$ rpki-client -vvf rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa File: 2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa (raw, json) Hash identifier: ojeQEJwfkmkjsjTjJi7JxC/rYMjRAxyFan+n2ZkXfIA= Subject key identifier: C9:DA:1B:71:B6:AD:00:2F:47:CC:23:62:3F:F3:EF:4C:21:95:BC:B0 Certificate issuer: /CN=A9117DD2/serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Certificate serial: 0227 Authority key identifier: 1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:12:43 +0000 ROA not before: Mon 27 Oct 2025 04:46:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139609 IP address blocks: 103.142.98.0/24 maxlen: 24 103.142.99.0/24 maxlen: 24 2001:df1:3b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117DD2, serialNumber=1FB7F3AF6F9D6B97E3720EC54ACBF5893AC69368 Validity Not Before: Oct 27 04:46:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4111a-bc7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:37:77:09:c6:93:9e:5d:bb:5f:8f:e9:f0: f0:4a:a9:0b:f5:90:53:80:8f:e1:ed:81:29:86:21: 84:95:91:d1:c7:48:a2:95:6a:31:33:cc:a6:6e:23: 0c:e9:15:48:d7:28:1c:f6:57:cf:ce:46:e4:f7:d0: 2a:ec:b3:68:36:eb:16:f2:59:7d:e9:03:57:de:ce: 06:98:29:04:cc:09:5e:49:6f:4a:66:c2:ce:64:be: 90:f0:6c:d9:1e:ca:4c:e4:aa:7e:6a:55:39:13:1c: 05:64:f0:0d:7b:cd:4f:03:a2:47:2a:42:3e:3e:db: 16:1d:f4:87:1d:bd:da:2a:55:2d:2f:d1:01:13:18: 8a:c6:7e:8e:c5:56:5f:bd:d9:fb:69:9e:43:52:99: 30:4a:3c:df:8e:62:f8:17:a9:8c:de:4d:f8:ec:16: 82:2d:7d:d3:fe:e7:9c:e4:31:36:c7:3f:e0:1a:ed: 94:7f:f3:6b:e6:4c:b8:c6:2f:fe:1e:6f:77:c9:a0: 1a:e7:3b:e2:db:f9:a1:96:68:8a:df:93:2c:fc:1f: 8b:da:ab:16:11:ff:85:b4:d4:ae:6c:96:b7:51:08: 37:30:d5:f1:44:ba:93:3e:ca:67:22:8a:88:19:e3: 9d:8e:1d:28:60:92:f6:95:83:e4:05:41:b3:0a:95: 58:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DA:1B:71:B6:AD:00:2F:47:CC:23:62:3F:F3:EF:4C:21:95:BC:B0 X509v3 Authority Key Identifier: keyid:1F:B7:F3:AF:6F:9D:6B:97:E3:72:0E:C5:4A:CB:F5:89:3A:C6:93:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/H7fzr2-da5fjcg7FSsv1iTrGk2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H7fzr2-da5fjcg7FSsv1iTrGk2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117DD2/101EDAEAD1C811EDACC81B7CC4F9AE02/2871DB9ED1CB11EDBE2F0D7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.142.98.0/23 IPv6: 2001:df1:3b80::/48 Signature Algorithm: sha256WithRSAEncryption c8:45:99:a2:e1:a3:d4:b8:ee:1d:14:4f:32:67:2c:80:ec:1b: be:6d:99:43:67:52:5a:ed:69:48:87:45:f2:f2:bc:63:42:e6: 77:19:ae:28:05:41:21:47:39:b3:65:50:50:8a:8c:42:55:ba: 45:ab:6c:dd:6e:bf:b1:2a:7a:1c:49:11:f7:8e:32:3b:fe:d3: 9e:c0:b5:b7:a4:00:10:4f:3a:ed:b9:73:a2:5c:9b:9e:b6:30: f7:d9:2f:01:35:1d:4d:f5:86:8f:f9:6a:fa:b4:38:20:df:1b: 26:08:55:6d:cc:b4:67:b0:32:a4:d8:19:a9:8d:f3:b8:a2:b9: 31:a8:de:c3:74:fe:ec:f5:97:c6:b8:ba:11:13:7f:e6:41:c1: 23:fc:06:c9:4c:b1:29:e5:41:fe:33:01:61:5d:c1:ee:94:f4: cd:89:5a:10:61:0b:8e:18:50:e4:85:67:09:d5:32:09:1a:a3: 29:80:58:87:e9:0d:ec:eb:b6:6a:98:61:be:04:b1:58:26:76: 59:fe:fd:3c:38:77:af:89:70:0e:54:5c:8c:ac:9d:fc:e2:ba: 92:65:8d:41:90:f6:04:a0:f1:21:dd:80:d7:1c:d4:73:cd:23: d4:76:4b:81:44:7b:7c:ee:3d:d7:d6:b3:7c:37:5a:28:79:f1: f4:be:79:3a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdERDIxMTAvBgNVBAUTKDFGQjdGM0FGNkY5RDZCOTdFMzcyMEVDNTRBQ0JGNTg5 M0FDNjkzNjgwHhcNMjUxMDI3MDQ0NjM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTExYS1iYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmg3dwnGk55du1+P6fDwSqkL9ZBTgI/h7YEphiGElZHRx0iilWoxM8ymbiMM 6RVI1ygc9lfPzkbk99Aq7LNoNusW8ll96QNX3s4GmCkEzAleSW9KZsLOZL6Q8GzZ HspM5Kp+alU5ExwFZPANe81PA6JHKkI+PtsWHfSHHb3aKlUtL9EBExiKxn6OxVZf vdn7aZ5DUpkwSjzfjmL4F6mM3k347BaCLX3T/uec5DE2xz/gGu2Uf/Nr5ky4xi/+ Hm93yaAa5zvi2/mhlmiK35Ms/B+L2qsWEf+FtNSubJa3UQg3MNXxRLqTPspnIoqI GeOdjh0oYJL2lYPkBUGzCpVYGQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMnaG3G2 rQAvR8wjYj/z70whlbywMB8GA1UdIwQYMBaAFB+3869vnWuX43IOxUrL9Yk6xpNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0REMi8xMDFFREFFQUQx QzgxMUVEQUNDODFCN0NDNEY5QUUwMi9IN2Z6cjItZGE1ZmpjZzdGU3N2MWlUckdr MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g3ZnpyMi1kYTVmamNnN0ZTc3YxaVRyR2syZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdERDIvMTAxRURBRUFEMUM4MTFFREFDQzgxQjdDQzRGOUFFMDIvMjg3MURCOUVE MUNCMTFFREJFMkYwRDdFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ45iMA8EAgACMAkDBwAgAQ3xO4AwDQYJKoZIhvcNAQELBQADggEB AMhFmaLho9S47h0UTzJnLIDsG75tmUNnUlrtaUiHRfLyvGNC5ncZrigFQSFHObNl UFCKjEJVukWrbN1uv7EqehxJEfeOMjv+057AtbekABBPOu25c6Jcm562MPfZLwE1 HU31ho/5avq0OCDfGyYIVW3MtGewMqTYGamN87iiuTGo3sN0/uz1l8a4uhETf+ZB wSP8BslMsSnlQf4zAWFdwe6U9M2JWhBhC44YUOSFZwnVMgkaoymAWIfpDezrtmqY Yb4EsVgmdln+/Tw4d6+JcA5UXIysnfziupJljUGQ9gSg8SHdgNcc1HPNI9R2S4FE e3zuPdfWs3w3Wih58fS+eTo= -----END CERTIFICATE-----Generated at Mon Mar 2 12:35:19 2026 by rpki-client