$ rpki-client -vvf rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa File: 582836EAF0BF11ED9EC0094AC4F9AE02.roa (raw, json) Hash identifier: XzxCOVXSkUPrXVW+AY+WbDMtyvybiwRMaHUJOaG1nWk= Subject key identifier: 1C:FA:ED:72:E8:43:E3:C7:87:C3:55:43:95:46:9A:78:6F:B0:E2:FB Certificate issuer: /CN=A9197E5D/serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Certificate serial: 0213 Authority key identifier: 0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:35:36 +0000 ROA not before: Thu 27 Mar 2025 03:39:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149422 IP address blocks: 103.88.102.0/23 maxlen: 23 103.88.102.0/24 maxlen: 24 103.88.103.0/24 maxlen: 24 2400:e0a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197E5D, serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Validity Not Before: Mar 27 03:39:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3de38-20eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:21:c9:b2:d5:66:a6:ac:77:ca:3f:df:6d:3e: d8:7c:d7:5e:cc:1e:c1:5c:bd:c2:40:04:d8:38:f5: 84:d2:c6:cc:89:54:46:a5:5a:05:66:29:8b:bc:41: a8:17:3b:c1:c9:49:e8:e3:93:3d:a6:ef:65:76:a0: 53:35:67:c3:ea:66:e9:18:b9:a5:ef:94:79:fc:66: 99:ca:28:c7:fd:05:e0:fa:7a:cf:a9:17:7c:35:91: b7:fc:33:d7:c4:93:94:ca:2f:06:eb:ff:5c:86:6a: 30:9a:c0:c1:e2:9f:b5:3d:19:0b:c9:2d:49:96:ca: c6:2e:63:95:30:85:4c:60:d3:38:54:22:2a:12:da: 97:1d:e8:d2:48:59:0c:5c:72:7e:d0:c7:1e:c2:67: 66:55:74:d8:c9:fd:a7:91:38:64:b6:77:b7:e2:92: a3:d3:bb:05:db:72:9c:6f:ed:cd:73:a7:c9:a9:39: 72:e4:e1:76:9a:3c:af:6e:26:1b:47:6c:d9:63:52: 84:cc:3b:f5:21:3d:88:46:ee:75:7f:ef:7f:9f:1d: 43:c1:b9:96:cf:0c:61:cc:7e:9e:52:31:b0:2e:c0: f0:89:46:ba:93:81:55:e5:97:de:44:c6:a4:4b:29: 9a:64:83:58:24:50:99:16:0d:43:27:34:96:c8:7f: 9b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FA:ED:72:E8:43:E3:C7:87:C3:55:43:95:46:9A:78:6F:B0:E2:FB X509v3 Authority Key Identifier: keyid:0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.88.102.0/23 IPv6: 2400:e0a0::/32 Signature Algorithm: sha256WithRSAEncryption 54:5d:88:92:eb:49:ba:b3:0a:5b:93:75:70:38:94:e4:93:ba: 8b:75:93:d8:4f:d5:e9:77:9f:f1:bf:22:6b:6c:58:54:95:f8: bd:aa:92:38:19:f6:60:66:65:d2:9c:49:81:5e:be:50:cb:a1: 46:70:83:df:91:de:bc:97:de:55:70:50:0e:22:11:66:0a:31: 15:84:2f:c4:a6:1e:af:bc:47:7d:90:e5:12:c2:ab:f8:8b:db: 8e:bf:b0:0b:6d:c4:2f:77:d1:d1:1a:a3:a1:76:60:e3:aa:19: 3d:45:64:b6:16:57:a5:8f:d4:5a:b5:47:39:30:ee:2e:4d:d8: a9:81:89:b0:df:b3:bb:f6:39:d5:9b:2f:66:d7:72:fd:aa:1b: 60:ce:c8:b7:f9:4d:98:2c:0b:1f:9e:37:a6:73:a4:cd:64:f1: b9:0b:c1:71:66:76:92:53:84:89:2b:49:08:29:36:ff:8c:23: d3:e3:88:c9:9a:4b:04:14:0b:0c:38:4f:2f:4f:64:02:41:d6: 43:b5:25:7d:99:fe:bf:09:f4:20:a3:62:aa:cd:50:79:ca:69: a8:26:15:d0:b0:6e:b3:f8:54:2f:44:ce:a1:0c:d4:60:11:9d: 37:cc:38:e8:30:05:0a:f2:a7:65:f5:d8:f4:b5:23:29:8f:31: 7f:b3:19:f8 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdFNUQxMTAvBgNVBAUTKDBCQTY4MkU4MDM4RDc3MUEzNzA3RUFGQTgyRkREMDRD NDI5QTRGODYwHhcNMjUwMzI3MDMzOTUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGUzOC0yMGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2iHJstVmpqx3yj/fbT7YfNdezB7BXL3CQATYOPWE0sbMiVRGpVoFZimLvEGo FzvByUno45M9pu9ldqBTNWfD6mbpGLml75R5/GaZyijH/QXg+nrPqRd8NZG3/DPX xJOUyi8G6/9chmowmsDB4p+1PRkLyS1JlsrGLmOVMIVMYNM4VCIqEtqXHejSSFkM XHJ+0McewmdmVXTYyf2nkThktne34pKj07sF23Kcb+3Nc6fJqTly5OF2mjyvbiYb R2zZY1KEzDv1IT2IRu51f+9/nx1DwbmWzwxhzH6eUjGwLsDwiUa6k4FV5ZfeRMak SymaZINYJFCZFg1DJzSWyH+bmQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFBz67XLo Q+PHh8NVQ5VGmnhvsOL7MB8GA1UdIwQYMBaAFAumgugDjXcaNwfq+oL90ExCmk+G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0U1RC80MTIyQ0Q5Q0Yw QjYxMUVEOEY0NEZCMjdDNEY5QUUwMi9DNmFDNkFPTmR4bzNCLXI2Z3YzUVRFS2FU NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2YUM2QU9OZHhvM0ItcjZndjNRVEVLYVQ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdFNUQvNDEyMkNEOUNGMEI2MTFFRDhGNDRGQjI3QzRGOUFFMDIvNTgyODM2RUFG MEJGMTFFRDlFQzAwOTRBQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ1hmMA0EAgACMAcDBQAkAOCgMA0GCSqGSIb3DQEBCwUAA4IBAQBU XYiS60m6swpbk3VwOJTkk7qLdZPYT9Xpd5/xvyJrbFhUlfi9qpI4GfZgZmXSnEmB Xr5Qy6FGcIPfkd68l95VcFAOIhFmCjEVhC/Eph6vvEd9kOUSwqv4i9uOv7ALbcQv d9HRGqOhdmDjqhk9RWS2Flelj9RatUc5MO4uTdipgYmw37O79jnVmy9m13L9qhtg zsi3+U2YLAsfnjemc6TNZPG5C8FxZnaSU4SJK0kIKTb/jCPT44jJmksEFAsMOE8v T2QCQdZDtSV9mf6/CfQgo2KqzVB5ymmoJhXQsG6z+FQvRM6hDNRgEZ03zDjoMAUK 8qdl9dj0tSMpjzF/sxn4 -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:32 2026 by rpki-client