$ rpki-client -vvf rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa File: F648238E766911EC9EADC512C4F9AE02.roa (raw, json) Hash identifier: bDHpZrwcQl7ztwJNbDO8+8sOlvpdJJRh7RkBiAyPyW0= Subject key identifier: 73:08:6A:32:F3:3C:B6:55:57:58:E1:36:70:97:78:20:52:B5:55:D4 Certificate issuer: /CN=A912147F/serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Certificate serial: 0C77 Authority key identifier: B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:43:15 +0000 ROA not before: Wed 24 Dec 2025 19:15:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137048 IP address blocks: 103.103.32.0/24 maxlen: 24 103.103.33.0/24 maxlen: 24 103.103.34.0/24 maxlen: 24 103.103.35.0/24 maxlen: 24 2401:ee40::/32 maxlen: 32 2401:ee40::/48 maxlen: 48 2401:ee40:1::/48 maxlen: 48 2401:ee40:2::/48 maxlen: 48 2401:ee40:3::/48 maxlen: 48 2401:ee40:4::/48 maxlen: 48 2401:ee40:5::/48 maxlen: 48 2401:ee40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912147F, serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Validity Not Before: Dec 24 19:15:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45083-21da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:24:50:ac:ed:00:ba:46:73:37:c0:ad:35:f7: 3d:8c:13:d5:36:1c:b1:9b:ff:f2:97:42:b2:01:26: cb:8a:a8:c2:1a:3c:85:34:bb:22:26:4c:8c:e2:fa: 11:f7:c0:1f:4b:f9:ec:7d:b9:bf:73:22:41:6a:cc: 3b:fe:a7:01:2f:94:b5:ed:3a:70:71:7d:7f:be:f1: 20:eb:03:b1:7a:e3:ee:f0:67:02:8b:5c:62:f4:37: d4:8f:59:f6:2b:cd:d4:17:fc:57:5e:fd:eb:5a:51: 61:73:40:f3:f9:f9:90:b1:8c:97:ee:4d:53:c9:d5: 5b:40:11:5b:7f:a3:6e:54:b2:91:f4:ca:5e:18:1c: 84:a3:5b:34:92:92:14:f1:ec:24:ea:ac:35:fe:97: 6e:75:a1:73:a1:64:ed:e7:d5:65:e2:e0:b7:a3:e3: 99:d5:2d:f7:9d:13:c8:8e:94:c9:fc:97:97:fb:3a: 0c:07:ff:ec:6f:98:54:bf:ad:53:a1:6a:e6:7a:84: 88:cc:9f:b9:6f:9e:76:a5:ca:33:3d:6e:40:12:06: 33:70:a1:b0:f7:42:62:e8:a5:ae:90:82:5f:5e:6b: bf:b0:dc:be:c0:8a:2d:06:9b:26:aa:01:98:f6:68: 89:8c:fd:38:7c:bf:36:3e:09:af:c3:d3:a0:c6:ba: e8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:08:6A:32:F3:3C:B6:55:57:58:E1:36:70:97:78:20:52:B5:55:D4 X509v3 Authority Key Identifier: keyid:B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.103.32.0/22 IPv6: 2401:ee40::/32 Signature Algorithm: sha256WithRSAEncryption 4a:4d:18:1b:9d:d3:a2:e8:61:61:f4:cf:c0:c7:94:cd:46:e5: ef:78:20:4f:27:5f:4e:6d:56:d9:6e:9a:26:ba:82:87:66:62: 