$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa File: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (raw, json) Hash identifier: 16ronhpfPjZ1J9jMJniqcKd5ZSFxc1jnc1AmD+Jt630= Subject key identifier: 7C:EE:97:08:DA:74:29:B3:00:17:6E:BB:DA:5F:26:93:2C:2B:4A:40 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 71 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:39:22 +0000 ROA not before: Mon 18 Aug 2025 05:38:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55581 IP address blocks: 103.55.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Aug 18 05:38:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a584fa-23f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:33:67:46:0a:bd:aa:ba:9b:6a:a4:6f:b7:2a: ef:8b:95:7c:7c:da:61:1d:19:5a:e5:34:41:9d:d5: ad:ed:d0:d2:40:eb:19:42:b7:df:e1:2d:d4:c0:84: 86:a4:2c:e2:d6:20:71:67:4a:6c:69:87:cf:bf:2e: 37:b3:24:d7:9c:0c:88:05:e7:6d:a0:ce:d6:32:d3: e0:c2:e8:bd:8c:65:12:52:29:4d:05:52:6e:ec:85: 20:e0:7c:1e:b7:c6:23:cb:1e:90:10:1e:6a:19:b8: b3:2e:27:a1:56:52:73:b5:53:1c:d2:b3:99:8f:b5: 50:03:00:c2:c0:32:10:05:96:3a:44:90:cc:82:a5: a3:fb:c7:dd:24:c9:a3:0d:68:d7:69:3d:a4:88:bc: 47:7f:9b:64:57:a4:71:3d:58:76:c3:d9:ed:91:cd: c1:b7:a8:27:e1:6e:2e:ca:c9:04:b0:13:44:86:bf: 3e:83:e6:31:f1:06:43:14:1d:9f:ff:77:e3:a3:25: 3c:06:0c:1b:59:35:42:ef:28:8f:12:60:78:dc:79: bb:e2:7b:f1:22:ec:f8:df:3b:2e:84:e7:2a:5e:d2: e1:b6:9f:f9:54:26:22:0a:9c:89:12:6c:0f:28:d4: 36:11:52:45:c0:d5:02:72:89:38:4b:ae:10:a0:0c: 48:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EE:97:08:DA:74:29:B3:00:17:6E:BB:DA:5F:26:93:2C:2B:4A:40 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/8AF73C7E7BF511F0BEBF8326C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.55.132.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:f3:0e:b9:63:ee:7f:6e:eb:27:a2:ef:6f:a4:7f:d3:b1:35: 53:bc:fb:08:32:6a:e6:b7:b5:fd:8f:cd:88:d3:93:83:1b:da: c1:22:63:28:3b:e9:37:b0:19:96:9e:5d:34:22:72:d3:92:5c: a4:10:d1:66:f5:04:29:44:a8:f4:b7:5e:da:29:33:0d:c9:e7: 0a:85:5e:60:04:e7:17:83:08:14:9c:18:a0:64:ff:d1:06:ac: 48:40:b3:26:49:10:5e:1a:2f:0d:9e:25:1e:8c:cb:84:d9:c3: 91:ed:38:ce:9c:8e:0e:aa:b5:97:dd:67:1f:e7:af:e8:0a:3a: 44:ae:da:7f:c2:26:57:8f:75:57:8f:20:36:27:9f:4f:f2:5a: 19:17:5b:d3:2b:e9:f5:f4:d8:cd:62:6b:39:32:3f:7b:a1:66: d9:55:0a:9c:7d:6f:10:99:14:43:dd:7e:44:b8:91:83:da:23: 96:6c:86:7a:d9:09:c7:48:fe:0f:6b:c0:51:05:57:f0:6d:75: 1e:c6:47:ec:30:ed:10:5c:ff:1b:83:1b:ba:21:34:05:41:16: a1:cf:77:f4:82:38:c7:f0:f8:97:58:6d:eb:7f:c8:dc:06:b0: fe:40:22:01:28:37:58:8c:78:48:57:e2:95:8d:9c:5a:eb:73: 9c:5f:e2:f1 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTA4MTgwNTM4MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4NGZhLTIzZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAM2dGCr2quptqpG+3Ku+LlXx82mEdGVrlNEGd1a3t0NJA6xlCt9/hLdTAhIak LOLWIHFnSmxph8+/LjezJNecDIgF522gztYy0+DC6L2MZRJSKU0FUm7shSDgfB63 xiPLHpAQHmoZuLMuJ6FWUnO1UxzSs5mPtVADAMLAMhAFljpEkMyCpaP7x90kyaMN aNdpPaSIvEd/m2RXpHE9WHbD2e2RzcG3qCfhbi7KyQSwE0SGvz6D5jHxBkMUHZ// d+OjJTwGDBtZNULvKI8SYHjcebvie/Ei7PjfOy6E5ype0uG2n/lUJiIKnIkSbA8o 1DYRUkXA1QJyiThLrhCgDEhNAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUfO6XCNp0 KbMAF2672l8mkywrSkAwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU4OC9CRjdENUU3NjdCRjMxMUYwQTA1RkFEODJDNEY5QUUwMi84QUY3M0M3RTdC RjUxMUYwQkVCRjgzMjZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBABnN4QwDQYJKoZIhvcNAQELBQADggEBAJrzDrlj7n9u6yei72+kf9Ox NVO8+wgyaua3tf2PzYjTk4Mb2sEiYyg76TewGZaeXTQictOSXKQQ0Wb1BClEqPS3 XtopMw3J5wqFXmAE5xeDCBScGKBk/9EGrEhAsyZJEF4aLw2eJR6My4TZw5HtOM6c jg6qtZfdZx/nr+gKOkSu2n/CJlePdVePIDYnn0/yWhkXW9Mr6fX02M1iazkyP3uh ZtlVCpx9bxCZFEPdfkS4kYPaI5ZshnrZCcdI/g9rwFEFV/BtdR7GR+ww7RBc/xuD G7ohNAVBFqHPd/SCOMfw+JdYbet/yNwGsP5AIgEoN1iMeEhX4pWNnFrrc5xf4vE= -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:55 2026 by rpki-client