$ rpki-client -vvf rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/CCA402F8BE3811F0B9AAC956C4F9AE02.roa File: CCA402F8BE3811F0B9AAC956C4F9AE02.roa (raw, json) Hash identifier: poKacpxWLem7MXU2cZ8LXl1fQdysy14/f02fKfzvHFI= Subject key identifier: 34:02:C4:3F:26:68:28:E0:EF:D0:E3:FC:A9:C7:D1:A0:16:8D:38:DF Certificate issuer: /CN=A918D808/serialNumber=0725F2491801505185C9069A4013635C38B56B72 Certificate serial: 07EC Authority key identifier: 07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/CCA402F8BE3811F0B9AAC956C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:34:29 +0000 ROA not before: Mon 10 Nov 2025 13:26:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 61317 IP address blocks: 103.104.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D808, serialNumber=0725F2491801505185C9069A4013635C38B56B72 Validity Not Before: Nov 10 13:26:01 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a478a5-d68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ac:61:4e:54:ee:66:e7:fc:15:ea:21:01:09: 1f:b5:a6:46:23:27:bd:ed:06:2a:36:90:5e:cc:7d: 17:89:3a:52:2d:34:39:81:24:5c:a3:52:ae:66:52: b6:b3:29:5e:c1:e5:25:f8:3c:ad:4b:af:97:c6:8e: 83:df:da:22:d0:81:21:55:8b:ef:ce:bc:f2:44:b8: be:25:cb:6a:af:c0:50:1c:76:3b:6f:da:37:c8:2d: ff:27:e1:30:e7:0f:c3:ae:91:3c:c4:05:a5:3a:37: 2c:e8:6c:f3:82:ea:f0:89:58:96:47:f8:6e:4d:41: af:2f:1e:14:fe:e6:d4:06:70:94:9a:4a:d8:d9:f7: 46:68:25:68:ea:7f:fe:0e:ff:37:fa:d7:af:77:3f: 80:94:24:9e:f9:a1:ea:f3:7b:8d:76:f3:62:27:ab: 3e:d3:85:24:13:e2:b1:86:7b:73:d1:33:05:51:13: 4e:1a:90:31:35:da:19:92:4c:8b:e6:52:16:95:13: 83:cc:04:27:0f:6d:77:fa:1e:ee:59:5e:58:2a:c5: 59:7e:a9:5f:75:41:58:18:3c:5e:b4:c4:3b:f4:ca: 0a:23:f4:97:79:60:2b:ac:be:69:c3:a3:9f:5a:e2: 6b:2b:64:fd:c5:b0:41:18:fb:05:05:8c:96:d8:dc: a9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:02:C4:3F:26:68:28:E0:EF:D0:E3:FC:A9:C7:D1:A0:16:8D:38:DF X509v3 Authority Key Identifier: keyid:07:25:F2:49:18:01:50:51:85:C9:06:9A:40:13:63:5C:38:B5:6B:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/ByXySRgBUFGFyQaaQBNjXDi1a3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ByXySRgBUFGFyQaaQBNjXDi1a3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D808/E26B4642F4B211E9BF3CE563C4F9AE02/CCA402F8BE3811F0B9AAC956C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.140.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b2:fd:14:6c:b9:92:02:fc:19:a5:6a:60:c5:c9:34:cc:30: 4b:13:de:25:f3:b0:09:94:f0:5a:12:6e:10:fd:10:e5:ff:24: 33:9f:39:6b:7e:17:aa:4d:7d:c3:4a:b3:31:9b:29:56:86:b5: 00:42:09:6b:7e:6e:53:a1:09:49:44:1b:01:ae:bc:fe:ec:ce: 6c:14:b4:c0:3e:a6:1f:18:10:67:5d:fa:10:43:14:12:e2:a4: a8:68:f7:4f:48:7d:b2:2e:7e:58:0a:ee:56:10:56:34:a4:db: f1:5e:1d:c6:e0:d5:23:c0:87:ac:a0:ed:69:25:98:26:33:c6: c2:e2:5a:5e:76:3f:43:81:64:97:60:ea:e0:7a:b2:a1:27:07: 19:f9:57:b6:02:11:31:ec:dc:53:3d:ca:78:8b:c1:bd:8d:d9: ab:e4:2e:bb:32:76:21:dd:39:f6:74:79:6b:80:d6:dc:04:89: 47:55:5b:df:7d:4d:bb:ba:f0:a5:bc:f7:4f:18:53:be:e2:ec: 49:fe:de:c4:c3:07:3f:a2:91:95:2d:32:b2:5a:b1:89:a6:45: 03:a3:1b:2a:93:f3:d3:66:d2:a5:55:c7:74:ef:8e:60:5e:33: 25:50:e6:6b:a0:b6:f2:1c:a4:58:65:a3:32:30:99:75:21:f4: 8e:25:1c:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ4MDgxMTAvBgNVBAUTKDA3MjVGMjQ5MTgwMTUwNTE4NUM5MDY5QTQwMTM2MzVD MzhCNTZCNzIwHhcNMjUxMTEwMTMyNjAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzhhNS1kNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KxhTlTuZuf8FeohAQkftaZGIye97QYqNpBezH0XiTpSLTQ5gSRco1KuZlK2 syleweUl+DytS6+Xxo6D39oi0IEhVYvvzrzyRLi+Jctqr8BQHHY7b9o3yC3/J+Ew 5w/DrpE8xAWlOjcs6GzzgurwiViWR/huTUGvLx4U/ubUBnCUmkrY2fdGaCVo6n/+ Dv83+tevdz+AlCSe+aHq83uNdvNiJ6s+04UkE+Kxhntz0TMFURNOGpAxNdoZkkyL 5lIWlRODzAQnD213+h7uWV5YKsVZfqlfdUFYGDxetMQ79MoKI/SXeWArrL5pw6Of WuJrK2T9xbBBGPsFBYyW2NypIwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDQCxD8m aCjg79Dj/KnH0aAWjTjfMB8GA1UdIwQYMBaAFAcl8kkYAVBRhckGmkATY1w4tWty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDgwOC9FMjZCNDY0MkY0 QjIxMUU5QkYzQ0U1NjNDNEY5QUUwMi9CeVh5U1JnQlVGR0Z5UWFhUUJOalhEaTFh M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J5WHlTUmdCVUZHRnlRYWFRQk5qWERpMWEzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ4MDgvRTI2QjQ2NDJGNEIyMTFFOUJGM0NFNTYzQzRGOUFFMDIvQ0NBNDAyRjhC RTM4MTFGMEI5QUFDOTU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ2iMMA0GCSqGSIb3DQEBCwUAA4IBAQBisv0UbLmSAvwZpWpgxck0 zDBLE94l87AJlPBaEm4Q/RDl/yQznzlrfheqTX3DSrMxmylWhrUAQglrfm5ToQlJ RBsBrrz+7M5sFLTAPqYfGBBnXfoQQxQS4qSoaPdPSH2yLn5YCu5WEFY0pNvxXh3G 4NUjwIesoO1pJZgmM8bC4lpedj9DgWSXYOrgerKhJwcZ+Ve2AhEx7NxTPcp4i8G9 jdmr5C67MnYh3Tn2dHlrgNbcBIlHVVvffU27uvClvPdPGFO+4uxJ/t7Ewwc/opGV LTKyWrGJpkUDoxsqk/PTZtKlVcd0745gXjMlUOZroLbyHKRYZaMyMJl1IfSOJRwV -----END CERTIFICATE-----Generated at Thu Mar 26 07:53:07 2026 by rpki-client