$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/0FE0AF42B5DB11EA9DA12556C4F9AE02.roa File: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (raw, json) Hash identifier: 6Y/pEvT0pNfH6xtp6yr5Lbw66np3FvqbE7a4waoUJL4= Subject key identifier: F9:C0:43:46:A9:6A:F1:7D:1B:92:E0:3E:1D:15:58:33:A8:3D:0E:6E Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 0954 Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/0FE0AF42B5DB11EA9DA12556C4F9AE02.roa Signing time: Mon 02 Mar 2026 20:25:04 +0000 ROA not before: Mon 02 Mar 2026 20:25:04 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138606 IP address blocks: 103.134.92.0/22 maxlen: 22 103.134.92.0/24 maxlen: 24 103.134.93.0/24 maxlen: 24 103.134.94.0/24 maxlen: 24 103.134.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2388 (0x954) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: Mar 2 20:25:04 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a5f220-8ea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:60:80:4f:d6:82:9b:c2:68:84:54:8d:93:e8: 6c:98:50:1c:39:3d:2d:3c:f1:12:48:f2:5a:4b:bb: 8c:06:4d:6d:25:e6:06:2d:39:16:b2:73:aa:e7:e8: d6:da:1c:66:7c:a1:61:94:6c:09:da:2b:2e:d6:42: 9d:0a:e5:68:ba:38:9a:85:ae:2b:a0:79:8f:4f:aa: ba:e8:4f:0f:c7:7f:23:92:98:58:ff:63:8f:bf:00: 55:fd:f4:1a:08:11:64:7a:a6:10:3d:1c:6b:1c:73: 9b:98:a5:80:01:5c:29:66:e4:ba:2b:3b:60:90:fe: 30:3b:e0:13:b7:8e:f4:75:fa:21:26:77:51:6c:54: d3:13:bc:8b:c2:83:45:4c:0b:af:87:9b:27:09:6e: 87:11:5a:dc:8e:4c:1d:42:46:50:1d:ba:ba:88:32: e7:59:f7:36:ff:3a:fc:5b:22:b6:9d:76:ac:0e:7b: 2c:9d:cb:cb:be:35:f7:8a:e8:e1:18:e4:d9:47:e7: 22:d9:59:4f:10:5c:5b:9f:fb:a4:3f:93:0c:7b:54: 7c:66:56:80:c6:30:15:9d:e8:c6:fc:b1:6e:4b:f9: ab:ae:60:c3:be:47:58:24:e5:81:5c:fe:1a:16:66: f0:5e:91:60:a7:d6:03:df:a2:03:9d:48:00:3d:82: b9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C0:43:46:A9:6A:F1:7D:1B:92:E0:3E:1D:15:58:33:A8:3D:0E:6E X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/0FE0AF42B5DB11EA9DA12556C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.92.0/22 Signature Algorithm: sha256WithRSAEncryption 03:73:48:64:24:fa:28:69:dc:71:5e:5a:45:e0:c7:83:e8:93: e6:b0:3c:19:fa:01:6e:80:97:91:9a:26:e7:92:98:c5:25:26: c5:78:b0:12:25:78:7f:af:45:2d:11:61:1a:ec:35:82:95:84: 05:76:db:c9:71:15:9f:98:d3:1a:7c:2c:8d:c6:4c:84:ae:d0: 07:ae:8c:5b:e4:11:bf:63:4a:d6:a3:da:20:f0:0b:f3:5c:bd: 1d:9a:22:28:43:36:39:a0:51:30:33:3f:da:a0:15:d2:c1:ec: de:d2:e0:ec:a1:49:23:2d:37:c2:82:26:7d:63:ed:58:57:d3: e6:f4:04:02:34:14:ad:61:bd:9a:a5:a4:32:40:15:6c:8b:f4: 11:26:50:9f:77:71:9d:78:a4:88:e2:51:d0:24:26:7e:6d:f7: 43:eb:1b:d8:35:99:55:26:ad:cb:b6:cd:6d:a4:ca:95:3f:16: 52:17:dd:fa:f6:f7:44:de:69:05:76:9c:4a:26:72:04:22:1c: bd:03:f9:e5:8a:c6:64:27:60:07:36:94:98:d5:0d:96:b6:ce: 53:2f:3e:14:e8:8e:a5:11:3e:d8:55:0b:c7:99:2b:31:af:0f: a1:3b:be:1c:a0:da:bb:5d:07:ac:63:a4:14:b0:f2:09:2b:96: fb:ed:fb:ef -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjYwMzAyMjAyNTA0WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ZjIyMC04ZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mCAT9aCm8JohFSNk+hsmFAcOT0tPPESSPJaS7uMBk1tJeYGLTkWsnOq5+jW 2hxmfKFhlGwJ2isu1kKdCuVoujiaha4roHmPT6q66E8Px38jkphY/2OPvwBV/fQa CBFkeqYQPRxrHHObmKWAAVwpZuS6KztgkP4wO+ATt470dfohJndRbFTTE7yLwoNF TAuvh5snCW6HEVrcjkwdQkZQHbq6iDLnWfc2/zr8WyK2nXasDnssncvLvjX3iujh GOTZR+ci2VlPEFxbn/ukP5MMe1R8ZlaAxjAVnejG/LFuS/mrrmDDvkdYJOWBXP4a FmbwXpFgp9YD36IDnUgAPYK5VQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPnAQ0ap avF9G5LgPh0VWDOoPQ5uMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZERjMvQjNBODUyQjJCNUQ5MTFFQUE2Qjg4NzU0QzRGOUFFMDIvMEZFMEFGNDJC NURCMTFFQTlEQTEyNTU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ4ZcMA0GCSqGSIb3DQEBCwUAA4IBAQADc0hkJPooadxxXlpF4MeD 6JPmsDwZ+gFugJeRmibnkpjFJSbFeLASJXh/r0UtEWEa7DWClYQFdtvJcRWfmNMa fCyNxkyErtAHroxb5BG/Y0rWo9og8AvzXL0dmiIoQzY5oFEwMz/aoBXSweze0uDs oUkjLTfCgiZ9Y+1YV9Pm9AQCNBStYb2apaQyQBVsi/QRJlCfd3GdeKSI4lHQJCZ+ bfdD6xvYNZlVJq3Lts1tpMqVPxZSF9369vdE3mkFdpxKJnIEIhy9A/nlisZkJ2AH NpSY1Q2Wts5TLz4U6I6lET7YVQvHmSsxrw+hO74coNq7XQesY6QUsPIJK5b77fvv -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:22 2026 by rpki-client