$ rpki-client -vvf rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/E80A0D282B9D11EFB61F1148C4F9AE02.roa File: E80A0D282B9D11EFB61F1148C4F9AE02.roa (raw, json) Hash identifier: H04/8UCM0HIwt/kQIuV1r0Bul5P9qNZh2AavqYuBxdQ= Subject key identifier: 71:A4:76:64:B2:46:0C:43:8A:F1:77:F5:07:8A:8E:F1:3D:3F:15:DA Certificate issuer: /CN=A9118FFA/serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Certificate serial: 0156 Authority key identifier: 9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/E80A0D282B9D11EFB61F1148C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:25:49 +0000 ROA not before: Wed 05 Nov 2025 05:20:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 7474 IP address blocks: 103.122.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118FFA, serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Validity Not Before: Nov 5 05:20:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58fdd-648f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d9:cb:0f:06:b6:9a:ae:b6:3a:df:47:a0:d1: a7:1a:13:ba:ac:e0:4e:bf:a5:71:99:8e:d5:eb:a3: d6:35:b1:e5:0e:27:59:f2:b6:b6:c4:bd:54:ca:ac: dd:6b:84:d1:f5:f8:55:65:86:5c:96:23:06:a6:a9: 82:ab:1a:65:85:ca:c2:b8:05:c3:65:cf:6c:91:d9: 22:6d:d9:11:3b:6e:9c:51:c4:73:be:a0:00:bd:a7: 64:00:cb:63:41:92:e5:cb:a6:c8:ae:04:07:10:a4: 71:73:63:2f:b4:e0:64:f5:aa:5e:c6:cf:ac:43:f8: 55:09:8e:19:09:ac:d4:4b:ed:0e:0c:54:13:d7:ba: c4:8e:69:06:5e:f1:87:9f:c4:0b:71:27:5b:df:9c: 4f:13:d4:75:ab:8e:5a:f6:fa:4e:0c:39:29:f1:3f: ed:46:d3:57:1d:0a:4f:24:fd:79:d8:1d:b9:32:7f: 85:e3:54:0b:ab:2e:08:a7:66:ed:63:39:d2:84:34: 3d:2f:97:ef:8e:ce:15:5d:76:df:2c:14:e0:bf:ee: ef:81:19:a6:aa:6d:ae:34:a5:45:32:8d:36:f2:f5: c8:12:f9:47:a5:54:de:72:9a:dd:7a:5a:5c:07:7d: 7c:71:24:47:5d:c0:74:c0:bc:41:a6:83:ef:b7:bc: dc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A4:76:64:B2:46:0C:43:8A:F1:77:F5:07:8A:8E:F1:3D:3F:15:DA X509v3 Authority Key Identifier: keyid:9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/E80A0D282B9D11EFB61F1148C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.122.4.0/24 Signature Algorithm: sha256WithRSAEncryption a7:1e:ab:7d:e7:13:1f:aa:00:ae:bd:09:d5:e2:41:a7:0c:74: b6:94:74:76:b6:49:56:5d:c1:a6:c8:f8:fa:79:96:a1:3d:e7: b1:82:1f:c4:8e:8a:8c:90:65:ad:6f:c3:45:58:a4:b1:0f:47: a4:88:85:00:4c:e6:2b:41:d7:88:fd:04:9e:ea:c0:15:8e:f2: c6:68:d0:37:03:05:4f:7b:89:9f:dd:d7:1a:69:5f:5b:d0:4d: 6e:02:93:87:f0:56:e7:da:91:34:89:40:29:23:f3:4c:99:0b: 72:1e:45:cf:2a:0a:74:41:2d:dd:5a:32:ec:6b:30:2f:40:1f: 2b:eb:a7:16:5d:8f:a2:41:0b:97:cd:b2:2c:ed:de:dc:64:52: 5e:7a:5c:fb:a6:e5:9d:4b:22:93:ee:44:f7:3a:fa:76:56:3e: 71:2a:ed:4f:10:2a:4d:e9:ec:9d:d0:68:66:dc:76:6c:99:e4: f2:60:56:10:72:48:cc:0f:00:0f:c9:68:5b:3f:07:3d:29:af: 24:2b:30:64:2e:c3:03:0b:90:ea:95:9b:35:a9:93:3b:3b:56: 0d:e9:67:94:79:bd:02:b7:f0:84:f4:ca:6e:2c:e4:79:e4:22: fd:f4:96:03:d1:ef:40:3c:c0:f0:05:41:76:9e:fe:a8:bf:6b: 0e:71:07:2d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThGRkExMTAvBgNVBAUTKDlGRTg4MUQ4QkQzMkFEMTVBQjdCRTdCNEVDNEY3NTIy MTI1NDZDNzYwHhcNMjUxMTA1MDUyMDEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGZkZC02NDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dnLDwa2mq62Ot9HoNGnGhO6rOBOv6VxmY7V66PWNbHlDidZ8ra2xL1Uyqzd a4TR9fhVZYZcliMGpqmCqxplhcrCuAXDZc9skdkibdkRO26cUcRzvqAAvadkAMtj QZLly6bIrgQHEKRxc2MvtOBk9apexs+sQ/hVCY4ZCazUS+0ODFQT17rEjmkGXvGH n8QLcSdb35xPE9R1q45a9vpODDkp8T/tRtNXHQpPJP152B25Mn+F41QLqy4Ip2bt YznShDQ9L5fvjs4VXXbfLBTgv+7vgRmmqm2uNKVFMo028vXIEvlHpVTecprdelpc B318cSRHXcB0wLxBpoPvt7zcfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHGkdmSy RgxDivF39QeKjvE9PxXaMB8GA1UdIwQYMBaAFJ/ogdi9Mq0Vq3vntOxPdSISVGx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEZGQS8wNTg2MDY4QTJC N0MxMUVGODlFODQxNDRDNEY5QUUwMi9uLWlCMkwweXJSV3JlLWUwN0U5MUloSlVi SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24taUIyTDB5clJXcmUtZTA3RTkxSWhKVWJIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThGRkEvMDU4NjA2OEEyQjdDMTFFRjg5RTg0MTQ0QzRGOUFFMDIvRTgwQTBEMjgy QjlEMTFFRkI2MUYxMTQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ3oEMA0GCSqGSIb3DQEBCwUAA4IBAQCnHqt95xMfqgCuvQnV4kGn DHS2lHR2tklWXcGmyPj6eZahPeexgh/EjoqMkGWtb8NFWKSxD0ekiIUATOYrQdeI /QSe6sAVjvLGaNA3AwVPe4mf3dcaaV9b0E1uApOH8Fbn2pE0iUApI/NMmQtyHkXP Kgp0QS3dWjLsazAvQB8r66cWXY+iQQuXzbIs7d7cZFJeelz7puWdSyKT7kT3Ovp2 Vj5xKu1PECpN6eyd0Ghm3HZsmeTyYFYQckjMDwAPyWhbPwc9Ka8kKzBkLsMDC5Dq lZs1qZM7O1YN6WeUeb0Ct/CE9MpuLOR55CL99JYD0e9APMDwBUF2nv6ov2sOcQct -----END CERTIFICATE-----Generated at Mon Mar 2 16:09:50 2026 by rpki-client