$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/8A6AA178556111EDB7E45424C4F9AE02.roa File: 8A6AA178556111EDB7E45424C4F9AE02.roa (raw, json) Hash identifier: EASpkdXObrJ8H1sWrr81zx66bGecEu9OLYPesUTFCoA= Subject key identifier: 35:BD:EB:9B:33:2A:C2:CC:BA:D1:A0:9F:6F:80:6D:53:69:F3:32:8A Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 0A79 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/8A6AA178556111EDB7E45424C4F9AE02.roa Signing time: Sat 02 May 2026 20:24:23 +0000 ROA not before: Sat 02 May 2026 20:24:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45267 IP address blocks: 103.88.144.0/22 maxlen: 23 103.88.144.0/23 maxlen: 24 103.88.146.0/24 maxlen: 24 203.96.248.0/22 maxlen: 24 2400:e3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2681 (0xa79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: May 2 20:24:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f65d77-095a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:98:a8:4f:f5:2e:d0:80:0b:85:17:2b:b5: 5f:1f:b8:66:f2:ff:a9:0d:7a:3f:8f:bf:30:c4:be: 8a:f9:2d:84:de:b6:ff:56:ec:16:5e:77:54:5b:0d: 7d:95:77:9e:7f:9e:f8:11:69:a4:d8:8c:90:22:95: 86:fc:67:96:50:34:d2:d6:ee:64:a5:93:6f:8d:80: 72:0f:83:78:84:2d:0a:1a:8d:3d:29:10:41:b2:88: 28:a2:d9:3e:a4:23:44:82:cf:e0:e1:c0:dc:82:90: 29:bf:48:f4:92:00:30:8e:b8:47:14:28:bd:37:e2: b9:dd:4a:2c:06:3a:9d:51:2c:ee:48:16:00:61:7b: b5:f0:58:1b:9b:53:f9:b4:24:ec:4d:30:fa:86:b5: 8b:0e:81:84:06:93:d9:e9:aa:2a:1b:07:b4:21:6b: 44:d0:cf:3b:95:49:1a:9f:0d:50:a0:2d:de:fe:1e: 80:8b:7e:8d:dd:32:ac:d6:ca:33:66:3d:6e:71:bd: 41:6d:76:eb:92:7e:d6:50:bd:6c:6d:bb:96:48:1b: ad:2f:6e:f5:a6:ae:e0:d3:ad:e9:79:8e:06:70:e5: c1:09:29:5a:49:0f:fd:45:9b:31:cb:a2:78:fb:77: 9d:78:27:da:91:f3:e7:41:9f:1c:86:80:1e:07:6f: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BD:EB:9B:33:2A:C2:CC:BA:D1:A0:9F:6F:80:6D:53:69:F3:32:8A X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/8A6AA178556111EDB7E45424C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.144.0/22 203.96.248.0/22 IPv6: 2400:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 72:02:88:0d:30:ad:44:a8:45:cd:2b:50:8e:96:89:0d:24:28: 00:b9:cb:27:a2:16:1a:b9:d9:9c:e4:47:a0:1f:ea:d5:ac:6e: 46:88:a9:5f:ff:ff:b2:f5:8c:57:5d:dc:d7:3c:bc:1f:20:a0: 57:a3:80:3e:8b:fb:50:d1:89:c4:54:19:cc:f0:9d:11:4c:5a: 25:d3:b0:e4:8c:2c:5b:59:67:ea:12:2c:19:c3:2d:8b:5d:8e: a8:83:0d:b7:48:7a:31:d1:b5:d7:ef:d4:73:79:f3:72:bd:ab: d1:a8:c0:08:db:36:21:a8:e1:01:d8:40:28:3e:a9:af:4a:0a: 68:8e:7f:64:d5:7b:de:f6:ae:b3:d7:45:b1:95:e5:81:fd:80: 79:3e:d5:16:96:2d:87:09:80:84:b4:7c:98:1a:6e:ea:d3:4a: d1:86:99:a0:4c:35:9e:a8:bb:96:3a:76:21:e5:24:b2:41:34: 10:a5:bf:6c:da:19:9e:ba:ea:c7:c2:f5:0b:1b:56:21:e6:75: a5:bb:92:fd:6d:0c:ec:84:b0:fa:15:0f:0b:bc:34:cf:38:6e: 37:0b:6c:2e:b1:fe:b4:5d:2d:e2:7b:5a:6e:86:08:31:6c:7e: c6:da:0f:59:7d:ab:a0:71:d7:2e:e5:93:a7:a9:4f:ee:db:f7: 5e:ed:ef:77 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjYwNTAyMjAyNDIzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2NWQ3Ny0wOTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxWYqE/1LtCAC4UXK7VfH7hm8v+pDXo/j78wxL6K+S2E3rb/VuwWXndUWw19 lXeef574EWmk2IyQIpWG/GeWUDTS1u5kpZNvjYByD4N4hC0KGo09KRBBsogootk+ pCNEgs/g4cDcgpApv0j0kgAwjrhHFCi9N+K53UosBjqdUSzuSBYAYXu18Fgbm1P5 tCTsTTD6hrWLDoGEBpPZ6aoqGwe0IWtE0M87lUkanw1QoC3e/h6Ai36N3TKs1soz Zj1ucb1BbXbrkn7WUL1sbbuWSButL271pq7g063peY4GcOXBCSlaSQ/9RZsxy6J4 +3edeCfakfPnQZ8choAeB29eJQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFDW965sz KsLMutGgn2+AbVNp8zKKMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4NzkvQUFGQ0VGMEE4MzQ5MTFFQTg5REU2OTdCQzRGOUFFMDIvOEE2QUExNzg1 NTYxMTFFREI3RTQ1NDI0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1iQAwQCy2D4MA0EAgACMAcDBQAkAOPAMA0GCSqGSIb3DQEBCwUA A4IBAQByAogNMK1EqEXNK1COlokNJCgAucsnohYaudmc5EegH+rVrG5GiKlf//+y 9YxXXdzXPLwfIKBXo4A+i/tQ0YnEVBnM8J0RTFol07DkjCxbWWfqEiwZwy2LXY6o gw23SHox0bXX79RzefNyvavRqMAI2zYhqOEB2EAoPqmvSgpojn9k1Xve9q6z10Wx leWB/YB5PtUWli2HCYCEtHyYGm7q00rRhpmgTDWeqLuWOnYh5SSyQTQQpb9s2hme uurHwvULG1Yh5nWlu5L9bQzshLD6FQ8LvDTPOG43C2wusf60XS3ie1puhggxbH7G 2g9Zfaugcdcu5ZOnqU/u2/de7e93 -----END CERTIFICATE-----Generated at Wed May 13 12:08:47 2026 by rpki-client