3a:a7:74:6a:39:b1:3c:5d:56:e9:8e:3e:49:ee:0a:97:1f:83: 97:2b:e5:89:33:de:54:30:7c:13:34:98:77:40:a0:b8:65:93: d5:80:a6:29:66:15:b5:58:bf:c8:7b:21:cb:00:38:c3:49:8c: bd:bd:57:33:b2:f3:40:87:c9:78:1b:0a:82:27:5b:7c:30:3f: 1b:2c:b6:cf:f7:b5:6d:c6:8f:4e:8a:63:56:60:9a:59:8a:9e: 33:31:3c:1f:1a:7e:df:93:02:0d:35:6f:1b:dc:24:b2:81:1d: 44:cc:79:92:80:8e:41:dc:ff:17:22:8c:fc:ba:ae:86:23:b3: e1:04:8c:18:a5:11:e9:1e:ed:6d:18:e6:d1:ed:2d:f0:a3:67: 1f:cc:92:58:06:e3:44:13:7c:28:24:31:b1:e8:21:fe:36:38: 11:3d:e3:94:c6:f4:3f:a2:9e:e7:e4:c3:03:b4:17:9f:4c:90: 6d:81:f2:88:f3:c7:9e:e2:07:3a:ed:32:f4:94:7e:5f:b0:40: 81:48:f6:cd:db:f6:63:a8:e4:10:e7:ac:3d:e4:5d:e2:a0:ca: e2:af:b0:ab -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0N0YxMTAvBgNVBAUTKEI2Rjc5N0Q4NEYyRTQ5QjhCQjMyMjIwNkI3OTQ2RDI3 OTE4Q0ExNjQwHhcNMjUxMjI0MTkxNTQ2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTA4My0yMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryRQrO0AukZzN8CtNfc9jBPVNhyxm//yl0KyASbLiqjCGjyFNLsiJkyM4voR 98AfS/nsfbm/cyJBasw7/qcBL5S17TpwcX1/vvEg6wOxeuPu8GcCi1xi9DfUj1n2 K83UF/xXXv3rWlFhc0Dz+fmQsYyX7k1TydVbQBFbf6NuVLKR9MpeGByEo1s0kpIU 8ewk6qw1/pdudaFzoWTt59Vl4uC3o+OZ1S33nRPIjpTJ/JeX+zoMB//sb5hUv61T oWrmeoSIzJ+5b552pcozPW5AEgYzcKGw90Ji6KWukIJfXmu/sNy+wIotBpsmqgGY 9miJjP04fL82Pgmvw9OgxrroxwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFHMIajLz PLZVV1jhNnCXeCBStVXUMB8GA1UdIwQYMBaAFLb3l9hPLkm4uzIiBreUbSeRjKFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQ3Ri8xNjFBQUJFQzFD RjcxMUVBQUQ2NjQ1MzJDNEY5QUUwMi90dmVYMkU4dVNiaTdNaUlHdDVSdEo1R01v V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R2ZVgyRTh1U2JpN01pSUd0NVJ0SjVHTW9XUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0N0YvMTYxQUFCRUMxQ0Y3MTFFQUFENjY0NTMyQzRGOUFFMDIvRjY0ODIzOEU3 NjY5MTFFQzlFQURDNTEyQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2cgMA0EAgACMAcDBQAkAe5AMA0GCSqGSIb3DQEBCwUAA4IBAQBK TRgbndOi6GFh9M/Ax5TNRuXveCBPJ19ObVbZbpomuoKHZmI6p3RqObE8XVbpjj5J 7gqXH4OXK+WJM95UMHwTNJh3QKC4ZZPVgKYpZhW1WL/IeyHLADjDSYy9vVczsvNA h8l4GwqCJ1t8MD8bLLbP97Vtxo9OimNWYJpZip4zMTwfGn7fkwINNW8b3CSygR1E zHmSgI5B3P8XIoz8uq6GI7PhBIwYpRHpHu1tGObR7S3wo2cfzJJYBuNEE3woJDGx 6CH+NjgRPeOUxvQ/op7n5MMDtBefTJBtgfKI88ee4gc67TL0lH5fsECBSPbN2/Zj qOQQ56w95F3ioMrir7Cr -----END CERTIFICATE-----Generated at Mon Mar 2 17:09:41 2026 by rpki-client