$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa File: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (raw, json) Hash identifier: n/hyIjFqCJzOht5Ju7CI7zedjM3U4KBE15I93wtTvdI= Subject key identifier: 68:F2:50:CC:00:EF:A3:2D:00:96:EA:9D:5A:4B:C9:5E:EE:6B:F1:3D Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: D8 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:27:51 +0000 ROA not before: Tue 23 Dec 2025 05:26:26 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139748 IP address blocks: 103.144.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Dec 23 05:26:26 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43ed7-4b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a0:e0:82:96:ae:20:5c:06:85:86:e4:dd:6f: 16:33:0d:69:bc:ae:9e:42:3b:12:1a:88:9b:fe:7f: c2:c8:59:5c:b9:a0:3d:05:9d:ac:37:7f:d9:0e:02: 28:78:b4:ef:53:5a:25:2f:79:46:38:f8:cb:6c:e3: f2:20:b7:65:6b:94:74:59:b0:b6:fd:bd:6b:ba:a1: af:26:f3:dd:76:66:e8:5a:4a:81:6a:a7:39:f7:13: e2:13:33:34:c6:ae:7a:c2:36:f2:9f:6b:76:d0:47: a4:9c:0c:6c:96:fd:1d:6f:1a:f3:3e:a3:b1:4b:12: 75:d8:41:3e:97:2b:25:89:c5:5f:ca:b0:f8:6a:10: 7b:30:4f:32:ff:17:de:1c:3a:df:3b:f7:dc:0e:02: 36:97:d8:33:43:e5:d2:e7:09:bc:0d:d9:a0:21:d8: 7a:72:35:bf:07:a3:32:47:c2:a1:2d:4f:a6:24:d7: 8e:15:38:5c:ce:42:ca:33:89:ef:0e:0d:73:3f:57: 55:e7:03:d5:5f:3d:7f:f2:51:61:a0:09:d4:bf:3e: bf:a8:9f:5f:0c:e7:69:a0:06:95:2e:3c:22:6c:e2: 16:b3:1e:d0:cb:eb:31:60:c7:a1:80:8b:f0:25:bf: d0:d0:16:e1:71:ab:0f:ae:f9:96:01:d0:2a:e8:d6: 39:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F2:50:CC:00:EF:A3:2D:00:96:EA:9D:5A:4B:C9:5E:EE:6B:F1:3D X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.144.125.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:96:56:ce:42:36:3a:9d:13:74:55:0e:2b:80:90:4e:76:5a: e8:e3:d6:d9:0e:db:59:50:a1:e7:19:a9:32:0f:42:b5:20:4c: 24:5f:ea:f6:31:3d:99:6f:2e:e9:26:71:4e:6e:be:1f:e2:21: 6a:4a:4e:6d:c4:8e:a6:b9:d3:dd:a1:7a:f6:86:59:f9:f3:37: f2:a3:be:51:aa:fc:02:32:13:90:67:5d:51:51:96:d1:43:ad: 19:11:5f:b5:b2:2c:c0:cc:93:3b:17:e6:a4:43:95:fd:55:a1: 63:a4:16:3d:2d:92:0e:42:e4:3e:e7:b6:cd:69:90:c0:d8:f3: 05:1d:ca:f1:b0:10:8b:99:d0:95:5b:8b:8e:08:bf:ca:c4:96: 5e:7d:df:a7:7f:08:e9:69:79:15:1b:8b:cf:29:d3:7f:a2:e8: 0d:95:0d:34:81:43:f3:69:d0:14:3f:16:d0:99:e3:d3:b7:fc: 79:1f:67:6b:fc:e6:17:b5:3a:22:6e:47:e3:b2:db:06:35:20: d5:35:11:9c:be:df:02:14:11:c0:c3:5f:20:84:a6:66:59:4f: 0d:cd:71:1a:77:3a:ee:a5:37:01:07:f4:c3:f0:c0:58:f4:9b: 3a:2c:6a:b9:58:e8:1a:d7:89:c0:63:f3:b9:5d:3d:34:de:ef: ea:a2:bc:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NzYxMTAvBgNVBAUTKDE4OTFENTRDRUY2QTkwQzIzMkZDQTg5MUUzOTlGOTc4 Mzg2NzExRUUwHhcNMjUxMjIzMDUyNjI2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2VkNy00YjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qDggpauIFwGhYbk3W8WMw1pvK6eQjsSGoib/n/CyFlcuaA9BZ2sN3/ZDgIo eLTvU1olL3lGOPjLbOPyILdla5R0WbC2/b1ruqGvJvPddmboWkqBaqc59xPiEzM0 xq56wjbyn2t20EeknAxslv0dbxrzPqOxSxJ12EE+lyslicVfyrD4ahB7ME8y/xfe HDrfO/fcDgI2l9gzQ+XS5wm8DdmgIdh6cjW/B6MyR8KhLU+mJNeOFThczkLKM4nv Dg1zP1dV5wPVXz1/8lFhoAnUvz6/qJ9fDOdpoAaVLjwibOIWsx7Qy+sxYMehgIvw Jb/Q0BbhcasPrvmWAdAq6NY5hwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGjyUMwA 76MtAJbqnVpLyV7ua/E9MB8GA1UdIwQYMBaAFBiR1UzvapDCMvyokeOZ+Xg4ZxHu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU3Ni8yREU5NEE5QUQ3 QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9HSkhWVE85cWtNSXlfS2lSNDVuNWVEaG5F ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1NzYvMkRFOTRBOUFEN0E0MTFFRjk2NEQ2RDdDQzRGOUFFMDIvQzhCRkNEOTZE N0E0MTFFRjlBQjgxOTMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5B9MA0GCSqGSIb3DQEBCwUAA4IBAQB6llbOQjY6nRN0VQ4rgJBO dlro49bZDttZUKHnGakyD0K1IEwkX+r2MT2Zby7pJnFObr4f4iFqSk5txI6mudPd oXr2hln58zfyo75RqvwCMhOQZ11RUZbRQ60ZEV+1sizAzJM7F+akQ5X9VaFjpBY9 LZIOQuQ+57bNaZDA2PMFHcrxsBCLmdCVW4uOCL/KxJZefd+nfwjpaXkVG4vPKdN/ ougNlQ00gUPzadAUPxbQmePTt/x5H2dr/OYXtToibkfjstsGNSDVNRGcvt8CFBHA w18ghKZmWU8NzXEadzrupTcBB/TD8MBY9Js6LGq5WOga14nAY/O5XT003u/qoryV -----END CERTIFICATE-----Generated at Mon Mar 2 10:40:18 2026 by rpki-client