$ rpki-client -vvf rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/8F447DB8149911F197DD892E413D8C67.roa File: 8F447DB8149911F197DD892E413D8C67.roa (raw, json) Hash identifier: 9HlejyuoDqfmEXIUW5GCTKYZVKxEmefNGE2bDDFH2HY= Subject key identifier: F0:DC:42:F2:5A:C8:FA:E1:DD:51:E6:45:3F:9B:C3:98:08:13:DF:9B Certificate issuer: /CN=A9120F0D/serialNumber=67F54C39C111E7DF7E7076C5C715B28B35E859F9 Certificate serial: 1448 Authority key identifier: 67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/8F447DB8149911F197DD892E413D8C67.roa Signing time: Sun 01 Mar 2026 17:27:25 +0000 ROA not before: Sat 28 Feb 2026 11:35:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135542 IP address blocks: 103.116.44.0/24 maxlen: 24 103.129.198.0/24 maxlen: 24 103.129.199.0/24 maxlen: 24 2402:f5c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5192 (0x1448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120F0D, serialNumber=67F54C39C111E7DF7E7076C5C715B28B35E859F9 Validity Not Before: Feb 28 11:35:19 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a476fd-a5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:db:2e:3d:a4:9e:05:c3:26:f3:7f:59:ac: 38:7f:53:70:3e:71:ec:b0:c0:a2:97:ef:1c:19:6a: 27:33:09:0e:76:63:9e:63:89:1d:75:e2:25:36:86: 41:02:0a:31:92:2d:d3:84:27:52:e7:de:16:12:b4: bb:dd:67:04:b5:ff:b9:45:05:8c:2b:3b:6a:a4:f4: cd:9a:1d:27:86:6b:29:4b:bb:fd:7c:06:2a:a7:46: 70:60:22:1c:76:04:6a:20:7e:27:19:fc:79:52:6b: 1d:13:a8:52:0d:00:36:2a:b6:a9:c3:89:87:92:04: ce:2e:a8:0b:c2:c1:9b:8e:2a:23:08:5c:97:93:b5: c1:9e:a6:96:c1:23:74:a2:cc:ef:5c:f6:b9:39:6f: 48:21:fe:48:da:a0:c0:d6:c2:70:e2:cf:c6:12:30: 6b:46:66:a8:2d:e1:c0:3e:68:81:6d:7e:23:55:38: 51:f7:7b:52:93:75:16:20:e6:55:e8:34:9f:81:31: 70:63:b5:d1:a7:69:0f:62:0a:52:32:6c:77:39:6c: fa:79:d5:68:b4:71:72:3f:b1:d9:b7:fb:8d:06:a8: 69:c4:5c:87:9f:f4:ad:c2:b4:b4:1b:fd:2a:86:dd: c5:0c:3b:26:53:73:0f:b3:d2:92:04:dd:12:cc:2e: 91:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DC:42:F2:5A:C8:FA:E1:DD:51:E6:45:3F:9B:C3:98:08:13:DF:9B X509v3 Authority Key Identifier: keyid:67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/8F447DB8149911F197DD892E413D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.116.44.0/24 103.129.198.0/23 IPv6: 2402:f5c0::/32 Signature Algorithm: sha256WithRSAEncryption 13:31:d9:c6:a3:93:3c:42:4f:d1:3c:2f:0d:ca:0b:a9:81:91: ff:4d:ac:aa:97:24:c2:fd:2a:ee:9d:04:15:a0:35:db:18:00: 