$ rpki-client -vvf rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/E1A91004624811F098E5B95AC4F9AE02.roa File: E1A91004624811F098E5B95AC4F9AE02.roa (raw, json) Hash identifier: DfP6HXkk7ZkiBK57u8/8M6u5qiXHtYdjtBByCV+JXf0= Subject key identifier: D9:50:F0:B6:22:6F:11:24:37:BD:8A:ED:15:EF:7F:B6:83:F2:A9:03 Certificate issuer: /CN=A911E09E/serialNumber=E05C645545D9EF86B451E5219D832760F405CAE8 Certificate serial: 7C Authority key identifier: E0:5C:64:55:45:D9:EF:86:B4:51:E5:21:9D:83:27:60:F4:05:CA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4FxkVUXZ74a0UeUhnYMnYPQFyug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/E1A91004624811F098E5B95AC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:12:44 +0000 ROA not before: Mon 01 Sep 2025 08:25:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135022 IP address blocks: 103.107.122.0/24 maxlen: 24 103.110.5.0/24 maxlen: 24 103.114.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/4FxkVUXZ74a0UeUhnYMnYPQFyug.crl rsync://rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/4FxkVUXZ74a0UeUhnYMnYPQFyug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4FxkVUXZ74a0UeUhnYMnYPQFyug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E09E, serialNumber=E05C645545D9EF86B451E5219D832760F405CAE8 Validity Not Before: Sep 1 08:25:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3f4fc-6596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:14:6c:c4:8e:c9:33:26:90:46:c6:34:47:cf: b2:fd:4a:6b:94:72:58:0b:86:e0:4f:da:6a:e5:a9: bd:69:03:bc:3f:bb:81:ef:b2:3c:96:51:b5:04:dd: db:74:7b:13:f1:ae:cb:07:6d:d4:8d:15:73:c1:82: 4c:98:34:83:4f:c8:24:41:d3:63:e6:68:fd:42:75: 46:92:de:07:e6:73:64:80:48:c5:f3:95:9e:8a:2c: 4b:4f:40:45:82:3f:fe:04:a9:6d:61:c5:c2:fc:10: 3c:fb:e8:ca:96:b2:a9:fa:b1:d4:28:79:94:7e:c0: da:fb:cb:c2:70:da:4f:9e:62:57:43:b0:71:7b:17: a7:3f:3a:11:ae:3b:a6:9b:72:93:9c:c4:02:55:28: 12:e8:62:7c:d9:b9:c1:bf:7e:3c:0d:18:38:68:c8: 7c:5d:64:f1:f9:e8:6d:e9:83:81:36:cd:c0:75:c5: 85:07:82:6a:52:55:92:db:04:84:d7:f6:43:8a:41: be:8e:75:a3:a0:76:91:b6:0e:66:57:46:62:87:30: 27:65:dc:a7:39:5a:8e:73:7c:b4:60:37:8a:70:e4: 4d:4a:73:cd:66:f4:ce:f3:b1:26:cb:f7:c6:32:d6: de:89:13:16:b9:df:40:4b:52:c7:91:b3:7d:2e:a8: ce:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:50:F0:B6:22:6F:11:24:37:BD:8A:ED:15:EF:7F:B6:83:F2:A9:03 X509v3 Authority Key Identifier: keyid:E0:5C:64:55:45:D9:EF:86:B4:51:E5:21:9D:83:27:60:F4:05:CA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/4FxkVUXZ74a0UeUhnYMnYPQFyug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4FxkVUXZ74a0UeUhnYMnYPQFyug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E09E/D8BB0F3661FA11F0BD4F606EC4F9AE02/E1A91004624811F098E5B95AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.107.122.0/24 103.110.5.0/24 103.114.54.