$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa File: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (raw, json) Hash identifier: 6u8EDQPeHd1f5myvUPvFnltCBejoVUEG20zIQZJhOPo= Subject key identifier: 7C:BA:6D:E9:CA:2D:72:97:AA:CB:F5:83:CF:DE:9F:FE:D4:E2:FD:F8 Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 04D4 Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:58:59 +0000 ROA not before: Thu 31 Jul 2025 01:06:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58590 IP address blocks: 103.8.248.0/22 maxlen: 22 103.8.248.0/24 maxlen: 24 103.8.249.0/24 maxlen: 24 103.8.250.0/24 maxlen: 24 103.8.251.0/24 maxlen: 24 2403:bd00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1236 (0x4d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Jul 31 01:06:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40de3-151d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:73:04:ba:f3:2f:d4:87:93:1d:db:94:8b:d0: c4:16:d3:d7:62:76:ec:c4:2a:50:81:01:c5:32:33: a7:a4:fa:77:84:0c:33:55:bd:10:42:c8:43:15:bc: 82:b0:ea:7d:4a:17:3b:ab:01:8e:c0:23:1d:fc:92: c0:42:04:44:52:2b:e3:09:dd:39:63:62:f4:c8:90: fb:5f:16:95:76:fc:18:ca:ad:df:11:43:97:0a:0b: 88:e4:e8:e9:6a:92:9a:c2:6d:e1:4d:c5:d7:fb:bc: ad:11:ad:83:d2:22:3a:11:45:df:89:86:f3:f2:bd: 17:2b:2f:0a:b6:2f:75:f3:ba:f4:af:0f:55:4d:4d: 83:29:d2:38:4f:ba:d8:52:28:4e:f3:7f:a8:5c:37: aa:33:cd:70:f7:0d:e4:99:35:fa:3a:59:1d:b1:e2: b9:d2:81:8a:4c:a6:42:bd:da:ef:b5:6c:f3:9c:c5: c7:7d:e3:74:dc:5b:52:06:68:b0:72:0a:36:82:ec: 9d:c1:b8:8b:1b:47:fa:3e:62:53:9a:2b:a9:e1:c2: 40:1a:59:d5:c7:69:91:cd:a0:b4:ed:2f:61:91:5e: de:58:ee:f6:cf:96:d5:5e:5c:c0:7f:43:4f:2e:7e: 04:64:ae:e9:22:5e:9a:55:86:26:b7:7d:35:c6:b6: 69:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BA:6D:E9:CA:2D:72:97:AA:CB:F5:83:CF:DE:9F:FE:D4:E2:FD:F8 X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.248.0/22 IPv6: 2403:bd00::/32 Signature Algorithm: sha256WithRSAEncryption 95:04:8d:3b:7b:20:01:1e:47:1e:15:45:02:00:c1:4e:c7:23: 78:05:27:f5:ad:48:c1:31:05:b6:3c:68:47:f0:73:32:d0:1f: 3a:cd:21:9a:57:6c:11:24:8c:44:14:ac:71:c8:08:15:84:af: aa:e0:c2:61:63:e1:76:28:c0:c7:09:79:3e:ae:d7:32:c9:0f: 2d:c0:0b:d3:47:23:bd:de:21:1b:a7:24:5b:4c:f7:71:61:72: f4:82:13:34:b7:96:76:0d:da:44:00:b9:5b:dc:32:4c:03:65: df:4c:66:8f:8e:a3:34:f8:77:3a:60:b3:57:42:35:fc:12:e5: d8:42:11:70:9d:e6:ed:01:ff:b5:43:cf:e8:f9:d7:68:7f:02: a5:90:1d:51:bf:7a:68:68:bb:54:eb:18:dc:a6:e6:6b:1c:5e: e8:1c:3a:21:17:05:33:a6:c8:a1:3f:8b:7f:03:f8:c6:2f:27: 4e:31:1e:71:e7:c0:97:7a:65:33:d4:30:84:62:0f:44:f7:26: e7:54:f3:22:de:cf:ad:e6:b9:88:c2:0a:4f:fd:e1:c4:89:e3: 90:aa:82:9d:3a:0d:76:5c:99:af:0a:9c:72:6b:a5:b1:b4:ff: e2:ae:02:57:a2:d8:80:0a:4d:ae:ea:02:0f:28:ac:f2:61:12: 18:1c:3e:57 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjUwNzMxMDEwNjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGRlMy0xNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3MEuvMv1IeTHduUi9DEFtPXYnbsxCpQgQHFMjOnpPp3hAwzVb0QQshDFbyC sOp9Shc7qwGOwCMd/JLAQgREUivjCd05Y2L0yJD7XxaVdvwYyq3fEUOXCguI5Ojp apKawm3hTcXX+7ytEa2D0iI6EUXfiYbz8r0XKy8Kti9187r0rw9VTU2DKdI4T7rY UihO83+oXDeqM81w9w3kmTX6OlkdseK50oGKTKZCvdrvtWzznMXHfeN03FtSBmiw cgo2guydwbiLG0f6PmJTmiup4cJAGlnVx2mRzaC07S9hkV7eWO72z5bVXlzAf0NP Ln4EZK7pIl6aVYYmt301xrZpjwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHy6benK LXKXqsv1g8/en/7U4v34MB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY4QzkvNEI0RDcxMkE1Q0RCMTFFQ0JENTRGNzBDQzRGOUFFMDIvMERDNEJDMEM1 Q0RFMTFFQ0I0ODY4NTBGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZwj4MA0EAgACMAcDBQAkA70AMA0GCSqGSIb3DQEBCwUAA4IBAQCV BI07eyABHkceFUUCAMFOxyN4BSf1rUjBMQW2PGhH8HMy0B86zSGaV2wRJIxEFKxx yAgVhK+q4MJhY+F2KMDHCXk+rtcyyQ8twAvTRyO93iEbpyRbTPdxYXL0ghM0t5Z2 DdpEALlb3DJMA2XfTGaPjqM0+Hc6YLNXQjX8EuXYQhFwnebtAf+1Q8/o+ddofwKl kB1Rv3poaLtU6xjcpuZrHF7oHDohFwUzpsihP4t/A/jGLydOMR5x58CXemUz1DCE Yg9E9ybnVPMi3s+t5rmIwgpP/eHEieOQqoKdOg12XJmvCpxya6WxtP/irgJXotiA Ck2u6gIPKKzyYRIYHD5X -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:48 2026 by rpki-client