$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa File: B339551A8F5911F0AFB88342C4F9AE02.roa (raw, json) Hash identifier: 0idLIxOamxpOhUGhRED9KgyjbGEjlf8TTsjVHp7uchk= Subject key identifier: C9:09:F0:18:62:34:51:11:0B:85:A9:B1:B8:E5:1A:46:EE:E9:81:CC Certificate issuer: /CN=A917C0CC/serialNumber=0DCAFAC145B22F1560780166CD1F151504EEF8A1 Certificate serial: 69 Authority key identifier: 0D:CA:FA:C1:45:B2:2F:15:60:78:01:66:CD:1F:15:15:04:EE:F8:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:29:06 +0000 ROA not before: Thu 11 Sep 2025 21:53:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.237.104.0/24 maxlen: 24 103.237.105.0/24 maxlen: 24 103.237.106.0/24 maxlen: 24 103.237.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.crl rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0CC, serialNumber=0DCAFAC145B22F1560780166CD1F151504EEF8A1 Validity Not Before: Sep 11 21:53:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a590a2-379d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:08:0e:3d:1e:c4:fa:22:4d:7c:32:ce:e1:ad: bf:2e:d2:01:c9:ee:48:88:b4:94:7e:59:73:d5:df: 29:93:0d:e7:8a:42:2f:65:75:62:69:cc:03:c2:7e: be:d0:c0:40:18:da:a8:b3:97:6a:60:63:d5:a7:43: e3:43:c2:9e:6d:a1:be:ba:b3:ab:b2:86:32:4b:77: 10:cf:95:ca:f4:11:cc:20:51:65:ab:95:c9:17:de: 9c:4c:51:ca:12:e9:f9:c9:0f:ed:a1:7d:40:71:11: 6f:12:30:c8:14:6f:46:01:fe:49:f2:ae:3e:80:22: 7f:60:70:b9:19:54:8e:29:58:01:32:85:19:5b:39: 05:25:5c:10:a3:ad:63:43:20:e2:14:d6:e1:0e:72: 19:15:e5:75:8d:43:ae:9f:81:ba:9a:76:98:31:9e: 5f:57:0f:2a:08:a6:b2:36:5c:a5:ca:b2:84:42:74: 4c:41:0a:7e:49:b4:7a:71:7a:86:31:c2:1f:af:f3: 6b:1c:40:6f:7f:46:c0:e3:ef:9e:95:8f:a1:1a:8f: cf:c8:99:48:77:1a:80:84:e6:fe:93:49:1c:45:70: e5:f1:97:b7:05:0a:a1:21:8d:d3:2a:6a:f4:6a:62: 6e:2f:ce:ef:57:58:6b:f5:12:d5:ae:92:a4:6f:63: 5e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:09:F0:18:62:34:51:11:0B:85:A9:B1:B8:E5:1A:46:EE:E9:81:CC X509v3 Authority Key Identifier: keyid:0D:CA:FA:C1:45:B2:2F:15:60:78:01:66:CD:1F:15:15:04:EE:F8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Dcr6wUWyLxVgeAFmzR8VFQTu-KE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0CC/8FCCC7F88F5711F09C51EC3BC4F9AE02/B339551A8F5911F0AFB88342C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.237.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:3c:c4:66:b9:ee:27:83:95:44:b0:e0:df:40:0e:90:f5:fc: b9:b0:b8:9a:49:75:88:72:73:bc:1e:7a:e3:66:a0:e7:20:d5: 92:44:3d:c3:32:d1:8d:50:82:25:ac:9e:21:75:f6:45:82:d6: 59:7d:46:2c:ea:8b:6f:18:54:62:26:e2:71:d8:00:a5:3f:20: 5f:da:99:7c:83:7c:20:f9:ae:f3:fd:33:bd:81:70:45:f2:11: 8d:ac:34:80:53:6f:df:f7:dc:7c:4f:91:d0:cf:6c:8e:1f:47: 8c:eb:c1:59:36:66:d3:f1:ee:8d:1a:81:1f:96:d3:66:31:64: 2a:5d:6b:61:57:77:33:92:3d:e4:7e:e3:88:1c:e6:62:22:60: 93:ba:aa:dd:31:f2:6b:c4:cb:01:68:28:32:c3:4f:6e:0f:90: 3a:f7:1f:e6:a6:83:8b:48:3b:67:06:9a:bc:49:bc:fc:63:e8: 84:aa:0f:42:86:6c:3e:f8:cb:cb:91:e8:3b:56:e1:01:32:be: 3a:47:a7:b3:ae:c8:11:6a:c7:70:59:44:6c:a1:94:f2:37:e7: c4:a0:bc:7f:ad:a6:e5:63:05:84:2f:fc:ca:b7:c3:1a:ab:ef: ea:f7:db:01:fc:c4:51:bf:ed:e0:35:f6:53:63:20:6c:88:ae: 3d:c9:2f:c8 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBDQzExMC8GA1UEBRMoMERDQUZBQzE0NUIyMkYxNTYwNzgwMTY2Q0QxRjE1MTUw NEVFRjhBMTAeFw0yNTA5MTEyMTUzMDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5MGEyLTM3OWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTCA49HsT6Ik18Ms7hrb8u0gHJ7kiItJR+WXPV3ymTDeeKQi9ldWJpzAPCfr7Q wEAY2qizl2pgY9WnQ+NDwp5tob66s6uyhjJLdxDPlcr0EcwgUWWrlckX3pxMUcoS 6fnJD+2hfUBxEW8SMMgUb0YB/knyrj6AIn9gcLkZVI4pWAEyhRlbOQUlXBCjrWND IOIU1uEOchkV5XWNQ66fgbqadpgxnl9XDyoIprI2XKXKsoRCdExBCn5JtHpxeoYx wh+v82scQG9/RsDj756Vj6Eaj8/ImUh3GoCE5v6TSRxFcOXxl7cFCqEhjdMqavRq Ym4vzu9XWGv1EtWukqRvY16JAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUyQnwGGI0 URELhamxuOUaRu7pgcwwHwYDVR0jBBgwFoAUDcr6wUWyLxVgeAFmzR8VFQTu+KEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMENDLzhGQ0NDN0Y4OEY1 NzExRjA5QzUxRUMzQkM0RjlBRTAyL0RjcjZ3VVd5THhWZ2VBRm16UjhWRlFUdS1L RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGNyNndVV3lMeFZnZUFGbXpSOFZGUVR1LUtFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBDQy84RkNDQzdGODhGNTcxMUYwOUM1MUVDM0JDNEY5QUUwMi9CMzM5NTUxQThG NTkxMUYwQUZCODgzNDJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn7WgwDQYJKoZIhvcNAQELBQADggEBAJo8xGa57ieDlUSw4N9ADpD1 /LmwuJpJdYhyc7weeuNmoOcg1ZJEPcMy0Y1QgiWsniF19kWC1ll9Rizqi28YVGIm 4nHYAKU/IF/amXyDfCD5rvP9M72BcEXyEY2sNIBTb9/33HxPkdDPbI4fR4zrwVk2 ZtPx7o0agR+W02YxZCpda2FXdzOSPeR+44gc5mIiYJO6qt0x8mvEywFoKDLDT24P kDr3H+amg4tIO2cGmrxJvPxj6ISqD0KGbD74y8uR6DtW4QEyvjpHp7OuyBFqx3BZ RGyhlPI358SgvH+tpuVjBYQv/Mq3wxqr7+r32wH8xFG/7eA19lNjIGyIrj3JL8g= -----END CERTIFICATE-----Generated at Thu Mar 26 11:09:18 2026 by rpki-client