f: c8:71:8b:d8:d8:aa:c7:c0:82:bf:63:ea:d0:31:ee:0b:a3:f7: 8b:e4:8c:29:41:c5:c6:cd:26:78:7d:e2:f0:5e:b0:17:55:27: 49:79:c6:98 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I3MzYxMTAvBgNVBAUTKDMwQkUxRUI5RDNBQzQ5RDBBRkVFMTM1M0MzRjlEMTE2 N0EwMDdCMTcwHhcNMjUxMTI1MDM1MTIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTBiNi1hYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUZnXLOypbkd3oKG+ou/wGDr7kqB+PBPx9oVpzn+GELdAbGLl5y6p8VlPikb 3rKXlGcJMgExoPvcJ/nzqIZPqIkgog0W6f131LG1mpVStvRwnbNWXiTU06/VWcDr X6R28n5VIUNVuoBgv6dtqXMAxJ+0Zbh8ZTloWq3Mw8OxJbTt613Zq02uK7TPzpQg ZyvcIaqbV5W1rQkVNK+ewi6OjcizaqzC9eydIqvi6g4vNtaPwD/mYNgDyQJUeb69 Zsvk1Nl9RULI0jCvCko5MRNBFybcpwMAUIjUfWDIf5C1rj1Fa7iYxaA0tC7m07S1 haVHu9AXeLoZ6U6rhCkNaIABfQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOy7V7pL X4vQ56OkNfhEI5yW8xKpMB8GA1UdIwQYMBaAFDC+HrnTrEnQr+4TU8P50RZ6AHsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjczNi9GMTMzRUYwQzg0 MkQxMUVGOTlFODNEODRDNEY5QUUwMi9NTDRldWRPc1NkQ3Y3aE5Ud19uUkZub0Fl eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01MNGV1ZE9zU2RDdjdoTlR3X25SRm5vQWV4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I3MzYvRjEzM0VGMEM4NDJEMTFFRjk5RTgzRDg0QzRGOUFFMDIvQThGNEFFMzg5 RDdFMTFFRjkxQTI0QzczQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCZ2csMA8EAgACMAkDBwAkAe9AAAAwDQYJKoZIhvcNAQELBQADggEB AEwjo2AaRyxg5SpJDhpNAxwyRZQy9GnPLGtT6kqlUbNdUYP3tDiYVUSnzpUzicw7 M5Tv76ic21EF9nXmR828DzWhoYEaJ9hYMoP0st2oKbZZ4WtJznB4QE8wDPMd5SAu 9Mp1VeMLCDIEU5Eb75oyRq72vKqeHVi6v4au86N+n4yuzoNN2akO8bZvK2ePQGQi jIA9A1jR/WOPocETLQYNnB9WRhjaAclrOZzzhqQJGxU/YiiLHSdt9srZw60elv2d pcQiAAq30n8pWajpNa/mJncrfm1c2ocMP8hxi9jYqsfAgr9j6tAx7guj94vkjClB xcbNJnh94vBesBdVJ0l5xpg= -----END CERTIFICATE-----Generated at Thu Mar 26 03:46:05 2026 by rpki-client