$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/F53FF9E668F411EFA1530C36C4F9AE02.roa File: F53FF9E668F411EFA1530C36C4F9AE02.roa (raw, json) Hash identifier: brYkxZidojowoYQIqbU0aCNgQ49H7mQPg5jz4K3RIX0= Subject key identifier: EF:BC:20:9C:49:74:A6:62:97:54:7C:56:19:0F:01:8A:CA:DC:CE:02 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 0435 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/F53FF9E668F411EFA1530C36C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:49:40 +0000 ROA not before: Tue 02 Dec 2025 23:58:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 135670 IP address blocks: 103.240.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A, serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Dec 2 23:58:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48a43-b3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:03:18:fc:bb:7d:c0:7a:74:db:ab:5d:b5:d1: 3e:0c:a2:a5:6f:b1:d2:ed:05:87:3b:53:98:2a:01: fb:6e:d2:4b:43:73:29:98:e0:bb:98:a4:f5:8f:6c: cf:22:37:0a:63:e0:0d:03:60:0a:8c:e0:2b:85:83: b2:3f:7f:d3:dd:f7:1a:f5:ec:2b:52:96:dc:7e:34: 08:32:8b:78:f9:e7:f6:94:bb:31:a1:c2:2b:d7:a3: 7a:80:ac:37:35:20:a4:70:f2:82:0b:ed:25:24:14: bd:ad:82:6b:02:ff:8b:5a:4f:cd:08:85:49:98:c0: 3c:c9:ff:75:2d:10:bc:5d:59:41:78:bc:38:06:15: 5f:28:24:ec:bd:73:e0:b8:0f:27:5e:c9:38:ff:39: 2c:f2:70:f3:2c:4f:84:60:c5:48:0b:1d:79:bb:d7: a5:87:6e:38:e1:48:ea:a3:10:47:c2:c1:72:9d:39: c9:29:1c:4b:ab:e9:4b:d0:4d:7b:60:e6:43:c0:c7: bc:56:cb:8d:ca:91:cf:e6:43:d8:33:50:5e:12:e7: 2d:d4:4e:2a:77:5d:19:29:6c:08:6b:c8:2f:6e:cd: 9c:33:86:18:9f:e9:03:ea:5d:e5:aa:66:8a:8a:41: c3:14:f5:d6:95:fe:e8:c2:8d:16:46:5d:3c:da:89: ed:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:BC:20:9C:49:74:A6:62:97:54:7C:56:19:0F:01:8A:CA:DC:CE:02 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/F53FF9E668F411EFA1530C36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.240.62.0/24 Signature Algorithm: sha256WithRSAEncryption 90:47:ee:fb:e8:9f:97:2f:08:cc:f5:3f:e9:c3:e0:a7:80:7c: c7:bf:19:51:39:32:53:f1:c2:2f:c9:79:f4:5c:73:3c:d0:e2: 28:e9:ee:4c:42:23:02:d5:c3:7e:30:29:28:00:53:88:55:3b: 69:0e:a6:7c:c5:82:bb:64:7b:98:a4:06:af:24:5a:8f:d0:9c: 0b:00:ac:af:17:a8:7d:0b:cf:ba:d0:df:1d:34:ff:d5:88:8b: eb:6c:15:00:ad:e8:3c:12:5a:80:95:b5:3b:0a:8b:91:2f:1b: 87:c2:8f:54:9b:72:e8:46:2b:c4:e0:4d:42:08:08:d7:f2:9c: 71:c4:2e:51:13:00:de:4a:f1:21:1a:63:c5:06:17:c1:76:67: ea:76:62:14:e6:a9:c4:5e:12:9f:8d:40:38:6d:af:5e:eb:a2: c9:df:f8:ba:6c:82:06:e5:d7:9c:d5:e3:1d:08:c7:a5:9a:ef: 78:c1:ff:ec:b5:2e:4e:16:8d:56:f8:6f:d5:18:77:17:87:ff: d3:c4:27:d4:2b:72:57:ef:c6:35:a5:a0:fc:d5:af:9a:1c:84: 26:52:bb:9d:f0:0c:4a:55:6b:15:ae:c8:5f:c1:63:50:a6:1f: f7:a1:53:78:2a:42:be:e3:c0:ce:2b:bf:2f:45:a9:ab:a5:f2: 6c:79:33:d1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjUxMjAyMjM1ODU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE0My1iM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiQMY/Lt9wHp026tdtdE+DKKlb7HS7QWHO1OYKgH7btJLQ3MpmOC7mKT1j2zP IjcKY+ANA2AKjOArhYOyP3/T3fca9ewrUpbcfjQIMot4+ef2lLsxocIr16N6gKw3 NSCkcPKCC+0lJBS9rYJrAv+LWk/NCIVJmMA8yf91LRC8XVlBeLw4BhVfKCTsvXPg uA8nXsk4/zks8nDzLE+EYMVICx15u9elh2444UjqoxBHwsFynTnJKRxLq+lL0E17 YOZDwMe8VsuNypHP5kPYM1BeEuct1E4qd10ZKWwIa8gvbs2cM4YYn+kD6l3lqmaK ikHDFPXWlf7owo0WRl082ont2QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO+8IJxJ dKZil1R8VhkPAYrK3M4CMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvRjUzRkY5RTY2 OEY0MTFFRkExNTMwQzM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ/A+MA0GCSqGSIb3DQEBCwUAA4IBAQCQR+776J+XLwjM9T/pw+Cn gHzHvxlROTJT8cIvyXn0XHM80OIo6e5MQiMC1cN+MCkoAFOIVTtpDqZ8xYK7ZHuY pAavJFqP0JwLAKyvF6h9C8+60N8dNP/ViIvrbBUAreg8ElqAlbU7CouRLxuHwo9U m3LoRivE4E1CCAjX8pxxxC5REwDeSvEhGmPFBhfBdmfqdmIU5qnEXhKfjUA4ba9e 66LJ3/i6bIIG5dec1eMdCMelmu94wf/stS5OFo1W+G/VGHcXh//TxCfUK3JX78Y1 paD81a+aHIQmUrud8AxKVWsVrshfwWNQph/3oVN4KkK+48DOK78vRamrpfJseTPR -----END CERTIFICATE-----Generated at Mon Mar 2 05:52:08 2026 by rpki-client