$ rpki-client -vvf rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa File: AB8BCCA8908011F0B114A05CC4F9AE02.roa (raw, json) Hash identifier: Fe5K6ZkUrGV8sNMXvsh32QNy4vnrTCujmZ10PMxAPR4= Subject key identifier: BF:16:A3:1C:90:AC:7B:2B:78:D0:87:DD:88:85:68:97:DB:C8:74:C1 Certificate issuer: /CN=A9128553/serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Certificate serial: 0370 Authority key identifier: BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:25:13 +0000 ROA not before: Tue 30 Dec 2025 15:28:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137493 IP address blocks: 103.189.144.0/24 maxlen: 24 103.189.145.0/24 maxlen: 24 2400:8620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128553, serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Validity Not Before: Dec 30 15:28:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47678-d526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8b:46:f1:2d:61:f6:b8:40:09:42:34:5d:37: 23:f9:26:23:a1:46:15:97:4f:39:fd:ef:ec:88:58: 59:63:dd:92:0e:80:9a:ea:1b:12:bc:98:bd:6b:0d: fd:2a:53:ed:01:4b:22:b9:28:ab:a5:08:d9:86:0f: 8a:11:1c:33:d2:2c:83:3b:6a:82:30:53:00:92:f4: 56:af:65:14:14:35:f1:5d:c6:bb:db:6b:61:42:9f: 76:ee:d5:7e:b1:a0:91:7f:52:03:ea:c6:23:9f:09: 23:1e:dd:5b:2e:14:45:c5:f5:4e:87:b3:8a:53:de: 00:10:26:51:1f:96:45:44:0b:15:ea:08:96:97:de: cf:b5:25:0e:86:28:07:a9:e8:c8:4f:e5:1b:a8:aa: 5f:8c:57:ee:56:33:27:12:68:52:67:58:c5:3e:9b: 52:1d:c1:02:d2:59:47:8d:67:73:5d:31:f0:1f:28: cb:cf:be:ae:35:ca:7d:76:e5:4c:e5:41:fa:d0:24: 16:89:6b:a4:51:f8:7d:a0:60:d7:d7:eb:cb:34:ac: c7:e5:77:66:d9:ce:4a:ed:02:4c:21:30:03:ff:55: 12:c1:33:9e:33:da:1c:f2:27:50:a7:14:00:45:0a: 59:4c:cf:bb:f9:dc:c8:5f:cf:de:8e:b5:91:73:5f: 99:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:16:A3:1C:90:AC:7B:2B:78:D0:87:DD:88:85:68:97:DB:C8:74:C1 X509v3 Authority Key Identifier: keyid:BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.144.0/23 IPv6: 2400:8620::/32 Signature Algorithm: sha256WithRSAEncryption 13:cf:5a:f8:72:32:d5:40:6b:7a:ee:c6:01:56:f1:3d:a2:52: d1:1d:55:f9:93:e0:68:75:45:6e:4e:a2:87:d9:c1:d3:43:d0: b7:b4:0f:23:ae:a1:37:10:c2:32:c4:03:1b:d7:22:02:2d:c3: 10:a3:51:53:ab:00:1d:b1:ea:21:df:06:a7:bd:f7:f6:b9:63: 9b:c9:21:49:53:0d:ef:6a:0c:c6:18:cd:f3:92:12:0a:c3:88: 1e:e1:32:8c:2a:13:58:7c:5b:9d:45:89:be:17:e6:f5:f1:29: b8:c4:25:01:e6:55:0f:bc:df:09:5b:4a:0c:07:6c:10:c8:5b: d9:5e:39:aa:ea:8a:3e:2e:fc:a8:83:ab:ca:e0:ac:ac:cc:80: 7f:61:50:0b:a1:8a:09:0f:64:50:8f:d4:10:a8:ec:19:66:e5: 79:6a:27:13:b0:85:96:bd:e2:a6:68:1b:b6:91:54:c0:36:2b: 0c:2f:16:58:e6:9e:ad:49:2f:d8:63:ba:5a:23:59:8f:13:7d: e0:e4:cb:7c:32:86:19:a0:88:ce:d6:a8:08:e5:dc:fe:07:5d: b1:cc:d5:16:a4:6d:7b:46:e7:c9:53:f4:62:83:de:c2:24:22: 06:8d:c5:40:dd:b3:b0:b2:9d:0c:21:dd:da:f3:cc:47:34:16: d9:ba:e0:a1 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NTMxMTAvBgNVBAUTKEJCODk3MDQ1QTg4RkM4MUZDQ0ZFMzhFNUY3NjE1ODRG RENCQUNFODUwHhcNMjUxMjMwMTUyODQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzY3OC1kNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4tG8S1h9rhACUI0XTcj+SYjoUYVl085/e/siFhZY92SDoCa6hsSvJi9aw39 KlPtAUsiuSirpQjZhg+KERwz0iyDO2qCMFMAkvRWr2UUFDXxXca722thQp927tV+ saCRf1ID6sYjnwkjHt1bLhRFxfVOh7OKU94AECZRH5ZFRAsV6giWl97PtSUOhigH qejIT+UbqKpfjFfuVjMnEmhSZ1jFPptSHcEC0llHjWdzXTHwHyjLz76uNcp9duVM 5UH60CQWiWukUfh9oGDX1+vLNKzH5Xdm2c5K7QJMITAD/1USwTOeM9oc8idQpxQA RQpZTM+7+dzIX8/ejrWRc1+ZrQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFL8WoxyQ rHsreNCH3YiFaJfbyHTBMB8GA1UdIwQYMBaAFLuJcEWoj8gfzP445fdhWE/cus6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU1My8xNjRBQkVDNEVC MEIxMUVDODVFM0RCMkNDNEY5QUUwMi91NGx3UmFpUHlCX01fampsOTJGWVQ5eTZ6 b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U0bHdSYWlQeUJfTV9qamw5MkZZVDl5NnpvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1NTMvMTY0QUJFQzRFQjBCMTFFQzg1RTNEQjJDQzRGOUFFMDIvQUI4QkNDQTg5 MDgwMTFGMEIxMTRBMDVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ72QMA0EAgACMAcDBQAkAIYgMA0GCSqGSIb3DQEBCwUAA4IBAQAT z1r4cjLVQGt67sYBVvE9olLRHVX5k+BodUVuTqKH2cHTQ9C3tA8jrqE3EMIyxAMb 1yICLcMQo1FTqwAdseoh3wanvff2uWObySFJUw3vagzGGM3zkhIKw4ge4TKMKhNY fFudRYm+F+b18Sm4xCUB5lUPvN8JW0oMB2wQyFvZXjmq6oo+Lvyog6vK4KyszIB/ YVALoYoJD2RQj9QQqOwZZuV5aicTsIWWveKmaBu2kVTANisMLxZY5p6tSS/YY7pa I1mPE33g5Mt8MoYZoIjO1qgI5dz+B12xzNUWpG17RufJU/Rig97CJCIGjcVA3bOw sp0MId3a88xHNBbZuuCh -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:10 2026 by rpki-client