$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa File: B78B5CB6D65F11EA8B30486EC4F9AE02.roa (raw, json) Hash identifier: OYXjXOF1OK74nQrn1QIRacdZBRoGnG2hFU6B9gjBscs= Subject key identifier: 33:2D:CE:44:76:8F:4A:E5:46:69:6A:FE:CC:7D:B0:C8:D6:29:7B:A0 Certificate issuer: /CN=A917F8F2/serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Certificate serial: 08C7 Authority key identifier: B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:42:19 +0000 ROA not before: Fri 30 Jan 2026 20:17:18 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134737 IP address blocks: 103.149.8.0/24 maxlen: 24 103.149.9.0/24 maxlen: 24 2001:df4:6580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8F2, serialNumber=B791BD1C9E2081AA84F8078066C0C7F60A63790E Validity Not Before: Jan 30 20:17:18 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45e5b-94ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fc:50:04:31:44:95:30:5b:eb:73:65:0e:71: 7e:f7:9e:12:b7:58:ff:f4:a6:aa:8f:48:2b:b9:f3: ea:87:cf:77:66:dc:75:9c:ff:92:38:f2:b0:72:d0: 46:b9:69:5e:ae:3b:b7:63:5e:59:d3:45:22:08:22: 89:a4:2a:78:ce:45:6b:a2:48:03:f8:06:e5:d7:ca: 7a:c3:a9:5c:7d:23:54:69:91:e8:8d:8a:10:8f:65: 6f:a9:a0:5b:b4:da:3a:5d:40:73:d7:68:ec:d7:d3: 64:21:06:89:85:74:76:69:13:07:f8:4a:5e:1f:31: 3c:8b:40:ae:1f:27:ad:83:0c:19:95:c1:12:05:46: 26:c0:65:13:02:08:a3:70:36:15:1a:13:f5:f6:a9: 6d:3b:0a:5e:a2:88:86:53:7b:9f:ce:6d:3a:bc:f6: f7:fc:75:13:9a:e3:d6:2a:b5:1d:5c:00:84:3e:6a: 48:93:fb:8b:a6:fe:23:20:d3:37:9f:4b:e7:af:87: e8:47:6e:4e:40:a5:bc:7e:9e:c6:c9:29:7d:46:85: 6a:6e:d5:95:7f:ab:21:9d:ba:1d:56:56:65:8d:5e: c7:80:ee:29:0f:a9:fe:58:3f:a2:d9:4b:9b:cd:6c: 0d:c7:81:9c:c1:ad:58:d5:68:de:fe:e8:04:f6:1b: 18:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:2D:CE:44:76:8F:4A:E5:46:69:6A:FE:CC:7D:B0:C8:D6:29:7B:A0 X509v3 Authority Key Identifier: keyid:B7:91:BD:1C:9E:20:81:AA:84:F8:07:80:66:C0:C7:F6:0A:63:79:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5G9HJ4ggaqE-AeAZsDH9gpjeQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8F2/022D571CD65E11EAB60CA36BC4F9AE02/B78B5CB6D65F11EA8B30486EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.149.8.0/23 IPv6: 2001:df4:6580::/48 Signature Algorithm: sha256WithRSAEncryption 94:e0:92:24:24:a9:a6:5b:b6:2e:38:8f:5e:4b:f1:34:dc:5a: 69:b5:af:4f:8f:bb:10:93:82:8e:33:fb:d8:a3:a3:5f:67:49: 4a:03:d6:3e:d2:62:4e:2f:4e:39:48:5b:cb:b8:e2:e4:cc:da: 66:7b:ba:e3:37:8e:08:e4:16:1a:07:28:c0:fc:55:f5:72:bc: f9:b2:47:cd:1b:16:8d:ef:ea:c7:53:a6:a1:eb:cf:45:2f:cb: 7d:9d:77:b5:c1:6d:cc:83:8c:f9:5d:00:d8:7f:34:a2:6a:9b: ff:3d:86:e1:b2:82:61:bf:07:47:80:fd:08:7b:76:f8:92:4b: 62:3e:fe:c4:af:8d:78:f0:bb:2a:b5:d9:1e:a3:0f:44:4d:d4: 76:1b:43:63:bd:17:e8:6d:c9:72:01:50:02:ef:e0:7d:44:7f: c5:1c:c3:bd:12:8c:43:05:2f:76:fa:59:39:40:c1:63:c8:40: d2:23:f3:0d:1d:f1:19:eb:ba:31:b9:0d:45:97:49:fc:4a:d8: 7d:a7:6e:77:e2:aa:bd:e6:a6:93:cf:0a:20:c3:0e:2f:a2:67: da:9f:8d:28:99:c2:ad:21:a1:ed:b9:eb:0d:f7:14:ee:e7:17: 1b:ec:1b:b8:20:3c:9e:ca:f6:86:be:35:e3:70:de:15:a0:4e: 18:4f:51:05 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4RjIxMTAvBgNVBAUTKEI3OTFCRDFDOUUyMDgxQUE4NEY4MDc4MDY2QzBDN0Y2 MEE2Mzc5MEUwHhcNMjYwMTMwMjAxNzE4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU1Yi05NGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfxQBDFElTBb63NlDnF+954St1j/9Kaqj0grufPqh893Ztx1nP+SOPKwctBG uWlerju3Y15Z00UiCCKJpCp4zkVrokgD+Abl18p6w6lcfSNUaZHojYoQj2VvqaBb tNo6XUBz12js19NkIQaJhXR2aRMH+EpeHzE8i0CuHyetgwwZlcESBUYmwGUTAgij cDYVGhP19qltOwpeooiGU3ufzm06vPb3/HUTmuPWKrUdXACEPmpIk/uLpv4jINM3 n0vnr4foR25OQKW8fp7GySl9RoVqbtWVf6shnbodVlZljV7HgO4pD6n+WD+i2Uub zWwNx4Gcwa1Y1Wje/ugE9hsY4wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDMtzkR2 j0rlRmlq/sx9sMjWKXugMB8GA1UdIwQYMBaAFLeRvRyeIIGqhPgHgGbAx/YKY3kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhGMi8wMjJENTcxQ0Q2 NUUxMUVBQjYwQ0EzNkJDNEY5QUUwMi90NUc5SEo0Z2dhcUUtQWVBWnNESDlncGpl UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q1RzlISjRnZ2FxRS1BZUFac0RIOWdwamVRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y4RjIvMDIyRDU3MUNENjVFMTFFQUI2MENBMzZCQzRGOUFFMDIvQjc4QjVDQjZE NjVGMTFFQThCMzA0ODZFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5UIMA8EAgACMAkDBwAgAQ30ZYAwDQYJKoZIhvcNAQELBQADggEB AJTgkiQkqaZbti44j15L8TTcWmm1r0+PuxCTgo4z+9ijo19nSUoD1j7SYk4vTjlI W8u44uTM2mZ7uuM3jgjkFhoHKMD8VfVyvPmyR80bFo3v6sdTpqHrz0Uvy32dd7XB bcyDjPldANh/NKJqm/89huGygmG/B0eA/Qh7dviSS2I+/sSvjXjwuyq12R6jD0RN 1HYbQ2O9F+htyXIBUALv4H1Ef8Ucw70SjEMFL3b6WTlAwWPIQNIj8w0d8RnrujG5 DUWXSfxK2H2nbnfiqr3mppPPCiDDDi+iZ9qfjSiZwq0hoe256w33FO7nFxvsG7gg PJ7K9oa+NeNw3hWgThhPUQU= -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:32 2026 by rpki-client