$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa File: 899BFC6C533C11EF8B23DB12C4F9AE02.roa (raw, json) Hash identifier: PNuCCopETWS6vlNk5jS1Oy7RDkYmnLxq7jDjnr/jkg4= Subject key identifier: 94:E3:9D:AD:66:DB:F8:8B:38:7B:BD:6E:19:CC:A1:69:3C:F9:4D:AF Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 026E Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa Signing time: Mon 02 Mar 2026 04:43:46 +0000 ROA not before: Sun 31 Aug 2025 04:21:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151419 IP address blocks: 103.158.117.0/24 maxlen: 24 2401:e60:1::/48 maxlen: 48 2401:e60:2::/48 maxlen: 48 2401:e60:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7, serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Aug 31 04:21:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a51582-00b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:9c:05:95:00:4d:df:eb:8c:80:01:21:d5:93: a7:f6:24:d6:d4:9d:f3:ab:46:29:65:e1:f4:35:e3: d6:f2:54:05:e8:34:86:93:d6:5b:05:38:11:44:2b: b2:cd:c9:8d:91:c4:a3:4a:55:a0:73:c9:bd:82:3e: 3f:d4:8b:e9:b3:78:05:bb:cd:c7:81:3d:d1:64:5e: 1b:d1:0e:8f:b2:51:39:15:a8:d0:1b:70:27:fa:72: d8:d2:14:3a:e3:d4:de:c7:16:ff:94:6d:44:7d:5f: 08:33:15:83:be:0b:20:68:b8:bb:e1:88:c1:52:e7: 78:00:65:c7:29:dc:22:f2:a4:23:eb:5e:3f:51:fb: 6b:4c:c9:21:b9:05:40:05:8a:95:99:b6:1e:e4:6d: 00:e4:b7:56:7c:27:65:0a:9a:68:b3:25:05:ad:32: c9:7a:fc:b1:7c:a5:cc:5b:81:bc:0f:e7:8d:f6:cf: 73:14:b0:7c:8e:13:d1:5c:93:ad:e6:01:59:13:7d: 37:5a:fb:20:a8:2e:cd:32:30:77:77:db:b6:22:72: 45:84:f0:df:b5:65:6a:e8:6a:b0:94:a2:09:3a:62: 2b:fd:b4:84:70:71:3f:9e:ec:6a:3e:d8:69:40:06: e1:05:64:bb:56:b9:5a:6a:89:c8:a9:cc:d5:c5:67: 65:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E3:9D:AD:66:DB:F8:8B:38:7B:BD:6E:19:CC:A1:69:3C:F9:4D:AF X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.158.117.0/24 IPv6: 2401:e60:1::-2401:e60:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7c:51:0d:0f:01:a1:3a:3a:fa:37:a3:df:fc:a4:49:84:ac:d9: 6d:54:27:7c:fd:01:4c:fd:2d:63:90:e9:16:3a:85:3b:b1:7a: b3:dc:1e:ee:d0:bd:86:52:db:a5:c0:6b:6f:70:9d:b4:a9:89: 5b:ca:ba:1e:a3:e8:bd:9e:dd:e2:f1:df:f6:48:c2:6b:17:c7: 85:9b:a5:31:a3:67:f7:d2:12:19:50:d4:35:d8:fd:54:10:a5: f7:5d:cc:0d:42:47:df:ea:e0:47:71:42:bc:41:08:6b:2f:45: 00:e1:d2:2e:50:d0:32:4a:2e:08:0f:a6:0e:e0:fe:88:1f:39: bc:b4:58:af:fb:b5:62:c0:d7:d5:93:2d:56:58:ba:ae:d1:f8: ee:11:40:35:29:94:c7:bb:da:dd:d6:fa:5b:46:bf:52:57:48: ec:2c:39:c0:33:1f:b4:2d:77:11:5d:cf:61:5d:98:62:b9:e9: 64:7b:1c:c9:4f:bd:e1:63:36:ff:f0:86:88:3b:65:01:f9:29: 48:f0:10:b5:24:a3:dc:35:cf:77:81:00:ac:b7:27:be:a3:8d: eb:61:3a:63:c1:1b:6f:b4:21:aa:77:a8:a9:63:56:3e:3e:d9: 45:2d:d7:96:a3:67:ad:f6:e8:27:ab:6d:c9:b6:b3:7f:41:73: b7:03:95:68 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjUwODMxMDQyMTE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTU4Mi0wMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ZwFlQBN3+uMgAEh1ZOn9iTW1J3zq0YpZeH0NePW8lQF6DSGk9ZbBTgRRCuy zcmNkcSjSlWgc8m9gj4/1Ivps3gFu83HgT3RZF4b0Q6PslE5FajQG3An+nLY0hQ6 49Texxb/lG1EfV8IMxWDvgsgaLi74YjBUud4AGXHKdwi8qQj614/UftrTMkhuQVA BYqVmbYe5G0A5LdWfCdlCpposyUFrTLJevyxfKXMW4G8D+eN9s9zFLB8jhPRXJOt 5gFZE303WvsgqC7NMjB3d9u2InJFhPDftWVq6GqwlKIJOmIr/bSEcHE/nuxqPthp QAbhBWS7VrlaaonIqczVxWdllQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFJTjna1m 2/iLOHu9bhnMoWk8+U2vMB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvODk5QkZDNkM1 MzNDMTFFRjhCMjNEQjEyQzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAM BAIAATAGAwQAZ551MBoEAgACMBQwEgMHACQBDmAAAQMHAiQBDmAAADANBgkqhkiG 9w0BAQsFAAOCAQEAfFENDwGhOjr6N6Pf/KRJhKzZbVQnfP0BTP0tY5DpFjqFO7F6 s9we7tC9hlLbpcBrb3CdtKmJW8q6HqPovZ7d4vHf9kjCaxfHhZulMaNn99ISGVDU Ndj9VBCl913MDUJH3+rgR3FCvEEIay9FAOHSLlDQMkouCA+mDuD+iB85vLRYr/u1 YsDX1ZMtVli6rtH47hFANSmUx7va3db6W0a/UldI7Cw5wDMftC13EV3PYV2YYrnp ZHscyU+94WM2//CGiDtlAfkpSPAQtSSj3DXPd4EArLcnvqON62E6Y8Ebb7Qhqneo qWNWPj7ZRS3XlqNnrfboJ6ttybazf0FztwOVaA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:00:59 2026 by rpki-client