$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa File: 894FFF40556111EDB7E45424C4F9AE02.roa (raw, json) Hash identifier: bQj5mxklQD19F906ONQY4Ae0sdx03lDa6OD6mt+hkGU= Subject key identifier: CF:84:37:8C:F2:B9:10:E9:80:4C:52:96:6F:3C:E9:3E:4C:05:AE:21 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 0A78 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa Signing time: Sat 02 May 2026 20:24:20 +0000 ROA not before: Sat 02 May 2026 20:24:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136499 IP address blocks: 103.88.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2680 (0xa78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: May 2 20:24:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f65d73-d8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:59:8a:27:b8:51:37:54:c5:a7:b5:ed:39:7c: e6:f0:ac:35:02:9b:49:a5:b3:d6:87:6f:4a:10:99: 1a:fc:52:be:a6:52:18:03:06:59:45:84:f9:d2:25: 26:01:78:7c:6a:3c:ba:30:f5:68:ad:1c:95:5e:d6: 44:4a:61:37:47:df:ac:16:78:77:ab:92:f5:68:0a: 90:b1:6a:54:75:93:e0:81:5f:03:b8:7c:e0:eb:26: a2:6c:ce:f3:52:56:25:7f:80:78:c6:c9:b7:9e:9a: 3b:e2:f5:a0:9c:ba:32:9f:b1:ec:f7:e2:72:cd:ba: c3:05:2c:c7:54:2a:55:7b:c0:60:b4:89:23:50:a1: be:96:99:f0:d9:3f:ac:66:81:00:a1:32:23:62:1c: 9e:ae:d8:e1:e1:f2:16:66:76:f8:fb:9b:00:95:b7: 6b:18:2a:10:7b:10:57:30:c9:9a:df:ec:63:82:d4: 18:6a:f9:e9:86:db:f7:75:2b:23:e3:7b:df:fb:fe: f9:2b:1e:e9:de:76:11:9b:3d:60:13:01:c4:c9:60: 52:51:95:27:d6:f4:ef:a9:94:b8:d9:2d:69:93:55: 9c:ac:5c:b9:79:23:35:30:b6:cb:9f:b5:c9:e4:f4: 87:71:bb:a8:36:b6:15:bf:99:a5:d6:a8:b5:0f:9d: 2f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:84:37:8C:F2:B9:10:E9:80:4C:52:96:6F:3C:E9:3E:4C:05:AE:21 X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/894FFF40556111EDB7E45424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.147.0/24 Signature Algorithm: sha256WithRSAEncryption b9:10:b9:f7:50:48:59:86:5d:e9:c5:1b:64:c7:a1:42:f3:76: b5:6a:60:97:40:c9:d7:09:a2:cc:a0:0b:f4:fb:67:b7:ee:20: 68:4a:c0:79:2d:f6:1d:fa:b2:56:40:55:d7:dc:93:22:dc:3a: ac:78:59:c2:51:82:d1:38:55:b3:af:2d:b2:13:7a:71:63:04: 73:00:54:2e:c2:36:2c:97:fa:13:9c:2a:5e:fd:2f:78:b6:c4: 87:ae:40:55:dc:ae:30:b4:47:b2:a6:35:07:f3:5e:24:ef:ac: 35:d9:5d:02:19:4e:6f:09:e4:c8:7f:23:77:7d:58:09:09:43: a1:4e:50:cd:ae:bc:7b:71:c5:34:41:a6:dc:8e:24:24:fd:96: 33:5d:bb:eb:54:13:b9:c2:67:ed:70:bc:b5:8b:3c:b4:46:8a: 1b:dc:5e:9d:66:b6:94:b7:ef:cd:1a:f2:b7:d2:18:f8:85:62: 28:e4:46:90:23:c7:a2:19:e1:f2:76:d5:d8:e8:bb:84:0e:14: d2:7a:b0:73:ba:4c:bb:9f:e1:9c:92:e6:0e:72:b7:cd:14:dc: 44:c3:49:cc:4f:14:98:9c:1a:68:a3:48:0f:5a:32:a6:4f:3f: e7:72:58:c9:c9:ed:6a:57:e9:89:06:92:47:26:90:10:4f:f1: ea:fc:ba:16 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjYwNTAyMjAyNDIwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2NWQ3My1kOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi1mKJ7hRN1TFp7XtOXzm8Kw1AptJpbPWh29KEJka/FK+plIYAwZZRYT50iUm AXh8ajy6MPVorRyVXtZESmE3R9+sFnh3q5L1aAqQsWpUdZPggV8DuHzg6yaibM7z UlYlf4B4xsm3npo74vWgnLoyn7Hs9+JyzbrDBSzHVCpVe8BgtIkjUKG+lpnw2T+s ZoEAoTIjYhyertjh4fIWZnb4+5sAlbdrGCoQexBXMMma3+xjgtQYavnphtv3dSsj 43vf+/75Kx7p3nYRmz1gEwHEyWBSUZUn1vTvqZS42S1pk1WcrFy5eSM1MLbLn7XJ 5PSHcbuoNrYVv5ml1qi1D50v7wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM+EN4zy uRDpgExSlm886T5MBa4hMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4NzkvQUFGQ0VGMEE4MzQ5MTFFQTg5REU2OTdCQzRGOUFFMDIvODk0RkZGNDA1 NTYxMTFFREI3RTQ1NDI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1iTMA0GCSqGSIb3DQEBCwUAA4IBAQC5ELn3UEhZhl3pxRtkx6FC 83a1amCXQMnXCaLMoAv0+2e37iBoSsB5LfYd+rJWQFXX3JMi3DqseFnCUYLROFWz ry2yE3pxYwRzAFQuwjYsl/oTnCpe/S94tsSHrkBV3K4wtEeypjUH814k76w12V0C GU5vCeTIfyN3fVgJCUOhTlDNrrx7ccU0QabcjiQk/ZYzXbvrVBO5wmftcLy1izy0 Roob3F6dZraUt+/NGvK30hj4hWIo5EaQI8eiGeHydtXY6LuEDhTSerBzuky7n+Gc kuYOcrfNFNxEw0nMTxSYnBpoo0gPWjKmTz/ncljJye1qV+mJBpJHJpAQT/Hq/LoW -----END CERTIFICATE-----Generated at Wed May 13 08:05:55 2026 by rpki-client