$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa File: BFF7726E6EF711E69FBC340BC4F9AE02.roa (raw, json) Hash identifier: 2rwyltZvsqb4VpL7TIVaI8AYPEWoNinwIC9EvckcE9c= Subject key identifier: 89:FD:E4:3E:C2:D7:F6:61:BC:CC:01:F5:9A:27:84:21:5A:3D:04:02 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1F41 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:42:37 +0000 ROA not before: Wed 28 Jan 2026 16:13:42 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 64076 IP address blocks: 103.38.220.0/24 maxlen: 24 103.205.38.0/24 maxlen: 24 2001:df2:4bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8001 (0x1f41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Jan 28 16:13:42 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47a8d-7a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:00:1a:9b:41:ed:a9:b6:e2:ed:37:06:02: 50:4f:c9:ce:42:09:52:12:9a:5d:4b:f3:20:f3:5f: 94:d1:e1:72:28:6b:0f:68:03:ea:db:b6:3c:bd:00: 2e:b9:10:27:b1:39:87:f5:15:1c:b5:57:e6:d6:66: 8a:9c:9d:2e:aa:3d:d0:b6:67:1e:d9:a3:29:ad:10: 65:35:0c:dc:c9:34:05:0c:da:bd:9c:cb:91:2f:82: 55:d1:5f:5c:f1:8c:5a:a8:f4:d6:8f:7a:d5:b9:1f: 6c:a6:f3:a1:ed:78:98:d7:7f:13:ee:54:21:c0:0b: cc:54:27:b8:14:ad:d6:1a:14:16:df:9a:e9:76:bc: f1:db:a1:12:11:0b:8b:bd:49:e3:68:b2:e1:c2:97: 74:6c:50:bc:6a:67:13:55:61:33:55:a2:cd:db:22: 1b:d1:3a:fb:09:c0:d0:a5:d6:08:36:17:49:0c:0e: b1:0e:6a:43:11:22:89:27:7b:2f:3b:01:72:63:e1: 75:d1:2d:a4:04:a0:92:20:95:d8:14:06:87:a0:df: 4b:1e:46:3b:ca:bc:a2:47:a7:46:7d:77:65:0c:2a: 7a:0a:7c:2f:32:ce:74:82:ef:a5:05:f5:3c:aa:e2: 4a:97:71:65:bb:c3:70:75:d3:7e:5e:c3:04:c7:b7: 63:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:FD:E4:3E:C2:D7:F6:61:BC:CC:01:F5:9A:27:84:21:5A:3D:04:02 X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.38.220.0/24 103.205.38.0/24 IPv6: 2001:df2:4bc0::/48 Signature Algorithm: sha256WithRSAEncryption 54:8a:78:70:d6:50:c4:c9:bd:4d:bc:c0:8d:0a:2c:ae:0e:2b: a3:da:25:4e:35:45:44:c9:3c:32:d7:e9:64:b9:5b:9f:04:ca: e9:b2:7e:c1:0f:d1:68:6a:4c:ca:36:bb:3a:97:db:65:05:7b: 76:32:89:90:e6:ef:17:43:44:20:0c:cc:63:09:3a:8c:38:f2: 41:0f:92:b2:a1:3f:b2:ea:db:fa:98:81:1f:4a:40:69:0f:81: c1:ea:fd:c4:9d:6a:73:1d:92:25:5c:26:60:ea:33:de:25:61: 6d:e7:c1:ac:c7:e1:aa:b3:4f:63:b7:c7:47:c8:61:67:0a:bb: 48:62:63:e1:38:f3:3c:36:30:cd:ab:b7:2c:bc:6e:f0:90:b5: 1f:5a:00:4b:b0:af:c8:dd:82:ac:e0:0b:8d:03:8f:31:75:11: 7f:a8:44:ea:bc:50:ee:15:b0:7b:3a:60:cc:d2:9c:2b:7d:20: 65:d2:52:bd:db:e3:64:30:c0:af:e3:87:e3:9d:33:e5:01:1c: 3b:36:8b:65:3f:c3:d1:37:b4:aa:be:c0:45:83:85:09:95:44: 50:ca:cb:8b:21:bc:b8:8a:68:e3:c0:a1:6f:6c:a5:29:28:f3: 7f:b3:3a:16:72:23:14:d3:b4:e1:4d:52:71:bc:45:05:d0:ec: a3:b5:ba:e0 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICH0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjYwMTI4MTYxMzQyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E4ZC03YTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWgAGptB7am24u03BgJQT8nOQglSEppdS/Mg81+U0eFyKGsPaAPq27Y8vQAu uRAnsTmH9RUctVfm1maKnJ0uqj3Qtmce2aMprRBlNQzcyTQFDNq9nMuRL4JV0V9c 8YxaqPTWj3rVuR9spvOh7XiY138T7lQhwAvMVCe4FK3WGhQW35rpdrzx26ESEQuL vUnjaLLhwpd0bFC8amcTVWEzVaLN2yIb0Tr7CcDQpdYINhdJDA6xDmpDESKJJ3sv OwFyY+F10S2kBKCSIJXYFAaHoN9LHkY7yryiR6dGfXdlDCp6CnwvMs50gu+lBfU8 quJKl3Flu8NwddN+XsMEx7djwQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFIn95D7C 1/ZhvMwB9ZonhCFaPQQCMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDN0MvMjlGN0EwNDA2RUY3MTFFNjlFMzI2NzBBQzRGOUFFMDIvQkZGNzcyNkU2 RUY3MTFFNjlGQkMzNDBCQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZybcAwQAZ80mMA8EAgACMAkDBwAgAQ3yS8AwDQYJKoZIhvcNAQEL BQADggEBAFSKeHDWUMTJvU28wI0KLK4OK6PaJU41RUTJPDLX6WS5W58EyumyfsEP 0WhqTMo2uzqX22UFe3YyiZDm7xdDRCAMzGMJOow48kEPkrKhP7Lq2/qYgR9KQGkP gcHq/cSdanMdkiVcJmDqM94lYW3nwazH4aqzT2O3x0fIYWcKu0hiY+E48zw2MM2r tyy8bvCQtR9aAEuwr8jdgqzgC40DjzF1EX+oROq8UO4VsHs6YMzSnCt9IGXSUr3b 42QwwK/jh+OdM+UBHDs2i2U/w9E3tKq+wEWDhQmVRFDKy4shvLiKaOPAoW9spSko 83+zOhZyIxTTtOFNUnG8RQXQ7KO1uuA= -----END CERTIFICATE-----Generated at Mon Mar 2 15:42:42 2026 by rpki-client