$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa File: A88A17FA823C11EBB35EF50FC4F9AE02.roa (raw, json) Hash identifier: 7b7X7lAmpe4VIztKAFHWhrlQ0MJNaUA4ExxoVQIfMEA= Subject key identifier: 5F:7A:FF:51:31:30:4D:78:50:F4:58:62:BA:81:6E:A3:1B:03:DC:BA Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 06FB Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:32:23 +0000 ROA not before: Thu 02 Oct 2025 22:23:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133527 IP address blocks: 103.100.112.0/22 maxlen: 22 103.100.112.0/24 maxlen: 24 103.100.113.0/24 maxlen: 24 103.100.114.0/24 maxlen: 24 103.100.115.0/24 maxlen: 24 2401:bbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1787 (0x6fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Oct 2 22:23:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a431d7-2670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:29:c7:a2:c8:de:fd:25:3b:84:30:09:92:bc: a9:d1:91:77:2e:18:1d:c7:9d:42:0e:d0:5f:92:93: 03:21:2f:f1:c2:29:8e:7a:e9:6b:96:a3:f2:a8:56: 59:65:57:32:3c:4d:28:e4:dc:be:ec:a7:53:3a:84: 6b:a9:f7:63:8b:52:13:bf:fc:fb:01:af:cc:ec:18: b3:e7:78:80:e7:78:b2:75:63:cb:2c:44:58:6a:97: 57:da:12:fa:59:64:ba:a8:d0:3a:09:9a:c9:bf:88: bf:ff:3b:89:cc:36:e1:d9:27:ab:63:23:93:35:e5: 78:bd:73:b0:d1:3e:36:c7:46:14:56:14:d9:a8:64: 0f:2b:e0:b0:bc:74:e8:de:6f:09:62:0a:e6:c0:93: 1c:e2:5e:f5:7f:58:55:20:6a:8c:6d:59:83:64:6f: b2:13:06:f0:3c:35:6b:33:37:40:b8:63:c5:97:ce: 70:cd:35:84:29:5a:91:25:2d:04:6f:e3:f5:43:d2: 94:8b:b2:41:ad:d7:de:d8:17:97:01:27:b2:af:53: f1:ac:e5:f1:88:5b:4d:27:1d:b4:4a:c0:3f:4c:e9: 8a:5d:a1:4b:cc:41:2b:28:cb:a6:24:9f:59:02:95: 18:9b:e0:cd:9d:b1:c8:e1:67:45:e2:36:b5:37:6c: 42:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7A:FF:51:31:30:4D:78:50:F4:58:62:BA:81:6E:A3:1B:03:DC:BA X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.100.112.0/22 IPv6: 2401:bbc0::/32 Signature Algorithm: sha256WithRSAEncryption 66:2a:d6:7a:20:ea:19:a7:08:4c:fe:40:9f:cc:28:00:f8:78: 1b:93:3f:91:4f:4c:60:6f:24:62:ab:93:4e:c5:1c:cb:a1:9e: aa:08:a5:ad:22:57:90:4e:c5:1b:56:ab:46:ab:72:23:48:62: 6c:e7:bc:f8:81:18:eb:73:0f:70:d6:2e:5a:19:a6:f8:74:b1: d0:a2:43:4e:db:9f:27:9d:a3:15:c6:a1:3f:44:bf:aa:43:6d: 03:c6:72:85:d4:4f:19:a3:e6:73:55:b7:68:55:bf:01:3f:b0: 3f:74:da:03:11:ce:c5:ef:08:43:bd:8c:2d:9d:2b:c8:32:27: 8c:39:50:cd:14:77:13:68:44:a2:18:c1:e4:be:74:4b:df:de: 88:93:65:1b:99:f4:d4:d4:f4:03:f5:8e:c0:1b:d3:be:c3:18: 31:9f:da:be:7d:47:ca:ad:6a:b9:1e:8e:27:c7:72:e5:b0:3e: c0:5e:45:58:19:a2:72:e3:ec:80:31:91:67:93:88:eb:8c:26: d1:47:12:9b:20:28:d1:34:22:59:52:9e:6e:1b:ec:f0:ba:cb: 8c:11:b2:25:96:88:02:e1:30:02:08:bb:d5:5b:7e:56:44:2e: 90:62:29:bb:e1:dd:a0:68:32:24:8f:40:37:ec:bc:35:30:36: 8f:e1:c3:c4 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUxMDAyMjIyMzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzFkNy0yNjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqynHosje/SU7hDAJkryp0ZF3Lhgdx51CDtBfkpMDIS/xwimOeulrlqPyqFZZ ZVcyPE0o5Ny+7KdTOoRrqfdji1ITv/z7Aa/M7Biz53iA53iydWPLLERYapdX2hL6 WWS6qNA6CZrJv4i//zuJzDbh2SerYyOTNeV4vXOw0T42x0YUVhTZqGQPK+CwvHTo 3m8JYgrmwJMc4l71f1hVIGqMbVmDZG+yEwbwPDVrMzdAuGPFl85wzTWEKVqRJS0E b+P1Q9KUi7JBrdfe2BeXASeyr1PxrOXxiFtNJx20SsA/TOmKXaFLzEErKMumJJ9Z ApUYm+DNnbHI4WdF4ja1N2xCeQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFF96/1Ex ME14UPRYYrqBbqMbA9y6MB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NEMzEvNzVGNTdCMTA4MjNBMTFFQjhBRTIzNjBBQzRGOUFFMDIvQTg4QTE3RkE4 MjNDMTFFQkIzNUVGNTBGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2RwMA0EAgACMAcDBQAkAbvAMA0GCSqGSIb3DQEBCwUAA4IBAQBm KtZ6IOoZpwhM/kCfzCgA+Hgbkz+RT0xgbyRiq5NOxRzLoZ6qCKWtIleQTsUbVqtG q3IjSGJs57z4gRjrcw9w1i5aGab4dLHQokNO258nnaMVxqE/RL+qQ20DxnKF1E8Z o+ZzVbdoVb8BP7A/dNoDEc7F7whDvYwtnSvIMieMOVDNFHcTaESiGMHkvnRL396I k2UbmfTU1PQD9Y7AG9O+wxgxn9q+fUfKrWq5Ho4nx3LlsD7AXkVYGaJy4+yAMZFn k4jrjCbRRxKbICjRNCJZUp5uG+zwusuMEbIllogC4TACCLvVW35WRC6QYim74d2g aDIkj0A37Lw1MDaP4cPE -----END CERTIFICATE-----Generated at Thu Mar 26 10:40:46 2026 by rpki-client