$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/EC7B7E82DFD811F08F00FF64536F56BC.roa File: EC7B7E82DFD811F08F00FF64536F56BC.roa (raw, json) Hash identifier: zSiOywbWl0k4o+BoXRQ/u23ZyXMyZjEaX4/Qt8amiLk= Subject key identifier: 03:E0:00:98:31:A3:51:9D:D2:87:4C:39:5F:CB:4B:F1:B9:BE:85:29 Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 05BF Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/EC7B7E82DFD811F08F00FF64536F56BC.roa Signing time: Mon 02 Mar 2026 15:04:37 +0000 ROA not before: Tue 23 Dec 2025 08:25:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141727 IP address blocks: 103.162.204.0/24 maxlen: 24 2001:df5:fb80::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1471 (0x5bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Dec 23 08:25:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a705-f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:58:2f:e0:67:d4:5b:a4:e1:15:c5:dc:ec: 3a:10:b2:92:ac:a4:27:bc:ba:1f:77:b7:0b:6e:15: f4:6c:02:ad:96:96:31:f1:ca:95:0b:c0:cd:48:30: 7e:c4:8d:26:48:f3:c7:ed:1d:a4:a7:eb:f1:2b:29: ed:fb:9f:5d:83:89:9d:00:e2:2b:ce:ea:5b:c8:81: c3:b1:a6:d6:7d:73:da:98:65:c7:99:af:d8:1d:75: 1f:cf:60:b7:f0:eb:1e:1b:00:28:56:52:f0:b2:76: cf:8c:a7:38:2b:e2:3d:eb:84:5f:7c:4d:6d:46:2e: f5:8d:61:32:51:54:8d:13:d1:c9:0c:2c:13:62:9a: 0a:f9:20:4f:22:36:3b:a9:9f:91:19:d2:d5:0f:b5: db:a4:8e:c8:63:c1:5b:db:e2:e0:56:ff:38:1a:b2: 72:6a:86:75:f1:01:6c:65:69:f6:f6:10:2a:42:06: 68:cc:e4:e3:5d:08:d6:d5:a3:af:8f:a4:2b:3a:35: de:a3:dc:f4:3f:0e:25:77:ff:1f:d2:e6:7a:bd:f2: a4:74:8f:d3:a2:5a:14:fe:46:79:55:4f:78:9c:c8: 1c:74:fa:45:25:73:8b:89:ba:23:4d:09:39:49:18: fb:1e:54:09:d3:5e:a5:4c:11:9e:9f:c6:57:7d:9e: 9b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E0:00:98:31:A3:51:9D:D2:87:4C:39:5F:CB:4B:F1:B9:BE:85:29 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/EC7B7E82DFD811F08F00FF64536F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.162.204.0/24 IPv6: 2001:df5:fb80::/47 Signature Algorithm: sha256WithRSAEncryption 9b:7f:70:38:85:5c:2d:18:89:dc:44:06:7c:f7:13:92:02:3f: 33:59:70:83:a1:17:4a:82:2c:ed:e5:8e:7b:59:84:39:a7:49: 1b:c6:47:30:9d:57:51:fd:2a:7e:c5:c6:00:8c:13:5d:4a:7a: 0c:c1:98:39:e9:f2:86:4a:7b:1a:27:18:15:28:e9:26:33:52: 60:ce:0e:f5:7f:03:8b:2a:9c:2f:c3:0a:f5:90:4c:12:6a:56: bd:b8:1c:49:a3:94:2b:c1:81:39:51:27:b4:7c:9a:3f:ef:78: b2:3f:a0:85:8c:44:23:d3:d3:c2:da:61:40:c5:bc:c3:68:fc: cf:53:a0:d3:5c:59:ef:43:00:94:dc:34:93:f7:63:bf:7e:3f: 76:d1:64:36:fa:32:64:89:b9:0a:81:33:19:56:d0:a1:ad:75: 5e:a9:cb:b1:8c:91:33:fb:94:f3:a1:d4:f6:86:c8:a6:45:fd: 94:fe:c9:0f:5d:bb:45:f6:a3:42:41:b6:09:a9:bc:23:2b:ad: 44:90:b0:0b:b2:8f:b6:c6:ae:40:a7:ee:f2:ca:55:27:9c:eb: 87:69:89:f1:2a:89:c1:44:67:61:09:6b:99:5e:da:38:d8:33: af:29:4d:6e:c7:96:e6:4e:59:d8:f4:fa:01:48:62:cb:68:4d: 16:ea:c8:9d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUxMjIzMDgyNTUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTcwNS1mMTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSNYL+Bn1Fuk4RXF3Ow6ELKSrKQnvLofd7cLbhX0bAKtlpYx8cqVC8DNSDB+ xI0mSPPH7R2kp+vxKynt+59dg4mdAOIrzupbyIHDsabWfXPamGXHma/YHXUfz2C3 8OseGwAoVlLwsnbPjKc4K+I964RffE1tRi71jWEyUVSNE9HJDCwTYpoK+SBPIjY7 qZ+RGdLVD7XbpI7IY8Fb2+LgVv84GrJyaoZ18QFsZWn29hAqQgZozOTjXQjW1aOv j6QrOjXeo9z0Pw4ld/8f0uZ6vfKkdI/ToloU/kZ5VU94nMgcdPpFJXOLibojTQk5 SRj7HlQJ016lTBGen8ZXfZ6bywIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAPgAJgx o1Gd0odMOV/LS/G5voUpMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M4MUMvRDE5QUVFM0VGRjEwMTFFQjlCRDEzRDZDQzRGOUFFMDIvRUM3QjdFODJE RkQ4MTFGMDhGMDBGRjY0NTM2RjU2QkMucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ6LMMA8EAgACMAkDBwEgAQ31+4AwDQYJKoZIhvcNAQELBQADggEB AJt/cDiFXC0YidxEBnz3E5ICPzNZcIOhF0qCLO3ljntZhDmnSRvGRzCdV1H9Kn7F xgCME11KegzBmDnp8oZKexonGBUo6SYzUmDODvV/A4sqnC/DCvWQTBJqVr24HEmj lCvBgTlRJ7R8mj/veLI/oIWMRCPT08LaYUDFvMNo/M9ToNNcWe9DAJTcNJP3Y79+ P3bRZDb6MmSJuQqBMxlW0KGtdV6py7GMkTP7lPOh1PaGyKZF/ZT+yQ9du0X2o0JB tgmpvCMrrUSQsAuyj7bGrkCn7vLKVSec64dpifEqicFEZ2EJa5le2jjYM68pTW7H luZOWdj0+gFIYstoTRbqyJ0= -----END CERTIFICATE-----Generated at Fri Mar 27 02:11:23 2026 by rpki-client