$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa File: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (raw, json) Hash identifier: gaiP1us9ZVKBdlJoHfbtQhGqWeKxEzvnmSCb9KMbw0c= Subject key identifier: 64:3C:5D:0A:21:3C:51:6A:14:02:F9:9A:52:DC:F3:81:30:90:9A:CE Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 02AA Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:08:14 +0000 ROA not before: Thu 25 Sep 2025 02:20:52 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146954 IP address blocks: 103.25.220.0/24 maxlen: 24 2001:df1:2a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Sep 25 02:20:52 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a42c2e-25ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7c:77:fd:fa:09:51:02:93:3b:c8:3f:4a:69: b5:52:56:2a:e3:17:2e:2a:a7:92:55:5e:54:5d:14: 78:9a:94:3f:45:94:00:6c:55:f3:ca:b6:7b:df:64: f9:22:09:a0:81:91:59:dd:4a:a8:2c:df:d0:e7:10: ea:a7:7b:2b:1f:5e:c9:82:ac:0c:ea:61:04:28:76: 69:06:76:7b:d8:aa:ab:a9:17:c6:22:ac:84:98:d9: dd:b2:4e:5f:c4:f0:66:8a:78:af:fa:94:9a:b1:d2: ec:39:57:f6:e0:60:3a:73:9a:77:c4:3a:37:20:7f: cd:ae:07:da:d5:6f:ee:c0:7d:e9:a8:08:7d:56:75: 07:a2:2c:64:a5:fa:b9:8d:cb:72:58:75:9d:c8:66: 9d:f5:07:3f:22:36:a4:f1:87:20:6e:2a:88:b0:9d: 57:25:37:85:5e:14:d5:21:d6:e2:02:e4:f5:00:ca: e3:71:a0:c3:aa:4b:d6:db:29:1d:9a:99:bf:d0:f2: f2:ab:a7:3a:79:53:ff:88:91:46:90:3b:fb:1e:ea: d4:76:af:19:f2:58:7a:85:86:f8:d5:09:88:43:2e: 75:ff:17:1d:08:56:b3:8f:ea:2b:f5:f9:c8:a5:35: ca:3b:2e:f2:ad:5e:b4:a4:11:10:5c:0d:13:10:1a: 2f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3C:5D:0A:21:3C:51:6A:14:02:F9:9A:52:DC:F3:81:30:90:9A:CE X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.25.220.0/24 IPv6: 2001:df1:2a40::/48 Signature Algorithm: sha256WithRSAEncryption 50:99:09:25:1c:14:da:6d:4a:68:06:d9:cd:c4:7e:b7:20:05: 6e:71:48:8c:0f:d7:40:3a:8b:81:5e:7e:6d:cd:1f:28:fa:cd: 38:9b:f7:bb:df:94:0b:aa:e2:9b:42:2a:3d:df:33:71:94:37: 35:2c:8d:dd:45:61:ac:19:bc:6a:50:da:f2:11:0e:6c:cc:0f: c2:1f:5a:69:1f:af:16:79:98:8d:a2:e1:bb:1e:38:ad:de:fd: 1b:84:d6:59:20:0d:eb:3b:e2:da:38:42:fc:7c:1b:f5:ff:a7: fe:ad:96:4c:94:0e:1f:69:ed:7d:07:61:31:62:f5:e7:ca:05: 9d:0e:d1:5b:73:0a:be:d8:aa:21:99:87:0d:fc:75:42:b1:67: 17:ac:e5:6c:04:83:f1:b7:5a:ae:30:94:0a:59:01:f6:94:83: a0:90:24:38:4e:38:e5:92:fb:40:3c:92:7b:e3:81:17:30:02: 35:04:c5:75:57:13:7b:63:28:72:97:b8:b6:30:fa:e7:70:07: 3d:88:21:5f:29:0e:bf:ee:fb:ba:73:3d:d2:9b:cb:74:c1:71: 75:e4:97:8d:94:8b:62:3e:47:34:fc:71:47:a6:13:6d:fe:78: 1d:b9:61:95:18:d5:62:fb:73:52:24:f9:6b:c4:ac:8d:9b:5a: c1:5a:2a:16 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUwOTI1MDIyMDUyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmMyZS0yNWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnx3/foJUQKTO8g/Smm1UlYq4xcuKqeSVV5UXRR4mpQ/RZQAbFXzyrZ732T5 IgmggZFZ3UqoLN/Q5xDqp3srH17JgqwM6mEEKHZpBnZ72KqrqRfGIqyEmNndsk5f xPBminiv+pSasdLsOVf24GA6c5p3xDo3IH/Nrgfa1W/uwH3pqAh9VnUHoixkpfq5 jctyWHWdyGad9Qc/Ijak8YcgbiqIsJ1XJTeFXhTVIdbiAuT1AMrjcaDDqkvW2ykd mpm/0PLyq6c6eVP/iJFGkDv7HurUdq8Z8lh6hYb41QmIQy51/xcdCFazj+or9fnI pTXKOy7yrV60pBEQXA0TEBovXQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGQ8XQoh PFFqFAL5mlLc84EwkJrOMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI5MDUvMTFFQjA4NkEzMzU1MTFFRDk0M0ZBNTNCQzRGOUFFMDIvOEJGRTlFQTYz MzU5MTFFREJDNjBBQzQ0QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZxncMA8EAgACMAkDBwAgAQ3xKkAwDQYJKoZIhvcNAQELBQADggEB AFCZCSUcFNptSmgG2c3EfrcgBW5xSIwP10A6i4Fefm3NHyj6zTib97vflAuq4ptC Kj3fM3GUNzUsjd1FYawZvGpQ2vIRDmzMD8IfWmkfrxZ5mI2i4bseOK3e/RuE1lkg Des74to4Qvx8G/X/p/6tlkyUDh9p7X0HYTFi9efKBZ0O0VtzCr7YqiGZhw38dUKx Zxes5WwEg/G3Wq4wlApZAfaUg6CQJDhOOOWS+0A8knvjgRcwAjUExXVXE3tjKHKX uLYw+udwBz2IIV8pDr/u+7pzPdKby3TBcXXkl42Ui2I+RzT8cUemE23+eB25YZUY 1WL7c1Ik+WvErI2bWsFaKhY= -----END CERTIFICATE-----Generated at Mon Mar 2 20:14:59 2026 by rpki-client