64:08:34:0b:9a:35:35:8e:86:98:db:e0:ab:42:6e:54:ca:0a: 74:90:d7:f3:2b:8a:0a:00:6f:11:21:75:8a:f2:a3:d1:f9:17: 74:a3:f9:d3:1b:4e:50:7b:8f:fe:3a:2c:94:57:3f:8b:2d:16: 77:36:1e:d2:61:a4:2f:fb:38:03:17:20:bc:ef:ef:d9:a3:a1: f8:b7:39:95:34:89:41:d8:b4:b0:b8:80:f2:c5:09:5e:ab:6a: ac:e3:e1:97:e7:79:87:93:5c:7b:e1:ff:8c:69:7d:63:ac:2d: ae:4d:b5:71:c4:e3:2c:94:6a:69:b5:85:de:93:35:96:39:71: 99:ac:c1:28:a8:b4:15:cd:f1:3a:cf:9e:f3:30:ea:d2:dd:79: 7d:66:c6:22:2b:99:22:bd:80:6d:cb:6a:cc:85:a3:8e:eb:36: 95:3a:66:6e:cc:6a:03:52:38:1d:75:1b:8b:2e:b7:9e:68:1f: aa:47:a1:28:d9:2e:71:14:05:43:83:be:d5:c3:98:0e:42:fa: 22:01:ca:79:e0:57:43:88:d3:91:60:43:39:ef:aa:e4:1d:43: 0e:36:da:72 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICFEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGMEQxMTAvBgNVBAUTKDY3RjU0QzM5QzExMUU3REY3RTcwNzZDNUM3MTVCMjhC MzVFODU5RjkwHhcNMjYwMjI4MTEzNTE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzZmZC1hNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pjbLj2kngXDJvN/Waw4f1NwPnHssMCil+8cGWonMwkOdmOeY4kddeIlNoZB Agoxki3ThCdS594WErS73WcEtf+5RQWMKztqpPTNmh0nhmspS7v9fAYqp0ZwYCIc dgRqIH4nGfx5UmsdE6hSDQA2Krapw4mHkgTOLqgLwsGbjiojCFyXk7XBnqaWwSN0 oszvXPa5OW9IIf5I2qDA1sJw4s/GEjBrRmaoLeHAPmiBbX4jVThR93tSk3UWIOZV 6DSfgTFwY7XRp2kPYgpSMmx3OWz6edVotHFyP7HZt/uNBqhpxFyHn/StwrS0G/0q ht3FDDsmU3MPs9KSBN0SzC6RhQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFPDcQvJa yPrh3VHmRT+bw5gIE9+bMB8GA1UdIwQYMBaAFGf1TDnBEefffnB2xccVsos16Fn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEYwRC8wOEVDMkIwQ0Ez NkUxMUU4Qjg5NjY2MkJDNEY5QUUwMi9aX1ZNT2NFUjU5OS1jSGJGeHhXeWl6WG9X ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pfVk1PY0VSNTk5LWNIYkZ4eFd5aXpYb1dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBGMEQvMDhFQzJCMENBMzZFMTFFOEI4OTY2NjJCQzRGOUFFMDIvOEY0NDdEQjgx NDk5MTFGMTk3REQ4OTJFNDEzRDhDNjcucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ3QsAwQBZ4HGMA0EAgACMAcDBQAkAvXAMA0GCSqGSIb3DQEBCwUA A4IBAQATMdnGo5M8Qk/RPC8NygupgZH/TayqlyTC/SrunQQVoDXbGABkCDQLmjU1 joaY2+CrQm5Uygp0kNfzK4oKAG8RIXWK8qPR+Rd0o/nTG05Qe4/+OiyUVz+LLRZ3 Nh7SYaQv+zgDFyC87+/Zo6H4tzmVNIlB2LSwuIDyxQleq2qs4+GX53mHk1x74f+M aX1jrC2uTbVxxOMslGpptYXekzWWOXGZrMEoqLQVzfE6z57zMOrS3Xl9ZsYiK5ki vYBty2rMhaOO6zaVOmZuzGoDUjgddRuLLreeaB+qR6Eo2S5xFAVDg77Vw5gOQvoi Acp54FdDiNORYEM576rkHUMONtpy -----END CERTIFICATE-----Generated at Mon Mar 2 11:56:13 2026 by rpki-client