$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/2A84118CE0A311EC9CF2B738C4F9AE02.roa File: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (raw, json) Hash identifier: 5pzE/DEK+uZ2gUdloRUaMZ5/Ny9r+z2BlO/k/Ebfld8= Subject key identifier: 24:83:8F:F8:B8:72:CA:7E:4D:14:03:90:B0:C3:93:6B:F0:89:47:A1 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 0504 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/2A84118CE0A311EC9CF2B738C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:46:34 +0000 ROA not before: Wed 05 Nov 2025 00:14:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134357 IP address blocks: 103.175.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817, serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Nov 5 00:14:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4352a-d4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:65:be:9c:3c:c4:a2:3e:b2:f2:71:e7:1b:65: 49:57:97:c5:d6:79:b5:d1:4b:3e:d8:be:45:b2:34: 37:44:d8:2f:e2:c2:d1:c7:e9:06:2f:7f:5f:f6:e0: bf:4f:1b:43:78:e3:1d:18:19:c8:92:5e:91:76:71: a5:7c:1e:be:59:19:eb:95:26:34:84:6c:38:97:2a: 24:8a:58:8c:ec:fe:9f:ea:bb:6f:11:cb:4c:3f:08: e6:34:c1:51:ac:ef:af:87:1b:48:e4:29:03:b7:00: 3e:99:18:3b:91:68:32:a2:cd:e7:02:39:69:37:19: 81:a9:ab:f2:c4:76:a1:2d:18:f9:05:3c:0b:59:75: 28:85:29:95:1b:a1:3d:2f:e1:17:73:5d:d2:24:b3: 78:b3:a9:4a:ab:cf:77:6a:f7:86:85:d1:24:36:41: ed:f0:2d:21:4b:a3:25:91:27:9d:e9:95:88:1c:42: d6:63:d5:c0:f5:20:c1:95:3c:f8:97:15:64:81:2e: a2:40:3e:de:c0:ad:3f:38:52:03:8f:17:6a:d9:97: bb:f8:fa:e2:d1:f7:c4:2c:12:a7:80:09:64:ef:02: c7:9a:21:ba:22:7e:a7:8f:49:06:ea:05:a8:e7:e8: 12:a0:d9:7a:c8:f6:d8:cc:dd:a8:7e:86:a0:d2:2e: c2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:83:8F:F8:B8:72:CA:7E:4D:14:03:90:B0:C3:93:6B:F0:89:47:A1 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/2A84118CE0A311EC9CF2B738C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.175.122.0/24 Signature Algorithm: sha256WithRSAEncryption 94:d6:76:d9:12:36:e7:1c:5f:1f:9c:cc:2d:ff:34:21:35:be: 30:5c:63:b2:c8:2a:79:b5:7d:15:e7:99:08:9f:7c:16:10:3b: 8f:07:c6:ac:3e:67:ee:c4:60:72:58:8e:af:38:dd:d0:e2:7d: 27:88:74:61:a6:07:aa:33:79:48:68:3b:da:cc:a1:49:4a:7d: dc:53:0c:04:64:b8:fc:0a:28:30:ac:9c:84:f9:b6:e5:34:d7: 7f:b8:b0:e1:ff:09:0c:94:48:d8:e7:45:33:55:ed:70:fc:3c: 75:60:08:3e:c6:45:e3:76:22:93:8d:4f:f7:09:3b:94:f8:26: b5:e1:a2:bd:83:68:4f:2a:e5:f8:5e:48:08:75:2d:f0:2e:30: aa:27:47:c8:2a:1f:40:ac:09:df:b6:27:27:ad:8a:37:13:13: 31:d8:88:e6:f5:b5:8b:2e:ef:76:9c:4c:65:17:80:9e:40:ca: fb:07:3d:3b:5d:ce:f6:f1:39:9d:72:8d:3f:dd:a9:6d:62:35: b9:69:f7:1c:0c:c6:9d:3a:83:1b:52:a9:81:26:31:6d:42:96: fa:35:da:99:67:9c:50:16:3a:3a:65:06:96:5d:53:db:d5:15: 3f:29:84:5e:3f:97:3e:de:d4:c2:fe:7b:a9:bc:66:c0:85:fa: a4:7d:56:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjUxMTA1MDAxNDIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzUyYS1kNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmW+nDzEoj6y8nHnG2VJV5fF1nm10Us+2L5FsjQ3RNgv4sLRx+kGL39f9uC/ TxtDeOMdGBnIkl6RdnGlfB6+WRnrlSY0hGw4lyokiliM7P6f6rtvEctMPwjmNMFR rO+vhxtI5CkDtwA+mRg7kWgyos3nAjlpNxmBqavyxHahLRj5BTwLWXUohSmVG6E9 L+EXc13SJLN4s6lKq893aveGhdEkNkHt8C0hS6MlkSed6ZWIHELWY9XA9SDBlTz4 lxVkgS6iQD7ewK0/OFIDjxdq2Ze7+Pri0ffELBKngAlk7wLHmiG6In6nj0kG6gWo 5+gSoNl6yPbYzN2ofoag0i7CCQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCSDj/i4 csp+TRQDkLDDk2vwiUehMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4MTcvMDY4M0VCNzA0REFDMTFFQzg1NzE2MDIzQzRGOUFFMDIvMkE4NDExOENF MEEzMTFFQzlDRjJCNzM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ696MA0GCSqGSIb3DQEBCwUAA4IBAQCU1nbZEjbnHF8fnMwt/zQh Nb4wXGOyyCp5tX0V55kIn3wWEDuPB8asPmfuxGByWI6vON3Q4n0niHRhpgeqM3lI aDvazKFJSn3cUwwEZLj8CigwrJyE+bblNNd/uLDh/wkMlEjY50UzVe1w/Dx1YAg+ xkXjdiKTjU/3CTuU+Ca14aK9g2hPKuX4XkgIdS3wLjCqJ0fIKh9ArAnfticnrYo3 ExMx2Ijm9bWLLu92nExlF4CeQMr7Bz07Xc728Tmdco0/3altYjW5afccDMadOoMb UqmBJjFtQpb6NdqZZ5xQFjo6ZQaWXVPb1RU/KYReP5c+3tTC/nupvGbAhfqkfVbD -----END CERTIFICATE-----Generated at Mon Mar 2 04:21:37 2026 by rpki-client