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:da:61:a6:89:4e:0a:91:45:b3:e4:35:15:cc:e9:14:03:86: e3:a7:e2:0b:91:0b:49:01:05:fa:19:ab:f1:5e:25:b1:ea:ac: 37:04:0e:ac:15:b7:8a:63:4d:56:10:e6:d3:8c:fb:10:0f:8b: b9:84:4a:18:1d:76:a8:07:ca:5c:df:59:c2:0c:f1:ff:b6:19: e7:b7:1c:75:85:3f:da:8c:47:d0:3f:5d:d3:d3:f6:6e:9a:fa: 7a:f4:ba:c8:cc:b5:d2:d6:5e:5a:6e:f6:67:6d:89:7b:1f:d5: 03:5f:32:6a:d2:f4:cf:33:a9:f0:33:42:7e:c9:26:26:4e:bd: 47:f4:f3:17:0b:24:d2:fc:b6:2f:9b:f9:43:02:a5:ce:c3:a3: 8f:21:90:5b:b1:39:6a:ab:d4:f1:27:de:70:d5:25:20:9f:1c: 2f:6e:fc:65:60:ae:cb:b0:81:85:cf:f1:b2:2c:28:3e:9c:dc: cd:ed:7a:0b:2c:84:09:a2:c7:66:d6:fb:a5:8c:86:c3:ba:7b: d6:b9:03:24:fb:32:5e:f3:86:89:5b:16:4a:e0:52:cf:d9:6e: 1e:8e:40:52:34:f6:fd:59:33:9c:3e:b4:2f:b6:06:7d:02:bf: f0:2b:aa:ed:28:98:59:a5:96:b6:5d:2e:45:98:b1:83:ef:da: 82:8f:1c:7e -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTA5RTExMC8GA1UEBRMoRTA1QzY0NTU0NUQ5RUY4NkI0NTFFNTIxOUQ4MzI3NjBG NDA1Q0FFODAeFw0yNTA5MDEwODI1MzRaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNmNGZjLTY1OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeFGzEjskzJpBGxjRHz7L9SmuUclgLhuBP2mrlqb1pA7w/u4HvsjyWUbUE3dt0 exPxrssHbdSNFXPBgkyYNINPyCRB02PmaP1CdUaS3gfmc2SASMXzlZ6KLEtPQEWC P/4EqW1hxcL8EDz76MqWsqn6sdQoeZR+wNr7y8Jw2k+eYldDsHF7F6c/OhGuO6ab cpOcxAJVKBLoYnzZucG/fjwNGDhoyHxdZPH56G3pg4E2zcB1xYUHgmpSVZLbBITX 9kOKQb6OdaOgdpG2DmZXRmKHMCdl3Kc5Wo5zfLRgN4pw5E1Kc81m9M7zsSbL98Yy 1t6JExa530BLUseRs30uqM5hAgMBAAGjggJsMIICaDAdBgNVHQ4EFgQU2VDwtiJv ESQ3vYrtFe9/toPyqQMwHwYDVR0jBBgwFoAU4FxkVUXZ74a0UeUhnYMnYPQFyugw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMDlFL0Q4QkIwRjM2NjFG QTExRjBCRDRGNjA2RUM0RjlBRTAyLzRGeGtWVVhaNzRhMFVlVWhuWU1uWVBRRnl1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNEZ4a1ZVWFo3NGEwVWVVaG5ZTW5ZUFFGeXVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTA5RS9EOEJCMEYzNjYxRkExMUYwQkQ0RjYwNkVDNEY5QUUwMi9FMUE5MTAwNDYy NDgxMUYwOThFNUI5NUFDNEY5QUUwMi5yb2EwKwYIKwYBBQUHAQcBAf8EHDAaMBgE AgABMBIDBABna3oDBABnbgUDBABncjYwDQYJKoZIhvcNAQELBQADggEBAHvaYaaJ TgqRRbPkNRXM6RQDhuOn4guRC0kBBfoZq/FeJbHqrDcEDqwVt4pjTVYQ5tOM+xAP i7mEShgddqgHylzfWcIM8f+2Gee3HHWFP9qMR9A/XdPT9m6a+nr0usjMtdLWXlpu 9mdtiXsf1QNfMmrS9M8zqfAzQn7JJiZOvUf08xcLJNL8ti+b+UMCpc7Do48hkFux OWqr1PEn3nDVJSCfHC9u/GVgrsuwgYXP8bIsKD6c3M3tegsshAmix2bW+6WMhsO6 e9a5AyT7Ml7zholbFkrgUs/Zbh6OQFI09v1ZM5w+tC+2Bn0Cv/Arqu0omFmllrZd LkWYsYPv2oKPHH4= -----END CERTIFICATE-----Generated at Mon Mar 2 11:57:34 2026 by rpki-client